An Ansible playbook to deploy many DNS Cache server with Bind9 backend and DNSCrypt-Proxy
With this playbook you can have a bind9 as you DNS Server with DNSCrypt backend (forwarder) to secure and protect your DNS queries.
- Small-Medium Business offices
- Private networks
You can use this sample inventory file:
[dns-server]
192.168.1.20 public_ip=192.168.1.20
192.168.1.21 public_ip=192.168.1.21
With this playbook:
---
- hosts: dns-server
roles:
- { role: CryptoCachedDNS }
then run the ansible command:
ansible-playbook -i inventory main.yml --become
Before running the playbook, Change the variables properly:
./CryptoCachedDNS/defaults/main.yml
---
trusted_network: 127.0.0.1; 192.168.0.0/16; 172.16.0.0/12;
max_cache: 1800
max_ncache: 1800