diff options
| author | Matthieu Saulnier <fantom@fedoraproject.org> | 2023-10-22 08:22:17 +0200 |
|---|---|---|
| committer | Matthieu Saulnier <fantom@fedoraproject.org> | 2023-10-22 08:22:17 +0200 |
| commit | 49ac6e43271e26490909e7f137ad68a716b4392c (patch) | |
| tree | 9b619488ff094313fe00646fc5b8b8c1d1ebd2f7 | |
| parent | a8415c2c1fd7bcc0a8a1bb3eb43f0be8dc1b21cc (diff) | |
| download | playbooks-ansible-49ac6e43271e26490909e7f137ad68a716b4392c.tar.gz playbooks-ansible-49ac6e43271e26490909e7f137ad68a716b4392c.tar.xz playbooks-ansible-49ac6e43271e26490909e7f137ad68a716b4392c.zip | |
Cleanup CAA records in DNS zone files and update agate's systemd unit file
4 files changed, 4 insertions, 7 deletions
diff --git a/roles/dnsserver/files/admin.casperlefantom.net.zone b/roles/dnsserver/files/admin.casperlefantom.net.zone index 71dd181..622d3fe 100644 --- a/roles/dnsserver/files/admin.casperlefantom.net.zone +++ b/roles/dnsserver/files/admin.casperlefantom.net.zone @@ -1,6 +1,6 @@ $ttl 86400 admin.casperlefantom.net. IN SOA nse.admin.casperlefantom.net. hostmaster.casperlefantom.net. ( -2023091601 ; serial number +2023091602 ; serial number 7200 ; refresh 3600 ; retry 1209600 ; expire @@ -17,7 +17,6 @@ admin.casperlefantom.net. IN SOA nse.admin.casperlefantom.net. hostmaster.casper @ IN TXT "v=spf1 redirect=casperlefantom.net" @ IN CAA 0 issue "letsencrypt.org" @ IN CAA 0 issue "Matthieu Saulnier Root CA" -@ IN CAA 0 issuewild "Matthieu Saulnier Root CA" blackbird IN A 82.65.125.114 blackbird IN AAAA 2a01:e0a:473:35e0::fed0:a:7 diff --git a/roles/dnsserver/files/casperlefantom.net.zone b/roles/dnsserver/files/casperlefantom.net.zone index 8d298a3..0370d7a 100644 --- a/roles/dnsserver/files/casperlefantom.net.zone +++ b/roles/dnsserver/files/casperlefantom.net.zone @@ -1,6 +1,6 @@ $ttl 86400 casperlefantom.net. IN SOA nse.casperlefantom.net. hostmaster.casperlefantom.net. ( -2023091601 ; serial number +2023091602 ; serial number 7200 ; refresh 3600 ; retry 1209600 ; expire @@ -42,7 +42,6 @@ _443._tcp IN TLSA 2 0 1 67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e7 @ IN TXT "v=spf1 mx mx:casperlefantom.net mx:saulnier.im -all" @ IN CAA 0 issue "letsencrypt.org" @ IN CAA 0 issue "Matthieu Saulnier Root CA" -@ IN CAA 0 issuewild "Matthieu Saulnier Root CA" nsa.home IN A 192.168.7.7 diff --git a/roles/dnsserver/files/home.casperlefantom.net.zone b/roles/dnsserver/files/home.casperlefantom.net.zone index 5d22e65..0cc5696 100644 --- a/roles/dnsserver/files/home.casperlefantom.net.zone +++ b/roles/dnsserver/files/home.casperlefantom.net.zone @@ -1,6 +1,6 @@ $ttl 86400 home.casperlefantom.net. IN SOA nsf.home.casperlefantom.net. hostmaster.casperlefantom.net. ( -2023091601 ; serial number +2023091602 ; serial number 7200 ; refresh 3600 ; retry 1209600 ; expire @@ -17,7 +17,6 @@ home.casperlefantom.net. IN SOA nsf.home.casperlefantom.net. hostmaster.casperle @ IN AAAA 2a01:e0a:473:35e0::fed0:a:7 @ IN TXT "v=spf1 redirect=casperlefantom.net" @ IN CAA 0 issue "Matthieu Saulnier Root CA" -@ IN CAA 0 issuewild "Matthieu Saulnier Root CA" nsa IN A 192.168.7.7 nsa IN AAAA 2a01:e0a:473:35e0::fed0:a:7 diff --git a/roles/reverseproxy/templates/agate.service.j2 b/roles/reverseproxy/templates/agate.service.j2 index 478c5a3..34a9b67 100644 --- a/roles/reverseproxy/templates/agate.service.j2 +++ b/roles/reverseproxy/templates/agate.service.j2 @@ -9,7 +9,7 @@ After=network-online.target syslog.target auditd.service Type=simple User=gemini Group=gemini -ExecStart=/usr/local/bin/agate-server --content /home/gemini/gemini/content --addr [{{ ansible_default_ipv6.address }}]:1965 --addr {{ ansible_default_ipv4.address }}:1965 --certs /home/gemini/gemini/certificate/ --hostname {{ redirection }} --lang fr-FR +ExecStart=/usr/local/bin/agate-server --content /home/gemini/gemini/content --addr [{{ ansible_default_ipv6.address }}]:1965 --certs /home/gemini/gemini/certificate/ --hostname {{ redirection }} --lang fr-FR [Install] WantedBy=default.target |