ansible-role-bind/templates/dnssec.j2

19 lines
593 B
Text
Raw Normal View History

2017-10-08 12:55:01 +00:00
#!/bin/bash
# {{ ansible_managed }}
cd /etc/bind/keys
{% for zone, value in bind_zones.iteritems() %}
{% if 'dnssec' in value and value.dnssec %}
dnssec-signzone -3 $(head -n 1000 /dev/urandom | sha1sum | cut -b 1-16) -A -N INCREMENT -o {{ zone }} -t /etc/bind/zones/db.{{ zone }}
{% endif %}
{% endfor %}
{% for zone, value in bind_reverse_zones.iteritems() %}
{% if 'dnssec' in value and value.dnssec %}
dnssec-signzone -3 $(head -n 1000 /dev/urandom | sha1sum | cut -b 1-16) -A -N INCREMENT -o {{ zone }} -t /etc/bind/zones/db.{{ zone }}
{% endif %}
{% endfor %}
2017-10-14 22:52:30 +00:00
systemctl reload bind9