Limit nfs firewall ports to certain ranges
[mirror/dsa-puppet.git] / modules / named / manifests / geodns.pp
1 class named::geodns inherits named {
2         munin::check { 'bind_views':
3                 script => bind
4         }
5
6         #site::aptrepo { 'geoip':
7         #       url        => 'http://db.debian.org/debian-admin',
8         #       suite      => 'lenny-bind-geoip',
9         #       components => 'main',
10         #}
11         site::aptrepo { 'geoip': ensure => absent }
12
13         file { '/etc/bind/':
14                 ensure  => directory,
15                 group  => bind,
16                 mode   => '2755',
17                 require => Package['bind9'],
18                 notify  => Service['bind9'],
19         }
20         file { '/etc/bind/geodns':
21                 ensure => directory,
22                 mode   => '0755',
23         }
24         file { '/etc/bind/named.conf.options':
25                 content => template('named/named.conf.options.erb'),
26                 notify  => Service['bind9'],
27         }
28         file { '/etc/bind/named.conf.local':
29                 source => 'puppet:///modules/named/common/named.conf.local',
30                 notify  => Service['bind9'],
31         }
32         file { '/etc/bind/named.conf.acl':
33                 source => 'puppet:///modules/named/common/named.conf.acl',
34                 notify  => Service['bind9'],
35         }
36         file { '/etc/bind/geodns/zonefiles':
37                 ensure => directory,
38                 owner  => geodnssync,
39                 group  => geodnssync,
40                 mode   => '2755',
41         }
42         file { '/etc/bind/geodns/named.conf.geo':
43                 source => 'puppet:///modules/named/common/named.conf.geo',
44                 notify  => Service['bind9'],
45         }
46         file { '/etc/bind/geodns/trigger':
47                 mode   => '0555',
48                 source => 'puppet:///modules/named/common/trigger',
49         }
50         file { '/etc/ssh/userkeys/geodnssync':
51                 source => 'puppet:///modules/named/common/authorized_keys',
52                 group  => geodnssync,
53                 mode   => '0440',
54         }
55         file { '/etc/cron.d/dsa-boot-geodnssync':
56                 source => 'puppet:///modules/named/common/cron-geo'
57         }
58 }