#
#  DNSSEC DEMO/TEST setup.
#
#  Make sure that your loopback interface is configured with IP addresses 10.0.53.201-205
#  Make sure that ./directory.conf contains the correct path.
#  Make sure you read the README
# 
#  Please send feedback and suggestions to olaf@ripe.net.

# $Id$

# PATH to your DNSSEC aware server (BIND 9.3.0s20021217 or later)
NAMED=/usr/local/sbin/named

# Your non-verifying server.. (anything that reads bind9 type config file)
NAMED2=/usr/local/bind-9.2.1/sbin/named


all:
	cd sub.tld/zones ; make   # The order of these is relevant.
	cd tld/zones  ; make
	cd root/zones ; make
	make kill
	make start

# Remove all signed files and keysets and additional junk
clean:
	find . -name 'keyset-*' -exec rm {} \;
	find . -name '*.signed' -exec rm {} \;
	find . -name "*~" -exec rm {} \;
	rm -Rf */log/*


kill: 
	 if [ -f root/named.pid ]; then kill  `cat root/named.pid`; fi
	 if [ -f tld/named.pid ]; then kill  `cat tld/named.pid`; fi
	 if [ -f sub.tld/named.pid ]; then kill  `cat sub.tld/named.pid`; fi
	 if [ -f verifyer/named.pid ]; then kill  `cat verifyer/named.pid`; fi
	 if [ -f forwarder/named.pid ]; then kill  `cat forwarder/named.pid`; fi


start:
	${NAMED} -c root/named.conf
	${NAMED} -c tld/named.conf
	${NAMED} -c sub.tld/named.conf
	${NAMED} -c verifyer/named.conf
	${NAMED2} -c forwarder/named.conf




# Package the lot.

dist:
	make clean
	if [ ! -d DNSSEC-DEMO ]; then mkdir DNSSEC-DEMO ; fi
	rsync -av --exclude DNSSEC-DEMO.tar.gz --exclude DNSSEC-DEMO ./ DNSSEC-DEMO/.
	tar -cvzf DNSSEC-DEMO.tar.gz DNSSEC-DEMO
	rm -Rf DNSSEC-DEMO
