X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fnamed%2Ftemplates%2Fnamed.conf.puppet-shared-keys.erb;h=be4f011da27baf721d2e996eb8b062c1e6af0111;hb=9262b789ae47161d50dd2b44c6159756f9763f88;hp=c9e68368b0bedbabf8a5f654e7edae073426529c;hpb=49c6cbaa656966a0f00c637591fdab1908c0c38b;p=mirror%2Fdsa-puppet.git

diff --git a/modules/named/templates/named.conf.puppet-shared-keys.erb b/modules/named/templates/named.conf.puppet-shared-keys.erb
index c9e68368b..be4f011da 100644
--- a/modules/named/templates/named.conf.puppet-shared-keys.erb
+++ b/modules/named/templates/named.conf.puppet-shared-keys.erb
@@ -10,7 +10,9 @@ pairs = [
 	[ 'denis.debian.org', 'senfl.debian.org' ],
 	[ 'denis.debian.org', 'diamond.debian.org' ],
 	[ 'denis.debian.org', 'orff.debian.org' ],
-	[ 'denis.debian.org', 'xfr0.easydns.com' ]
+	[ 'denis.debian.org', 'geo1.debian.org' ],
+	[ 'denis.debian.org', 'geo2.debian.org' ],
+	[ 'denis.debian.org', 'geo3.debian.org' ]
 	]
 
 lines = []
@@ -22,16 +24,11 @@ pairs.each do |pair|
 	pair.delete(fqdn)
 	other = pair[0]
 
-	if other == 'xfr0.easydns.com'
-		remote_ip = ['64.68.200.91']
-		algorithm = "hmac-md5";
-	else
-		remote_ip = scope.lookupvar('site::allnodeinfo')[other]['ipHostNumber']
-		algorithm = "hmac-sha256";
-	end
-
 	key = scope.function_hkdf(['/etc/puppet/secret', "puppet-key-#{keyname}"])
-	lines << "key #{keyname} { algorithm #{algorithm}; secret \"#{key}\"; };"
+
+	lines << "key #{keyname} { algorithm hmac-sha256; secret \"#{key}\"; };"
+
+	remote_ip = scope.lookupvar('site::allnodeinfo')[other]['ipHostNumber']
 	remote_ip.each do |r|
 		lines << "server #{r} { keys { #{keyname}; }; };"
 	end