From 7c405d3b91246d6fdde8335692d827e0d56079b5 Mon Sep 17 00:00:00 2001 From: Markus Hauschild Date: Wed, 1 Sep 2021 17:34:45 +0200 Subject: [PATCH] dns_resolver: make available for public --- roles/dns_resolver/templates/dnsdist.conf.j2 | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/roles/dns_resolver/templates/dnsdist.conf.j2 b/roles/dns_resolver/templates/dnsdist.conf.j2 index d973e67..ab82d99 100644 --- a/roles/dns_resolver/templates/dnsdist.conf.j2 +++ b/roles/dns_resolver/templates/dnsdist.conf.j2 @@ -5,10 +5,12 @@ addLocal('::1') addLocal('{{ ansible_default_ipv4.address }}') addLocal('{{ ansible_default_ipv6.address }}') -addACL('194.156.22.0/24') -addACL('2001:678:ddc::/48') +addACL('0.0.0.0/0') +addACL('::/0') -newServer({address='127.0.0.1:5353', qps=1, name='localhost'}) +addAction(MaxQPSIPRule(5), TCAction()) + +newServer({address='127.0.0.1:5353', name='localhost'}) addTLSLocal('{{ ansible_default_ipv4.address }}', '/etc/dnsdist/{{ ansible_fqdn }}.crt', '/etc/dnsdist/{{ ansible_fqdn }}.key') addTLSLocal('{{ ansible_default_ipv6.address }}', '/etc/dnsdist/{{ ansible_fqdn }}.crt', '/etc/dnsdist/{{ ansible_fqdn }}.key')