configpolicy/group_vars at 84313601efdf9cfc838626f9b7572ad7f893cfde - configpolicy - Gitea: Git with a cup of tea

dustin/configpolicy

Files

History

Dustin C. Hatch 84313601ef roles/named: Implement response policy zones

BIND response policy zones (RPZ) support provides a mechanism for
overriding the responses to DNS queries based on a wide range of
criteria.  In the simplest form, a response policy zone can be used to
provide different responses to different clients, or "block" some DNS
names.

For the Pyrocufflink and related networks, I plan to use an RPZ to
implement ad/tracker blocking.  The goal will be to generate an RPZ
definition from a collection of host lists (e.g. those used by uBlock
Origin) periodically.

This commit introduces basic support for RPZ configuration in the
*named* role.  It can be activated by providing a list of "response
policy" definitions (e.g. `zone "name"`) in the `named_response_policy`
variable, and defining the corresponding zones in `named_zones`.

2020-09-06 10:40:01 -05:00

..

Move dch_networks definition to all group

2018-10-13 12:43:35 -05:00

pyrocufflink: Ensure Samba security is correct

2018-08-01 22:05:18 -05:00

all.yml

Add new FireMon user network address

2019-08-23 08:48:22 -05:00

aria2.yml

aria2: Deploy aria2 download manager

2018-08-19 14:17:48 -05:00

bitwarden_rs.yml

bitwarden_rs: Fix path to BURP backup script

2019-09-27 14:07:29 -05:00

burp-client.yml

hosts: Add burp1.p.b

2020-01-25 13:57:04 -06:00

burp-server.yml

burp-{client,server}: PBs to deploy BURP

2018-08-08 20:14:25 -05:00

dch-vpn.yml

dch-vpn: Avoid configuring firewalld

2018-10-13 12:19:25 -05:00

file-servers.yml

fileserver: Configure Apache ~user directories

2019-01-04 20:52:23 -06:00

gitea.yml

gitea: Restrict SSH configuration

2018-06-06 21:45:36 -05:00

home-assistant.yml

hosts: Add hass0.pyrocufflink.blue

2019-03-05 18:31:42 -06:00

jenkins-slave.yml

jenkins-slave: Allow Jenkins to connect to Docker

2019-09-19 19:50:35 -05:00

koji-hub.yml

hosts: Add koji0.pyrocufflink.blue

2018-08-12 10:27:20 -05:00

koji.yml

hosts: Add koji0.pyrocufflink.blue

2018-08-12 10:27:20 -05:00

nextcloud.yml

nextcloud: Deploy Nextcloud w/ Apache+PHP-FPM

2020-03-09 20:18:07 -05:00

public-web.yml

websites/pyrocufflink.net: Use lego certificate

2020-03-16 14:16:34 -05:00

pyrocufflink-dhcp.yml

Merge branch 'graylog' into master

2020-08-31 20:17:12 -05:00

pyrocufflink-dns.yml

roles/named: Implement response policy zones

2020-09-06 10:40:01 -05:00

radius.yml

Move APs to Management network

2018-07-15 09:19:39 -05:00

samba-dc.yml

samba-dc: Configure TLS

2018-05-28 15:24:34 -05:00

smtp-relay.yml

smtp-relay: PB to deploy Postfix SMTP relay

2018-04-15 11:38:51 -05:00

taiga.yml

taiga: Add playbook for Taiga

2019-09-19 19:51:45 -05:00

vm-hosts.yml

vm-hosts: Add mgmt and hass libvirt networks

2019-03-22 09:29:56 -05:00

zabbix-server.yml

zabbix-server: Allow SMTP relay from any loopback

2019-04-15 10:05:04 -05:00

zabbix.yml

hosts: Add hosts to zabbix group

2018-04-14 15:47:49 -05:00