saltstack-formulas/bind-formula
1
0
Fork 0
mirror of https://github.com/saltstack-formulas/bind-formula.git synced 2025-04-16 09:40:22 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

add key for support dynamic zones

Browse source
This commit is contained in:
root 2014-10-16 10:54:02 +00:00
parent 532d9a8a09
commit 4c5d5e8aee
7 changed files with 40 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
bind/config.sls
View file

@ -58,6 +58,20 @@ bind_config:
- watch_in: - watch_in:
- service: bind - service: bind
bind_key_config:
file:
- managed
- name: {{ map.key_config }}
- source: 'salt://bind/files/debian/named.conf.key'
- template: jinja
- user: {{ salt['pillar.get']('bind:config:user', map.user) }}
- group: {{ salt['pillar.get']('bind:config:group', map.group) }}
- mode: {{ salt['pillar.get']('bind:config:mode', '644') }}
- require:
- pkg: bind
- watch_in:
- service: bind
bind_local_config: bind_local_config:
file: file:
- managed - managed

1
bind/files/debian/named.conf
View file

@ -6,6 +6,7 @@
// //
// If you are just adding zones, please do that in /etc/bind/named.conf.local // If you are just adding zones, please do that in /etc/bind/named.conf.local
include "/etc/bind/named.conf.key";
include "/etc/bind/named.conf.options"; include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local"; include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones"; include "/etc/bind/named.conf.default-zones";

12
bind/files/debian/named.conf.key Normal file
View file

@ -0,0 +1,12 @@
# vim: sts=2 ts=2 sw=2 et ai
//
// Do any local configuration here
//
{% for key,args in salt['pillar.get']('bind:keys', {}).iteritems() -%}
key "{{ key }}" {
algorithm {{ args['algorithm'] | default('HMAC-MD5.SIG-ALG.REG.INT') }};
secret {{ args['secret'] }};
};
{% endfor %}

4
bind/files/debian/named.conf.local
View file

@ -1,3 +1,4 @@
# vim: sts=2 ts=2 sw=2 et ai
// //
// Do any local configuration here // Do any local configuration here
// //
@ -12,6 +13,9 @@
zone "{{ key }}" { zone "{{ key }}" {
type {{ args['type'] }}; type {{ args['type'] }};
file "zones/{{ file }}"; file "zones/{{ file }}";
{% if args['allow-update'] is defined -%}
allow-update { {{args['allow-update']}}; };
{%- endif %}
{% if args['type'] == "master" -%} {% if args['type'] == "master" -%}
{% if args['notify'] -%} {% if args['notify'] -%}
notify yes; notify yes;

1
bind/map.jinja
View file

@ -4,6 +4,7 @@
'service': 'bind9', 'service': 'bind9',
'config': '/etc/bind/named.conf', 'config': '/etc/bind/named.conf',
'local_config': '/etc/bind/named.conf.local', 'local_config': '/etc/bind/named.conf.local',
'key_config': '/etc/bind/named.conf.key',
'options_config': '/etc/bind/named.conf.options', 'options_config': '/etc/bind/named.conf.options',
'default_zones_config': '/etc/bind/named.conf.default-zones', 'default_zones_config': '/etc/bind/named.conf.default-zones',
'named_directory': '/var/cache/bind/zones', 'named_directory': '/var/cache/bind/zones',

1
bind/zones Symbolic link
View file

@ -0,0 +1 @@
/srv/salt/zones

7
pillar.example
View file

@ -13,6 +13,9 @@ bind:
mode: 640 mode: 640
bind: bind:
keys:
"core_dhcp":
secret: "YourSecretKey"
configured_zones: configured_zones:
sub.domain.com: sub.domain.com:
type: master type: master
@ -20,6 +23,10 @@ bind:
1.168.192.in-addr.arpa: 1.168.192.in-addr.arpa:
type: master type: master
notify: False notify: False
dynamic.domain.com:
type: master
allow-update: "key core_dhcp"
notify: True
available_zones: available_zones:
sub.domain.org: sub.domain.org: