ajout Vgarantfile DNS pour bind9

README.md

@@ -1,8 +1,9 @@
 # vagrant
 
-le 2023-01-19
+le 2023-01-29
 
 Ce dépôt héberge des **Vagrantfile** dont
+  * **dns** : Vagrantfile pour 2 serveurs **Bind9** (1 maitre et un esclave), tests **goss** chainés  
   * **docker**
   * **docker-wordpress**
   * **docker-glpi**

divers/bind/mkzone

@@ -1,14 +1,23 @@
-#!/bin/bash
-set -u
-set -e
+#!/usr/bin/env bash
+
+set -Eeuo pipefail
+trap cleanup SIGINT SIGTERM ERR EXIT
+
 # cree les fichiers de configuration bind9 
 #  - ficher de zone directe
 #  - ficher de zone inverse
 #
 
+version="1.1"
 zone="domaine.lan"
+slave=0
 
 
+cleanup() {
+  trap - SIGINT SIGTERM ERR EXIT
+  # script cleanup here
+}
+
 initialize () {
 readonly zonenet="192.168.56"
 readonly zonerev="56.168.192.in-addr.arpa"
@@ -31,17 +40,10 @@ readonly zonep="${zone}."
 readonly date=$(date +%Y%m%d00)
 }
 
-if [[ $# != 1 ]] ; then
-   echo "usage : $0 <dns-zone>"
-   exit 1
-fi 
-zone=$1
-initialize
-
-
+mkconflocal () {
+if [[ "${slave}" != 1 ]] ; then
 echo "Generation fichier named.conf.local ..."
 cat <<EOT > "named.conf.local"
-
 # fichier zone ${zone}
 # le $(date)
 
@@ -52,11 +54,31 @@ zone "${zone}" {
 
 zone "${zonerev}" {
     type master;
-    file "/etc/bind/db.${zone}.rev";  # zone inverse 
+};
+EOT
+else 
+echo "Generation fichier named.conf.local ..."
+cat <<EOT > "named.conf.local"
+# fichier zone ${zone}
+# le $(date)
+
+zone "${zone}" {
+    type slave;
+    file "/var/cache/bind/db.${zone}"; # zone directe
+    masters { ${nsip} ; };
+};
+
+zone "${zonerev}" {
+    type slave;
+    file "/var/cache/bind/db.${zone}.rev"; # zone directe
+    masters { ${nsip} ; };
 };
 
 EOT
+fi
+}
 
+mkzdirrect () {
 # fichier de zone directe 
 echo "Generation fichier de zone directe db.${zone} ..."
 cat <<EOT > "db.${zone}"
@@ -86,7 +108,9 @@ ${nsname2}         IN   A     ${nsip2}
                    IN   AAAA  2001:DB8:BEEF:100::22
 
 EOT
+}
 
+mkzreverse () {
 echo "Generation fichier de zone inverse db.${zone}.rev ..."
 cat <<EOT > "db.${zone}.rev"
 ; fichier zone inverse ${zone}
@@ -109,14 +133,111 @@ ${nsiprev2}      IN   PTR     ${nsname2}.${zone}.
 
 EOT
 
+}
+
+mkresolv () {
 echo "Generation fichier /etc/resolv.conf ..."
-cat <<EOT > "/etc/reolv.conf"
+cat <<EOT > "/etc/resolv.conf"
 
 # fichier resolv.conf ${zone}
 # le $(date)
-domain "${zone}"
-search "${zone}"
+domain ${zone}
+search ${zone}
 nameserver 127.0.0.1
 EOT
+}
 
+script_dir=$(cd "$(dirname "${BASH_SOURCE[0]}")" &>/dev/null && pwd -P)
 
+usage() {
+  cat <<EOF # remove the space between << and EOF, this is due to web plugin issue
+Usage: $(basename "${BASH_SOURCE[0]}") [-h] [-v] [-f] -p param_value zone [arg2...]
+
+Script description here.
+
+Available options:
+
+-h, --help      Print this help and exit
+-v, --verbose   Print script debug info
+-s, --slave      Some flag description
+-p, --param     Some param description
+EOF
+  exit
+}
+
+cleanup() {
+  trap - SIGINT SIGTERM ERR EXIT
+  # script cleanup here
+}
+
+setup_colors() {
+  if [[ -t 2 ]] && [[ -z "${NO_COLOR-}" ]] && [[ "${TERM-}" != "dumb" ]]; then
+    NOFORMAT='\033[0m' RED='\033[0;31m' GREEN='\033[0;32m' ORANGE='\033[0;33m' BLUE='\033[0;34m' PURPLE='\033[0;35m' CYAN='\033[0;36m' YELLOW='\033[1;33m'
+  else
+    NOFORMAT='' RED='' GREEN='' ORANGE='' BLUE='' PURPLE='' CYAN='' YELLOW=''
+  fi
+}
+
+msg() {
+  echo >&2 -e "${1-}"
+}
+
+die() {
+  local msg=$1
+  local code=${2-1} # default exit status 1
+  msg "$msg"
+  exit "$code"
+}
+
+parse_params() {
+  # default values of variables set from params
+  flag=0
+  param=''
+
+  while :; do
+    case "${1-}" in
+    -h | --help) usage ;;
+    --no-color) NO_COLOR=1 ;;
+    -s | --slave) flag=1 ;; # example flag
+#    -p | --param) # example named parameter
+#      param="${2-}"
+#      shift
+#      ;;
+    -?*) die "Unknown option: $1" ;;
+    *) break ;;
+    esac
+    shift
+  done
+
+  args=("$@")
+
+  # check required params and arguments
+#  [[ -z "${param-}" ]] && die "Missing required parameter: param"
+  [[ ${#args[@]} -eq 0 ]] && die "Missing script arguments"
+
+  return 0
+}
+
+parse_params "$@"
+setup_colors
+
+# script logic here
+
+#msg "${RED}Read parameters:${NOFORMAT}"
+#msg "- flag: ${flag}"
+#msg "- param: ${param}"
+#msg "- arguments: ${args[*]-}"
+
+zone="${args[0]-}"
+slave="${flag}"
+initialize
+if [[ ${flag} != 1 ]] ; then
+	mkconflocal
+	mkzdirect
+	mkzreverse
+	mkresolv
+else
+	mkconflocal
+	mkresolv
+fi
+exit 0

