bind: fix zonefile ownership

This commit is contained in:
Rouven Seifert 2024-03-12 17:08:09 +01:00
parent a7b2d18db0
commit 9a13c1774f
Signed by: rouven.seifert
GPG key ID: B95E8FE6B11C4D09

View file

@ -88,6 +88,7 @@ in
systemd.services.bind.preStart = '' systemd.services.bind.preStart = ''
# copy the file manually to its destination since signing requires a writable directory # copy the file manually to its destination since signing requires a writable directory
${pkgs.coreutils}/bin/cp ${zonefile} ${config.services.bind.directory}/rfive.de.zone.txt ${pkgs.coreutils}/bin/cp ${zonefile} ${config.services.bind.directory}/rfive.de.zone.txt
${pkgs.coreutils}/bin/chown named:named ${config.services.bind.directory}/rfive.de.zone.txt
''; '';
networking.firewall.extraInputRules = '' networking.firewall.extraInputRules = ''
ip saddr ${secondary}/32 tcp dport 53 accept comment "Allow DNS AXFR access from INWX Servers" ip saddr ${secondary}/32 tcp dport 53 accept comment "Allow DNS AXFR access from INWX Servers"