Txt syntax for bind9

boistordu · March 14, 2018, 7:32am

It seems that I can’t find any good syntax for txt record for bind9. Does anyone have some ?
I found out that the value should be in « »
But that doesn’t seem to be enough.

sahsanu · March 14, 2018, 7:36am

Hi @boistordu,

_acme-challenge IN TXT "here the token"

or

_acme-challenge.yourdomain.tld. IN TXT "here the token"

Edit: Added 2 examples for a subdomain.

_acme-challenge.subdomain IN TXT "here the token"

or

_acme-challenge.subdomain.yourdomain.tld. IN TXT "here the token"

Cheers,
sahsanu

boistordu · March 14, 2018, 8:28am

I don’t know why for the moment but it doesn’t return any result so I guess I’m missing something

boistordu · March 14, 2018, 8:31am

Is the TXT protected by the same protection than CNAME ? So to get any result I should have the transfer available for everyone ?

sahsanu · March 14, 2018, 8:38am

Sorry but I don’t understand what you mean.

boistordu · March 14, 2018, 8:41am

I got my answer by testing it. I couldn’t get any dig or nslookup -a=txt because of protection of transfer zone. If any devices would try it it would shown as access denied in logs.
And for the previous attempt with certbot, I’ve been stupid enough to forget the point at the end of the name.
Thanks for your help

bytecamp · March 14, 2018, 12:24pm

Don't allow zone-transfer for everybody! This is not needed for general DNS operation, e.g. querying arbitrary records.

boistordu · March 14, 2018, 2:58pm

Don’t worry I let the protection in place

system · April 13, 2018, 2:58pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.