dns/Vagrantfile

@@ -0,0 +1,53 @@
+# -*- mode: ruby -*-
+# vi: set ft=ruby :
+
+Vagrant.configure("2") do |config|
+  # Base VM OS configuration.
+  config.vm.box = "debian/bullseye64"
+  config.ssh.insert_key = false
+  config.vm.synced_folder '.', '/vagrant', disabled: true
+
+  # General VirtualBox VM configuration.
+  config.vm.provider :virtualbox do |v|
+    v.memory = 512
+    v.cpus = 1
+    v.linked_clone = true
+    v.customize ["modifyvm", :id, "--natdnshostresolver1", "on"]
+    v.customize ["modifyvm", :id, "--ioapic", "on"]
+  end
+
+  # srv1 master.
+  config.vm.define "srv1" do |srv1|
+    srv1.vm.hostname = "srv1"
+    srv1.vm.network :private_network, ip: "192.168.56.10"
+    srv1.vm.provision "shell",
+      inline: "sudo apt-get update ; sudo apt-get install -y vim curl wget"
+    srv1.vm.provision "shell", path: "provision/setup-master.sh"
+  end
+
+
+  # srv2 slave.
+  config.vm.define "srv2" do |srv2|
+    srv2.vm.hostname = "srv2"
+    srv2.vm.network :private_network, ip: "192.168.56.11"
+    srv2.vm.provision "shell",
+      inline: "sudo apt-get update ; sudo apt-get install -y vim curl wget"
+    srv2.vm.provision "shell", path: "provision/setup-slave.sh"
+  end
+
+  # cli.
+  config.vm.define "cli" do |cli|
+    cli.vm.hostname = "cli"
+    cli.vm.network :private_network, ip: "192.168.56.30"
+    cli.vm.provider :virtualbox do |v|
+      v.customize ["modifyvm", :id, "--memory", 512]
+    end
+    cli.vm.provision "shell",
+      inline: "sudo apt-get update ; sudo apt-get install -y vim curl wget"
+    cli.vm.provision "ansible" do |ansible|
+      ansible.playbook = "provision/setup-cli.sh"
+    end
+  end
+
+end
+

dns/provision/setup-master.sh

@@ -0,0 +1,28 @@
+#!/bin/bash
+set -eu
+
+mondomaine=domaine.lan
+apt-get install -y  bind9 bind9-doc bind9-host 
+wget -nc https://gitea.lyc-lecastel.fr/gadmin/vagrant/raw/branch/main/divers/bind/mkzone
+bash mkzone "${mondomaine}"
+cp db.${mondomaine}* /etc/bind
+cp named.conf.local  /etc/bind
+sudo named-checkconf /etc/bind/named.conf
+sudo named-checkzone "${mondomaine}" "/etc/bind/db.${mondomaine}"
+sudo systemctl restart bind9
+host srv1
+host srv2
+host -t soa "${mondomaine}"
+host -l "${mondomaine}"
+curl -fsSL https://goss.rocks/install |sh
+goss add command "host ${mondomaine}"
+goss add command "host -t soa ${mondomaine}"
+goss add command "host -t ns ${mondomaine}"
+goss add command "host srv1.${mondomaine}"
+goss add command "host srv1"
+goss add command "host www"
+goss add command "host srv2.${mondomaine}"
+goss add command "host srv2"
+goss add command "host 192.168.56.10"
+goss add command "host 192.168.56.11"
+goss v -f tap

dns/provision/setup-slave.sh

@@ -0,0 +1,15 @@
+#!/bin/bash
+set -eu
+
+mondomaine=domaine.lan
+apt-get install -y  bind9 bind9-doc bind9-host 
+wget -nc https://gitea.lyc-lecastel.fr/gadmin/vagrant/raw/branch/main/divers/bind/mkzone
+bash mkzone -s "${mondomaine}"
+cp named.conf.local  /etc/bind
+sudo named-checkconf /etc/bind/named.conf
+sudo named-checkzone "${mondomaine}" "/etc/bind/db.${mondomaine}"
+sudo systemctl restart bind9
+host srv1
+host srv2
+host -t soa "${mondomaine}"
+host -l "${mondomaine}"