Move rndc traffic onto bind network

Having rndc on in the internal API network talking to bind instances on
the external network creates an asymmetric routing situation that
requires loosening the reverse path filter. This moves all rndc traffic
onto the same network instead, removing the asymmetry and the need for
loosening the filter.`

Change-Id: Ieb7f39406ace080f1c136441add26a5a167f0d57

deployment/designate/designate-bind-container.yaml

@@ -171,7 +171,7 @@ outputs:
                   get_param:
                     - ServiceData
                     - net_cidr_map
-                    - {get_param: [ServiceNetMap, DesignateApiNetwork]}
+                    - {get_param: [ServiceNetMap, DesignateBindNetwork]}
       docker_config:
         step_4:
           designate_backend_bind9:

deployment/designate/designate-worker-container-puppet.yaml

@@ -165,6 +165,7 @@ outputs:
             vars:
                 designate_rndc_key: {get_param: DesignateRndcKey}
                 tripleo_external_bind_servers: {get_param: DesignateExternalBindServers}
+                designate_worker_network: {get_param: [ServiceNetMap, DesignateWorkerNetwork]}
       docker_config:
         step_4:
           designate_worker:

overcloud-resource-registry-puppet.j2.yaml

@@ -418,6 +418,7 @@ parameter_defaults:
     PacemakerRemoteNetwork: {{ _service_nets.get('internal_api', 'ctlplane') }}
     DesignateApiNetwork: {{ _service_nets.get('internal_api', 'ctlplane') }}
     DesignateMdnsNetwork: {{ _service_nets.get('internal_api', 'ctlplane') }}
+    DesignateWorkerNetwork: {{ _service_nets.get('external', 'ctlplane') }}
     DesignateBindNetwork: {{ _service_nets.get('external', 'ctlplane') }}
     BINDNetwork: {{ _service_nets.get('external', 'ctlplane') }}
     EtcdNetwork: {{ _service_nets.get('internal_api', 'ctlplane') }}