-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmain.yml
122 lines (114 loc) · 3.28 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
---
# defaults file for ansible-nameserver
# defaults file for ansible-bind
# Define acls for defining ip addresses or networks allowed to query bind
bind_acls: []
# - name: lan
# networks:
# - 10.0.0.0/8
# - localhost
# - localnets
# - name: wireless
# networks:
# - 172.16.0.0/16
# - name: dmz
# networks:
# - 192.168.0.0/16
# Defines if bind should query root-hints servers for unknown queries
# Set bind_forwarding_server: false
bind_caching_server: true
bind_config: false
bind_forward_zones:
[]
# - zone: "{{ bind_pri_domain_name }}"
# expire: 2419200
# hostmaster: "hostmaster.{{ bind_pri_domain_name }}"
# masters:
# - 192.168.202.200
# nameservers:
# - "node0.{{ bind_pri_domain_name }}"
# - "node1.{{ bind_pri_domain_name }}"
# - "node2.{{ bind_pri_domain_name }}"
# neg_cache_ttl: 604800
# records:
# - name: node0
# address: 192.168.202.200
# type: A
# - name: node1
# address: 192.168.202.201
# type: A
# - name: node2
# address: 192.168.202.202
# type: A
# - name: test01
# address: 192.168.202.111
# type: A
# - name: test02
# address: 192.168.202.112
# type: A
# - name: dev
# address: "test02.{{ bind_pri_domain_name }}"
# type: CNAME
# - name: test03
# address: 192.168.202.113
# type: A
# - name: test04
# address: 192.168.202.114
# type: A
# refresh: 604800
# retry: 86400
# slaves:
# - 192.168.202.201
# - 192.168.202.202
# soa: "{{ ansible_hostname }}.{{ bind_pri_domain_name }}"
# ttl: 604800
# Defines if bind should forward unknown queries to bind_forwarders
# Set bind_caching_server: false
bind_forwarding_server: false
# Defines forwarding addresses to be used if bind_forwarding_server: true
bind_forwarders:
[]
# - 8.8.8.8
# - 8.8.4.4
bind_manage_zones: false
# Defines Ansible group which defines the Bind masters
bind_reverse_zones:
[]
# - zone: 192.168
# expire: 2419200
# hostmaster: "hostmaster.{{ bind_pri_domain_name }}"
# masters:
# - 192.168.202.200
# nameservers:
# - "node0.{{ bind_pri_domain_name }}"
# - "node1.{{ bind_pri_domain_name }}"
# - "node2.{{ bind_pri_domain_name }}"
# neg_cache_ttl: 604800
# records:
# - name: "node0.{{ bind_pri_domain_name }}"
# address: 200.202
# - name: "node1.{{ bind_pri_domain_name }}"
# address: 201.202
# - name: "node2.{{ bind_pri_domain_name }}"
# address: 202.202
# - name: "test01.{{ bind_pri_domain_name }}"
# address: 111.202
# - name: "test02.{{ bind_pri_domain_name }}"
# address: 112.202
# - name: "test03.{{ bind_pri_domain_name }}"
# address: 113.202
# refresh: 604800
# retry: 86400
# slaves:
# - 192.168.202.201
# - 192.168.202.202
# soa: "{{ ansible_hostname }}.{{ bind_pri_domain_name }}"
# ttl: 604800
docker_shared_data: /usr/share/dockerdata
bind_zones_dir: "{{ docker_shared_data }}/bind/zones"
bind_zones_docker_dir: /etc/bind/zones
bind_conf_dir: "{{ docker_shared_data }}/bind/conf"
standalone_role: True
bind_pri_domain_name: "{{ company_domain }}"
secure_logs: Yes
firewalld_zone: public