Skip to end of metadata
Go to start of metadata

Symptom:

After installing the Men & Mice DNS Server Controller on RedHat Enterprise Linux (or CentOS), the BIND DNS server process is using 100% CPU time.

The logfile contains this error messages:

 

 

04-Sep-2012 11:37:55.227 set up managed keys zone for view _default, file 'dynamic/managed-keys.bind'
[ ... empty zones ... ]
04-Sep-2012 11:37:55.262 zone localhost.localdomain/IN: loaded serial 0
04-Sep-2012 11:37:55.264 zone localhost/IN: loaded serial 0
04-Sep-2012 11:37:55.267 dynamic/managed-keys.bind.jnl: create: file not found
04-Sep-2012 11:37:55.267 managed-keys-zone ./IN: sync_keyzone:dns_journal_open -> unexpected error
Versions: we have seen this issue on RedHat / CentOS 6.x with BIND 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.2

 

Problem:

RedHat has patched the BIND DNS Server to store the DNSSEC managed keys inside a sub-directory "dynamic" under the DNS servers home directory "/var/named". This sub-directory might not exist.

Solution

create the missing sub-directory, and restart the BIND DNS Server:

 

sudo mkdir -p /var/named/dynamic
sudo chown -R named:named /var/named
sudo /etc/init.d/named restart