Named: broken trust chain error

While troubleshooting why my DNS server (named on a CentOS box) wasn’t working, I found lots of errors similar to the following in /var/log/messages

 

error (broken trust chain) resolving ‘0.ubuntu.pool.ntp.org/AAAA/IN’: 208.67.220.220#53

 

As it turns out the most common cause of this broken trust chain error is the system time being off too far in either direction. So there are probably numerous ways to fix this, but here are 2 that I use most often.

 

1. Manually set time correctly using “date” command:

The syntax is `date MMDDhhmmYYYY` , so for example to set time to 2/25/2015 12:34pm you would enter: date 022512342015

 

2. You can install NTP (Network Time Protocol) and have it sync your clock automatically:

sudo yum install ntp

chkconfig ntpd on

Tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *