1 class named::geodns inherits named {
2 munin::check { 'bind_views':
6 package { 'geoip-database':
14 require => Package['bind9'],
15 notify => Service['bind9'],
17 file { '/etc/bind/geodns':
21 file { '/etc/bind/named.conf.options':
22 content => template('named/named.conf.options.erb'),
23 notify => Service['bind9'],
25 file { '/etc/bind/named.conf.local':
26 source => 'puppet:///modules/named/common/named.conf.local',
27 notify => Service['bind9'],
29 if (versioncmp($::lsbmajdistrelease, '9') >= 0) {
30 file { '/etc/bind/named.conf.acl':
31 source => 'puppet:///modules/named/common/named.conf.acl',
32 notify => Service['bind9'],
35 file { '/etc/bind/named.conf.acl':
36 source => 'puppet:///modules/named/common/named.conf.acl.bind99',
37 notify => Service['bind9'],
40 file { '/etc/bind/geodns/zonefiles':
46 file { '/etc/bind/geodns/named.conf.geo':
47 source => 'puppet:///modules/named/common/named.conf.geo',
48 notify => Service['bind9'],
50 file { '/etc/bind/geodns/trigger':
52 source => 'puppet:///modules/named/common/trigger',
54 file { '/etc/ssh/userkeys/geodnssync':
55 source => 'puppet:///modules/named/common/authorized_keys',
59 file { '/etc/cron.d/dsa-boot-geodnssync': ensure => absent; }
60 concat::fragment { 'dsa-puppet-stuff--geodns-boot':
61 target => '/etc/cron.d/dsa-puppet-stuff',
63 @reboot geodnssync sleep 1m && /etc/bind/geodns/trigger > /dev/null
67 @ferm::rule { '01-dsa-bind':
69 description => 'Allow nameserver access',
70 rule => '&TCP_UDP_SERVICE(53)'