Felix Stupp
1748d00f8c
Fixup for dns/application: Add nsupdate.makefile for indempotent updates
4 years ago
Felix Stupp
13f3aceb00
dns/entries: Make "setting entries" be indempotent using makefile
4 years ago
Felix Stupp
bd4d97d835
dns/entries: Block uploading dns entries in check mode
...
Must explicit block because otherwise Ansible tries to lookup the local
file, which may not be created in check mode
4 years ago
Felix Stupp
4f9cf49f6c
dns/handlers merged into dns/application
4 years ago
Felix Stupp
b0cc2b8ca1
dns/master: Make backups of dynamic zone data
5 years ago
Felix Stupp
ae42f963a2
dns: Transfered master zones from makefile approach to dynamic updates approach
5 years ago
Felix Stupp
0232319ccd
dns/master: Configured dnssec-policy for automatic KASP
5 years ago
Felix Stupp
ae995dec67
dns/entries: Prefixed entries name with "server:"
5 years ago
Felix Stupp
3d274d9996
dns/application: Fixed indent
5 years ago
Felix Stupp
b6d9b1deb5
dns/entries: Fixed reference to var dns_zone_domain
5 years ago
Felix Stupp
360172f8db
dns/master: Moved default tts var to global var
5 years ago
Felix Stupp
72ee42d539
dns/master: Allow configure default ttl
5 years ago
Felix Stupp
3008672ded
dns/master: Added section comments to zone.conf
5 years ago
Felix Stupp
a41f4c1c3f
dns/master: Adapted generate-keys to inline-signing (only gen KSK)
5 years ago
Felix Stupp
be6303576a
dns/application: Added configuration for session-key
5 years ago
Felix Stupp
49d53d0213
dns/application: Removed obsolete dnssec directives
5 years ago
Felix Stupp
0e96fcbe34
dns/application: Fixed defining role dependencies
5 years ago
Felix Stupp
0b7e2cb923
dns/application: Changed vars in makefile to support further dest files
5 years ago
Felix Stupp
fbca70f81f
dns/master: Create keys directory writeable for bind
...
To apply KASP later
5 years ago
Felix Stupp
d73e250b36
dns/master: Changed owner and adapted permissions of zone directory
5 years ago
Felix Stupp
22fde40ac5
dns/application: Changed bind9 source to official source
5 years ago
Felix Stupp
a51225ccc8
dns/application: Allowed bind using AppArmor to write temporary journal files
5 years ago
Felix Stupp
646e6d5c75
dns: Configured service name using global variable
5 years ago
Felix Stupp
77d1e84117
dns: Fixed variable structure of var domain_environment_directory
5 years ago
Felix Stupp
6fbf62cddd
dns/application: Added zone.db.jnl files to allowed files for bind to write
5 years ago
Felix Stupp
55b27c041b
dns: Extracted role entries from server_entries
5 years ago
Felix Stupp
39771c907f
dns/server_entries: Renamed var all_entries to entries
5 years ago
Felix Stupp
9d23e12a16
dns/master: Now considered vars for nameserver and mail to be absolute
...
Meaning the var itself must not have a dot at the end of the name,
but an usage of the variable may need to append a dot.
5 years ago
Felix Stupp
40c6a3ab0f
dns/server_entries: Allow duplicate execution of role
5 years ago
Felix Stupp
1958c4df54
dns: Renamed role entries to server_entries
...
To distinguish between simple entries role (coming in the future) and
entries role bundled with server-related entries (A, AAAA, SSHFP)
5 years ago
Felix Stupp
08fafbf98f
dns/entries: Fixed SYNC comment to role dns/master
5 years ago
Felix Stupp
2158b2717d
dns/master: Added support for dname to root zone
5 years ago
Felix Stupp
b3620fa3c8
dns/application: makefile combine: Sort files before combining
...
Ensures 0_main.db is before other files
5 years ago
Felix Stupp
979abba1aa
Added role dns/entries for configuring dns entries
5 years ago
Felix Stupp
748999d36d
dns: Moved var zones_environment_directory to global vars
5 years ago
Felix Stupp
f8c01d46f6
dns/master: Fix permissions for dns env dir
5 years ago
Felix Stupp
bf00dcb6dd
dns/application: Moved var configuration_directory to global vars
5 years ago
Felix Stupp
eb632a8f2c
dns/master: Store mapping of domain to host in public_keys
5 years ago
Felix Stupp
025f77736a
dns: Changed approach for DNSSEC signing to inline-signing
...
- Moved keys into own directory
- Replaced makefile per zone by makefile for all zones
- Only combining of zone files and setting serial number
- signing now made by bind
- Added AppArmor profile extension for creating dynamic zone files
5 years ago
Felix Stupp
e85ad8fed3
dns: Fixed applying permissions to directories
5 years ago
Felix Stupp
c89ec27f6d
dns/master: Changed TODO for "Copy public key" to "Copy ZSK"
...
Only required and beneficial for ZSK
5 years ago
Felix Stupp
905a887b80
dns: Renamed zones_configuration_environment_ to zones_environment
5 years ago
Felix Stupp
7e2813928e
dns: Renamed variables, removed prefix dns_ on not essential variable names
5 years ago
Felix Stupp
ab1a067cff
dns/master: Added flush_handlers before role ends
5 years ago
Felix Stupp
371b1d5751
dns/application: Fixed permissions for zone databases directories
5 years ago
Felix Stupp
64576c8ff5
dns/master: zone.makefile: Added cd to key signing
5 years ago
Felix Stupp
ab61090340
dns/master: zone.makefile: Added check for directories not equal
5 years ago
Felix Stupp
bb8a2759ec
dns/master: zone.makefile: Changed usage of var dest
5 years ago
Felix Stupp
d052a08f0d
dns/master: zone.makefile: Fixed format
5 years ago
Felix Stupp
ebbacdce0c
dns/master: Added dependency to role dns/master_handlers
5 years ago