Inicio Explorar Axuda
Rexistro Iniciar sesión
pulitux
/
rh358
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: ba6070eeac
Ramas Etiquetas
rh358
/
dns-auto
/
solution
/
configure_caching.yml.solution

configure_caching.yml.solution 959 B
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344 
  1. ---
    2. 

  2. - name: Install cache only nameserver
    3. 

  3.   hosts: caching_dns
    4. 

  4.   remote_user: devops
    5. 

  5.   become: yes
    6. 

  6. 

  7.   vars:
    8. 

  8.     interface: 0.0.0.0
    9. 

  9.     interface_automatic: "yes"
    10. 

  10.     access_control:
    11. 

  11.       - "172.25.250.0/24 allow"
    12. 

  12.     domain_insecure: example.com
    13. 

  13.     forward_zone_name: .
    14. 

  14.     forward_zone_addr: "172.25.250.254"
    15. 

  15. 

  16.   tasks:
    17. 

  17.     - name: Install cache only nameserver
    18. 

  18.       yum:
    19. 

  19.         name: unbound
    20. 

  20.         state: present
    21. 

  21. 

  22.     - name: Create configuration file on caching server host
    23. 

  23.       template:
    24. 

  24.         src: unbound.conf.j2
    25. 

  25.         dest: /etc/unbound/conf.d/unbound.conf
    26. 

  26. 

  27.     - name: Allow dns service on firewall
    28. 

  28.       firewalld:
    29. 

  29.         service: dns
    30. 

  30.         state: enabled
    31. 

  31.         immediate: yes
    32. 

  32.         permanent: yes
    33. 

  33. 

  34.     - name: Ensure unbound is running and enabled
    35. 

  35.       service:
    36. 

  36.         name: unbound
    37. 

  37.         state: started
    38. 

  38.         enabled: yes
    39. 

  39. 

  40.   handlers:
    41. 

  41.     - name: restart_unbound
    42. 

  42.       service:
    43. 

  43.         name: unbound
    44. 

  44.         state: restarted
    45.