🚧: create temp stuff for UTC/DNSSEC Kata

group_vars/nsdservers.yml

@@ -6,7 +6,6 @@ zones:
   - name: libertus.eu
   - name: mateu.be
   - name: monder.ch
-    parking: true
   - name: nintendojo.fr
   - name: nintendojofr.com
   - name: nouvelempire.net

roles/nsd/templates/zones/mateu.be.zone.j2

@@ -69,14 +69,16 @@ nsd-master1.ext		IN A 51.158.245.194
 nsd-master1-v4.ext		IN A 51.158.245.194
 nsd-master1.ext		IN AAAA 2001:bc8:5090:79b:dc00:ff:fe25:ad75
 nsd-master1-v6.ext		IN AAAA 2001:bc8:5090:79b:dc00:ff:fe25:ad75
+nsd2.ext		IN A 51.158.245.181
+nsd2.ext		IN AAAA 2001:bc8:5090:98b:dc00:ff:fe29:cc5f
 patoche.ext		IN A 51.159.156.201
 patoche.ext		IN AAAA 2001:bc8:1210:2efc:dc00:ff:fe4e:ef53
-utcsto1.dmz		IN A 10.233.212.30
+sto1.utc.dmz		IN A 10.233.212.30
-utcsto1.dmz		IN AAAA 2a01:e0a:9bd:2811::30
+sto1.utc.dmz		IN AAAA 2a01:e0a:9bd:2811::30
-utcapp1.dmz		IN A 10.233.212.31
+app1.utc.dmz		IN A 10.233.212.31
-utcapp1.dmz		IN AAAA 2a01:e0a:9bd:2811::31
+app1.utc.dmz		IN AAAA 2a01:e0a:9bd:2811::31
-utcapp2.dmz		IN A 10.233.212.32
+app2.utc.dmz		IN A 10.233.212.32
-utcapp2.dmz		IN AAAA 2a01:e0a:9bd:2811::32
+app2.utc.dmz		IN AAAA 2a01:e0a:9bd:2811::32
 pt1.dmz		IN A 82.66.135.228
 pt1.dmz		IN AAAA 2a01:e0a:9bd:2811::20
 pt-runner1.ext		IN AAAA 2001:bc8:1d90:b77:dc00:ff:fe17:bc83

roles/nsd/templates/zones/monder.ch.zone.j2

@@ -0,0 +1,20 @@
+$TTL 86400
+@		IN SOA {{ groups['master_nsdservers'] | first }}. tech.ovh.net. (
+				{{ dns_serial }}; timestamp serial number
+				28800; Refresh
+				7200; Retry
+				864000; Expire
+				86400; Min TTL
+			)
+
+{% for server in groups['nsdservers'] %}
+@		IN NS {{ server }}.
+{% endfor %}
+
+$ORIGIN {{ item.name }}.
+@		IN CAA 0 issue ";"
+@		IN MX 0 .
+@		IN TXT "v=spf1 -all"
+@		IN TXT "spf2.0/mfrom -all"
+_dmarc		IN TXT "v=DMARC1;p=reject;pct=100;sp=reject;aspf=s;"
+dans		IN NS nsd2.ext.mateu.be.