From 593880316179c1be3655193a774827a1a3178a70 Mon Sep 17 00:00:00 2001
From: alex <alex@pdp7.net>
Date: Sat, 21 Jan 2023 23:02:22 +0100
Subject: Manage dnsmasq on h1

* Add support for FreeIPA DNS entries
---
 .../puppet/modules/freeipa/manifests/dnsmasq.pp        | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 personal_infra/puppet/modules/freeipa/manifests/dnsmasq.pp

(limited to 'personal_infra/puppet/modules/freeipa/manifests')

diff --git a/personal_infra/puppet/modules/freeipa/manifests/dnsmasq.pp b/personal_infra/puppet/modules/freeipa/manifests/dnsmasq.pp
new file mode 100644
index 00000000..2185fa56
--- /dev/null
+++ b/personal_infra/puppet/modules/freeipa/manifests/dnsmasq.pp
@@ -0,0 +1,18 @@
+class freeipa::dnsmasq {
+  $services = [
+    {'service' => '_kerberos-master', 'protocol' => '_tcp', 'port' => '88'},
+    {'service' => '_kerberos-master', 'protocol' => '_udp', 'port' => '88'},
+    {'service' => '_kerberos', 'protocol' => '_tcp', 'port' => '88'},
+    {'service' => '_kerberos', 'protocol' => '_udp', 'port' => '88'},
+    {'service' => '_kpasswd', 'protocol' => '_tcp', 'port' => '464'},
+    {'service' => '_kpasswd', 'protocol' => '_udp', 'port' => '464'},
+    {'service' => '_ldap', 'protocol' => '_tcp', 'port' => '389'},
+  ]
+
+  file {'/etc/dnsmasq.d/ipa':
+    notify => Service['dnsmasq'],
+    content => epp('freeipa/dnsmasq', {'services' => $services,
+                                       'freeipa' => lookup("freeipa"),
+                                      }),
+  }
+}
-- 
cgit v1.2.3