Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
rht
/
ansible-examples
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: c689a568bd
Branche Tagy
ansible-exam...
/
templates
/
named.conf.j2

named.conf.j2 1.4 KB
História Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. //
    2. 

  2. // named.conf
    3. 

  3. //
    4. 

  4. // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
    5. 

  5. // server as a caching only nameserver (as a localhost DNS resolver only).
    6. 

  6. 

  7. {% if inventory_hostname in groups["primary"] %}
    8. 

  8. acl secondaries { 172.25.250.11; 172.25.250.12; };
    9. 

  9. {% endif %}
    10. 

  10. 

  11. options {
    12. 

  12. 	listen-on port 53 { any; };
    13. 

  13. 	directory 	"/var/named";
    14. 

  14. 	dump-file 	"/var/named/data/cache_dump.db";
    15. 

  15. 	statistics-file "/var/named/data/named_stats.txt";
    16. 

  16. 	memstatistics-file "/var/named/data/named_mem_stats.txt";
    17. 

  17. 	secroots-file	"/var/named/data/named.secroots";
    18. 

  18. 	recursing-file	"/var/named/data/named.recursing";
    19. 

  19. 	allow-query     { localhost; };
    20. 

  20. 

  21. 	recursion no;
    22. 

  22. 

  23. 	dnssec-enable yes;
    24. 

  24. 	dnssec-validation yes;
    25. 

  25. 

  26. 	managed-keys-directory "/var/named/dynamic";
    27. 

  27. 

  28. 	pid-file "/run/named/named.pid";
    29. 

  29. 	session-keyfile "/run/named/session.key";
    30. 

  30. 

  31. 	include "/etc/crypto-policies/back-ends/bind.config";
    32. 

  32. };
    33. 

  33. 

  34. logging {
    35. 

  35.         channel default_debug {
    36. 

  36.                 file "data/named.run";
    37. 

  37.                 severity dynamic;
    38. 

  38.         };
    39. 

  39. };
    40. 

  40. 

  41. zone "." IN {
    42. 

  42. 	type hint;
    43. 

  43. 	file "named.ca";
    44. 

  44. };
    45. 

  45. 

  46. zone "int.example.com" IN {
    47. 

  47. {% if inventory_hostname in groups["primary"] %}
    48. 

  48. 	type master;
    49. 

  49. 	allow-query { secondaries; };
    50. 

  50. 	allow-transfer { secondaries; };
    51. 

  51. {% else %}
    52. 

  52. 	type slave;
    53. 

  53. 	masters { 172.25.250.13; };
    54. 

  54. 	allow-query { any; };
    55. 

  55. 	allow-transfer { none; };
    56. 

  56. {% endif %}
    57. 

  57. 	file "int.example.com.zone";
    58. 

  58. };
    59. 

  59. 

  60. include "/etc/named.rfc1912.zones";
    61. 

  61. include "/etc/named.root.key";
    62. 

  62.