fix: allow transfer for external-dns (#456)

external-dns required axfr support to remove old records. add the
capability for the externaldns tsig key.

Reviewed-on: #456
This commit was merged in pull request #456.
This commit is contained in:
2026-03-18 20:00:22 +11:00
parent 029c998797
commit 1d41d07b2d
+3 -3
View File
@@ -28,8 +28,8 @@ class externaldns::master inherits externaldns {
dynamic => true, dynamic => true,
allow_updates => ['key externaldns-key'], allow_updates => ['key externaldns-key'],
allow_transfers => empty($slave_ips) ? { allow_transfers => empty($slave_ips) ? {
true => [], true => ['key externaldns-key'],
false => ['dns-slaves'], false => ['key externaldns-key','dns-slaves'],
}, },
ns_notify => !empty($slave_ips), ns_notify => !empty($slave_ips),
also_notify => $slave_ips, also_notify => $slave_ips,
@@ -42,4 +42,4 @@ class externaldns::master inherits externaldns {
recursion => false, recursion => false,
zones => $externaldns::k8s_zones, zones => $externaldns::k8s_zones,
} }
} }