crans/crans_bcfg2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[bind] ajout de la validation dnssec

Browse source 
Ignore-this: 7b95172a7151d8afb3875992248e5b3a

darcs-hash:20121101170635-3a55a-bd99f5e9f354cd835956e1a4b9ff625e574633e9.gz
This commit is contained in:
Valentin Samir 2012-11-01 18:06:35 +01:00
parent 616dcac16b
commit cc6041ef52
5 changed files with 32 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

1
Bundler/bind.xml
View file

@ -1,5 +1,6 @@
<Bundle name="bind"> <Bundle name="bind">
<ConfigFile name="/etc/bind/rndc.key"/> <ConfigFile name="/etc/bind/rndc.key"/>
<ConfigFile name="/etc/bind/named.conf"/>
<ConfigFile name="/etc/bind/named.conf.local"/> <ConfigFile name="/etc/bind/named.conf.local"/>
<ConfigFile name="/etc/bind/named.conf.options"/> <ConfigFile name="/etc/bind/named.conf.options"/>
<Group name="dns-primary"> <Group name="dns-primary">

2
Metadata/groups.xml
View file

@ -30,6 +30,7 @@
profile="true"> profile="true">
<Group name="crans-squeeze"/> <Group name="crans-squeeze"/>
<Group name="dns-secondary"/> <Group name="dns-secondary"/>
<Group name="dnssec-validation"/>
<Group name="main-ftp-server"/> <Group name="main-ftp-server"/>
<!-- <Group name="ups-monitor"/> --> <!-- <Group name="ups-monitor"/> -->
<Group name="debian-mirror"/> <Group name="debian-mirror"/>
@ -50,6 +51,7 @@
<Group name="radius-server"/> <Group name="radius-server"/>
<Group name="db-replicat"/> <Group name="db-replicat"/>
<Group name="dns-primary"/> <Group name="dns-primary"/>
<Group name="dnssec-validation"/>
<!-- <Group name="ups-monitor"/> --> <!-- <Group name="ups-monitor"/> -->
<Group name="vlan-radin"/> <Group name="vlan-radin"/>
<Group name="vlan-accueil" /> <Group name="vlan-accueil" />

23
Python/etc/bind/named.conf Normal file
View file

@ -0,0 +1,23 @@
# -*- mode: python; encoding: utf-8 -*-
info["owner"] = "root"
info["group"] = "bind"
info["perms"] = 0644
comment_start = "//"
header("Conf de base de Bind9")
@// This is the primary configuration file for the BIND DNS server named.
@//
@// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
@// structure of BIND configuration files in Debian, *BEFORE* you customize
@// this configuration file.
@//
@// If you are just adding zones, please do that in /etc/bind/named.conf.local
if has("dnssec-validation"):
@include "/etc/bind/bind.keys";
@include "/etc/bind/named.conf.options";
@include "/etc/bind/named.conf.local";

6
Python/etc/bind/named.conf.options
View file

@ -52,5 +52,9 @@ if not has("dns-secondary-no-forward"):
@ // traitement automatique pour la connexion de secours @ // traitement automatique pour la connexion de secours
@ // (ligne decommentee automatiquement en mode secours) @ // (ligne decommentee automatiquement en mode secours)
@// forwarders { 138.231.136.14; } ; #POUR SECOURS @// forwarders { 138.231.136.14; } ; #POUR SECOURS
@};
if has("dnssec-validation"):
@ dnssec-enable yes;
@ dnssec-validation yes;
@};

2
Python/etc/bind/rndc.key
View file

@ -1,6 +1,6 @@
include("secrets") include("secrets")
info["owner"] = "root" info["owner"] = "bind"
info["group"] = "bind" info["group"] = "bind"
info["perms"] = 0640 info["perms"] = 0640