Configuring Bind9 to use signed zone file | Utimaco Integration Guides

Once the zone signing is done, you need to make changes in configuration file named.conf as below.

named.conf
`# vi /usr/local/etc/named.conf ... dnssec-validation yes; ... zone "example.net" { type primary; file "example.net.signed"; };`

›_ Console
`# /usr/local/sbin/named -f -4 -E pkcs11 -c /usr/local/etc/named.conf`

Verify log file /var/log/messages shows the signed zone is loaded successfully.

›_ Console
`“zone example.net/IN: loaded serial 0 (DNSSEC signed) Jun 13 09:06:57 SP-Bind9 named[25122]: all zones loaded Jun 13 09:06:57 SP-Bind9 named[25122]: running`

Log output