From 51a3cd4dd77de8ffedc92008df04485fe57e6bc4 Mon Sep 17 00:00:00 2001
From: beu <benoit@virtit.fr>
Date: Mon, 8 Apr 2019 11:49:02 +0200
Subject: [PATCH] add DNSSEC keys options

---
 README.md          | 3 ++-
 keys/.gitkeep      | 0
 named.conf.options | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)
 create mode 100644 keys/.gitkeep

diff --git a/README.md b/README.md
index 2239536..eb63aba 100644
--- a/README.md
+++ b/README.md
@@ -15,6 +15,7 @@ The repository is thought like this:
 ├── named.conf.keys            # have all TSIG keys and rndc config
 ├── named.conf.options         # have all bind options
 ├── named.conf.view            # have all views options
+├── keys                       # directory with all DNSSEC keys		
 ├── views
 │   ├── local.conf             # have all zones options of the "local" view
 │   └── public.conf            # have all zones options of the "public" view
@@ -92,4 +93,4 @@ key "key-name" {
 	algorithm hmac-sha256;
 	secret "< YOUR BASE64 >";
 };
-```
\ No newline at end of file
+```
diff --git a/keys/.gitkeep b/keys/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/named.conf.options b/named.conf.options
index c31166a..93b2790 100644
--- a/named.conf.options
+++ b/named.conf.options
@@ -38,6 +38,7 @@ options {
 	// fichier de zone.
 	allow-transfer { none; };
 
+	key-directory /etc/bind/keys ;
 
 };