more text …
Signed-off-by: tracer <tracer@24unix.net>
This commit is contained in:
parent
4d22d81de9
commit
cbb428d417
36
README.md
36
README.md
@ -335,7 +335,7 @@ ns1.24unix.net 176.9.165.128 pong 2a01:4f8:161:12cd::128 pong
|
||||
ns2.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 pong
|
||||
```
|
||||
|
||||
Now we can add all out panels:
|
||||
Now we can add all our panels:
|
||||
|
||||
```
|
||||
$ ./bin/console panels:create executor.24unix.net a=176.9.165.128 aaaa=2a01:4f8:161:12cd::128 apikey=Lo7jsXYQ.[truncated]
|
||||
@ -373,7 +373,7 @@ shadow.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 p
|
||||
tector.24unix.net 176.9.165.137 pong 2a01:4f8:161:12cd::137 pong
|
||||
```
|
||||
|
||||
OK, Nameservers ✅
|
||||
OK, Nameservers ✅
|
||||
Panels ✅
|
||||
|
||||
What's next? Check the domains on each panel:
|
||||
@ -446,6 +446,7 @@ tfunix has to be a group member of the „bind“ group.
|
||||
As root perform:
|
||||
|
||||
`usermod -G bind tfunix`
|
||||
|
||||
(Mind that it is a capital G, else you'll change the primary group and the checks will fail.
|
||||
Don't ask how I noticed …)
|
||||
|
||||
@ -478,15 +479,46 @@ Checking permission:
|
||||
|
||||
UID: 5001
|
||||
Name: tfunix
|
||||
✅ is in group 'bind
|
||||
Checking file: /etc/bind/local.zones
|
||||
✅ Group has write access .
|
||||
Checking /etc/bind/named.conf.local
|
||||
✅ /etc/bind/local.zones is included in /etc/bind/named.conf.local
|
||||
Checking directory: /etc/bind/zones/
|
||||
✅ Group has write access .
|
||||
```
|
||||
|
||||
Now, there is one manual step left, for now.
|
||||
We have to go to each panel and add an include file.
|
||||
BUT: This is a temporary workaround, a later version of Keyhelp will enable us to automate this step.
|
||||
|
||||
So, execute ./bin/console check:showincludes:
|
||||
|
||||
```
|
||||
./bin/console check:showincludes
|
||||
You need to add these lines to /etc/bind/local.bindapi.options and make sure
|
||||
that include "/etc/bind/local.bindapi.options"; exists in /etc/bind/named.conf.options.
|
||||
|
||||
allow-transfer {
|
||||
176.9.165.128;
|
||||
2a01:4f8:161:12cd::128;
|
||||
37.120.185.117;
|
||||
2a03:4000:f:5e2:a80c:2dff:fed1:e109;
|
||||
212.227.160.159;
|
||||
2001:8d8:1801:701::1;
|
||||
};
|
||||
also-notify {
|
||||
176.9.165.128;
|
||||
2a01:4f8:161:12cd::128;
|
||||
37.120.185.117;
|
||||
2a03:4000:f:5e2:a80c:2dff:fed1:e109;
|
||||
212.227.160.159;
|
||||
2001:8d8:1801:701::1;
|
||||
};
|
||||
|
||||
After the modification feel free to run named-checkconf to ensure there were no errors.
|
||||
```
|
||||
|
||||
|
||||
TODO
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user