From 14d5cbd332a15a8438a458e8c4817d4458c2145b Mon Sep 17 00:00:00 2001
From: Emil Renner Berthing <esmil@labitat.dk>
Date: Tue, 2 Apr 2019 17:53:01 +0200
Subject: space_server: named: create reverse ipv4 zone

---
 roles/space_server/files/named.conf | 35 +++++++++++++++++++++--------------
 1 file changed, 21 insertions(+), 14 deletions(-)

(limited to 'roles/space_server/files')

diff --git a/roles/space_server/files/named.conf b/roles/space_server/files/named.conf
index 81c4969..0659a3b 100644
--- a/roles/space_server/files/named.conf
+++ b/roles/space_server/files/named.conf
@@ -75,6 +75,18 @@ logging {
 	};
 };
 
+acl local {
+	127.0.0.1;
+	10.42.0.0/24; // infrastructure
+	10.42.1.0/24; // member wired
+	10.42.2.0/24; // member wireless
+	::1;
+	2a01:4262:1ab:a::/64; // infrastructure
+	2a01:4262:1ab:b::/64; // member wired
+	2a01:4262:1ab:c::/64; // member wireless
+	2a01:4262:1ab:f::/64; // member nat64
+};
+
 zone "." IN {
 	type hint;
 	file "named.ca";
@@ -83,20 +95,15 @@ zone "." IN {
 zone "s" IN {
 	type master;
 	file "/etc/named/s.zone";
-	allow-query {
-		127.0.0.1;
-		10.42.0.0/24; # infrastructure
-		10.42.1.0/24; # member wired
-		10.42.2.0/24; # member wireless
-		::1;
-		2a01:4262:1ab:a::/64; # infrastructure
-		2a01:4262:1ab:b::/64; # member wired
-		2a01:4262:1ab:c::/64; # member wireless
-		2a01:4262:1ab:f::/64; # member nat64
-	};
-	allow-transfer {
-		none;
-	};
+	allow-query { local; };
+	allow-transfer { none; };
+};
+
+zone "42.10.in-addr.arpa" IN {
+	type master;
+	file "/etc/named/ipv4.rev.zone";
+	allow-query { local; };
+	allow-transfer { none; };
 };
 
 include "/etc/named.rfc1912.zones";
-- 
cgit v1.2.1