Issue or bug in BIND 9.18.18
Hello,
I am running bind 9.18.18 and I believe there is a bug when using nsupdate.
I use one of the free certificate services (letsengrypt.org) and every 3 months my web certificate gets renewed. However to get a wild card certificate I need to temporarily add challenge presented by letsenecrypt into the DNS server and then a minute later it gets removed. The challenge gets added to my DNS server and the letsencrypt issues me a certificate however after the removal of the challenge the DNS server will no longer respond to that view. The response I get from the server is:
** server can't find hytron.net: SERVFAIL
Even the restart will not take care of the problem. What fixes the issue is when I delete hytron.net.jnl file.
Just to mentioned that server reports fine to other zones, but only the zone that was updated using nsupdate becomes unresponsive.
I attached the scripts that are used for adding and removal of the DNS records using nsupdate.
I hope someone can look into this and point me in the right direction. If any addional info is needed please let me know.
Thank you,
Darko Kraus