- name: Configure nvak as dns server hosts: nvak.banananet.work vars: # Source: https://docs.hetzner.com/dns-console/dns/general/authoritative-name-servers hetzner_authoritatives: - ns1.first-ns.de. - robotns2.second-ns.de. - robotns3.second-ns.com. hetzner_authoritatives_ip: # ns1.first-ns.de. - "213.239.242.238" - "2a01:4f8:0:a101::a:1" # robotns2.second-ns.de. - "213.133.105.6" - "2a01:4f8:d0a:2004::2" # robotns3.second-ns.com. - "193.47.99.3" - "2001:67c:192c::add:a3" roles: - role: dns/master domain: banananet.work responsible_mail_name: hostmaster.banananet.work slaves_ip: "{{ hetzner_authoritatives_ip }}" entries: # Hetzner NS entries - type: NS data: "{{ hetzner_authoritatives }}" # limit CA - type: CAA data: 0 issue "letsencrypt.org" # other entries - domain: mc.wg type: A data: 5.83.168.74 - domain: _minecraft._tcp.wg type: SRV data: "10 10 10110 mc.wg.{{ domain }}." - domain: _minecraft._tcp.mc.wg type: SRV data: "10 10 10110 mc.wg.{{ domain }}." - role: dns/master domain: forumderschan.de responsible_mail_name: hostmaster.banananet.work slaves_ip: "{{ hetzner_authoritatives_ip }}" entries: # Glue record - type: NS data: ns1.banananet.work. # Hetzner NS entries - type: NS data: "{{ hetzner_authoritatives }}" # limit CA - type: CAA data: 0 issue "letsencrypt.org" - role: dns/master domain: stadtpiraten-karlsruhe.de responsible_mail_name: hostmaster.banananet.work entries: # Glue record - type: NS data: ns1.banananet.work. # limit CA - type: CAA data: 0 issue "letsencrypt.org" - name: Add public available hosts to dns zones hosts: public_available roles: - role: dns/server_entries domain: "{{ inventory_hostname }}"