From 7932b330416ca079380b08de2d3df8a81a038b3d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Bastian=20M=C3=A4user?= Date: Wed, 24 Jan 2018 01:28:12 +0100 Subject: [PATCH] IPv4 Reverse Delegation added --- roles/dns/tasks/main.yml | 1 + .../dns/templates/bind/90.10.in-addr.arpa.zone.j2 | 14 ++++++++++++++ roles/dns/templates/bindbackend.conf.j2 | 5 +++++ roles/dns/templates/recursor.conf.j2 | 2 +- 4 files changed, 21 insertions(+), 1 deletion(-) create mode 100644 roles/dns/templates/bind/90.10.in-addr.arpa.zone.j2 diff --git a/roles/dns/tasks/main.yml b/roles/dns/tasks/main.yml index 1d6eca3..55f78fc 100644 --- a/roles/dns/tasks/main.yml +++ b/roles/dns/tasks/main.yml @@ -16,6 +16,7 @@ notify: Restart powerdns with_items: - bind/ffrgb.zone + - bind/90.10.in-addr.arpa.zone - bindbackend.conf - pdns.conf - recursor.conf diff --git a/roles/dns/templates/bind/90.10.in-addr.arpa.zone.j2 b/roles/dns/templates/bind/90.10.in-addr.arpa.zone.j2 new file mode 100644 index 0000000..2bf4992 --- /dev/null +++ b/roles/dns/templates/bind/90.10.in-addr.arpa.zone.j2 @@ -0,0 +1,14 @@ +$ORIGIN 90.10.in-addr.arpa ; base for unqualified names +$TTL 1h ; default time-to-live +@ IN SOA ns.ffrgb. hostmaster.ffrgb. ( + 2018011701; serial + 1d; refresh + 2h; retry + 4w; expire + 1h; minimum time-to-live + ) + IN NS ns.ffrgb. +; Gateways +11.32 IN PTR gw11.ffrgb. +21.64 IN PTR gw21.ffrgb. +31.96 IN PTR gw31.ffrgb. diff --git a/roles/dns/templates/bindbackend.conf.j2 b/roles/dns/templates/bindbackend.conf.j2 index f7d0bfe..ef45f08 100644 --- a/roles/dns/templates/bindbackend.conf.j2 +++ b/roles/dns/templates/bindbackend.conf.j2 @@ -3,3 +3,8 @@ zone "ffrgb" { file "/etc/powerdns/bind/ffrgb.zone"; allow-update { none; }; }; +zone "90.10.in-addr.arpa" { + type master; + file "/etc/powerdns/bind/90.10.in-addr.arpa.zone"; + allow-update { none; }; +}; diff --git a/roles/dns/templates/recursor.conf.j2 b/roles/dns/templates/recursor.conf.j2 index c9447c3..7085fee 100644 --- a/roles/dns/templates/recursor.conf.j2 +++ b/roles/dns/templates/recursor.conf.j2 @@ -20,7 +20,7 @@ dnssec=off # forward-zones Zones for which we forward queries, comma separated domain=ip pairs # # forward-zones= -forward-zones=ffrgb=127.0.0.1:5300 +forward-zones=ffrgb=127.0.0.1:5300,90.10.in-addr.arpa=127.0.0.1:5300 ################################# # local-address IP addresses to listen on, separated by spaces or commas. Also accepts ports.