zonemaster-engine CDS/CDNSKEY inconsistency error

CDS/CDNSKEY inconsistency error

Open anandb-ripencc opened this issue 6 months ago • 7 comments

$ zonemaster-cli --version
Zonemaster-CLI version v7.0.0
Zonemaster-Engine version v6.0.0
Zonemaster-LDNS version 4.0.2
NL NetLabs LDNS version 1.8.3

$ zonemaster-cli 8.1.7.0.1.0.0.2.ip6.arpa --ns decsys.vsb.cz --ns nsa.ces.net --ns nsa.cesnet.cz
Loading profile from /etc/zonemaster/ripencc.json.
  /
Seconds Level    Message
======= ======== =======
   8.66 ERROR    All servers do not have the same CDS RRset.
   8.66 ERROR    All servers do not have the same CDNSKEY RRset.

I've removed the NOTICE and WARNING level messages. The interesting one is this ERROR about the CDS/CDNSKEY. I cannot see the inconsistency:

% dig +norec +short 8.1.7.0.1.0.0.2.ip6.arpa cds @nsa.cesnet.cz
37015 13 2 DCDB214392D046333752C10124170645EA86D299749F7953D66F8598 CE80CDD7
% dig +norec +short 8.1.7.0.1.0.0.2.ip6.arpa cds @nsa.ces.net
37015 13 2 DCDB214392D046333752C10124170645EA86D299749F7953D66F8598 CE80CDD7
% dig +norec +short 8.1.7.0.1.0.0.2.ip6.arpa cds @decsys.vsb.cz
37015 13 2 DCDB214392D046333752C10124170645EA86D299749F7953D66F8598 CE80CDD7

Aug 09 '24 11:08 anandb-ripencc

zonemaster-engine zonemaster-engine copied to clipboard

CDS/CDNSKEY inconsistency error

zonemaster-engine
zonemaster-engine copied to clipboard