#
-# Cookbook Name:: bind
+# Cookbook:: bind
# Recipe:: default
#
-# Copyright 2011, OpenStreetMap Foundation
+# Copyright:: 2011, OpenStreetMap Foundation
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
-# http://www.apache.org/licenses/LICENSE-2.0
+# https://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
include_recipe "networking"
+clients = search(:node, "roles:#{node[:bind][:clients]}")
+
+ipv4_clients = clients.collect do |client|
+ client.ipaddresses(:family => :inet)
+end.flatten
+
+ipv6_clients = clients.collect do |client|
+ client.ipaddresses(:family => :inet6)
+end.flatten
+
package "bind9"
-service "bind9" do
+service "named" do
action [:enable, :start]
- supports :status => true, :restart => true, :reload => true
end
template "/etc/bind/named.conf.local" do
source "named.local.erb"
owner "root"
group "root"
- mode 0o644
- notifies :restart, "service[bind9]"
+ mode "644"
+ notifies :restart, "service[named]"
end
template "/etc/bind/named.conf.options" do
source "named.options.erb"
owner "root"
group "root"
- mode 0o644
- notifies :restart, "service[bind9]"
+ mode "644"
+ variables :ipv4_clients => ipv4_clients, :ipv6_clients => ipv6_clients
+ notifies :restart, "service[named]"
end
template "/etc/bind/db.10" do
source "db.10.erb"
owner "root"
group "root"
- mode 0o644
- notifies :reload, "service[bind9]"
+ mode "644"
+ notifies :reload, "service[named]"
end
firewall_rule "accept-dns-udp" do