AIX

 View Only
  • 1.  Failed to create fetch for DNSKEY update after Upgrade to AIX 7.3

    Posted Fri September 06, 2024 06:32 AM

    Hello, 

    We have a problem with the operation of the DNS service and the resolution of addresses after the upgrade of the AIX server from 7.2 to 7.3.
    The settings remained the same regarding the /etc/named.conf and resolv.conf files.
    This is the part of the log that refers to /var/named/named_filelog (when trying nslookup command).

    06-Sep-2024 11:26:08.869 zoneload: info: managed-keys-zone: loaded serial 1
    06-Sep-2024 11:26:08.874 dnssec: warning: managed-keys-zone: Failed to create fetch for DNSKEY update
    06-Sep-2024 11:26:08.875 zoneload: info: zone 0.0.127.in-addr.arpa/IN: loaded serial 2004021601
    06-Sep-2024 11:26:08.879 zoneload: info: zone localhost/IN: loaded serial 2004021601
    06-Sep-2024 11:26:08.879 general: notice: all zones loaded
    06-Sep-2024 11:26:08.879 general: notice: running
    06-Sep-2024 11:26:44.798 lame-servers: info: not found resolving 'localhost.domen1/A/IN': x.y.z.u#53
    06-Sep-2024 11:26:44.800 lame-servers: info: not found resolving 'localhost.domen1/A/IN': x.y.z.u#53
    06-Sep-2024 11:26:44.800 client: error: query client=32c350e4 thread=0x506(localhost.domen1/A): query_gotanswer: unexpected error: SERVFAIL

    Has anyone had experience with the mentioned case and problem.
    Anyone have any ideas or instructions on what to try to configure?

    Thank you very much



    ------------------------------
    Izudin Husić
    ------------------------------


  • 2.  RE: Failed to create fetch for DNSKEY update after Upgrade to AIX 7.3

    Posted 24 days ago

    Hi Izudin Husić, 
    Can you please share below information,
    1 Please share us the  /etc/named.conf and resolv.conf files.
    2 Out put of the command: lslpp -l | grep bind
    3 Hope you are doing AIX migration with rte_justaix option during migration.

    Thanks,

    Sharada



    ------------------------------
    SHARADA ALLIMATTI
    ------------------------------



  • 3.  RE: Failed to create fetch for DNSKEY update after Upgrade to AIX 7.3

    Posted 24 days ago

    Hi Sharada, 

    Thanks for your  response. 

    We already fix the case. 

    Resolution: 

    It is necessary to add "options" in the /etc/named.conf file in the configuration
    dnssec-validation no;
    restart the "named" service.

    Thanks, 



    ------------------------------
    Izudin Husić
    ------------------------------