| Ales Komarek | 882ac7b | 2014-07-14 10:47:56 +0200 | [diff] [blame] | 1 | |
| 2 | # Bind DNS service | ||||
| 3 | |||||
| Ales Komarek | fbfa168 | 2014-09-22 11:31:14 +0200 | [diff] [blame] | 4 | ## Sample pillars |
| Ales Komarek | 882ac7b | 2014-07-14 10:47:56 +0200 | [diff] [blame] | 5 | |
| Ales Komarek | 712343b | 2014-09-22 11:36:17 +0200 | [diff] [blame] | 6 | bind: |
| 7 | server: | ||||
| 8 | enabled: true | ||||
| Filip Pytloun | 5299d07 | 2016-10-06 11:23:21 +0200 | [diff] [blame] | 9 | key: |
| 10 | keyname: | ||||
| 11 | secret: xyz | ||||
| 12 | algorithm: hmac-sha512 | ||||
| Filip Pytloun | 57435b2 | 2016-10-06 11:30:16 +0200 | [diff] [blame] | 13 | server: |
| 14 | 8.8.8.8: | ||||
| 15 | keys: | ||||
| 16 | - keyname | ||||
| Ales Komarek | 712343b | 2014-09-22 11:36:17 +0200 | [diff] [blame] | 17 | zone: |
| 18 | sub.domain.com: | ||||
| Filip Pytloun | 52aa75d | 2016-02-26 17:14:54 +0100 | [diff] [blame] | 19 | ttl: 86400 |
| 20 | root: "hostmaster@domain.com" | ||||
| Ales Komarek | 712343b | 2014-09-22 11:36:17 +0200 | [diff] [blame] | 21 | type: master |
| Ales Komarek | ce71bf9 | 2014-09-30 11:35:30 +0200 | [diff] [blame] | 22 | records: |
| 23 | - name: @ | ||||
| 24 | type: A | ||||
| 25 | ttl: 7200 | ||||
| 26 | value: 192.168.0.5 | ||||
| Ales Komarek | 712343b | 2014-09-22 11:36:17 +0200 | [diff] [blame] | 27 | 1.168.192.in-addr.arpa: |
| 28 | type: master | ||||
| Ales Komarek | ce71bf9 | 2014-09-30 11:35:30 +0200 | [diff] [blame] | 29 | notify: false |
| Filip Pytloun | faf8bbc | 2016-02-26 16:32:20 +0100 | [diff] [blame] | 30 | slave.domain.com: |
| 31 | type: slave | ||||
| 32 | notify: true | ||||
| 33 | masters: | ||||
| Filip Pytloun | 52aa75d | 2016-02-26 17:14:54 +0100 | [diff] [blame] | 34 | # Masters must be specified by IP address |
| 35 | - 8.8.8.8 | ||||
| 36 | - 8.8.4.4 | ||||
| Filip Pytloun | faf8bbc | 2016-02-26 16:32:20 +0100 | [diff] [blame] | 37 | dnssec: |
| 38 | enabled: true | ||||
| 39 | # Don't hide version | ||||
| 40 | version: true | ||||
| 41 | # Allow recursion, better don't on public dns servers | ||||
| 42 | recursion: | ||||
| 43 | hosts: | ||||
| 44 | - localhost | ||||
| Ales Komarek | fbfa168 | 2014-09-22 11:31:14 +0200 | [diff] [blame] | 45 | |
| Ales Komarek | fbfa168 | 2014-09-22 11:31:14 +0200 | [diff] [blame] | 46 | ## Read more |
| Ales Komarek | 2bf4332 | 2014-09-22 13:03:41 +0200 | [diff] [blame] | 47 | |
| Ales Komarek | ce71bf9 | 2014-09-30 11:35:30 +0200 | [diff] [blame] | 48 | * https://github.com/theforeman/puppet-dns |
| Filip Pytloun | faf8bbc | 2016-02-26 16:32:20 +0100 | [diff] [blame] | 49 | * https://help.ubuntu.com/community/BIND9ServerHowto |