robin.thoni
/
docker-dhcp-server


			
				
					
						
						
							12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758
							logging {
  category default {
    default_stderr;
  };
};

key "key-internal" {
    algorithm HMAC-MD5;
    secret "{{ salt['pillar.get']("model:dns:tsig:keys:internal") }}";
};

key "key-external" {
    algorithm HMAC-MD5;
    secret "{{ salt['pillar.get']("model:dns:tsig:keys:external") }}";
};

key "key-rndc" {
    algorithm HMAC-MD5;
    secret "{{ salt['pillar.get']("model:dns:tsig:keys:rndc") }}";
};

acl "acl-internal" {
  !key "key-external";
  key "key-internal";
  192.168.0.0/16;
  172.16.0.0/12;
  10.0.0.0/8;
  localhost;
};

acl "acl-external" {
  !key "key-internal";
  key "key-external";
  any;
};

include "/etc/bind/config/masters.conf";

options {
  directory "/var/cache/bind";
  dnssec-validation auto;
  auth-nxdomain no;
  listen-on-v6 {
    none;
  };
  masterfile-format text;
  notify explicit;
};

controls {
  inet 127.0.0.1 allow {
    localhost;
  } keys {
    "key-rndc";
  };
};

include "/etc/bind/named.conf.local";