# Necessary, because the host has a local caching only DNS resolver
#puppetconf::server: puppetmaster01.pixelpark.com
+#####################################################
+# Logrotation
+
+infra::profile::logrotate::rules:
+ named:
+ path: '/var/log/named/*.log'
+ rotate_every: 'day'
+ rotate: 10
+ missingok: true
+ minsize: '4M'
+ su_owner: 'named'
+ su_group: 'named'
+ create: true
+ create_mode: '0644'
+ create_owner: 'named'
+ create_group: 'named'
+ dateext: true
+ dateformat: '-%Y-%m-%d'
+ compress: true
+ delaycompress: true
+ missingok: true
+ sharedscripts: true
+ postrotate: '/usr/sbin/rndc reload >/dev/null'
+ named_run:
+ path: '/var/named/data/named.run'
+ missingok: true
+ su_owner: 'named'
+ su_group: 'named'
+ create: true
+ create_mode: '0644'
+ create_owner: 'named'
+ create_group: 'named'
+ postrotate: |
+ /usr/bin/systemctl reload named.service > /dev/null 2>&1 || true
+ /usr/bin/systemctl reload named-chroot.service > /dev/null 2>&1 || true
+ /usr/bin/systemctl reload named-sdb.service > /dev/null 2>&1 || true
+ /usr/bin/systemctl reload named-sdb-chroot.service > /dev/null 2>&1 || true
+ /usr/bin/systemctl reload named-pkcs11.service > /dev/null 2>&1 || true
+
+#####################################################
+# Options for /etc/resolv.conf
+resolv_conf::nameservers:
+ - '127.0.0.1'
+ - '217.66.52.10'
+ - '212.91.225.75'
+
+#####################################################
+# BIND configuration
+bind::version2show: 'none'
+bind::querylog: true
+bind::forwarders:
+ - '217.66.52.10'
+ - '212.91.225.75'
+
#####################################################
# SASL configuration
sasl::authd::mechanism: 'ldap'
projects / pixelpark / hiera.git / commitdiff