b8aeacb54d
According to the unbound.conf manpage this value should no longer be used. It creates lookaside queries for DNSSEC which introduces more servers which can fail on us. This is no longer necessary beacuse root servers have the appropriate DNSSEC configuration now. Follow the unbound suggestion and make unbound more reliable by avoiding DLV entirely. Change-Id: Ib6c0cf83bfdeb1eb2f6f22951fd44ce9839cab92
nodepool-base
Tasks to deal with image metadata and other Nodepool cloud specific tweaks.
Environment variables:
NODEPOOL_SCRIPTDIR path to copy Nodepool scripts from. It is set automatically by Nodepool. For local hacking override it to where your scripts are. Default: $TMP_MOUNT_PATH/opt/git/openstack-infra/project-config/nodepool/scripts.
The image should have the unbound DNS resolver package installed, the nodepool-base element then configures it to forward DNS queries to: NODEPOOL_STATIC_NAMESERVER_V6, default: 2620:0:ccc::2 NODEPOOL_STATIC_NAMESERVER_V4, default: 208.67.222.222 NODEPOOL_STATIC_NAMESERVER_V6_FALLBACK, default: 2001:4860:4860::8888 NODEPOOL_STATIC_NAMESERVER_V4_FALLBACK, default: 8.8.8.8.