projects / mirror / dsa-puppet.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
reorder ACLs and shared keys on primary
[mirror/dsa-puppet.git] / modules / named / manifests / primary.pp
1 class named::primary inherits named::authoritative {
2         include dnsextras::entries
3
4         @ferm::rule { '01-dsa-bind-4':
5                 domain      => '(ip ip6)',
6                 description => 'Allow nameserver access',
7                 rule        => '&TCP_UDP_SERVICE_RANGE(53, ( $HOST_DNS_GEO $HOST_NAGIOS $HOST_RCODE0 $HOST_EASYDNS $HOST_NETNOD ) )',
8         }
9
10         file { '/etc/bind/named.conf.debian-zones':
11                 content => template('named/named.conf.debian-zones.erb'),
12                 notify  => Service['bind9'],
13         }
14
15         concat::fragment { 'dsa-named-conf-puppet-misc---local-shared-keys':
16                 target => '/etc/bind/named.conf.puppet-misc',
17                 order  => '020',
18                 content  => @(EOF),
19                         include "/etc/bind/named.conf.shared-keys";
20                         | EOF
21         }
22         concat::fragment { 'dsa-named-conf-puppet-misc---named.conf.external-secondaries-ACLs':
23                 target => '/etc/bind/named.conf.puppet-misc',
24                 order  => '025',
25                 content => template('named/named.conf.external-secondaries-ACLs.erb'),
26         }
27
28 }
Unnamed repository; edit this file 'description' to name the repository.