dustin
/
configpolicy
1
1
Fork 0
Code Issues Releases Activity
configpolicy/group_vars
History
Dustin 84313601ef roles/named: Implement response policy zones 
BIND response policy zones (RPZ) support provides a mechanism for
overriding the responses to DNS queries based on a wide range of
criteria.  In the simplest form, a response policy zone can be used to
provide different responses to different clients, or "block" some DNS
names.

For the Pyrocufflink and related networks, I plan to use an RPZ to
implement ad/tracker blocking.  The goal will be to generate an RPZ
definition from a collection of host lists (e.g. those used by uBlock
Origin) periodically.

This commit introduces basic support for RPZ configuration in the
*named* role.  It can be activated by providing a list of "response
policy" definitions (e.g. `zone "name"`) in the `named_response_policy`
variable, and defining the corresponding zones in `named_zones`.
 		2020-09-06 10:40:01 -05:00
..
dch-gw Move dch_networks definition to all group 2018-10-13 12:43:35 -05:00
pyrocufflink pyrocufflink: Ensure Samba security is correct 2018-08-01 22:05:18 -05:00
all.yml Add new FireMon user network address 2019-08-23 08:48:22 -05:00
aria2.yml aria2: Deploy aria2 download manager 2018-08-19 14:17:48 -05:00
bitwarden_rs.yml bitwarden_rs: Fix path to BURP backup script 2019-09-27 14:07:29 -05:00
burp-client.yml hosts: Add burp1.p.b 2020-01-25 13:57:04 -06:00
burp-server.yml burp-{client,server}: PBs to deploy BURP 2018-08-08 20:14:25 -05:00
dch-vpn.yml dch-vpn: Avoid configuring firewalld 2018-10-13 12:19:25 -05:00
file-servers.yml fileserver: Configure Apache ~user directories 2019-01-04 20:52:23 -06:00
gitea.yml gitea: Restrict SSH configuration 2018-06-06 21:45:36 -05:00
home-assistant.yml hosts: Add hass0.pyrocufflink.blue 2019-03-05 18:31:42 -06:00
jenkins-slave.yml jenkins-slave: Allow Jenkins to connect to Docker 2019-09-19 19:50:35 -05:00
koji-hub.yml hosts: Add koji0.pyrocufflink.blue 2018-08-12 10:27:20 -05:00
koji.yml hosts: Add koji0.pyrocufflink.blue 2018-08-12 10:27:20 -05:00
nextcloud.yml nextcloud: Deploy Nextcloud w/ Apache+PHP-FPM 2020-03-09 20:18:07 -05:00
public-web.yml websites/pyrocufflink.net: Use lego certificate 2020-03-16 14:16:34 -05:00
pyrocufflink-dhcp.yml Merge branch 'graylog' into master 2020-08-31 20:17:12 -05:00
pyrocufflink-dns.yml roles/named: Implement response policy zones 2020-09-06 10:40:01 -05:00
radius.yml Move APs to Management network 2018-07-15 09:19:39 -05:00
samba-dc.yml samba-dc: Configure TLS 2018-05-28 15:24:34 -05:00
smtp-relay.yml smtp-relay: PB to deploy Postfix SMTP relay 2018-04-15 11:38:51 -05:00
taiga.yml taiga: Add playbook for Taiga 2019-09-19 19:51:45 -05:00
vm-hosts.yml vm-hosts: Add mgmt and hass libvirt networks 2019-03-22 09:29:56 -05:00
zabbix-server.yml zabbix-server: Allow SMTP relay from any loopback 2019-04-15 10:05:04 -05:00
zabbix.yml hosts: Add hosts to zabbix group 2018-04-14 15:47:49 -05:00