Commit graph

616 commits

Author SHA1 Message Date
Yohaï-Eliel BERREBY
aae7e0120a unbound: drop verbosity but log SERVFAILs
TODO: less frequent log rotation because of decreased log volume
2020-05-02 18:06:58 +02:00
Yohaï-Eliel BERREBY
c54e8f5d67 unbound: smarter logging
- stop using journald, write to /var/log/unbound/
- set up frequent log rotation for the huge log files
we are producing
2020-05-02 17:13:01 +02:00
Yohaï-Eliel BERREBY
1dca5d2259 unbound: use handlers
Only restart unbound if the configuration
was actually updated.
2020-05-02 16:43:44 +02:00
Yohaï-Eliel BERREBY
b94c62d710 unbound-control: no certificates for local use 2020-05-02 16:37:21 +02:00
Yohaï-Eliel BERREBY
3695a3d771 unbound: attempt to fix spurious blacklisting 2020-04-28 23:14:43 +02:00
Yohaï-Eliel BERREBY
b4482b6d3b unbound: configure unbound-control 2020-04-28 20:21:47 +02:00
Yohaï-Eliel BERREBY
bac131791b unbound: bump verbosity up to 3
Some users are having issues resolving *.auro.re domains from our
network, and the bug does not show itself reliably. Increased verbosity
should help us pinpoint its source.
2020-04-28 20:13:56 +02:00
Yohaï-Eliel BERREBY
ded5f38aec unbound: name set_fact tasks 2020-04-18 17:36:25 +02:00
7234d90fae Merge branch 'dns' into 'aurore-dev'
Finalisation du déploiement d'unbound

See merge request aurore/ansible!46
2020-04-18 17:10:22 +02:00
Yohaï-Eliel BERREBY
662452065f dhcp: remove Cloudflare from backup DNS
and rename variable, since these are not technically
upstream DNS servers
(unbound will ask the root servers, not these)
2020-04-18 17:06:38 +02:00
Yohaï-Eliel BERREBY
12022389c4 hosts: enable dhcp deployment on fleming 2020-04-18 16:57:18 +02:00
Yohaï-Eliel BERREBY
a0651d7703 unbound: bind to the right addresses on backup hosts 2020-04-18 16:56:34 +02:00
Yohaï-Eliel BERREBY
b57fa6e356 dhcp: use backup DNS servers too 2020-04-18 16:56:34 +02:00
Yohaï-Eliel BERREBY
22166bc69b unbound: log to journalctl 2020-04-18 16:56:17 +02:00
Yohaï-Eliel BERREBY
bfc7d542df hosts: add all DNS VMs from fleming and pacaterie 2020-04-18 15:43:39 +02:00
Yohaï-Eliel BERREBY
1777d0e154 unbound: log to /var/log/unbound.log, errors only 2020-04-18 15:42:31 +02:00
Yohaï-Eliel BERREBY
7275ebda47 dhcp: ask clients to use our DNS servers 2020-04-18 15:39:32 +02:00
chirac
59b9059116 Merge branch 'dns' into 'aurore-dev'
Déploiement basique de serveur DNS récursif

See merge request aurore/ansible!45
2020-04-13 19:08:32 +02:00
Yohaï-Eliel BERREBY
f05e92dc5e unbound: remove unchecked configuration keys 2020-04-13 18:42:02 +02:00
Yohaï-Eliel BERREBY
b3712ed335 unbound: initial deployment 2020-04-13 18:41:12 +02:00
Yohaï-Eliel BERREBY
9b043d95d3 dhcp: don't touch pacaterie yet 2020-04-06 19:06:53 +02:00
Yohaï-Eliel BERREBY
8fee0857c1 re2o-service: force clone git repository 2020-04-06 19:03:38 +02:00
Yohaï-Eliel BERREBY
8579b99b2e dhcp: cron.d entry + let main.py restart the server 2020-04-06 19:03:10 +02:00
Yohaï-Eliel BERREBY
6cce62850d dhcp: configure log rotation 2020-04-06 17:58:14 +02:00
Yohaï-Eliel BERREBY
7347829494 tackle logs 2020-04-06 17:48:56 +02:00
Yohaï-Eliel BERREBY
51fdb89940 extract dhcp-failover.conf into separate file 2020-04-06 17:28:04 +02:00
Yohaï-Eliel BERREBY
d323b78c16 fix bogus dhcpd config
- move failover peer declaration to beginning of file
- set split only on primary
- fix re2o-service hostname
- add /etc/default/isc-dhcp-server
2020-04-06 17:22:50 +02:00
Yohaï-Eliel BERREBY
e760f9ad91 re2o-service: fix hostname 2020-04-06 16:53:59 +02:00
Yohaï-Eliel BERREBY
89a0dc57ab run corresponding re2o-service on DHCP servers 2020-04-06 16:49:14 +02:00
Yohaï-Eliel BERREBY
01439c2388 fix network.yml syntax 2020-04-06 16:37:10 +02:00
F/Poutre
7ed34f79bd Update network.yml 2020-04-06 16:31:32 +02:00
F/Poutre
fc21a5fa3d Update base.yml 2020-04-06 16:30:52 +02:00
Yohaï-Eliel BERREBY
34b448faec dhcp: implement failover peer configuration 2020-04-06 14:41:34 +02:00
Yohaï-Eliel BERREBY
2a0a2e2ac6 dhcp: fix silly mix-ups 2020-04-06 13:20:52 +02:00
Yohaï-Eliel BERREBY
6b369d5b28 fix ProxyJump in README 2020-04-05 19:51:03 +02:00
Yohaï-Eliel BERREBY
709e4614c2 suppression d'une déclaration DNS redondante 2020-04-05 19:04:03 +02:00
Yohaï-Eliel BERREBY
e6b2f80b49 templatisation de la config dhcpd
non encore testé
2020-04-05 18:44:37 +02:00
fpoutre
40e915a7e0 happy little mistakes 2020-03-22 19:06:38 +01:00
fpoutre
0e61fcff90 added support for ldap-replicas in the base.yml for edc and gs 2020-03-22 18:43:57 +01:00
fpoutre
23f1b7a4a1 added support for edc and gs in ldap replica backup configuration 2020-03-22 18:42:00 +01:00
fpoutre
b7b32dc496 modified the master_ldap_uri to use a ndd 2020-02-20 19:08:09 +01:00
fpoutre
c0692c9ea8 added ldap-replica support for ldap-clients of pacaterie and fleming 2020-02-20 18:42:57 +01:00
fpoutre
3a399bd04c added ldap-replica support for ldap-clients of pacaterie and fleming 2020-02-20 18:42:34 +01:00
fpoutre
73a22ba77f added group ldap-replica to hosts 2020-02-20 16:51:56 +01:00
fpoutre
08fcf49e62 modified mainly hosts to match new servers and vms 2020-02-20 16:23:10 +01:00
fpoutre
d9f2d06c44 added aurore's hosts 2020-02-15 21:33:57 +01:00
Alexandre Iooss
a44c7064d2
Add more logic 2019-12-05 14:08:08 +01:00
Alexandre Iooss
5061a029e0
Do not ask why, it was not there 2019-12-05 14:07:48 +01:00
Alexandre Iooss
b60ca7111a
Mini useful script 2019-12-05 14:07:13 +01:00
Alexandre Iooss
639fbbcd28
test séminaire 2019-12-02 20:33:29 +01:00