From 35520191826817eb3de523310213df95fabc94b8 Mon Sep 17 00:00:00 2001 From: Oleg Broytman Date: Sun, 13 Mar 2022 12:28:32 +0300 Subject: [PATCH] Fix(debian/named): Use IP instead of name In `named` config it's better not to resolve names, even `localhost`. --- playbooks/roles/debian/named/templates/named.conf.options | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/playbooks/roles/debian/named/templates/named.conf.options b/playbooks/roles/debian/named/templates/named.conf.options index 37f8735..8f0cfc7 100644 --- a/playbooks/roles/debian/named/templates/named.conf.options +++ b/playbooks/roles/debian/named/templates/named.conf.options @@ -26,6 +26,6 @@ options { // listen-on-v6 { any; }; // allow-transfer { trusted; }; - allow-query { localhost; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; - allow-recursion { localhost; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; + allow-query { 127.0.0.1/32; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; + allow-recursion { 127.0.0.1/32; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; }; -- 2.39.5