pyrocufflink-dns: Drop group
The internal DNS server for the *pyrocufflink.blue* et al. domains runs on the firewall now, and is thus no longer managed by Ansible. Dropping the group variables so the file encrypted with Ansible Vault can go away.
This commit is contained in:
@@ -1,13 +0,0 @@
|
||||
@Library('cfgpol')_
|
||||
|
||||
applyConfigPolicy(
|
||||
'pyrocufflink-dns',
|
||||
[
|
||||
'ProtonVPN': [
|
||||
'protonvpn.yml',
|
||||
],
|
||||
'BIND': [
|
||||
'named-server.yml',
|
||||
],
|
||||
],
|
||||
)
|
||||
@@ -1,33 +0,0 @@
|
||||
protonvpn_tunnel: 1.1.1.1,1.0.0.1
|
||||
protonvpn_server: 208.84.155.67
|
||||
named_forward_only: true
|
||||
named_forwarders:
|
||||
- 1.1.1.1
|
||||
- 1.0.0.1
|
||||
named_listen:
|
||||
- addresses:
|
||||
- any
|
||||
named_listen_v6:
|
||||
- addresses:
|
||||
- any
|
||||
named_allow_query:
|
||||
- any
|
||||
named_dnssec_validation: false
|
||||
named_response_policy:
|
||||
- zone "blackhole.rpz"
|
||||
named_queries_syslog: true
|
||||
named_rpz_syslog: true
|
||||
|
||||
pyrocufflink_common_zones:
|
||||
- zone: pyrocufflink.blue
|
||||
type: forward
|
||||
forward: only
|
||||
forwarders:
|
||||
- 172.30.0.9
|
||||
- zone: 0.30.172.in-addr.arpa
|
||||
type: forward
|
||||
forward: only
|
||||
forwarders:
|
||||
- 172.30.0.9
|
||||
|
||||
named_zones: '{{ pyrocufflink_red_zones + pyrocufflink_common_zones + rpz_zones }}'
|
||||
@@ -1,10 +0,0 @@
|
||||
$ANSIBLE_VAULT;1.1;AES256
|
||||
34303664613262623439636133393766306638343261373633633136323562643761383039376565
|
||||
3339663861393833666164633136373966336630346434660a616231343233653366393666336339
|
||||
31643862626561643636343666313539343933353138336166373335323830643361303362353864
|
||||
3934633236313862620a616561393265336138383339393063613631633030646633363736333139
|
||||
37343664333063616430366534633366383565613530613439313732333232363336626236613235
|
||||
35636165386565633466306638656662323739396535386565316662353735386466643038613337
|
||||
61363936326363323730393132313532326336373761653237623963363163373633623737643434
|
||||
66386234303265343262333566356566626531633665626464343962633337373962396533343432
|
||||
6163
|
||||
8
hosts
8
hosts
@@ -85,9 +85,6 @@ burp-server
|
||||
|
||||
[motioneye]
|
||||
|
||||
[named-server:children]
|
||||
pyrocufflink-dns
|
||||
|
||||
[nfs-client:children]
|
||||
k8s-node
|
||||
|
||||
@@ -102,9 +99,6 @@ serial0.pyrocufflink.blue
|
||||
[postgresql]
|
||||
cloud0.pyrocufflink.blue
|
||||
|
||||
[protonvpn:children]
|
||||
pyrocufflink-dns
|
||||
|
||||
[public-web]
|
||||
web0.pyrocufflink.blue
|
||||
|
||||
@@ -133,8 +127,6 @@ web0.pyrocufflink.blue
|
||||
|
||||
[pyrocufflink-dhcp]
|
||||
|
||||
[pyrocufflink-dns]
|
||||
|
||||
[radius:children]
|
||||
samba-dc
|
||||
|
||||
|
||||
Reference in New Issue
Block a user