define-configuration-space dynamic ZONECFG {
prefix "ddns-"
define-simple key "ddns"
+ define-simple auto-dnssec off
define-list types {A TXT PTR}
define policy {body} {
"-o%z" \
"-f%o" \
"%f"]
- define-simple auto-dnssec off
define-list reload-command [list "$BINDPROGS/rndc" "reload" "%z" "IN" "%v"]
define-list autosign-command [list "$BINDPROGS/rndc" "sign" "%z" "IN" "%v"]
define-list checkzone-command \
puts $chan "\ttype master;"
puts $chan "\tfile \"$zone(server-file-name)\";"
switch -exact -- $zone(type) {
- dynamic { write-ddns-update-policy "\t" $chan $config }
+ dynamic {
+ write-ddns-update-policy "\t" $chan $config
+ if {![string equal $zone(ddns-auto-dnssec) off]} {
+ puts $chan "\tauto-dnssec $zone(ddns-auto-dnssec);"
+ }
+ }
}
}
slave {
foreach host $zone(masters) { lappend masters [host-addr $host] }
puts $chan "\tmasters { [join $masters {; }]; };"
puts $chan "\tfile \"$zone(file-name)\";"
- if {![string equal $zone(auto-dnssec) off]} {
- puts $chan "\tauto-dnssec $zone(auto-dnssec);"
- }
switch -exact -- $zone(type) {
dynamic { puts $chan "\tallow-update-forwarding { any; };" }
}
}
}
} elseif {[string equal $zone(type) dynamic] &&
- ![string equal $zone(auto-dnssec) off]} {
+ ![string equal $zone(ddns-auto-dnssec) off]} {
## Dynamic zone: get BIND to re-sign it.
if {
~mdw / zoneconf / commitdiff