parent
4d22d81de9
commit
cbb428d417
36
README.md
36
README.md
|
@ -335,7 +335,7 @@ ns1.24unix.net 176.9.165.128 pong 2a01:4f8:161:12cd::128 pong
|
||||||
ns2.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 pong
|
ns2.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 pong
|
||||||
```
|
```
|
||||||
|
|
||||||
Now we can add all out panels:
|
Now we can add all our panels:
|
||||||
|
|
||||||
```
|
```
|
||||||
$ ./bin/console panels:create executor.24unix.net a=176.9.165.128 aaaa=2a01:4f8:161:12cd::128 apikey=Lo7jsXYQ.[truncated]
|
$ ./bin/console panels:create executor.24unix.net a=176.9.165.128 aaaa=2a01:4f8:161:12cd::128 apikey=Lo7jsXYQ.[truncated]
|
||||||
|
@ -373,7 +373,7 @@ shadow.24unix.net 37.120.185.117 pong 2a03:4000:f:5e2:a80c:2dff:fed1:e109 p
|
||||||
tector.24unix.net 176.9.165.137 pong 2a01:4f8:161:12cd::137 pong
|
tector.24unix.net 176.9.165.137 pong 2a01:4f8:161:12cd::137 pong
|
||||||
```
|
```
|
||||||
|
|
||||||
OK, Nameservers ✅
|
OK, Nameservers ✅
|
||||||
Panels ✅
|
Panels ✅
|
||||||
|
|
||||||
What's next? Check the domains on each panel:
|
What's next? Check the domains on each panel:
|
||||||
|
@ -446,6 +446,7 @@ tfunix has to be a group member of the „bind“ group.
|
||||||
As root perform:
|
As root perform:
|
||||||
|
|
||||||
`usermod -G bind tfunix`
|
`usermod -G bind tfunix`
|
||||||
|
|
||||||
(Mind that it is a capital G, else you'll change the primary group and the checks will fail.
|
(Mind that it is a capital G, else you'll change the primary group and the checks will fail.
|
||||||
Don't ask how I noticed …)
|
Don't ask how I noticed …)
|
||||||
|
|
||||||
|
@ -478,15 +479,46 @@ Checking permission:
|
||||||
|
|
||||||
UID: 5001
|
UID: 5001
|
||||||
Name: tfunix
|
Name: tfunix
|
||||||
|
✅ is in group 'bind
|
||||||
Checking file: /etc/bind/local.zones
|
Checking file: /etc/bind/local.zones
|
||||||
✅ Group has write access .
|
✅ Group has write access .
|
||||||
Checking /etc/bind/named.conf.local
|
Checking /etc/bind/named.conf.local
|
||||||
✅ /etc/bind/local.zones is included in /etc/bind/named.conf.local
|
✅ /etc/bind/local.zones is included in /etc/bind/named.conf.local
|
||||||
Checking directory: /etc/bind/zones/
|
Checking directory: /etc/bind/zones/
|
||||||
✅ Group has write access .
|
✅ Group has write access .
|
||||||
|
```
|
||||||
|
|
||||||
|
Now, there is one manual step left, for now.
|
||||||
|
We have to go to each panel and add an include file.
|
||||||
|
BUT: This is a temporary workaround, a later version of Keyhelp will enable us to automate this step.
|
||||||
|
|
||||||
|
So, execute ./bin/console check:showincludes:
|
||||||
|
|
||||||
```
|
```
|
||||||
|
./bin/console check:showincludes
|
||||||
|
You need to add these lines to /etc/bind/local.bindapi.options and make sure
|
||||||
|
that include "/etc/bind/local.bindapi.options"; exists in /etc/bind/named.conf.options.
|
||||||
|
|
||||||
|
allow-transfer {
|
||||||
|
176.9.165.128;
|
||||||
|
2a01:4f8:161:12cd::128;
|
||||||
|
37.120.185.117;
|
||||||
|
2a03:4000:f:5e2:a80c:2dff:fed1:e109;
|
||||||
|
212.227.160.159;
|
||||||
|
2001:8d8:1801:701::1;
|
||||||
|
};
|
||||||
|
also-notify {
|
||||||
|
176.9.165.128;
|
||||||
|
2a01:4f8:161:12cd::128;
|
||||||
|
37.120.185.117;
|
||||||
|
2a03:4000:f:5e2:a80c:2dff:fed1:e109;
|
||||||
|
212.227.160.159;
|
||||||
|
2001:8d8:1801:701::1;
|
||||||
|
};
|
||||||
|
|
||||||
|
After the modification feel free to run named-checkconf to ensure there were no errors.
|
||||||
|
```
|
||||||
|
|
||||||
|
|
||||||
TODO
|
TODO
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue