LibertaCasa/salt
LibertaCasa/salt
9
1
Fork 0
Code Issues 5 Pull Requests Releases Activity

add nsd pillar
All checks were successful
ci/lysergic/push/pipeline Pipeline was successful
Details

Browse Source
This commit is contained in:
Pratyush Desai 2023-02-19 20:19:18 +05:30
parent 18d28c3b7f
commit eab80e0573
3 changed files with 38 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pillar/formulas.yaml
View File

@ -2,6 +2,7 @@
- firewalld - firewalld
- keepalived - keepalived
- nginx - nginx
- nsd
- openssh - openssh
- postfix - postfix
- prometheus - prometheus

35
pillar/role/dns/nsd.sls Normal file
View File

@ -0,0 +1,35 @@
nsd:
config_data:
server:
hide-version: 'yes'
verbosity: 2
ip4-only: 'yes'
remote-control:
control-enable: 'yes'
control-interface: '/run/nsd/nsd.sock'
zones:
lysergic.dev:
zone_source: salt://zones/lysergic.dev.zone
allow-notify: 192.168.0.115 tsig.lysergic.dev.
request-xfr: 10.0.10.2@5353 tsig.lysergic.dev.
outgoing-interface: 192.168.0.160
psyched.dev:
zone_source: salt://zones/psyched.dev.zone
allow-notify: 192.168.0.115 tsig.psyched.dev.
request-xfr: 10.0.10.2@5353 tsig.psyched.dev.
outgoing-interface: 192.168.0.160
syscid.com:
zone_source: salt://zones/syscid.com.zone
allow-notify: 192.168.0.115 tsig.syscid.com.
request-xfr: 10.0.10.2@5353 tsig.syscid.com.
outgoing-interface: 192.168.0.160
keys:
tsig.lysergic.dev.:
algorithm: hmac-sha512
secret: ${'secret_nsd:tsig_key:lysergic_dev'}
tsig.syscid.com.:
algorithm: hmac-sha512
secret: ${'secret_nsd:tsig_key:syscid_com'}
tsig.psyched.dev.:
algorithm: hmac-sha512
secret: ${'secret_nsd:tsig_key:psyched_dev'}

2
salt/role/dns/nsd.sls Normal file
View File

@ -0,0 +1,2 @@
include:
- nsd