Setup rndc-control

772a1aa0 · wtfismyip · d03fb244 · 772a1aa0 · 772a1aa0 · 772a1aa0
Commit 772a1aa0 authored Nov 24, 2022 by wtfismyip
--- a/.gitignore
+++ b/.gitignore
@@ -2,3 +2,4 @@ wtf/static/GeoIP/*
 nginx/nginx/certs/*
 wtf/docker/*
 docker-compose.yaml
+debian-bind/rndc.key
--- a/debian-bind/Dockerfile
+++ b/debian-bind/Dockerfile
@@ -6,4 +6,5 @@ RUN apt update
 RUN apt install -y bind9 vim procps dnsutils 
 COPY named.conf /etc/bind/named.conf
 COPY start.sh /etc/bind
+COPY rndc.key /etc/bind
 CMD [ "bash", "-c", "/etc/bind/start.sh" ]
--- a/debian-bind/named.conf
+++ b/debian-bind/named.conf
+include "/etc/bind/rndc.key";
+
 options {
  directory "/var/cache/bind";
  dnssec-validation auto;
@@ -5,3 +7,10 @@ options {
  recursion yes;
  allow-query { 172.19.1.0/24; };
 };
+
+
+controls {
+  inet 127.0.0.1 port 953
+  allow { 127.0.0.1; } keys { "designate"; };
+};
+
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@@ -11,7 +11,7 @@ services:
    unbound:
            restart: unless-stopped
            runtime: runsc-kvm
-            image: "us-docker.pkg.dev/omgwtfbbq/gcr.io/debian-bind:1"
+            image: "us-docker.pkg.dev/omgwtfbbq/gcr.io/debian-bind:2"
            #image: "us-docker.pkg.dev/omgwtfbbq/gcr.io/alpine-unbound:14"
            volumes:
                    - "/docker/resolv.conf:/etc/resolv.conf"