chef/cookbooks/bind9/templates/default/named.conf.erb
// Managed by Crowbar.
// Do not edit.
options {
directory "/etc/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
<% if !@forwarders.nil? and !@forwarders.empty? -%>
forwarders {
<% @forwarders.each do |i| -%>
<%= i %>;
<% end -%>
};
forward only;
<% end -%>
<% if !@allow_transfer.nil? and !@allow_transfer.empty? -%>
allow-transfer {
<% @allow_transfer.each do |at| -%>
<%= at %>;
<% end -%>
};
notify yes;
also-notify {
<% @allow_transfer.each do |at| -%>
<%= at %>;
<% end -%>
};
<% else -%>
allow-transfer {
"none";
};
<% end -%>
auth-nxdomain no; # conform to RFC1035
listen-on { <%= @ipaddresses.join("; ") %>; };
listen-on-v6 { <%= @ip6addresses.join("; ") %>; };
minimal-responses yes;
allow-new-zones yes;
};
include "/etc/bind/named.conf.default-zones";
include "/etc/bind/named.conf.crowbar";
include "/etc/bind/named.conf.local";
include "/etc/named.d/rndc-access.conf";
<% if @enable_designate -%>
include "/etc/named.d/designate-rndc-access.conf";
<% end -%>