ghp/ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix knot dns acl

Browse Source
This commit is contained in:
ace 2021-10-22 01:28:38 +03:00
parent 299eea26a8
commit cef4dce2e9
No known key found for this signature in database
GPG Key ID: 2E47CC17BA7F8CF0
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
inventory/ghp/sample/group_vars/knot_dns.yaml
View File

@ -6,7 +6,6 @@ knot_conf: |
rundir: "/run/knot"
user: knot:knot
listen: [ 0.0.0.0@53, ::@53 ]
udp-max-payload: 1232
log:
- target: syslog
@ -70,7 +69,7 @@ knot_conf: |
- domain: "{{ domain }}"
storage: "/var/lib/knot/zones/"
file: "{{ domain }}.zone"
acl: [deny_all, key_rule]
acl: [key_rule]
dnssec-signing: on
dnssec-policy: rsa
zonefile-load: difference