2019-04-16 14:53:34 +00:00
|
|
|
# roles/bind/defaults/main.yml
|
|
|
|
|
---
|
|
|
|
|
bind_log: "data/named.run"
|
|
|
|
|
|
|
|
|
|
bind_zone_domains:
|
|
|
|
|
- name: "example.com"
|
|
|
|
|
hostmaster_email: "hostmaster"
|
|
|
|
|
networks:
|
|
|
|
|
- "10.0.2"
|
|
|
|
|
|
|
|
|
|
# List of acls.
|
|
|
|
|
bind_acls: []
|
|
|
|
|
|
|
|
|
|
# List of IPv4 address of the network interface(s) to listen on. Set to "any"
|
|
|
|
|
# to listen on all interfaces
|
|
|
|
|
bind_listen_ipv4:
|
|
|
|
|
- "127.0.0.1"
|
|
|
|
|
|
|
|
|
|
# List of IPv6 address of the network interface(s) to listen on.
|
|
|
|
|
bind_listen_ipv6:
|
|
|
|
|
- "::1"
|
|
|
|
|
|
|
|
|
|
# List of hosts that are allowed to query this DNS server.
|
|
|
|
|
bind_allow_query:
|
|
|
|
|
- "localhost"
|
|
|
|
|
|
|
|
|
|
# Determines whether recursion should be allowed. Typically, an authoritative
|
|
|
|
|
# name server should have recursion turned OFF.
|
|
|
|
|
bind_recursion: false
|
|
|
|
|
bind_allow_recursion:
|
|
|
|
|
- "any"
|
|
|
|
|
|
|
|
|
|
# Allows BIND to be set up as a caching name server
|
|
|
|
|
bind_forward_only: false
|
|
|
|
|
|
|
|
|
|
# List of name servers to forward DNS requests to.
|
|
|
|
|
bind_forwarders: []
|
|
|
|
|
|
|
|
|
|
# DNS round robin order (random or cyclic)
|
|
|
|
|
bind_rrset_order: "random"
|
|
|
|
|
|
|
|
|
|
# DNSSEC configuration
|
|
|
|
|
bind_dnssec_enable: true
|
|
|
|
|
bind_dnssec_validation: true
|
|
|
|
|
|
|
|
|
|
bind_extra_include_files: []
|
|
|
|
|
|
|
|
|
|
# SOA information
|
|
|
|
|
bind_zone_ttl: "1W"
|
|
|
|
|
bind_zone_time_to_refresh: "1D"
|
|
|
|
|
bind_zone_time_to_retry: "1H"
|
|
|
|
|
bind_zone_time_to_expire: "1W"
|
|
|
|
|
bind_zone_minimum_ttl: "1D"
|
|
|
|
|
|
|
|
|
|
# Custom location for master zone files
|
|
|
|
|
bind_zone_dir: "{{ bind_dir }}"
|
|
|
|
|
# File mode for master zone files (needs to be something like 0660 for dynamic updates)
|
|
|
|
|
bind_zone_file_mode: "0640"
|
