From: Frank Brehm <frank.brehm@pixelpark.com>
Date: Tue, 21 Nov 2017 14:52:13 +0000 (+0100)
Subject: Enabling bind role for test-mail02.pixelpark.com
X-Git-Tag: v0.1.0~2004^2~6
X-Git-Url: https://git.uhu-banane.de/?a=commitdiff_plain;h=9fb08d04a069c5707fc592e0d49cd44699355fcb;p=pixelpark%2Fhiera.git

Enabling bind role for test-mail02.pixelpark.com
---

diff --git a/customer/pixelpark-mail/common.yaml b/customer/pixelpark-mail/common.yaml
index c3951807..91932f98 100644
--- a/customer/pixelpark-mail/common.yaml
+++ b/customer/pixelpark-mail/common.yaml
@@ -6,6 +6,60 @@ infra::additional_classes:
 # Necessary, because the host has a local caching only DNS resolver
 #puppetconf::server: puppetmaster01.pixelpark.com
 
+#####################################################
+# Logrotation
+
+infra::profile::logrotate::rules:
+  named:
+    path: '/var/log/named/*.log'
+    rotate_every: 'day'
+    rotate: 10
+    missingok: true
+    minsize: '4M'
+    su_owner: 'named'
+    su_group: 'named'
+    create: true
+    create_mode: '0644'
+    create_owner: 'named'
+    create_group: 'named'
+    dateext: true
+    dateformat: '-%Y-%m-%d'
+    compress: true
+    delaycompress: true
+    missingok: true
+    sharedscripts: true
+    postrotate: '/usr/sbin/rndc reload >/dev/null'
+  named_run:
+    path: '/var/named/data/named.run'
+    missingok: true
+    su_owner: 'named'
+    su_group: 'named'
+    create: true
+    create_mode: '0644'
+    create_owner: 'named'
+    create_group: 'named'
+    postrotate: |
+      /usr/bin/systemctl reload named.service > /dev/null 2>&1 || true
+      /usr/bin/systemctl reload named-chroot.service > /dev/null 2>&1 || true
+      /usr/bin/systemctl reload named-sdb.service > /dev/null 2>&1 || true
+      /usr/bin/systemctl reload named-sdb-chroot.service > /dev/null 2>&1 || true
+      /usr/bin/systemctl reload named-pkcs11.service > /dev/null 2>&1 || true
+
+#####################################################
+# Options for /etc/resolv.conf
+resolv_conf::nameservers:
+  - '127.0.0.1'
+  - '217.66.52.10'
+  - '212.91.225.75'
+
+#####################################################
+# BIND configuration
+bind::version2show: 'none'
+bind::querylog: true
+bind::forwarders:
+  - '217.66.52.10'
+  - '212.91.225.75'
+
 #####################################################
 # SASL configuration
 sasl::authd::mechanism: 'ldap'
diff --git a/customer/pixelpark-mail/test-mail02.pixelpark.net.yaml b/customer/pixelpark-mail/test-mail02.pixelpark.net.yaml
index e86e641e..a4481acf 100644
--- a/customer/pixelpark-mail/test-mail02.pixelpark.net.yaml
+++ b/customer/pixelpark-mail/test-mail02.pixelpark.net.yaml
@@ -7,6 +7,7 @@ infra::additional_classes:
   - rsyslog::client
   - infra::profile::logrotate
   - resolv_conf
+  - bind
 
 # Necessary, because the host has a local caching only DNS resolver
 puppetconf::server: puppetmaster01.pixelpark.com