case "${zone}" in
*.in-addr.arpa)
echo "stub-zone:"
- echo " name: ${zone}."
+ echo " name: ${zone}"
echo " stub-addr: ${server}"
echo
echo "server:"
- echo " local-zone: \"${zone}.\" transparent"
+ echo " local-zone: \"${zone}\" transparent"
echo
;;
*)
echo "forward-zone:"
- echo " name: ${zone}."
+ echo " name: ${zone}"
echo " forward-addr: ${server}"
echo
;;
local ns=${1}
shift
- dig @${ns} A ${TEST_DOMAIN_FAIL} $@ | grep -q SERVFAIL
+ if ! dig @${ns} A ${TEST_DOMAIN_FAIL} $@ | grep -q SERVFAIL; then
+ return 1
+ else
+ # Determine if NS replies with "ad" data flag if DNSSEC enabled
+ dig @${ns} +dnssec SOA ${TEST_DOMAIN} $@ | awk -F: '/\;\;\ flags\:/ { s=1; if (/\ ad/) s=0; exit s }'
+ fi
}
# Checks if we can retrieve the DNSKEY for this domain.
if [ -e /var/ipfire/red/active ]; then
host 0.ipfire.pool.ntp.org > /dev/null 2>&1
if [ "${?}" != "0" ]; then
- boot_mesg "DNS still not work ... init time with ntp.ipfire.org at 81.3.27.46 ..."
+ boot_mesg "DNS still not functioning... Trying to sync time with ntp.ipfire.org (81.3.27.46)..."
loadproc /usr/local/bin/settime 81.3.27.46
fi
fi