From 6ced188dd2660a6ae49abbc6ab6e20e9c3e70f2f Mon Sep 17 00:00:00 2001
From: Emil Renner Berthing <esmil@labitat.dk>
Date: Fri, 5 Apr 2019 10:17:51 +0200
Subject: space_server: named: allow local transfer queries

..so now you can see all registered dhcp hostnames with:

dig axfr dhcp
---
 roles/space_server/templates/named.conf.j2 | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'roles')

diff --git a/roles/space_server/templates/named.conf.j2 b/roles/space_server/templates/named.conf.j2
index 0314545..2e15098 100644
--- a/roles/space_server/templates/named.conf.j2
+++ b/roles/space_server/templates/named.conf.j2
@@ -104,7 +104,7 @@ zone "s" IN {
 	file "/etc/named/s.zone";
 	allow-query { local; };
 	allow-update { none; };
-	allow-transfer { none; };
+	allow-transfer { local; };
 };
 {% if ddns_secret is defined %}
 
@@ -113,7 +113,7 @@ zone "dhcp" IN {
 	file "dynamic/dhcp.zone";
 	allow-query { local; };
 	allow-update { key dhcpupdate; };
-	allow-transfer { none; };
+	allow-transfer { local; };
 	notify no;
 };
 {% endif %}
@@ -124,8 +124,10 @@ zone "42.10.in-addr.arpa" IN {
 	allow-query { local; };
 {% if ddns_secret is defined %}
 	allow-update { key dhcpupdate; };
+{% else %}
+	allow-update { none; };
 {% endif %}
-	allow-transfer { none; };
+	allow-transfer { local; };
 	notify no;
 };
 
-- 
cgit v1.2.1