alex/homework36
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Загрузить файлы в «provisioning»

Browse Source
This commit is contained in:
alex
2026-04-04 16:30:35 +03:00
parent 5036b9d541
commit f85a150e25
5 changed files with 137 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
provisioning/named.dns.lab.limit Normal file
View File

@@ -0,0 +1,19 @@
$TTL 3600
$ORIGIN dns.lab.
@ IN SOA ns01.dns.lab. root.dns.lab. (
2711201407 ; serial
3600 ; refresh (1 hour)
600 ; retry (10 minutes)
86400 ; expire (1 day)
600 ; minimum (10 minutes)
)
IN NS ns01.dns.lab.
IN NS ns02.dns.lab.
; DNS Servers
ns01 IN A 192.168.50.10
ns02 IN A 192.168.50.11
;web1
web1 IN A 192.168.50.15

16
provisioning/named.dns.lab.rev Normal file
View File

@@ -0,0 +1,16 @@
$TTL 3600
$ORIGIN 50.168.192.in-addr.arpa.
50.168.192.in-addr.arpa. IN SOA ns01.dns.lab. root.dns.lab. (
2711201407 ; serial
3600 ; refresh (1 hour)
600 ; retry (10 minutes)
86400 ; expire (1 day)
600 ; minimum (10 minutes)
)
IN NS ns01.dns.lab.
IN NS ns02.dns.lab.
; DNS Servers
10 IN PTR ns01.dns.lab.
11 IN PTR ns02.dns.lab.

20
provisioning/named.newdns.lab Normal file
View File

@@ -0,0 +1,20 @@
$TTL 3600
$ORIGIN newdns.lab.
@ IN SOA ns01.newdns.lab. root.newdns.lab. (
2711201407 ; serial
3600 ; refresh (1 hour)
600 ; retry (10 minutes)
86400 ; expire (1 day)
600 ; minimum (10 minutes)
)
IN NS ns01.newdns.lab.
IN NS ns02.newdns.lab.
; DNS Servers
ns01 IN A 192.168.50.10
ns02 IN A 192.168.50.11
;www
www IN A 192.168.50.15
www IN A 192.168.50.20

4
provisioning/named.zonetransfer.key Normal file
View File

@@ -0,0 +1,4 @@
key "zonetransfer.key" {
algorithm hmac-md5;
secret "SB4Db9pJomyKxTNynlAq/g==";
};

78
provisioning/playbook.yml Normal file
View File

@@ -0,0 +1,78 @@
---
- hosts: all
become: yes
tasks:
- name: update centos repo
shell: |
sed -i s/mirror.centos.org/vault.centos.org/g /etc/yum.repos.d/CentOS*
sed -i s/^#.*baseurl=http/baseurl=http/g /etc/yum.repos.d/CentOS*
sed -i s/^mirrorlist=http/#mirrorlist=http/g /etc/yum.repos.d/CentOS*
- name: install packages
yum: name={{ item }} state=latest
with_items:
- bind
- bind-utils
- ntp
- name: copy transferkey to all servers and the client
copy: src=named.zonetransfer.key dest=/etc/named.zonetransfer.key owner=root group=named mode=0644
- hosts: ns01
become: yes
tasks:
- name: copy named.conf
copy: src=master-named.conf dest=/etc/named.conf owner=root group=named mode=0640
- name: copy zones
copy: src={{ item }} dest=/etc/named/ owner=root group=named mode=0660
with_fileglob:
- named.d*
- named.new*
- name: copy resolv.conf to the servers
copy: src=servers-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
- name: set /etc/named permissions
file: path=/etc/named owner=root group=named mode=0670
- name: SELinux /etc/named
file:
path: /etc/named
setype: named_zone_t
recurse: yes
- name: ensure named is running and enabled
service: name=named state=restarted enabled=yes
- hosts: ns02
become: yes
tasks:
- name: copy named.conf
copy: src=slave-named.conf dest=/etc/named.conf owner=root group=named mode=0640
- name: copy resolv.conf to the servers
copy: src=servers-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
- name: set /etc/named permissions
file: path=/etc/named owner=root group=named mode=0670
- name: SELinux /etc/named
file:
path: /etc/named
setype: named_zone_t
recurse: yes
- name: ensure named is running and enabled
service: name=named state=restarted enabled=yes
- hosts: client
become: yes
tasks:
- name: copy resolv.conf to the client
copy: src=client-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
- name: copy rndc conf file
copy: src=rndc.conf dest=/home/vagrant/rndc.conf owner=vagrant group=vagrant mode=0644
- name: copy motd to the client
copy: src=client-motd dest=/etc/motd owner=root group=root mode=0644