I cannot use knot as slave of a bind server, with TSig
Hi,
I have the following configuration: my master DNS server is using bind9, and my slave server is using knot 2.5.4 (I also tried the 2.4.0 version with the same result). I created a TSig key on my master server, and I get the following error in my master logs:
Sep 18 15:10:24 damian named[31948]: client 158.69.193.26#51464: request has invalid signature: TSIG damian: tsig verify failure (BADKEY)
The same occurs on my slave server when the master sends a notification:
Sep 18 15:12:44 vps147386 knotd[9139]: debug: [rednegra.net.] ACL, denied, action 'notify', remote '212.83.181.142@33359', key 'damian_tsig.'
Sep 18 15:12:44 vps147386 knotd[9139]: notice: [rednegra.net.] notify, incoming, 212.83.181.142@33359: unauthorized request
I must add that the notifications and transfer work in the following cases:
- knot slave, without TSig
- bind slave, with TSig.
Do you have any recommendation in order to investigate my problem (surely due to a bad configuration)? Thanks a lot.