Afreiberger Designate Bind

  • By Drew Freiberger
  • Cloud
Channel Revision Published Runs on
latest/stable 0 18 Mar 2021
Ubuntu 18.10 Ubuntu 18.04 Ubuntu 16.04 Ubuntu 14.04
juju deploy afreiberger-designate-bind
Show information

Learn to deploy on juju >

Platform:

Ubuntu
18.10 18.04 16.04 14.04

Learn about configurations >

  • allowed_nets | string

    String containing a list of allowed networks of hosts for DNS queries, separated by semicolons: e.g., "10.0.0.0/8;172.16.0.0/12;192.168.0.0/16". The option is equivalent to "allow-query" in BIND9. If not specified, the default is to allow queries from all hosts.

  • allowed_recursion_nets | string

    String containing a list of allowed networks of hosts for recursive queries through the designate-bind servers, spearated by semicolons: e.g., "10.0.0.0/8;172.16.0.0/12;192.168.0.0/16". The option is equivalent to "allow-recursion" in BIND9. If allowed_recursion_nets is not set then allowed_nets is used if set, otherwise any will be set to allow recursive queries from all hosts.

  • debug | boolean

    Enable debug logging

  • disable-dnssec-validation | boolean

    Whether or not to disable DNSSEC validation. This may be helpful in a situation that upstream DNS servers do not support DNSSEC, and BIND9 reports "Unable to fetch DNSKEY". For production deployments, it's encouraged to keep DNSSEC enabled.

  • forwarders | string

    String containing a list of forwarders, separated by semicolons: e.g., "8.8.8.8;8.8.4.4". As non-empty forwarders option implies recursion, recursive queries will be enabled regardless of the value set in the recursion option. When using this option, ACLs should be used with allowed_nets and/or allowed_recursion_nets to prevent it from being a open resolver.

  • recursion | boolean

    Whether or not to enable recursive queries with BIND9 itself to be installed by the charm. The option is equivalent to "recursion" in BIND9. When using this option, ACLs should be used with allowed_nets and/or allowed_recursion_nets to prevent it from being a open resolver.

  • use-internal-endpoints | boolean

    Openstack mostly defaults to using public endpoints for internal communication between services. If set to True this option will configure services to use internal endpoints where possible.

  • use-syslog | boolean

    Setting this to True will allow supporting services to log to syslog.

  • verbose | boolean

    Enable verbose logging