Symptom:After installing the Men & Mice DNS Server Controller on RedHat Enterprise Linux (or CentOS), the BIND DNS server process is using 100% CPU time.
The logfile contains this error messages:
04-Sep-2012 11:37:55.227 set up managed keys zone for view _default, file 'dynamic/managed-keys.bind' [ ... empty zones ... ] 04-Sep-2012 11:37:55.262 zone localhost.localdomain/IN: loaded serial 0 04-Sep-2012 11:37:55.264 zone localhost/IN: loaded serial 0 04-Sep-2012 11:37:55.267 dynamic/managed-keys.bind.jnl: create: file not found 04-Sep-2012 11:37:55.267 managed-keys-zone ./IN: sync_keyzone:dns_journal_open -> unexpected errorVersions: we have seen this issue on RedHat / CentOS 6.x with BIND 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.2
Problem:RedHat has patched the BIND DNS Server to store the DNSSEC managed keys inside a sub-directory "dynamic" under the DNS servers home directory "/var/named". This sub-directory might not exist.
Solutioncreate the missing sub-directory, and restart the BIND DNS Server:
sudo mkdir -p /var/named/dynamic sudo chown -R named:named /var/named sudo /etc/init.d/named restart