summaryrefslogtreecommitdiff
path: root/manifests/zone.pp
blob: 7e1ec71e60a78cba005f9a70b14a74aa315a51f7 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
# = Definition: bind::zone
#
# Creates a valid Bind9 zone.
#
# Arguments:
#  *$is_slave*: Boolean. Is your zone a slave or a master? Default false
#  *$zone_ttl*: Time period. Time to live for your zonefile (master only)
#  *$zone_contact*: Valid contact record (master only)
#  *$zone_serial*: Integer. Zone serial (master only)
#  *$zone_refresh*: Time period. Time between each slave refresh (master only)
#  *$zone_retry*: Time period. Time between each slave retry (master only)
#  *$zone_expiracy*: Time period. Slave expiracy time (master only)
#  *$zone_ns*: Valid NS for this zone (master only)
#  *$zone_xfers*: IPs. Valid xfers for zone (master only)
#  *$zone_masters*: IPs. Valid master for this zone (slave only)
#  *$zone_origin*: The origin of the zone
#
define bind::zone (
  $zone          = $name,
  $ensure        = present,
  $is_slave      = false,
  $zone_ttl      = false,
  $zone_contact  = false,
  $zone_serial   = false,
  $zone_refresh  = '3h',
  $zone_retry    = '1h',
  $zone_expiracy = '1w',
  $zone_ns       = false,
  $zone_xfers    = false,
  $zone_masters  = false,
  $zone_origin   = false,
  $view          = false
) {

  $target = $view ? {
    false   => "/etc/bind/zones/${name}.conf",
    default => "/etc/bind/views/${view}.conf",
  }

  concat::fragment {"named.local.zone.${name}":
    ensure  => $view ? {
      false   => $ensure,
      default => absent,
    },
    target  => '/etc/bind/named.conf.local',
    content => "include \"/etc/bind/zones/${name}.conf\";\n",
    notify  => Service['bind9'],
    require => Package['bind9'],
  }

  case $ensure {
    present: {
      if $view == false {
        concat { $target:
          owner => root,
          group => root,
          mode  => '0644',
        }
      }

      concat::fragment {"bind.zones.${name}":
        ensure  => $ensure,
        target  => $target,
        notify  => Service['bind9'],
        require => Package['bind9'],
      }


      if $is_slave {
        if !$zone_masters {
          fail "No master defined for ${name}!"
        }
        Concat::Fragment["bind.zones.${name}"] {
          content => template('bind/zone-slave.erb'),
        }
## END of slave
      } else {
        if !$zone_contact {
          fail "No contact defined for ${name}!"
        }
        if !$zone_ns {
          fail "No ns defined for ${name}!"
        }
        if !$zone_serial {
          fail "No serial defined for ${name}!"
        }
        if !$zone_ttl {
          fail "No ttl defined for ${name}!"
        }

        concat {"/etc/bind/pri/${name}.conf":
          owner => root,
          group => root,
          mode  => '0644',
        }


        Concat::Fragment["bind.zones.${name}"] {
          content => template('bind/zone-master.erb'),
        }

        concat::fragment {"00.bind.${name}":
          ensure  => $ensure,
          target  => "/etc/bind/pri/${name}.conf",
          content => template('bind/zone-header.erb'),
          require => Package['bind9'],
        }

        file {"/etc/bind/pri/${name}.conf.d":
          ensure  => absent,
          mode    => '0700',
          purge   => true,
          recurse => true,
          backup  => false,
          force   => true,
        }
      }
    }
    absent: {
      file {"/etc/bind/pri/${name}.conf":
        ensure => absent,
      }
      file {"/etc/bind/zones/${name}.conf":
        ensure => absent,
      }
    }
    default: {}
  }
}