From: Peter Palfrader <peter@palfrader.org>
Date: Sun, 14 Feb 2010 19:25:22 +0000 (+0100)
Subject: Enable DNSsec on our secondaries
X-Git-Url: https://git.adam-barratt.org.uk/?a=commitdiff_plain;h=cd4b99296cabf0080984e735ac8bddd3387ffd3c;p=mirror%2Fdsa-puppet.git

Enable DNSsec on our secondaries
---

diff --git a/modules/named/files/common/named.conf.options-secondary b/modules/named/files/common/named.conf.options-secondary
index f3c6a4c9c..e95a7286a 100644
--- a/modules/named/files/common/named.conf.options-secondary
+++ b/modules/named/files/common/named.conf.options-secondary
@@ -11,6 +11,9 @@ options {
 
 	auth-nxdomain no;
 	listen-on-v6 { any; };
+
+	dnssec-enable yes;
+	dnssec-validation yes;
 };
 
 logging {
diff --git a/modules/named/files/per-host/ravel.debian.org/named.conf.options-secondary b/modules/named/files/per-host/ravel.debian.org/named.conf.options-secondary
index b3968866a..58e18dc75 100644
--- a/modules/named/files/per-host/ravel.debian.org/named.conf.options-secondary
+++ b/modules/named/files/per-host/ravel.debian.org/named.conf.options-secondary
@@ -18,6 +18,9 @@ options {
 
 	auth-nxdomain no;
 	listen-on-v6 { any; };
+
+	dnssec-enable yes;
+	dnssec-validation yes;
 };
 
 logging {