bind9 configure forward zone for local domain without DNSSEC for this zone only

bind dns-server dnssec

Solution 1:

I found an answer. Following line in /etc/bind/named.conf.options fixes it:

--->        dnssec-must-be-secure mydomain.local no;   <---

So, full text of /etc/bind/named.conf.options will be (skipping comments):

options {
        directory "/var/cache/bind";

        forwarders {
                192.168.1.1;
        };

        dnssec-enable yes;
        dnssec-validation yes;
        dnssec-must-be-secure mydomain.local no;

        auth-nxdomain no;
        listen-on-v6 { any; };
};

UPDATE: Actually, at this point I cannot tell if I indeed fixed bind with that line or didn't. Somehow all queries succeed now, with or without this line. If an expert is present here, please chip in

Related

ADUC Exchange tabs - Windows 7 & Exchange 2003
SELinux: Letting Apache talk to MySQL on CentOS
Percona-server time out on /etc/init.d/mysql start
Windows Server 2008 R2: User account set to not show on login
Redirect all non-www subdomains to main www domain with Apache2
Recover mysql database - mysql/mysqldump gives "table <database>.<tablename> doesn't exist (1146)"
What is a good cost effective IT asset management solution?
Can I "register" python scripts to execute on Windows?
Dovecot Migration and old mails
How do I delete ESXi vm snapshots using the least additional space possible?
Apache Failover and Load Balancing
What is Best NAS solution for windows workgroup? freenas or openfiler