dns-server.sls 1.1 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253
  1. #
  2. # DNS related settings
  3. #
  4. dns-server:
  5. # Reference NS for sync checks
  6. reference_ns: <IP of primary auth NS>
  7. # These settings are only relevant for boxes running DNS and monitoring
  8. {% if grains['id'].startswith ('dns') or grains['id'].startswith ('infra-') or grains['id'].startswith ('icinga2') %}
  9. acls:
  10. ffho-ops:
  11. entries:
  12. - <OPS prefixes>
  13. slaves:
  14. entries:
  15. - <IPv4 / IPv6 IPs of DNS slaves>
  16. # Defaults if not specified below
  17. zone_defaults:
  18. type: master
  19. # ACLs defined above
  20. allow-transfer: "slaves; localhost; ffho-ops;"
  21. zones:
  22. # public zones
  23. paderborn.freifunk.net:
  24. file: /etc/bind/zones/static/paderborn.freifunk.net.zone
  25. hochstift.freifunk.net:
  26. file: /etc/bind/zones/static/hochstift.freifunk.net.zone
  27. ffho.net:
  28. file: /etc/bind/zones/generated/ffho.net.zone
  29. # reverse zones etc.
  30. # ...
  31. # Configuration for authoritive name server
  32. auth:
  33. ips:
  34. - <IPv4 / IPv6 IP of priamry auth NS>
  35. allow-recursion:
  36. - <Networks to allow recursive queries from>
  37. {% endif %}