tlsa record for lists

author Peter Palfrader <peter@palfrader.org>

Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)

committer Peter Palfrader <peter@palfrader.org>

Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)
author Peter Palfrader <peter@palfrader.org>
Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)
committer Peter Palfrader <peter@palfrader.org>
Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)
diff --git a/modules/roles/manifests/lists.pp b/modules/roles/manifests/lists.pp

index e429aba..d501244 100644 (file)
--- a/modules/roles/manifests/lists.pp
+++ b/modules/roles/manifests/lists.pp
@@ -2,4 +2,11 @@ class roles::lists {
         ssl::service { 'lists.debian.org':
                 notify => Service['apache2'],
         }
+
+       dnsextras::tlsa_record{ 'tlsa-mailport':
+               zone     => 'debian.org',
+               certfile => "/etc/puppet/modules/exim/files/certs/${::fqdn}.crt",
+               port     => 25,
+               hostname => $::fqdn,
+       }
  }
author	Peter Palfrader <peter@palfrader.org>
	Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)
committer	Peter Palfrader <peter@palfrader.org>
	Mon, 6 Jan 2014 11:46:32 +0000 (12:46 +0100)