dynamically adding/removing TSIG configuration
Klaus Darilion
klaus.mailinglists at pernau.at
Mon Jul 7 13:48:29 UTC 2014
Hi!
I currently use rndc addzone/delzone to manage zones on my slave. I now
want to add TSIG for some of these zones and I want to be able to
enable/disable TSIG dynamically per zone.
Unfortunately I haven't found a nice solution yet. My results are:
1. delzone/addzone with adding the tsig key name to the { zone-options;
} and include named.conf.tsigkeys where I add the key.
Not nice because I have to touch 2 interfaces (rndc and manuelly edit
config files)
2. do not use delzone/addzone anymore but manually rewrite the
named.conf.local file and add/delete/update the zone. IMO it is not nice
fumbling around in the config file - I have to take care of locks and so on.
Thus, does anybody has an idea how I can configure TSIG via some kind of
API?
Thanks
Klaus
More information about the bind-users
mailing list