DNS related changes

- Added hostname provisioning - Added nsswitch.conf provisioning - Added systemd-resolved provisioning
2025-03-06 02:49:11 +01:00 · 2025-03-06 02:49:11 +01:00 · 8d8ae8f892
commit 8d8ae8f892
parent 98afd559fc
18 changed files with 120 additions and 25 deletions
--- a/templates/network/hosts.j2
+++ b/templates/network/hosts.j2
@ -0,0 +1,12 @@
+# {{ ansible_managed }}
+
+127.0.0.1 	localhost
+127.0.1.1 	{{ hostname }}
+{{ lan_ip }} 	{{ domain_name }} {{ hostname }}
+{{ vpn_listen_address }}    {{ vpn_domain }}
+{{ vpn_media_listen_address }}    {{ vpn_media_domain }}
+
+# The following lines are desirable for IPv6 capable hosts
+#::1     localhost ip6-localhost ip6-loopback
+#ff02::1 ip6-allnodes
+#ff02::2 ip6-allrouters
--- a/templates/network/resolved.j2
+++ b/templates/network/resolved.j2
@ -0,0 +1,37 @@
+# {{ ansible_managed }}
+#
+#  This file is part of systemd.
+#
+#  systemd is free software; you can redistribute it and/or modify it under the
+#  terms of the GNU Lesser General Public License as published by the Free
+#  Software Foundation; either version 2.1 of the License, or (at your option)
+#  any later version.
+#
+# Entries in this file show the compile time defaults. Local configuration
+# should be created by either modifying this file, or by creating "drop-ins" in
+# the resolved.conf.d/ subdirectory. The latter is generally recommended.
+# Defaults can be restored by simply deleting this file and all drop-ins.
+#
+# Use 'systemd-analyze cat-config systemd/resolved.conf' to display the full config.
+#
+# See resolved.conf(5) for details.
+
+[Resolve]
+# Some examples of DNS servers which may be used for DNS= and FallbackDNS=:
+# Cloudflare: 1.1.1.1#cloudflare-dns.com 1.0.0.1#cloudflare-dns.com 2606:4700:4700::1111#cloudflare-dns.com 2606:4700:4700::1001#cloudflare-dns.com
+# Google:     8.8.8.8#dns.google 8.8.4.4#dns.google 2001:4860:4860::8888#dns.google 2001:4860:4860::8844#dns.google
+# Quad9:      9.9.9.9#dns.quad9.net 149.112.112.112#dns.quad9.net 2620:fe::fe#dns.quad9.net 2620:fe::9#dns.quad9.net
+#DNS=
+#FallbackDNS=
+#Domains=
+#DNSSEC=no
+#DNSOverTLS=no
+#MulticastDNS=yes
+#LLMNR=yes
+#Cache=yes
+#CacheFromLocalhost=no
+#DNSStubListener=yes
+DNSStubListenerExtra={{ vpn_listen_address }}
+DNSStubListenerExtra={{ vpn_media_listen_address }}
+#ReadEtcHosts=yes
+#ResolveUnicastSingleLabel=no
--- a/templates/network/wireguard/default/mobile.wireguard.j2
+++ b/templates/network/wireguard/default/mobile.wireguard.j2
@ -2,6 +2,7 @@

 [Interface]
 Address={{ vpn_peers.mobile.ip }}/24
+DNS={{ vpn_listen_address }}
 PrivateKey={{ lookup("file", vpn_peers.mobile.private_key_source_path) }}

 [Peer]
--- a/templates/network/wireguard/media/mobile_1.wireguard.j2
+++ b/templates/network/wireguard/media/mobile_1.wireguard.j2
@ -2,6 +2,7 @@

 [Interface]
 Address={{ vpn_media_peers.mobile_peer_1.ip }}/24
+DNS={{ vpn_media_listen_address }}
 PrivateKey={{ lookup('file', vpn_media_peers.mobile_peer_1.private_key_source_path) }}

 [Peer]
--- a/templates/network/wireguard/media/mobile_2.wireguard.j2
+++ b/templates/network/wireguard/media/mobile_2.wireguard.j2
@ -2,6 +2,7 @@

 [Interface]
 Address={{ vpn_media_peers.mobile_peer_2.ip }}/24
+DNS={{ vpn_media_listen_address }}
 PrivateKey={{ lookup('file', vpn_media_peers.mobile_peer_2.private_key_source_path) }}

 [Peer]
--- a/templates/network/wireguard/media/tv.wireguard.j2
+++ b/templates/network/wireguard/media/tv.wireguard.j2
@ -2,6 +2,7 @@

 [Interface]
 Address={{ vpn_media_peers.tv.ip }}/24
+DNS={{ vpn_media_listen_address }}
 PrivateKey={{ lookup('file', vpn_media_peers.tv.private_key_source_path) }}

 [Peer]