diff options
author | Micah Anderson <micah@riseup.net> | 2013-01-16 13:08:24 -0500 |
---|---|---|
committer | Micah Anderson <micah@riseup.net> | 2013-01-16 13:08:24 -0500 |
commit | 4e0021dede8aae43760b3e9a4b2317c3ed4c1e0d (patch) | |
tree | c089b4373a1f8eca2b7586e4941eaa4d54008a04 /puppet/modules/site_config/files | |
parent | 06757bf230dc616832cf2eb560ee9c1570cc1a07 (diff) |
Swtich from bind9 as the local caching resolver to unbound. This will enable us
to do tor lookups over DNS on servers, if tor services are defined.
To do this, we remove the bind9 configurations from site_config::resolvconf.pp
and replace it with site_config::caching_resolver with a basic unbound
configuration that can be used everywhere. The unbound configuration enables a
/etc/unbound/conf.d directory for additional config snippits that can be dropped
in from other places. This will be used for setting up different interfaces in
the vpn gateway, for example.
There will be a set of transition package/file absent blocks to clean up
providers.
Diffstat (limited to 'puppet/modules/site_config/files')
-rw-r--r-- | puppet/modules/site_config/files/bind9 | 8 | ||||
-rw-r--r-- | puppet/modules/site_config/files/named.conf.options | 6 |
2 files changed, 0 insertions, 14 deletions
diff --git a/puppet/modules/site_config/files/bind9 b/puppet/modules/site_config/files/bind9 deleted file mode 100644 index 50d8ed14..00000000 --- a/puppet/modules/site_config/files/bind9 +++ /dev/null @@ -1,8 +0,0 @@ -# managed by puppet - -# run resolvconf? -RESOLVCONF=no - -# startup options for the server -OPTIONS="-u bind -4" - diff --git a/puppet/modules/site_config/files/named.conf.options b/puppet/modules/site_config/files/named.conf.options deleted file mode 100644 index 47df6c5d..00000000 --- a/puppet/modules/site_config/files/named.conf.options +++ /dev/null @@ -1,6 +0,0 @@ -options { - allow-query { 127.0.0.1; }; - allow-transfer { none; }; - listen-on { 127.0.0.1; }; -}; - |