Add unbound to gw hosts

2021-03-25 21:50:09 +00:00 · 2021-03-25 21:50:09 +00:00 · 8d234782df
commit 8d234782df
parent 12ec078011
2 changed files with 43 additions and 2 deletions
--- a/playbooks/gw.yml
+++ b/playbooks/gw.yml
@ -9,6 +9,9 @@
  vars_files:
    - "{{ ansible_private }}/vars.yml"

+  roles:
+    - base
+
  tasks:
    - name: enable ip forwarding
      sysctl:
@ -19,5 +22,16 @@
        - net.inet.ip.forwarding
        - net.inet6.ip6.forwarding

-  roles:
-    - base
+    - name: copy dns zone files
+      copy:
+        dest: "/var/unbound/db/{{ item }}"
+        src: "/srv/dns/{{ item }}"
+        mode: 0644
+        owner: root
+        group: "{{ ansible_wheel }}"
+      notify: restart unbound
+      with_items:
+        - 20.172.in-addr.arpa
+        - home.foo.sh
+    - import_role:
+        name: unbound