Articles in this section

Why was AWStats deprecated, what tool replaces it, and what happens to existing servers and domains that still use AWStats?
AWStats traffic significantly differs from Plesk traffic stats in a domain
How to enable the local DNS zone for a Plesk domain?
DNS bind service fails on a Plesk server after recent bind package update: loading from master file /var/named/chroot/var/0.13.203.in-addr.arpa.next failed: too many records
How to track which file is being most downloaded on a website on a Plesk server?
Why is it not possible to add a DS record to a root domain in Plesk?
Unable to start BIND DNS server service on a server with Plesk for Debian/Ubuntu: option 'dnssec-enable' no longer exists
How to disable the automatic "notify-to-soa yes" in named.conf for domains in a Plesk server?
Installing extension Slave DNS Manager on Plesk for Windows fails: BIND DNS Server is not installed. To install Slave DNS Manager in Plesk for Windows, copy the "rndc.exe" file to the "C:\Program Files (x86)\Plesk\dns\bin\rndc.exe" folder
Plesk warning: "Domain is not resolvable" on domains that resolve to Cloudflare
See more

Plesk does not update BIND zones

Sergey Senko

Updated January 13, 2026 19:08

kb: technical Plesk Onyx for Linux ABT: Group B dns

Applicable to:

Plesk Onyx for Linux

Symptoms

When Domains > example.com > DNS Settings is changed, changes are not applied to BIND.
CLI utility fails with the following error:

# /opt/psa/admin/sbin/dnsmng --update example.com
dnsmng: Error: unable to reload BIND service
dnsmng: Error: unable to reload BIND service
BIND cannot be reloaded manually:

# service bind9 reload
[....] Reloading domain name service...: bind9rndc: connection to remote host closed
This may indicate that
* the remote server is using an older version of the command protocol,
* this host is not authorized to connect,
* the clocks are not synchronized, or
* the key is invalid.
failed!

Cause

Incorrect key specified in /etc/named.conf or localhost has no control privileges for BIND.

Resolution

Log in to the server via SSH .
Ensure that file /etc/bind/rndc.key exists and that it has the following line:

# cat /etc/bind/rndc.key
...
key rndc-key { algorithm hmac-md5; secret "somesecret"; };
...

Also the following section should be present in /etc/named.conf:

# cat /etc/named.conf
...
key rndc-key {
algorithm hmac-md5;
secret "somesecret";
};
controls {
inet * port someport allow { 127.0.0.1;} keys {rndc-key;};
};
...

Comments

0 comments

Please sign in to leave a comment.