0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 6 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
650 Commits
29 Branches
14 Tags
41 MiB
Tree: 23703fa134
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '23703fa134'
${ noResults }
0k-charms/bind/README.org

93 lines
2.7 KiB
Raw Normal View History

new: [bind] add charm Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
2 years ago
  1. # -*- ispell-local-dictionary: "english" -*-
  3. #+TITLE: Bind v9 Domain name server
  6. * Usage
  8. ** Example =compose.yml=
  10. #+begin_src yaml
  11. dns:
  12. charm: bind
  14. options:
  15. vars:
  16. ## these vars are a facility to allow using `$var` in domain defs
  17. myip: 1.2.3.4
  18. zones:
  19. ## __all__ will be applied to all domains defined here
  20. __all__:
  21. ns:
  22. ## '_' is translated to '@' in BIND v9 zone definition, which in
  23. ## in turn refers to the current domain being defined.
  24. _: (dns.mycompany.com,sdns1.ovh.net,ns6.gandi.net)
  25. mx:
  26. _: (1 ,(5 alt(1,2),10 alt(3,4)).)aspmx.l.google.com.
  27. mycompany.com:
  28. mx:
  29. news: 10 news
  31. ## Names will generate IN A/CNAME depending if an IP is detected or a name
  32. name:
  33. ## key and values can be expanded, the syntax uses the same logic
  34. ## than shell expansion with `{`, `}` and `,`. So this:
  35. ## `(_,dns,core(,-01))` will demux to `_ dns core core-01`, so all
  36. ## these keys will receive the following value.
  37. (_,dns,core(,-01)): $myip
  38. core-02: 4.5.6.7
  40. ## You can specify after a space, a TTL that will be applied to all
  41. ## definitions inside the section:
  42. name 3h:
  43. ## `www` required not to be an IP by zonecheck
  44. (www,admin,smtp,beta,alpha,erp(,-beta)): core-01
  45. news: 77.32.131.26
  46. r.news: r.mailin.fr.
  47. img.news: img.mailin.fr.
  49. spf 3h:
  50. ## Remember that this is YAML that also offer nice syntaxic
  51. ## feature to avoid repeating values.
  52. _: &spf >-
  53. v=spf1 a
  54. a:smtp.free.fr
  55. a:smtp.mycompany.com
  56. include:spf.sendinblue.com
  57. mx ?all
  58. txt 3h:
  59. _:
  60. - *spf
  61. - Sendinblue-code:xxx
  62. - google-site-verification=yyy
  64. news: "v=spf1 include:spf.sendinblue.com mx ~all"
  65. mail._domainkey(,.news):
  66. "k=rsa;p=zzz"
  68. _dmarc.news: >-
  69. v=DMARC1;
  70. p=none;
  71. sp=none;
  72. rua=mailto:dmarc@mailinblue.com!10m;
  73. ruf=mailto:dmarc@mailinblue.com!10m;
  74. rf=afrf;
  75. pct=100;
  76. ri=86400
  78. (othercompany.com,other-company.com):
  79. name:
  80. (_,www,mail): $myip
  81. (admin,beta): www
  82. #+end_src
  85. * Persistence
  87. backup will keep:
  88. - /etc/bind/rndc.key
  89. - /etc/bind/.db.$DOMAIN files keeping a hash of the configuration along
  90. with the given serial that matches the zone file. This is to be sure to
  91. advertise the same serial after a recovery.