From 3714691240d6e159ed7d8b230573cf21c3b763f2 Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Mon, 6 Apr 2026 22:46:40 +1000 Subject: [PATCH] chore: enable access to dns (#460) rebuilding router, taking the chance to not mess up ip ranges. I did have 198.18.21.0/24 and 198.18.21.160/27 and 198.18.21.192/27 all on differnt interfaces. - update IP's that can reach bind view for main.unkin.net - keep both for intermediate period Reviewed-on: https://git.unkin.net/unkin/puppet-prod/pulls/460 --- hieradata/roles/infra/dns/resolver.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/hieradata/roles/infra/dns/resolver.yaml b/hieradata/roles/infra/dns/resolver.yaml index 81e5ea3..f93a823 100644 --- a/hieradata/roles/infra/dns/resolver.yaml +++ b/hieradata/roles/infra/dns/resolver.yaml @@ -6,8 +6,10 @@ hiera_include: profiles::dns::resolver::acls: acl-main.unkin.net: addresses: - - 10.10.8.1/32 + - 198.18.1.10/32 + - 198.18.2.160/27 - 198.18.21.160/27 + - 198.18.2.192/27 - 198.18.21.192/27 - 198.18.13.0/24 - 198.18.14.0/24