Documentation Index
Fetch the complete documentation index at: https://docs.futurex.com/llms.txt
Use this file to discover all available pages before exploring further.
Inline signing in Bind
BIND 9.9 introduces a new inline-signing option, which allows named, the name daemon on Linux, to sign zones completely transparently. A server can load or transfer an unsigned zone and create a signed version that answers all queries and transfer requests without altering the original unsigned version. As you update the unsigned zone, named detects the changes you made and applies those changes to the signed version. This enables a seamless transition to DNSSEC with minimal disruption to existing systems.
This integration guide provides a basic example of configuring BIND 9 to integrate with the Vectera Plus HSM for private key storage and signing of zone files. If you want to implement inline signing in BIND, refer to the following Inline Signing article on the ISC knowledgebase website (kb.isc.org/docs/aa-00626).
