modules/named/manifests/init.pp

   1 class named {
   2         include munin-node::bind
   3
   4         package {
   5                 bind9: ensure => installed;
   6         }
   7
   8         exec {
   9                 "bind9 restart":
  10                         path        => "/etc/init.d:/usr/bin:/usr/sbin:/bin:/sbin",
  11                         refreshonly => true,
  12                         ;
  13         }
  14         exec {
  15                 "bind9 reload":
  16                         path        => "/etc/init.d:/usr/bin:/usr/sbin:/bin:/sbin",
  17                         refreshonly => true,
  18                         ;
  19         }
  20         file {
  21                 "/var/log/bind9":
  22                         ensure  => directory,
  23                         owner   => bind,
  24                         group   => bind,
  25                         mode    => 775,
  26                         ;
  27         }
  28         @ferm::rule { "dsa-bind":
  29                 domain          => "(ip ip6)",
  30                 description     => "Allow nameserver access",
  31                 rule            => "proto (udp tcp) mod state state (NEW) dport (53) ACCEPT"
  32         }
  33 }
  34
  35 # vim: set fdm=marker ts=8 sw=8 et: