foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add only required reverse zones for dna gw hosts

Browse source
This commit is contained in:
Timo Makinen 2025-06-19 13:55:28 +00:00
parent 1269427fb2
commit 05b4c3a9f4
1 changed files with 10 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

12
group_vars/dnagw.yml
View file

@ -34,8 +34,16 @@ network_ether_interfaces:
proto: none proto: none
unbound_zones: unbound_zones:
- 20.172.in-addr.arpa - 144-28.96.16.37.in-addr.arpa
- home.foo.sh - foo.sh
- >-
{% set reverse = intnet | ansible.utils.ipaddr('network') | ansible.utils.ipaddr('revdns') -%}
{% if intnet | ansible.utils.ipaddr('prefix') < 24 -%}
{{ reverse[:-1] | split('.', 2) | last -}}
{% else -%}
{{ reverse[:-1] | split('.', 1) | last -}}
{% endif -%}
- "{{ inventory_hostname.split('.')[1:] | join('.') }}"
# use custom firewall config # use custom firewall config
firewall_src: pf.conf.gw_dna.j2 firewall_src: pf.conf.gw_dna.j2