Enhancement: Structure

playbooks/tasks/ns/files/db.trans13nrv.eu.org.zone

@@ -0,0 +1,31 @@
+$ORIGIN trans13nrv.eu.org.
+$TTL 300s
+@   SOA ns1 postmaster (
+                    2024051400 ; Serial
+                    8h         ; Refresh
+                    30m        ; Retry
+                    1w         ; Expire
+                    1h )       ; Negative Cache TTL
+
+; name servers
+    NS  ns1
+
+ns1     A       137.74.82.130
+
+; mailing
+@       MX      10      mail.hebergemoi.fr.
+
+;;; XMPP ;;;
+; server IP / name
+;_jabber A   0.0.0.1
+;xmpp    CNAME _jabber
+
+; ports
+;_xmpp-server._tcp   IN SRV  0 0 5269 _jabber
+;_xmpp-client._tcp   IN SRV  0 0 5222 _jabber
+
+; multi-user-chat
+;muc CNAME _jabber
+
+; web UI
+;chat    CNAME _jabber

playbooks/tasks/ns/primary-zone.yml

@@ -1,16 +1,18 @@
 ---
-- vars:
-    zone_config_file: "{{ dns.patch.etc }}/named.conf.{{ zone.domain_name }}"
-    zone_db_file: "{{ dns.patch.primary_zones }}/db.{{ zone.domain_name }}.zone"
+- name: "Setting facts for zone {{ item.zone.domain_name }}"
+  ansible.builtin.set_fact:
+    zone_config_file: "{{ dns.paths.etc }}/named.conf.{{ item.zone.domain_name }}"
+    zone_db_file: "{{ dns.paths.primary_zones }}/db.{{ item.zone.domain_name }}.zone"
+    domain_name: "{{ item.zone.domain_name }}"
 
 - name: Updating primary zone db file
   ansible.builtin.file:
-    src: "file/ns/zone/db.{{ zone.domain_name }}"
+    src: "tasks/ns/files/db.{{ domain_name }}.zone"
     dest: "{{ zone_db_file }}"
 
 - name: "Creating zone {{ domain_name }}"
   ansible.builtin.template:
-    src: templates/ns/zone/named.conf.primary-zone.j2
+    src: tasks/ns/templates/named.conf.primary-zone.j2
     dest: "{{ zone_config_file }}"
     mode: "644"
 

playbooks/tasks/ns/templates/named.conf.primary-zone.j2

@@ -0,0 +1,22 @@
+acl "{{ domain_name }}-acl" {
+{% if transfer_hosts %}
+{% for ip in transfer_hosts %}
+  {{ ip }};
+{% endfor %}
+{% else %}
+  none;
+{% endif %}
+};
+
+zone "{{ domain_name }}" IN {
+  type master;
+  file "{{ dns.paths.primary_zones }}/db.{{ domain_name }}";
+  #auto-dnssec maintain;
+  inline-signing yes;
+  dnssec-policy default;
+  serial-update-method increment;
+  allow-update { none; };
+  allow-transfer { {{ domain_name }}-acl; };
+  notify yes;
+  key-directory "{{ dns.paths.keys_dir }}";
+};