From 7b3fed95f91a6877a88758558babf1bc549eeffc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Hugo=20H=C3=B6rnquist?= <hugo@lysator.liu.se>
Date: Fri, 9 Jun 2023 14:38:51 +0200
Subject: Place each zone and key declaration in own file.

This removes the dependency on concat, and allows for non-purging
configurations.
---
 templates/named.conf.epp | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

(limited to 'templates/named.conf.epp')

diff --git a/templates/named.conf.epp b/templates/named.conf.epp
index 9fe10b1..5a57452 100644
--- a/templates/named.conf.epp
+++ b/templates/named.conf.epp
@@ -1,3 +1,7 @@
+#
+# File managed by Puppet. Local changes WILL be overwritter',
+#
+
 options {
   directory "<%= $dns::directory %>";
   forwarders { 8.8.8.8; 8.8.4.4; };
@@ -9,3 +13,14 @@ options {
 
   allow-recursion { localnets; localhost; };
 };
+
+<%# Equivalent to what rndc-confgen emits %>
+include "<%= $dns::rndc_key_file %>";
+
+controls {
+  inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { "rndc-key"; };
+};
+
+<%# Include remaining stuff %>
+include "<%= $dns::zoneconf_dir %>/*.conf";
+include "<%= $dns::keyconf_dir %>/*.conf";
-- 
cgit v1.2.3