Manages bind configuration under Debian / Ubuntu and CentOS.
This module is provided by Camptocamp
- bind
This class must be declared before using the definitions in this module.
- bind::a
- bind::acl
- bind::generate
- bind::mx
- bind::record
- bind::zone
Creates an A record (or a series thereof).
bind::a { 'Hosts in example.com':
ensure => 'present',
zone => 'example.com',
ptr => false,
hash_data => {
'host1' => { owner => '192.168.0.1', },
'host2' => { owner => '192.168.0.2', },
},
}
Ensure the A record is present.
Zone name.
Zone data.
Pointer records (PTR) are used to map a network interface to a host name. Primarily used for reverse DNS.
Needed if $ptr is true. For reverse DNS you will have to setup your reverse DNS domain. This is a special domain that ends with in-addr.arpa.
Zone content;
Zone content template.
Creates an ACL bloc
bind::acl {'my acl':
ensure => present,
acls => [
'!192.168.1.0/24',
'any'
],
}
Ensure the ACL is present (or absent if set to "absent")
List of ACL directive
Creates a $GENERATE directive for a specific zone
bind::generate {'a-records':
zone => 'test.tld',
range => '2-100',
record_type => 'A',
lhs => 'dhcp-$', # creates dhcp-2.test.tld, dhcp-3.test.tld …
rhs => '10.10.0.$', # creates IP 10.10.0.2, 10.10.0.3 …
}
Ensure the generate is present.
Zone name. Must reflect a bind::zone resource.
Range allocated to internal generate directive. Must be in the form 'first-last'.
Record type. Must be one of PTR, CNAME, DNAME, A, AAAA and NS.
Generated name.
Record target.
Record class. Not compatible with pre-9.3 bind versions.
Time to live for generated records.
Creates an MX record.
bind::mx {'mx1':
zone => 'domain.ltd',
owner => '@',
priority => 1,
host => 'mail.domain.ltd',
}
Ensure the MX record is present.
Zone name.
Target of the resource record.
MX record priority.
Owner of the resource record.
Time to live for the resource record.
Creates a generic record (or a series thereof).
bind::record {'CNAME foo.example.com':
zone => 'foo.example.com',
record_type => 'CNAME',
hash_data => {
'ldap' => { owner => 'ldap.internal', },
'voip' => { owner => 'voip.internal', },
}
}
Ensure the record is present.
Zone name.
Hash containing data.
Resource record type.
Record content.
Allows you to do your own template, letting you use your own hash_data content structure.
PTR zone.
Creates a zone.
bind::zone {'test.tld':
zone_contact => 'contact.test.tld',
zone_ns => ['ns0.test.tld'],
zone_serial => '2012112901',
zone_ttl => '604800',
zone_origin => 'test.tld',
}
Ensure the zone is present.
Boolean to set if a zone is dynamic.
List of hosts that are allowed to submit dynamic updates for master zones.
Source IP to bind to when requesting a transfer (slave only).
Specify if the zone is master/slave/forward.
Time to live for your zonefile (master only).
Valid contact record (master only).
Zone serial (master only).
Time between each slave refresh (master only).
Time between each slave retry (master only).
Slave expiracy time (master only).
Valid NS for this zone (master only).
Valid xfers for zone (master only).
Valid master for this zone (slave only).
Valid forwarders for this zone (forward only).
The origin of the zone.
IPs to use for also-notify entry.
Boolean to set if a zone is slave.
Creates a key for dynamic zones. The 'secret' value is the key generated by dnssec-keygen.
bind::key { 'key_dyn.test.tld':
ensure => present,
secret => 'xUjDQqpBHao/o7mR2dza2/Tv2DQVo9pEuMfMwhdfzeaEFZAvwA='
}
bind::zone {'dyn.test.tld':
zone_contact => 'contact.test.tld',
zone_ns => ['ns0.test.tld'],
zone_serial => '2012112901',
zone_ttl => '604800',
zone_origin => 'dyn.test.tld',
is_dynamic => true,
allow_update => ['key_dyn.test.tld']
}
Ensure the key is present.
Key content.
Key algorithm.
bind::zone {'example.com':
ensure => 'present',
zone_contact => 'contact.example.com',
zone_ns => ['ns0.example.com'],
zone_serial => '2012112901',
zone_ttl => '604800',
zone_origin => 'example.com',
}
bind::a { 'example.com':
ensure => 'present',
zone => 'example.com',
ptr => false,
hash_data => {
'host1' => { owner => '192.168.0.1', },
'host2' => { owner => '192.168.0.2', },
},
}
Please report bugs and feature request using GitHub issue tracker.
For pull requests, it is very much appreciated to check your Puppet manifest with puppet-lint to follow the recommended Puppet style guidelines from the Puppet Labs style guide.
Copyright (c) 2013 mailto:[email protected] All rights reserved.
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.