ホーム エクスプローラ ヘルプ
登録 サインイン
pulitux
/
rh358
1
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: 43f1cfe7ae
ブランチ タグ
rh358
/
dns-auto
/
configure_caching.yml

configure_caching.yml 927 B
履歴 Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243 
  1. - name: install cache only nameserver
    2. 

  2.   hosts: caching_dns
    3. 

  3.   remote_user: devops
    4. 

  4.   become: yes
    5. 

  5. 

  6.   vars:
    7. 

  7.     interface: 0.0.0.0
    8. 

  8.     interface_automatic: "yes"
    9. 

  9.     access_control: 
    10. 

  10.       - "172.25.250.0/24 allow"
    11. 

  11.     domain_insecure: example.com
    12. 

  12.     forward_zone_name: .
    13. 

  13.     forward_zone_addr: "172.25.250.254"
    14. 

  14. 

  15.   tasks:
    16. 

  16.     - name: install cache only nameserver
    17. 

  17.       yum:
    18. 

  18.         name: unbound
    19. 

  19.         state: present
    20. 

  20. 

  21.     - name: create conf file in server
    22. 

  22.       template:
    23. 

  23.         src: unbound.conf.j2
    24. 

  24.         dest: /etc/unbound/conf.d/unbound.conf
    25. 

  25. 

  26.     - name: allow dns on firewall
    27. 

  27.       firewalld:
    28. 

  28.         service: dns
    29. 

  29.         state: enabled
    30. 

  30.         permanent: yes
    31. 

  31.         immediate: yes
    32. 

  32. 

  33.     - name: ensure unbound is running and enabled
    34. 

  34.       service: 
    35. 

  35.         name: unbound
    36. 

  36.         state: started
    37. 

  37.         enabled: yes
    38. 

  38. 

  39.   handlers:
    40. 

  40.     - name: restart_unbound
    41. 

  41.       service:
    42. 

  42.         name: unbound
    43. 

  43.         state: restarted
    44.