aruhier.ansible_role_unbound

Panoramica Versioni Approfondimenti

Ansible Role: Unbound

Build Status Ansible Role Ansible Role Ansible Quality Score

This is an Ansible role to install and set up Unbound.

Role Default Variables

Unbound has many options, but only the default values are shown here. Some variables may change based on your operating system.

unbound_conf_path: "/etc/unbound/unbound.conf"
unbound_enable_service: true
unbound_service_name: "unbound"
unbound_packages:
  - "unbound"

### Server Settings ###

unbound_verbosity: 1
unbound_username: "unbound"
unbound_directory: "/etc/unbound"

unbound_port: 53
unbound_num_threads: 1
unbound_interfaces:
  - 127.0.0.1
  - ::1
unbound_outgoing_interfaces: []
unbound_do_ip4: "yes"
unbound_do_ip6: "yes"
unbound_do_udp: "yes"
unbound_do_tcp: "yes"

# List of strings that affect how policies are interpreted
unbound_outgoing_policies: []

unbound_access_control: []
unbound_access_control_tag: []
unbound_access_control_tag_action: []
unbound_access_control_tag_data: []
unbound_access_control_view: []

unbound_private_addresses: []
unbound_private_domains: []
unbound_domains_insecure: []
unbound_do_not_query_addresses: []
unbound_local_zones: []
unbound_local_datas: []
unbound_local_data_ptrs: []
unbound_local_zone_tags: []
unbound_local_zone_overrides: []

unbound_trust_anchors: []
unbound_trusted_keys_files: []

### Remote Control Settings ###

unbound_control_enable: "no"
unbound_control_interface: []

### Stub, Forward Zones and Others ###

unbound_rpz_zones: []  # list of dictionaries
unbound_stub_zones: []  # list of dictionaries
unbound_forward_zones: []  # list of dictionaries

# If a key inside a dictionary is a list, it will be repeated for each value.
# Useful for multiple forward addresses for a zone:
#   Example:
#     unbound_forward_zones:
#       - {name: "test.tld", "forward-addr": ["192.0.2.5", "192.0.2.6"]}

unbound_views: []  # list of strings, as options can have multiple values

Check the Unbound documentation for a full list of options.

To use an option not listed in the defaults, add unbound_ at the start and replace dashes with underscores. If an option can appear multiple times in unbound.conf, it is usually turned into a list for the template, and should be included in the default variables.

Look in the unbound.conf.j2 template to see if the option is there. If not, please open an issue so I can add it. New options from recent Unbound releases may not be included.

If you set unbound_logfile, use-syslog will automatically be set to "no" as it would overwrite your custom logfile setting. Reference: unbound documentation.

Dependencies

None

Authors

  • Anthony Ruhier (aruhier)
  • Jonathan Wright (neonardo1)

License

This tool is licensed under the BSD license. Feel free to report bugs, ask questions, or submit pull requests!

Informazioni sul progetto

Install and configure Unbound

role dns networking system unbound
Installa
ansible-galaxy install aruhier.ansible_role_unbound
GitHub repository
13 stelle
19 fork
1 problemi aperti
Licenza
bsd-2-clause
Download
749
Proprietario