Home Explore Help
Register Sign In
FreifunkHochstift
/
ffho-salt-public
2
0
Fork 2
Files Issues 0 Pull Requests 0
Browse Source

dns-server: Distinguish options between recursor and authoritive servers.

Signed-off-by: Maximilian Wilhelm <max@rfc2324.org>
Maximilian Wilhelm 6 years ago
parent
db71830aab
commit
e7da552bf6
2 changed files with 6 additions and 10 deletions
Split View Show Diff Stats
  1. 6 0
      dns-server/auth/init.sls
  2. 0 10
      dns-server/auth/named.conf.options

+ 6 - 0
dns-server/auth/init.sls
View File 

@@ -2,13 +2,19 @@
 
 # Authoritive FFHO DNS Server configuration (dns01/dns02 anycast)
 
 #
 
 
+{% set roles = salt['pillar.get']('nodes:' ~ grains['id'] ~ ':roles', []) %}
 
+
 
 include:
 
   - dns-server
 
 
 # Bind options
 
 /etc/bind/named.conf.options:
 
   file.managed:
 
+{% if 'dns-recursor' in roles %}
 
+    - source: salt://dns-server/auth/named.conf.options.recursor
 
+{% else %}
 
     - source: salt://dns-server/auth/named.conf.options
 
+{% endif %}
 
     - template: jinja
 
     - require:
 
       - pkg: bind9

+ 0 - 10
dns-server/auth/named.conf.options
View File 

@@ -34,15 +34,5 @@ options {
 
 	allow-recursion {
 
 		127.0.0.1/8;
 
 		::1/128;
 
-
 
-		// Entries from pillar
 
-{%- for entry in salt['pillar.get']('dns-server:auth:allow-recursion', []) %}
 
-		{{ entry }};
 
-{%- endfor %}
 
 	};
 
-
 
-{%- if grains['id'] != 'dns01.in.ffho.net' %}
 
-	// Disable notifies on non-master DNS
 
-	notify no;
 
-{%- endif %}
 
 };