[CORD-2161]
Fix DNS server startup issues with unbound/nsd
Change-Id: I4f1a00da40d10e093077e22bdf95643e11f34836
(cherry picked from commit 503aabf6a2827ba4be820d33e1c30b5ae188f536)
diff --git a/roles/dns-unbound/defaults/main.yml b/roles/dns-unbound/defaults/main.yml
index 4ccf5de..a3f4aa7 100644
--- a/roles/dns-unbound/defaults/main.yml
+++ b/roles/dns-unbound/defaults/main.yml
@@ -15,8 +15,8 @@
# dns-unbound/defaults/main.yml
-unbound_conf: "/var/unbound/etc/unbound.conf"
-unbound_group: "wheel"
+unbound_conf: "/etc/unbound/unbound.conf"
+unbound_group: "unbound"
unbound_listen_on_default: False
diff --git a/roles/dns-unbound/handlers/main.yml b/roles/dns-unbound/handlers/main.yml
index 36a3cc0..858b7c0 100644
--- a/roles/dns-unbound/handlers/main.yml
+++ b/roles/dns-unbound/handlers/main.yml
@@ -1,4 +1,4 @@
-
+---
# Copyright 2017-present Open Networking Foundation
#
# Licensed under the Apache License, Version 2.0 (the "License");
@@ -13,9 +13,11 @@
# See the License for the specific language governing permissions and
# limitations under the License.
-
----
-#file: roles/dns-unbound/handlers/main.yml
+# dns-unbound/handlers/main.yml
- name: restart-unbound
- service: name=unbound state=restarted
+ service:
+ name: unbound
+ enabled: yes
+ state: restarted
+
diff --git a/roles/dns-unbound/tasks/main.yml b/roles/dns-unbound/tasks/main.yml
index a57e9c5..e33a167 100644
--- a/roles/dns-unbound/tasks/main.yml
+++ b/roles/dns-unbound/tasks/main.yml
@@ -1,4 +1,4 @@
-
+---
# Copyright 2017-present Open Networking Foundation
#
# Licensed under the Apache License, Version 2.0 (the "License");
@@ -13,16 +13,16 @@
# See the License for the specific language governing permissions and
# limitations under the License.
+# dns-unbound/tasks/main.yml
----
-#file: roles/dns-unbound/tasks/main.yml
-
-- name: Include OS specific vars
- include_vars: "{{ ansible_os_family }}.yml"
-
-# Debian specific installation
-- include: unbound-Debian.yml
- when: ansible_os_family == 'Debian'
+- name: Install unbound
+ apt:
+ name: "{{ item }}"
+ state: present
+ update_cache: yes
+ cache_valid_time: 3600
+ with_items:
+ - unbound
- name: create unbound.conf from template
template:
@@ -35,3 +35,6 @@
notify:
- restart-unbound
+- name: flush unbound handlers
+ meta: flush_handlers
+
diff --git a/roles/dns-unbound/tasks/unbound-Debian.yml b/roles/dns-unbound/tasks/unbound-Debian.yml
deleted file mode 100644
index 6dd309e..0000000
--- a/roles/dns-unbound/tasks/unbound-Debian.yml
+++ /dev/null
@@ -1,27 +0,0 @@
-
-# Copyright 2017-present Open Networking Foundation
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-
----
-
-- name: Install unbound
- apt:
- name={{ item }}
- state=present
- update_cache=yes
- cache_valid_time=3600
- with_items:
- - unbound
-
diff --git a/roles/dns-unbound/vars/Debian.yml b/roles/dns-unbound/vars/Debian.yml
deleted file mode 100644
index a65c31c..0000000
--- a/roles/dns-unbound/vars/Debian.yml
+++ /dev/null
@@ -1,21 +0,0 @@
-
-# Copyright 2017-present Open Networking Foundation
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-
----
-
-unbound_conf: "/etc/unbound/unbound.conf"
-unbound_group: "unbound"
-