rams wrote:
> Currently in bind we are doing auto full sign when RRSIG expires . Is there
> any chance to generate only RRSIGS instead of full sign.
If you pass the existing signed zone to dnssec-signzone it will
incrementally re-sign it as required - see the last example in the man
page.
Or us
Hi,
Greetings
Currently in bind we are doing auto full sign when RRSIG expires . Is there
any chance to generate only RRSIGS instead of full sign.
the reason I am asking is when we have large zone and when it happens auto
RRSIG expire and full sign, the complete zone is going to full sign and
2 matches
Mail list logo
