roles/named: Deploy BIND DNS server

The *named* role configures the BIND DNS server on managed nodes. It writes `/etc/named.conf`, using a template that supports most of the commonly-used options. The configuration can be augmented by other templates, etc. by specifying file paths in the `named_options_include` or `named_global_include` variables, both of which are lists.
2018-01-07 11:26:03 -06:00
parent ac354643c5
commit b493d81cfa
6 changed files with 172 additions and 0 deletions
--- a/roles/named/vars/defaults.yml
+++ b/roles/named/vars/defaults.yml
@@ -0,0 +1,11 @@
+named_packages:
+- bind
+named_directory: /var/named
+named_dump_file: '{{ named_directory }}/data/cache_dump.db'
+named_stats_file: '{{ named_directory }}/data/named_stats.txt'
+named_memstats_file: '{{ named_directory }}/data/named_mem_stats.txt'
+named_managed_keys_dir: '{{ named_directory }}/dynamic'
+named_pid_file: /run/named/named.pid
+named_session_keyfile: /run/named/session.key
+named_default_options_include:
+- /etc/crypto-policies/back-ends/bind.config