Ansible Role: maradns

This role installs and manages MaraDNS. It was developed and tested on Debian Stretch.

Requirements

Ansible 2.1+ (might ork with prior versions too)
Debian-based linux-distribution

Dependencies

None.

Role Variables

For installing a Zoneserver, just set the following variable true:

maradns_zoneserver: False

It is possible to change the mararc-template:

maradns_mararctemplate: mararc.j2

To bind maradns on a specific address use:

maradns_bind_address: 127.0.0.1

Changing the loglevel:

maradns_verbose_level: 1

In order to allow zone-transfer from specific ip-adresses change:

maradns_zone_transfer_acl: False

To allow recursive-dns change this:

maradns_recursive_acl: False

MaraDNS supports different csv-formats:

maradns_csv_version: 2

The following default-values can be overwritten by maradns_zone-values:

maradns_default_refresh: 3600
maradns_default_retry: 1800
maradns_default_expire: 604800
maradns_default_ttl: 600

See next section for a detailed example of maradns_zones...

maradns_zones: []

Configuration example

    maradns_zones:
      - name: example.com
        email: [email protected]
        spf:
          - { val: 'v=spf1 ip4:212.41.224.0/24 -all' }
        txt:
          - { val: 'v=spf1 ip4:212.41.224.0/24 -all' }
          - { name: 'xmas', val: 'Merry Christmas' }
        ns:
          - { val: ns1.example.com. }
          - { val: ns2.example.com. }
          - { name: 'subdom.%', val: 'ns1.%' }
        mx:
          - { prio: 5, rec: mx.example.com. }
          - { prio: 10, rec: mx2.% }
        srv:
          - { name: "_sip._udp", val: "0 0 5060 sip.%" }
        fqdn4:
          - { domain: "mx", ip: "7.7.7.7" }
        ptr:
          - { domain: "www", ip: "8.8.8.8" }
        a:
          - { ip: 8.8.8.8 }
          - { domain: 'www', ip: 8.8.8.8 }
          - { domain: 'sip', ip: 6.6.6.6 }
      # the following zone is disabled:
      - name: alice.com
        enabled: False

This example produces the following csv2-file:

/origin example.com.
% SOA % [email protected]. /serial 3600 1800 604800 600 

%	NS	ns1.example.com. 
%	NS	ns2.example.com. 
subdom.%	NS	ns1.% 

%	MX	5 mx.example.com. 
%	MX	10 mx2.% 

%	TXT	'v=spf1 ip4:212.41.224.0/24 -all' 
xmas.%	TXT	'Merry Christmas' 

%	SPF	'v=spf1 ip4:212.41.224.0/24 -all' 


%	8.8.8.8 
www.%	8.8.8.8 
sip.%	6.6.6.6 

mx.%	FQDN4	7.7.7.7 

www.%	PTR	8.8.8.8 


_sip._udp.%	SRV	0 0 5060 sip.%

DNS-Postfix(.%)

Please note, that for some variables(like 'domain' of the A/FQDN4/PTR-Record) the dns-postfix(.%) is automatically set..

Licence

GPL

Author information

This role was created in 2017 by Wolfgang Hotwagner

whotwagner / ansible-role-maradns Goto Github PK