metadata.json

{
  "name": "bind9-chroot",
  "description": "Installs/Configures bind9 with chroot and hiding CHAOS INFORMATION",
  "long_description": "#Description\n\nThis cookbook takes care of the installation and configuration of BIND9. You're able to define some global variables and manage your zonefiles via data bags (json example below).\nIt also supports automatic serial number generation and automatic resource records for chef nodes (see optional json in example below)\nNo DNSSEC, no configurable logging, no rndc shell operations or other safety checks (named-checkconf, etc.).\n\nIf you want to help feel free to contribute (either here or at [Mike Adolphs's cookbook](https://github.com/fooforge/chef-cookbook_bind9), which this is based on)!\n\n**DISCLAIMER**:  \nIt works on my setup!\n\n#Requirements\n\nPlatform:\n\n* Debian\n* Ubuntu\n* Centos\n\n#Attributes\n\nIt's so much better if you take a look at the ```attributes/default.rb``` file for the full list, but this is a brief summary:\n\n* **node[:bind9][:enable_ipv6]**       - Enables BIND to listen on an IPv6 address. Default is: On\n* **node[:bind9][:allow_query]**       - Allow clients to query the nameserver. Default is: none\n* **node[:bind9][:allow_recursion]**   - Allow recursive name resolution. Default is: none (to prevent DNS cache poisoning)\n* **node[:bind9][:allow_update]**      - Allow dynamic DNS updates. Default is: none\n* **node[:bind9][:allow_transfer]**    - Allow zone transfers globally. Default is: none\n* **node[:bind9][:enable_forwarding]** - Enables forwarding of requests. Default is: No forwarding\n* **node[:bind9][:forwarders]**        - Array for forwarding DNS. Default is: 8.8.4.4 and 8.8.8.8 (Google DNS)\n* **node[:bind9][:chroot_dir]** - Enables running in a chroot'ed environment. Default is: no chroot'ing\n* **node[:bind9][:disclose]** - Enables disclosing CHAOS information. Default is: false\n\n\n#Usage\n\nAdd ```\"recipe[bind9-chroot]\"``` to your run list. If you want to use BIND9 for serving domains you need add the appropriate data via data bags (example below).\nPlease note that the data bag's structure is mandatory except: \n\n* TTL for DNS records (if you decide to leave it empty, the global TTL will take over).\n* IP for DNS records (if not available, ```node['ipaddress']``` will be used).\n\nIn order to run a a chroot'ed Bind9 server, set the ```node[:bind9][:chroot_dir]``` to the desired chroot path and optionally the ```node[:bind9][:disclose]``` attributes.\n\nTo use this cookbook with Chef Solo, add ```\"recipe[chef-solo-search]\"``` to your run list, and create the data bags either manually or using the ```knife-solo_data_bag``` gem.\n\n#Examples\n\nTo create and view the data bags:\n\n    $ knife data bag create zones\n    $ knife data bag create zones exampleDOTcom\n    $ ... do something ...\n    $ knife data bag from file zones exampleDOTcom.json\n\nAn example of a data bag with mail records and specific IPs.\n\n    {\n      \"id\": \"exampleDOTcom\",\n      \"domain\": \"example.com\",\n      \"type\": \"master\",\n      \"allow_transfer\": [ \"8.8.4.4\",\n                          \"8.8.8.8\" ],\n      \"zone_info\": {\n        \"global_ttl\": 300,\n        \"soa\": \"ns.example.com.\",\n        \"contact\": \"user.example.com.\",\n        \"nameserver\": [ \"ns.example.com.\",\n                        \"ns.example.net.\" ],\n        \"mail_exchange\": [{\n          \"host\": \"ASPMX.L.GOOGLE.COM.\",\n          \"priority\": 10\n        },{\n          \"host\": \"ALT1.ASPMX.L.GOOGLE.COM.\",\n          \"priority\": 20\n        },{\n          \"host\": \"ALT2.ASPMX.L.GOOGLE.COM.\",\n          \"priority\": 20\n        },{\n          \"host\": \"ASPMX2.GOOGLEMAIL.COM.\",\n          \"priority\": 30\n        },{\n          \"host\": \"ASPMX3.GOOGLEMAIL.COM.\",\n          \"priority\": 30\n        },{\n          \"host\": \"ASPMX4.GOOGLEMAIL.COM.\",\n          \"priority\": 30\n        },{\n          \"host\": \"ASPMX5.GOOGLEMAIL.COM.\",\n          \"priority\": 30\n        }],\n        \"records\": [{\n          \"name\": \"www\",\n          \"type\": \"A\",\n          \"ip\": \"127.0.0.1\"\n        },{\n          \"name\": \"img\",\n          \"ttl\": 30,\n          \"type\": \"A\",\n          \"ip\": \"127.0.0.1\"\n        },{\n          \"name\": \"mail\",\n          \"type\": \"CNAME\",\n          \"ip\": \"ghs.google.com.\"\n        }]\n      }\n    }\n\nAn example of a data bag with mail records and specific IPs.\n\n    {\n      \"id\": \"exampleDOTcom\",\n      \"domain\": \"example.com\",\n      \"type\": \"master\",\n      \"allow_transfer\": [],\n      \"zone_info\": {\n        \"global_ttl\": 300,\n        \"soa\": \"ns.example.com.\",\n        \"contact\": \"user.example.com.\",\n        \"nameserver\": [ \"ns.example.com.\",\n                        \"ns.example.net.\" ],\n        \"mail_exchange\": [],\n        \"records\": [{\n          \"name\": \"www\",\n          \"type\": \"A\"\n         },{\n          \"name\": \"img\",\n          \"ttl\": 30,\n          \"type\": \"A\"\n        },{\n          \"name\": \"mail\",\n          \"type\": \"CNAME\"\n        }]\n      }\n    }\n    \n#Contributions\n\nThis cookbook is derived from [Mike Adolphs's](https://github.com/fooforge/chef-cookbook_bind9), and specific contributions can be tracked via git.",
  "maintainer": "Tnarik Innael",
  "maintainer_email": "tnarik@lecafeautomatique.co.uk",
  "license": "Apache 2.0",
  "platforms": {
    "ubuntu": ">= 0.0.0",
    "debian": ">= 0.0.0",
    "centos": ">= 0.0.0"
  },
  "dependencies": {
  },
  "recommendations": {
  },
  "suggestions": {
  },
  "conflicting": {
  },
  "providing": {
  },
  "replacing": {
  },
  "attributes": {
  },
  "groupings": {
  },
  "recipes": {
  },
  "version": "0.4.1"
}