I am running NetBSD 1.5Y/i386 on one machine and FreeBSD 4.4/i386 on
another.  Both have BIND 8.2.4 as their standard BIND, but on NetBSD
it's -NOESW, while on FreeBSD it's not.

I am attempting to set up keys for use with TSIG, and NetBSD keeps
telling me the key is unknown, while FreeBSD doesn't, for almost the
same named.conf.  Is this due to -NOESW?  (It appears from the
Makefile that this is set unconditionally.)  Should I install one of
the BIND versions from pkgsrc?  Would they have the same setting?  Did
I miss something?

My named.conf file at each end is pretty much as follows (secret and
some zones omitted):

| options {
|         directory "/var/namedb";
|         dump-file "named_dump.db";
|         auth-nxdomain no;
|         notify yes;
|         query-source address * port 53;
|         allow-query { 127/8; 202.12.75/24; };
|         allow-transfer { 127/8; 202.12.75/24; };
|         allow-recursion { 127/8; 202.12.75/24; };
| };
| key tsig.nu.org. { algorithm "hmac-md5"; secret "<omitted>"; };
| server 202.12.75.85 { keys { tsig.nu.org.; }; };
| zone "." { type hint; file "ROOT"; }; 
| zone "nu.org" {
|         type slave; masters { <not shown here>; }; file "nu.org";
| };

In each case, the address on the server line is that of the other
machine.

-- 
Christopher Vance