rndc stuff

2019-11-27 22:47:02 +01:00 · 2019-11-27 22:47:02 +01:00 · 7ec0189140
commit 7ec0189140
parent 6fc64baaa7
3 changed files with 18 additions and 1 deletions
--- a/2
+++ b/2
@ -29,10 +29,12 @@ RUN \
  apt install -y netcat && \
  echo "include \"/etc/bind/local.key\";" >> /etc/bind/named.conf && \
  echo "include \"/etc/bind/dynamic/dynamic-zones.conf\";" >> /etc/bind/named.conf && \
+  echo "include \"/etc/bind/named.conf.rndc\";" >> /etc/bind/named.conf 
  echo "include \"/etc/bind/named.conf.logging\";" >> /etc/bind/named.conf 

 COPY ./server/ $APP_DIR
 COPY ./bind/named.conf.logging $BIND_DIR
+COPY ./bind/named.conf.rndc $BIND_DIR
 COPY ./bind/dynamic-zones.conf $DYN_ZONES_DIR
 COPY ./bind/dynamic.hottis.de $DYN_ZONES_DIR
 COPY ./yadynns.sh $APP_DIR
--- a/bind/named.conf.rndc
+++ b/bind/named.conf.rndc
@ -0,0 +1,10 @@
+key "rndc-key" {
+      algorithm hmac-md5;
+      secret "$RNDCKEY";
+};
+
+controls {
+      inet 127.0.0.1 port 953
+              allow { 127.0.0.1; } keys { "rndc-key"; };
+};
+
--- a/yadynns.sh
+++ b/yadynns.sh
@ -1,10 +1,15 @@
 #!/bin/bash

-echo "Generating key ..."
+echo "Generating tsig key ..."
 /usr/sbin/tsig-keygen local. > /etc/bind/local.key
 KEY=`cat /etc/bind/local.key | awk -F\" '/secret/ {print $2}'`
 sed -i "s,KEYVALUE,$KEY," /opt/app/yadyn

+echo "Generating rndc key ..."
+/usr/sbin/rndc-confgen > /etc/bind/rndc.conf
+KEY=`cat /etc/bind/rndc.conf | egrep "^\s*secret" | awk -F\" '{print $2}'`
+sed -i "s,RNDCKEY,$KEY," /etc/bind/named.conf.rndc
+
 echo "Starting named ..."
 /usr/sbin/named