From cbb428d417ba85d8539087f09a3387f1f08fbf4d Mon Sep 17 00:00:00 2001
From: tracer <tracer@24unix.net>
Date: Tue, 22 Feb 2022 15:59:38 +0100
Subject: [PATCH] =?UTF-8?q?more=20text=20=E2=80=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: tracer <tracer@24unix.net>
---
 README.md | 36 ++++++++++++++++++++++++++++++++++--
 1 file changed, 34 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 7d6b44b..7421b38 100644
--- a/README.md
+++ b/README.md
@@ -335,7 +335,7 @@ ns1.24unix.net  176.9.165.128 pong              2a01:4f8:161:12cd::128 pong
 ns2.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 pong
 ```
 
-Now we can add all out panels:
+Now we can add all our panels:
 
 ```
 $ ./bin/console panels:create executor.24unix.net a=176.9.165.128 aaaa=2a01:4f8:161:12cd::128 apikey=Lo7jsXYQ.[truncated]
@@ -373,7 +373,7 @@ shadow.24unix.net      37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 p
 tector.24unix.net       176.9.165.137 pong              2a01:4f8:161:12cd::137 pong
 ```
 
-OK, Nameservers ✅
+OK, Nameservers ✅  
 Panels          ✅
 
 What's next? Check the domains on each panel:
@@ -446,6 +446,7 @@ tfunix has to be a group member of the „bind“ group.
 As root perform:
 
 `usermod -G bind tfunix`
+
 (Mind that it is a capital G, else you'll change the primary group and the checks will fail.
 Don't ask how I noticed …)
 
@@ -478,15 +479,46 @@ Checking permission:
 
 UID:	5001
 Name:	tfunix
+	✅ is in group 'bind
 Checking file: /etc/bind/local.zones
 	✅ Group has write access .
 Checking /etc/bind/named.conf.local
 	✅ /etc/bind/local.zones is included in /etc/bind/named.conf.local
 Checking directory: /etc/bind/zones/
 	✅ Group has write access .
+```
 
+Now, there is one manual step left, for now.
+We have to go to each panel and add an include file.
+BUT: This is a temporary workaround, a later version of Keyhelp will enable us to automate this step.
+
+So, execute ./bin/console check:showincludes:
 
 ```
+ ./bin/console check:showincludes
+You need to add these lines to /etc/bind/local.bindapi.options and make sure
+that include "/etc/bind/local.bindapi.options"; exists in /etc/bind/named.conf.options.
+
+allow-transfer {
+	176.9.165.128;
+	2a01:4f8:161:12cd::128;
+	37.120.185.117;
+	2a03:4000:f:5e2:a80c:2dff:fed1:e109;
+	212.227.160.159;
+	2001:8d8:1801:701::1;
+};
+also-notify {
+	176.9.165.128;
+	2a01:4f8:161:12cd::128;
+	37.120.185.117;
+	2a03:4000:f:5e2:a80c:2dff:fed1:e109;
+	212.227.160.159;
+	2001:8d8:1801:701::1;
+};
+
+After the modification feel free to run named-checkconf to ensure there were no errors.
+```
+
 
 TODO