#!/bin/bash # Take the first KSK rs=`dig +short -t dnskey . | grep ^257 | head -1` if [ -z "$rs" ]; then echo "root server not up"; exit 1; fi # Unbound echo ". 12 IN DNSKEY $rs" > unbound.root.key # BIND rm managed-keys* rs2=`echo $rs | cut -f4- -d' '` echo "managed-keys {" > named.conf.mkey echo -n "\".\" initial-key "`echo $rs | cut -f1-3 -d' '`" " >> named.conf.mkey echo -e "\"$rs2\";" | sed s/' '/\\n' '/g >> named.conf.mkey echo "};" >> named.conf.mkey # MSFT echo ". 12 IN DNSKEY "`echo $rs | cut -f1-3 -d' '`" (" > msftdnsta echo "$rs2 )" >> msftdnsta #