I'm trying to sign my personal DNS domain server so I can start doing dynamic updates and play with dnssec, but I've run into a wall with my preferred management tool, system-config-bind. On my current bind server I was running into an issue where it would fail every time I signed the domain.
I thought there must be something wrong with my config, or my /dev/random's entropy, so I installed bind and system-config-bind on my laptop which has a TPM feeding /dev/random, and I'm running into the exact issue.
I'm familiar with signing my domains from the cli, but I find it easier to use this GUI app and it's disappointing that it's not working as it had for me a few years ago when I tried DNSsec. Does anyone have any idea what could be missing from a base named config that would prevent proper zone signing?
I thought there must be something wrong with my config, or my /dev/random's entropy, so I installed bind and system-config-bind on my laptop which has a TPM feeding /dev/random, and I'm running into the exact issue.
I'm familiar with signing my domains from the cli, but I find it easier to use this GUI app and it's disappointing that it's not working as it had for me a few years ago when I tried DNSsec. Does anyone have any idea what could be missing from a base named config that would prevent proper zone signing?
