On Sun, Nov 13, 2016 at 05:56:50PM -0800, mro...@insiberia.net wrote: > I'm having a hard time knowing how to debug this message: > > Packet for domain 'local.' denied: can't find TSIG key with name > 'tsig.key.local.' and algorithm 'hmac-sha512.' > > Is that a small bug that is reporting the algorithm with a dot at > the end? Or is it my problem? I double-checked that the algorithm is > not being specified with a dot on either side, so if that's the > problem, I don't know how to fix it. > > I have a single TSIG entry: > id | name | algorithm | secret > 1 | tsig.key.local. | hmac-sha512 | xxxxxxxxx.... >
Silly thing but the algorithm is actually a DNSName too, so it needs to be hmac-sha512. with a dot. Aki _______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
