Merge "Implement "allowed_nets" option"
This commit is contained in:
commit
bad85f12e9
|
@ -1,6 +1,6 @@
|
||||||
options:
|
options:
|
||||||
allowed_nets:
|
allowed_nets:
|
||||||
default: "p2p"
|
default: ""
|
||||||
type: string
|
type: string
|
||||||
description: |
|
description: |
|
||||||
String containing a list of allowed networks, separated by semicolons: e.g., "10.172.0.0/16;10.10.0.0/18"
|
String containing a list of allowed networks, separated by semicolons: e.g., "10.172.0.0/16;10.10.0.0/18"
|
||||||
|
|
|
@ -1,3 +1,9 @@
|
||||||
|
{% if options.allowed_nets -%}
|
||||||
|
acl allow_query {
|
||||||
|
{{ options.allowed_nets }};
|
||||||
|
};
|
||||||
|
|
||||||
|
{% endif -%}
|
||||||
options {
|
options {
|
||||||
directory "/var/cache/bind";
|
directory "/var/cache/bind";
|
||||||
|
|
||||||
|
@ -29,4 +35,7 @@ options {
|
||||||
statistics-file "/var/cache/bind/named.stats";
|
statistics-file "/var/cache/bind/named.stats";
|
||||||
zone-statistics yes;
|
zone-statistics yes;
|
||||||
allow-notify { {{ dns_backend.control_ips }}; };
|
allow-notify { {{ dns_backend.control_ips }}; };
|
||||||
|
{% if options.allowed_nets -%}
|
||||||
|
allow-query { allow_query; };
|
||||||
|
{% endif -%}
|
||||||
};
|
};
|
||||||
|
|
Loading…
Reference in New Issue