-
Notifications
You must be signed in to change notification settings - Fork 0
/
main.yml
72 lines (48 loc) · 1.2 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
#
# Container options
#
bind_container_base_dir: "/srv/bind"
bind_container_name: "bind"
bind_container_image: "jonasal/bind:9"
bind_container_command: "-4" # Docker usually don't have IPv6 enabled.
bind_use_host_network: false
bind_container_networks:
- name: bridge
bind_container_ports:
- "53:53"
- "53:53/udp"
- "953:953"
#
# named.conf.logging
#
bind_log_force_stderr: false
bind_log_channels: {}
bind_log_channel_console_severity: "info"
bind_log_categories: {}
bind_log_category_default: [ "console" ]
#
# named.conf.options
#
bind_listen_on: [ "any" ]
bind_listen_on_v6: [ "none" ] # Docker usually don't have IPv6 enabled.
bind_allow_query: [ "any" ]
bind_allow_transfer: [ "none" ]
bind_also_notify: []
bind_forwarders:
- '1.1.1.1'
- '208.67.222.222'
bind_dnssec_validation: yes
#
# named.conf.local
#
bind_controls: {}
bind_include_default_zones: true
bind_include_rfc1918: true
bind_zones: {}
#
# resolv.conf options
#
bind_resolvconf_nameservers: "{{ [ '127.0.0.1' ] + bind_forwarders }}"
bind_disable_dnsstublistener: false # Enable if port 53 is already in use.
bind_override_systemd_resolved: false # Debian/Ubuntu
bind_override_openresolv: false # Raspberry Pi