From c5ee40dbd1ece159004ec5d7e11a0512e57f7823 Mon Sep 17 00:00:00 2001 From: Oleg Broytman Date: Fri, 11 Mar 2022 04:43:36 +0300 Subject: [PATCH] Feat(debian/named): Insert IP address Insert the default IP address into `named.conf.options`. --- playbooks/roles/debian/named/tasks/main.yml | 2 +- .../debian/named/{files => templates}/named.conf.options | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) rename playbooks/roles/debian/named/{files => templates}/named.conf.options (82%) diff --git a/playbooks/roles/debian/named/tasks/main.yml b/playbooks/roles/debian/named/tasks/main.yml index fa5698b..9bc3d00 100644 --- a/playbooks/roles/debian/named/tasks/main.yml +++ b/playbooks/roles/debian/named/tasks/main.yml @@ -22,7 +22,7 @@ - name: Configure BIND become: true - copy: + template: src: named.conf.options dest: /etc/bind/named.conf.options owner: bind diff --git a/playbooks/roles/debian/named/files/named.conf.options b/playbooks/roles/debian/named/templates/named.conf.options similarity index 82% rename from playbooks/roles/debian/named/files/named.conf.options rename to playbooks/roles/debian/named/templates/named.conf.options index 6940926..37f8735 100644 --- a/playbooks/roles/debian/named/files/named.conf.options +++ b/playbooks/roles/debian/named/templates/named.conf.options @@ -26,6 +26,6 @@ options { // listen-on-v6 { any; }; // allow-transfer { trusted; }; - allow-query { localhost; 192.168.0.0/16; 10.0.0.0/8; }; - allow-recursion { localhost; 192.168.0.0/16; 10.0.0.0/8; }; + allow-query { localhost; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; + allow-recursion { localhost; {{ ansible_facts.default_ipv4.address }}/32; 192.168.0.0/16; 10.0.0.0/8; }; }; -- 2.39.2