那些遇到过的问题

小编jmw*_*jmw的帖子

BIND 服务器有大量“无有效 RRSIG”错误

我有一个在 LAN 上运行的前向 BIND9 服务器,它每天记录数百个错误,例如:

Aug 29 18:38:29 nuc named[850]: error (no valid RRSIG) resolving 'ubuntu.com/DS/IN': 75.75.75.75#53
Aug 29 18:38:31 nuc named[850]:   validating @0x7fc6d826ed50: com SOA: got insecure response; parent indicates it should be secure
Aug 29 18:38:31 nuc named[850]: error (no valid RRSIG) resolving 'medium.com/DS/IN': 75.75.75.75#53
Aug 29 18:38:31 nuc named[850]:   validating @0x7fc6d4014b80: com SOA: got insecure response; parent indicates it should be secure
Run Code Online (Sandbox Code Playgroud)

客户端似乎仍在获得结果,但这些消息正在填满日志。中的相关行named.conf

    forwarders {
            # Comcast
            2001:558:feed::1;
            2001:558:feed::2;
            75.75.75.75;
            75.75.76.76;
    };
    forward only;

    dnssec-enable …
Run Code Online (Sandbox Code Playgroud)

domain-name-system bind dnssec

jmw*_*jmw
2015 08-30
4
推荐指数
3
解决办法
2万
查看次数

标签 统计

bind ×1

dnssec ×1

domain-name-system ×1