aboutsummaryrefslogtreecommitdiffstats
path: root/roles
diff options
context:
space:
mode:
authorEmil Renner Berthing <esmil@labitat.dk>2019-04-05 10:17:51 +0200
committerEmil Renner Berthing <esmil@labitat.dk>2019-04-05 10:55:55 +0200
commit6ced188dd2660a6ae49abbc6ab6e20e9c3e70f2f (patch)
tree8bab68e9f595ca3dad4e3d1c9ec118e0c23a21e2 /roles
parent5e18e26f5025642ce4ffff8ae8174ed08293bc74 (diff)
downloadlabitat-ansible-6ced188dd2660a6ae49abbc6ab6e20e9c3e70f2f.tar.gz
labitat-ansible-6ced188dd2660a6ae49abbc6ab6e20e9c3e70f2f.tar.xz
labitat-ansible-6ced188dd2660a6ae49abbc6ab6e20e9c3e70f2f.zip
space_server: named: allow local transfer queries
..so now you can see all registered dhcp hostnames with: dig axfr dhcp
Diffstat (limited to 'roles')
-rw-r--r--roles/space_server/templates/named.conf.j28
1 files changed, 5 insertions, 3 deletions
diff --git a/roles/space_server/templates/named.conf.j2 b/roles/space_server/templates/named.conf.j2
index 0314545..2e15098 100644
--- a/roles/space_server/templates/named.conf.j2
+++ b/roles/space_server/templates/named.conf.j2
@@ -104,7 +104,7 @@ zone "s" IN {
file "/etc/named/s.zone";
allow-query { local; };
allow-update { none; };
- allow-transfer { none; };
+ allow-transfer { local; };
};
{% if ddns_secret is defined %}
@@ -113,7 +113,7 @@ zone "dhcp" IN {
file "dynamic/dhcp.zone";
allow-query { local; };
allow-update { key dhcpupdate; };
- allow-transfer { none; };
+ allow-transfer { local; };
notify no;
};
{% endif %}
@@ -124,8 +124,10 @@ zone "42.10.in-addr.arpa" IN {
allow-query { local; };
{% if ddns_secret is defined %}
allow-update { key dhcpupdate; };
+{% else %}
+ allow-update { none; };
{% endif %}
- allow-transfer { none; };
+ allow-transfer { local; };
notify no;
};