add nsd role and formulas

add nsd pillar
2023-02-19 20:26:03 +05:30 · 2023-02-19 20:19:18 +05:30
3 changed files with 41 additions and 0 deletions
--- a/pillar/formulas.yaml
+++ b/pillar/formulas.yaml
@ -2,6 +2,7 @@
 - firewalld
 - keepalived
 - nginx
+- nsd
 - openssh
 - postfix
 - prometheus
--- a/pillar/role/dns/nsd.sls
+++ b/pillar/role/dns/nsd.sls
@ -0,0 +1,38 @@
+nsd:
+  config_data:
+    server:
+      hide-version: 'yes'
+      ip-address: 
+        - '127.0.0.1@5353'
+        - '192.168.0.160@5353'
+      verbosity: 2
+      ip4-only: 'yes'
+    remote-control:
+      control-enable: 'yes'
+      control-interface: '/run/nsd/nsd.sock'
+  zones:
+    lysergic.dev:
+      zone_source: salt://zones/lysergic.dev.zone
+      allow-notify: 192.168.0.115 tsig.lysergic.dev. 
+      request-xfr: 10.0.10.2@5353 tsig.lysergic.dev.
+      outgoing-interface: 192.168.0.160
+    psyched.dev:
+      zone_source: salt://zones/psyched.dev.zone
+      allow-notify: 192.168.0.115 tsig.psyched.dev.
+      request-xfr: 10.0.10.2@5353 tsig.psyched.dev.
+      outgoing-interface: 192.168.0.160
+    syscid.com:
+      zone_source: salt://zones/syscid.com.zone
+      allow-notify: 192.168.0.115 tsig.syscid.com.
+      request-xfr: 10.0.10.2@5353 tsig.syscid.com.
+      outgoing-interface: 192.168.0.160
+  keys:
+    tsig.lysergic.dev.:
+      algorithm: hmac-sha512
+      secret: ${'secret_nsd:tsig_key:lysergic_dev'} 
+    tsig.syscid.com.:
+      algorithm: hmac-sha512
+      secret: ${'secret_nsd:tsig_key:syscid_com'}
+    tsig.psyched.dev.:
+      algorithm: hmac-sha512
+      secret: ${'secret_nsd:tsig_key:psyched_dev'}
--- a/salt/role/dns/nsd.sls
+++ b/salt/role/dns/nsd.sls
@ -0,0 +1,2 @@
+include:
+  - nsd
Author	SHA1	Message	Date
Pratyush Desai	a7968d6cee	add nsd role and formulas Some checks failed ci/lysergic/push/pipeline Pipeline failed Details	2023-02-19 20:26:03 +05:30
Pratyush Desai	d372c16f1c	add nsd pillar	2023-02-19 20:19:18 +05:30