trans13nrv/infrastructure
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Enhancement: Structure

Browse source
This commit is contained in:
Stupéflo 2024-05-17 19:10:03 +02:00
parent ea74e0b246
commit b849476b47
Signed by: stupeflo
GPG key ID: 873D883BD359DEE2
5 changed files with 16 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

12
playbooks/01-primary-ns.yaml
View file

@ -1,9 +1,5 @@
- name: Configuration of ns zones - name: Configuration of ns zones
hosts: primarydns hosts: primarydns
vars:
zones:
- zome:
domain_name: trans13nrv.eu.org
tasks: tasks:
- name: Use variables - name: Use variables
@ -25,19 +21,19 @@
state: directory state: directory
owner: "{{ root.user }}" owner: "{{ root.user }}"
group: "{{ dns.group }}" group: "{{ dns.group }}"
mode: "660" mode: "775"
- name: Ensure required keys zone directory is present - name: Ensure required keys zone directory is present
ansible.builtin.file: ansible.builtin.file:
path: "{{ dns.paths.keys }}" path: "{{ dns.paths.keys_dir }}"
state: directory state: directory
owner: "{{ dns.user }}" owner: "{{ dns.user }}"
group: "{{ dns.group }}" group: "{{ dns.group }}"
mode: "660" mode: "770"
- name: Prymary Zones - name: Prymary Zones
ansible.builtin.include_tasks: tasks/ns/primary-zone.yml ansible.builtin.include_tasks: tasks/ns/primary-zone.yml
loop: "{{ zones }}" with_list: "{{ dns.zones }}"
- name: Reload bind9 service - name: Reload bind9 service
ansible.builtin.service: ansible.builtin.service:

0
files/ns/zones/trans13nrv.eu.org.zone → playbooks/tasks/ns/files/db.trans13nrv.eu.org.zone
View file

12
playbooks/tasks/ns/primary-zone.yml
View file

@ -1,16 +1,18 @@
--- ---
- vars: - name: "Setting facts for zone {{ item.zone.domain_name }}"
zone_config_file: "{{ dns.patch.etc }}/named.conf.{{ zone.domain_name }}" ansible.builtin.set_fact:
zone_db_file: "{{ dns.patch.primary_zones }}/db.{{ zone.domain_name }}.zone" zone_config_file: "{{ dns.paths.etc }}/named.conf.{{ item.zone.domain_name }}"
zone_db_file: "{{ dns.paths.primary_zones }}/db.{{ item.zone.domain_name }}.zone"
domain_name: "{{ item.zone.domain_name }}"
- name: Updating primary zone db file - name: Updating primary zone db file
ansible.builtin.file: ansible.builtin.file:
src: "file/ns/zone/db.{{ zone.domain_name }}" src: "tasks/ns/files/db.{{ domain_name }}.zone"
dest: "{{ zone_db_file }}" dest: "{{ zone_db_file }}"
- name: "Creating zone {{ domain_name }}" - name: "Creating zone {{ domain_name }}"
ansible.builtin.template: ansible.builtin.template:
src: templates/ns/zone/named.conf.primary-zone.j2 src: tasks/ns/templates/named.conf.primary-zone.j2
dest: "{{ zone_config_file }}" dest: "{{ zone_config_file }}"
mode: "644" mode: "644"

2
templates/ns/zone/named.conf.primary-zone.j2 → playbooks/tasks/ns/templates/named.conf.primary-zone.j2
View file

@ -18,5 +18,5 @@ zone "{{ domain_name }}" IN {
allow-update { none; }; allow-update { none; };
allow-transfer { {{ domain_name }}-acl; }; allow-transfer { {{ domain_name }}-acl; };
notify yes; notify yes;
key-directory "{{ dns.paths.keys }}"; key-directory "{{ dns.paths.keys_dir }}";
}; };

5
playbooks/vars.yml
View file

@ -2,8 +2,11 @@ dns:
paths: paths:
etc: /etc/bind/ etc: /etc/bind/
primary_zones: /etc/bind/primary primary_zones: /etc/bind/primary
keys: /etc/bind/primary/keys keys_dir: /etc/bind/primary/keys
user: bind user: bind
group: bind group: bind
zones:
- zone:
domain_name: trans13nrv.eu.org
root: root:
user: root user: root