cronekorkn/bundlewrap
1
0
Fork 0
Code Issues Pull requests 8 Projects Releases Wiki Activity

wip

Browse source
This commit is contained in:
mwiegand 2021-06-20 12:57:16 +02:00
parent 946b6c439a
commit c1ad072f8e
6 changed files with 99 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
bundles/bind/files/db
View file

@ -13,9 +13,13 @@ $TTL 600
% for record in sorted(records, key=lambda r: (r['name'], r['type'], r['value'])):
% for part in (record['value'][i:i+255] for i in range(0, len(record['value']), 255)):
${record['name'].rjust(column_width('name', records))} \
${record['name'].ljust(column_width('name', records))} \
IN \
${record['type'].ljust(column_width('type', records))} \
"${part}"
% if record['type'] == 'TXT':
"${part}"
% else:
${part}
% endif
% endfor
% endfor

8
bundles/bind/files/named.conf.local Normal file
View file

@ -0,0 +1,8 @@
% for zone in zones:
zone "${zone}" {
type master;
file "/var/lib/bind/db.${zone}";
};
% endfor
// include "/etc/bind/zones.rfc1918";

45
bundles/bind/items.py
View file

@ -1,16 +1,59 @@
directories['/var/lib/bind'] = {
'purge': True,
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
}
files['/etc/default/bind9'] = {
'source': 'defaults',
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
}
files['/etc/bind/named.conf.local'] = {
'content_type': 'mako',
'context': {
'zones': sorted(node.metadata.get('bind/zones')),
},
'owner': 'root',
'group': 'bind',
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
}
for zone, records in node.metadata.get('bind/zones').items():
files[f'/var/lib/bind/db.{zone}'] = {
'group': 'bind',
'source': 'db',
'content_type': 'mako',
'context': {
'records': records,
}
},
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
}
svc_systemd['bind9'] = {}
actions['named-checkconf'] = {
'command': 'named-checkconf -z',
'needs': [
'svc_systemd:bind9',
]
}

42
bundles/bind/metadata.py
View file

@ -1,3 +1,6 @@
from ipaddress import ip_interface
defaults = {
'apt': {
'packages': {
@ -10,22 +13,40 @@ defaults = {
}
@metadata_reactor.provides(
'bind/zones',
)
def dns(metadata):
return {
'dns': {
'ns.sublimity.de': {
'A': [
str(ip_interface(metadata.get('network/ipv4')).ip)
],
'AAAA': [
str(ip_interface(metadata.get('network/ipv6')).ip)
]
},
},
}
@metadata_reactor.provides(
'bind/zones',
)
def collect_records(metadata):
zones = metadata.get('bind/zones')
zones = {}
for other_node in repo.nodes:
for fqdn, records in other_node.metadata.get('dns').items():
matching_zones = sorted(
filter(
lambda potential_zone: fqdn.endswith(potential_zone),
zones
metadata.get('bind/zones').keys()
),
key=len,
)
if matching_zones:
zone = matching_zones[0]
else:
@ -46,3 +67,18 @@ def collect_records(metadata):
'zones': zones,
},
}
@metadata_reactor.provides(
'bind/zones',
)
def ns_records(metadata):
return {
'bind': {
'zones': {
zone: [
{'name': '', 'type': 'NS', 'value': f"{metadata.get('bind/domain')}."},
] for zone in metadata.get('bind/zones').keys()
},
},
}

2
bundles/mailserver/metadata.py
View file

@ -45,7 +45,7 @@ def dns(metadata):
for domain in metadata.get('mailserver/domains'):
dns[domain] = {
'MX': [domain],
'MX': [f'5 {domain}'],
'TXT': ['v=spf1 a mx -all'],
}

1
nodes/htz.mails.py
View file

@ -15,6 +15,7 @@
],
'metadata': {
'bind': {
'domain': 'ns.sublimity.de',
'zones': {
'mail2.sublimity.de': [],
'sublimity.de': [],