Home Explore Help
Register Sign In
rklein
/
ffho-salt-public
forked from FreifunkHochstift/ffho-salt-public
1
0
Fork 0
Files
Tree: bcf748ed72
Branches Tags
ffho-salt-pu...
/
icinga2
/
services
/
dns.conf

dns.conf 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 
  1. #
    2. 

  2. # DNS service checks (Salt maanged)
    3. 

  3. #
    4. 

  4. 

  5. ################################################################################
    6. 

  6. #                            Internal DNS services                             #
    7. 

  7. ################################################################################
    8. 

  8. 

  9. # Check DNS Anycast address
    10. 

  10. object Host "dns.srv.in.ffho.net" {
    11. 

  11. 	import "generic-dummy-host"
    12. 

  12. 

  13. 	display_name = "dns.srv.in.ffho.net"
    14. 

  14. 

  15. 	address = "10.132.251.53"
    16. 

  16. 	address6 = "2a03:2260:2342:f251::53"
    17. 

  17. 

  18. 	vars.roles = [
    19. 

  19. 		"dns",
    20. 

  20. 	]
    21. 

  21. }									
    22. 

  22. 

  23. 

  24. # Check DNS anycast nodes
    25. 

  25. apply Service "dns4" {
    26. 

  26. 	import "generic-service"
    27. 

  27. 

  28. 	check_command = "dns"
    29. 

  29. 	vars.dns_lookup = "dns.srv.in.ffho.net"
    30. 

  30.         vars.dns_expected_answer = "10.132.251.53"
    31. 

  31. 	vars.dns_server = host.address
    32. 

  32. 

  33. 	assign where host.address && "dns-auth" in host.vars.roles
    34. 

  34. }
    35. 

  35. 

  36. apply Service "dns6" {
    37. 

  37. 	import "generic-service"
    38. 

  38. 

  39. 	check_command = "dns"
    40. 

  40. 	vars.dns_lookup = "dns.srv.in.ffho.net"
    41. 

  41.         vars.dns_expected_answer = "10.132.251.53"
    42. 

  42. 	vars.dns_server = host.address6
    43. 

  43. 

  44. 	assign where host.address6 && "dns-auth" in host.vars.roles
    45. 

  45. }
    46. 

  46. 

  47. 

  48. # Check if DNS nodes are in sync with auth server
    49. 

  49. apply Service "dns_sync" {
    50. 

  50. 	import "generic-service"
    51. 

  51. 

  52. 	check_command = "dns_sync"
    53. 

  53. 	vars.reference_ns = "80.70.181.58"
    54. 

  54. 	vars.replica_ns = host.address
    55. 

  55. 	vars.zones = [
    56. 

  56. 		"ffho.net",
    57. 

  57. 		"132.10.in-addr.arpa",
    58. 

  58. 		"30.172.in-addr.arpa",
    59. 

  59. 	]
    60. 

  60. 

  61. 	assign where host.address && "dns-auth" in host.vars.roles
    62. 

  62. 	ignore where "dns-server-master" in host.vars.roles
    63. 

  63. }
    64. 

  64. 

  65. 

  66. ################################################################################
    67. 

  67. #                            External DNS services                             #
    68. 

  68. ################################################################################
    69. 

  69. 

  70. apply Service "dns_sync_dns01.srv.rfc2324.org" {
    71. 

  71. 	import "generic-service"
    72. 

  72. 

  73. 	check_command = "dns_sync"
    74. 

  74. 	vars.reference_ns = "80.70.181.58"
    75. 

  75. 	vars.replica_ns = "31.172.8.66"
    76. 

  76. 	vars.zones = [
    77. 

  77. 		"ffho.net",
    78. 

  78. 		"hochstift.freifunk.net",
    79. 

  79. 		"paderborn.freifunk.net",
    80. 

  80. 	]
    81. 

  81. 

  82. 	assign where "dns-server-master" in host.vars.roles
    83. 

  83. }
    84. 

  84. 

  85. apply Service "dns_sync_ns.youngage.eu" {
    86. 

  86. 	import "generic-service"
    87. 

  87. 

  88. 	check_command = "dns_sync"
    89. 

  89. 	vars.reference_ns = "80.70.181.58"
    90. 

  90. 	vars.replica_ns = "5.9.142.19"
    91. 

  91. 	vars.zones = [
    92. 

  92. 		"ffho.net",
    93. 

  93. 		"hochstift.freifunk.net",
    94. 

  94. 		"paderborn.freifunk.net",
    95. 

  95. 	]
    96. 

  96. 

  97. 	assign where "dns-server-master" in host.vars.roles
    98. 

  98. }
    99.