--- - hosts: dns vars: firewall: - { port: 53, ipv: "v4", proto: "tcp" } - { port: 53, ipv: "v4", proto: "udp" } - { port: 53, ipv: "v6", proto: "tcp" } - { port: 53, ipv: "v6", proto: "udp" } systemd: services: - { name: "systemd-resolved", state: stopped } - { name: "unbound", enabled: true, state: reloaded } apt_packages: - { package: "unbound", state: present } unbound: port: 53 listen: ipv4: "0.0.0.0" ipv6: "::0" forward: # NOTE: Specify in the specific order as you want them to be used - { host: "dns.quad9.net", port: 853, ipa: "2620:fe::fe" } - { host: "dns.quad9.net", port: 853, ipa: "9.9.9.9" } - { host: "cloudflare-dns.com", port: 853, ipa: "2606:4700:4700::1111" } - { host: "cloudflare-dns.com", port: 853, ipa: "1.1.1.1" } internal: local: SRV: - { service: "gitea", port: "{{ global.dev.gitea.port.http }}", group: "git" } - { service: "seedown", port: "{{ global.seedbox.darkhttpd.port }}", group: "seedbox" } - { service: "transmission", port: "{{ global.seedbox.transmission.port }}", group: "seedbox" } - { service: "grafana", port: "{{ global.monitoring.grafana.port }}", group: "monitoring" } A: # Wish these would support SRV, would ease a lot of configuration management - { service: "postgres", group: "database" } - { service: "redis", group: "database" } - { service: "influxdb", group: "database" } remote: - { service: "homepage", port: "80", domain: "rxhome.s3-website.eu-central-1.amazonaws.com." } public: SRV: - { service: "mumble", proto: "tcp", host: "redxen.eu", port: 2250 } - { service: "minecraft", proto: "tcp", host: "redxen.eu", port: 25565 } TXT: - { name: "_amazonses.", content: "PAdK+hmtSCYH2lDwBdiCfJDxyhBj2UHJtwQzL7+kh50="} - { name: "", content: "brave-ledger-verification=1f77ffecf7da410af2f4eeb5953ae13c5ee9ddfdfed5cae63458e63003b97444" } CNAME: - { name: "6jxdve2mevelrsc4lrp5ymhu2pku67v4._domainkey.", pointer: "6jxdve2mevelrsc4lrp5ymhu2pku67v4.dkim.amazonses.com" } - { name: "jqo2wv2wek7sh26vmc2tdzc4gdco6uou._domainkey.", pointer: "jqo2wv2wek7sh26vmc2tdzc4gdco6uou.dkim.amazonses.com" } - { name: "edzxe6qpinwhafgwlt6b44yarhhfn3xl._domainkey.", pointer: "edzxe6qpinwhafgwlt6b44yarhhfn3xl.dkim.amazonses.com" } group: A: - { domain: "dev-stats", group: "frontend" } - { domain: "dev-gitea", group: "frontend" } - { domain: "dev-transmission", group: "frontend" } - { domain: "dev-sd", group: "frontend" } roles: - apt - unbound - systemd - firewall