From 07a23267c64d0d61c28ec63ce3abcb7b0535c268 Mon Sep 17 00:00:00 2001 From: "Dustin C. Hatch" Date: Sun, 12 Aug 2018 17:24:37 -0500 Subject: [PATCH] hosts: Add dns1.pyrocufflink.blue To avoid having a single point of failure, a second recursive DNS server is necessary. This will be useful in cases where the VM hosts must both be taken offline, but Internet access is still required. The new server, *dns1.pyrocufflink.blue*, has all the same zones defined as the original. It forwards the *pyrocufflink.blue* zone and corresponding reverse zones to the domain controllers, and acts as a slave for the *pyrocufflink.red* zone. --- host_vars/dns1.pyrocufflink.blue.yml | 9 +++++++++ hosts | 2 ++ roles/ssh-hostkeys/files/ssh_known_hosts | 3 +++ 3 files changed, 14 insertions(+) create mode 100644 host_vars/dns1.pyrocufflink.blue.yml diff --git a/host_vars/dns1.pyrocufflink.blue.yml b/host_vars/dns1.pyrocufflink.blue.yml new file mode 100644 index 0000000..ace2165 --- /dev/null +++ b/host_vars/dns1.pyrocufflink.blue.yml @@ -0,0 +1,9 @@ +pyrocufflink_red_zones: +- zone: pyrocufflink.red + type: slave + masters: + - fd99:8cd7:6528:fe1e::4:1 +- zone: 1.31.172.in-addr.arpa + type: slave + masters: + - fd99:8cd7:6528:fe1e::4:1 diff --git a/hosts b/hosts index b06b1c5..d7653da 100644 --- a/hosts +++ b/hosts @@ -67,6 +67,7 @@ cm0.pyrocufflink.blue dc0.pyrocufflink.blue dc1.pyrocufflink.blue dns0.pyrocufflink.blue +dns1.pyrocufflink.blue file0.pyrocufflink.blue git0.pyrocufflink.blue jenkins0.pyrocufflink.blue @@ -80,6 +81,7 @@ zbx0.pyrocufflink.blue [pyrocufflink-dns] dns0.pyrocufflink.blue +dns1.pyrocufflink.blue [radius:children] samba-dc diff --git a/roles/ssh-hostkeys/files/ssh_known_hosts b/roles/ssh-hostkeys/files/ssh_known_hosts index d04e739..0fc0a96 100644 --- a/roles/ssh-hostkeys/files/ssh_known_hosts +++ b/roles/ssh-hostkeys/files/ssh_known_hosts @@ -58,3 +58,6 @@ smtp1.pyrocufflink.blue ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMtM5xa8DfADYSduknSL proxy0.pyrocufflink.blue ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDNv1c4zTK1ccZr/P7CSMJCryGqoDwehGRPQLJOj07WA5lEPUWtpLRYxFUv7WrMkgIbphjiaOmZdC48tOoPUo4h89qWc8Qkv0NBbFqYsfpYSZGwuTCdR0mYB5c3D+O2E4kA80iw/Ba6mQZGOkmQ1W55tB0VC0w+zf2Z+4bsbHqn7/fYcYyyzNPRtl5etwrQ0XtVjOPdphv6fEypPbZMgpHhHlH24rLfs8lEnQNzU6eGuBoeSG2TQmC3cqp2zOH04s5XPbHgBVCJpTBwfWfKLN4t52YfI7WBpBpjzbhfeX13/9Ji3lY2HfMCq3jYQgoEVVTlg044vMM3azpFMAMjT9+R proxy0.pyrocufflink.blue ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJYHAPVZ/doCszO1GL6nMTvdJO5ASv38eyRUIwhxhIhJJgbkFI5bbGdg9Kr10u0wWU5jEjhNiT4fg6QFFZAOLVM= proxy0.pyrocufflink.blue ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICfsGYZVyo0LHLYiXt28FGmcRSA9RGWG63+xPzIrdFDI +dns1.pyrocufflink.blue ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDV3rIYg/SznHhgf3R3qG1QsctCe3GYmsOQdy/OlF4IN4xyWlnWeBWFmgw5kWpBizIwEUK0SeWXdkH1/QafWVKaEKkk81aHqfaB4hQvP4B4juBY8/V6hzGXkS2qJMUR/VNIvzrHAFkEipns7tzyxYh68CLH8IGcz45gyixs/cplSu/peEcyOVw0c36b2sLiDJ2lRDehFtkGl4GGz7xNCqcOpJmq+ZLd0i5yVSDuV3d5wXtiEVrxQTihgNSLkFh1GRMrVCEzN6nhU9e5P7J6kqEpC2GfZPUOqxP4BAphg++k5ATQewEyoFbajB9LJ5TDb5J+boPzXg6MVQVBPGFUo9Uz +dns1.pyrocufflink.blue ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDunyBM7jgqippqTCwL5ro+wurEa8Pqyxq+LQs7Cmfg2 +dns1.pyrocufflink.blue ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNwJx42l0mSmiXmU9fHhNAVyOoHPV30gVbho5WWeJAZSf9Gd6K5BOSsvOCGRxsT5F2UG+5tpwKCNSPYD4GeD3mo=