diff options
Diffstat (limited to 'config/dns.nix')
| -rw-r--r-- | config/dns.nix | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/config/dns.nix b/config/dns.nix index 163bb28..aa36998 100644 --- a/config/dns.nix +++ b/config/dns.nix @@ -27,9 +27,10 @@ in zone ${zone} { type master; file "/var/run/named/db.${zone}.zone"; - auto-dnssec maintain; - inline-signing yes; - sig-validity-interval 21 16; + // auto-dnssec maintain; + dnssec-policy default; + // inline-signing yes; + // sig-validity-interval 21 16; key-directory "/opt/secret/bind/${zone}"; update-policy local; allow-query { any; }; @@ -57,7 +58,8 @@ in zone dynamic.orbekk.com { type master; file "/var/run/named/db.dynamic.orbekk.com.zone"; - auto-dnssec maintain; + // auto-dnssec maintain; + dnssec-policy default; key-directory "/opt/secret/bind/dynamic.orbekk.com"; allow-query { any; }; allow-transfer { |