Commit f2ea04e8 authored by Florian Schaal's avatar Florian Schaal
Browse files

Update README.md

parent 97ab75af
Pipeline #47 canceled with stages
......@@ -47,8 +47,8 @@ copy the key-file to your secondary dns:
add your slave-dns to tsig.key:
```
server 10.0.0.1 { keys { TRANSFER; }; };
server 11.0.0.1 { keys { TRANSFER; }; };
server 12.0.0.1 { keys { TRANSFER; }; };
```
set the permissions for the key-file:
```
......@@ -64,8 +64,7 @@ to `/etc/bind/named.conf` to use the key and restart bind: `service bind9 restar
## Preparations on the slave / secondary DNS
add your master-dns to tsig.key:
```
server MASTER-IP { keys { TRANSFER; }; };
server MASTER-IPv6 { keys { TRANSFER; }; };
server 10.0.0.1 { keys { TRANSFER; }; };
```
set the permissions for the key-file:
```
......@@ -73,7 +72,9 @@ chown bind.bind /etc/bind/tsig.key
chmod 640 /etc/bind/tsig.key
```
add ```include "/etc/bind/tsig.key";``` to `/etc/bind/named.conf` to use the key and restart bind: `service bind9 restart`
add
```include "/etc/bind/tsig.key";```
to `/etc/bind/named.conf` to use the key and restart bind: `service bind9 restart`
edit `named.conf.options`:
```
......@@ -100,7 +101,7 @@ options {
dnssec-enable yes;
dnssec-validation auto;
version "not currently available";
allow-notify {88.99.113.185; 2a01:4f8:221:122d:1:1:805:1; };
allow-notify {10.0.0.1; };
notify master-only;
auth-nxdomain no; # conform to RFC1035
......@@ -121,14 +122,14 @@ and disable the DNS-Service in ISPConfig for the secondary dns.
Example:
```
var $master = '10.0.0.1; 2a01:fe0:3a::1'
var $master = '10.0.0.1;';
```
and put the IPs for the slaves into the array `$slaves`
Example:
```
var $slaves=array('192.168.0.1', '10.0.1.3');
var $slaves=array('11.0.0.1', '12.0.0.1');
```
Run `install.sh` on your primary DNS to enable this plugin.
\ No newline at end of file
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment