/ home / community / community.windows / 2.2.0 / module / win_dns_zone

community.windows.win_dns_zone (2.2.0) — module

Manage Windows Server DNS Zones

Authors: Joe Zollo (@joezollo)

Install collection

Install with ansible-galaxy collection install community.windows:==2.2.0

Add to requirements.yml

  collections:
    - name: community.windows
      version: 2.2.0

Description

Manage Windows Server DNS Zones

Adds, Removes and Modifies DNS Zones - Primary, Secondary, Forwarder & Stub

Task should be delegated to a Windows DNS Server

Requirements

This module requires Windows Server 2012R2 or Newer

Usage examples

Scanned by Steampunk Spotter

- name: Ensure primary zone is present
  community.windows.win_dns_zone:
    name: wpinner.euc.vmware.com
    replication: domain
    type: primary
    state: present

Scanned by Steampunk Spotter

- name: Ensure DNS zone is absent
  community.windows.win_dns_zone:
    name: jamals.euc.vmware.com
    state: absent

Scanned by Steampunk Spotter

- name: Ensure forwarder has specific DNS servers
  community.windows.win_dns_zone:
    name: jamals.euc.vmware.com
    type: forwarder
    dns_servers:
      - 10.245.51.100
      - 10.245.51.101
      - 10.245.51.102

Scanned by Steampunk Spotter

- name: Ensure stub zone has specific DNS servers
  community.windows.win_dns_zone:
    name: virajp.euc.vmware.com
    type: stub
    dns_servers:
      - 10.58.2.100
      - 10.58.2.101

Scanned by Steampunk Spotter

- name: Ensure stub zone is converted to a secondary zone
  community.windows.win_dns_zone:
    name: virajp.euc.vmware.com
    type: secondary

Scanned by Steampunk Spotter

- name: Ensure secondary zone is present with no replication
  community.windows.win_dns_zone:
    name: dgemzer.euc.vmware.com
    type: secondary
    replication: none
    dns_servers:
      - 10.19.20.1

Scanned by Steampunk Spotter

- name: Ensure secondary zone is converted to a primary zone
  community.windows.win_dns_zone:
    name: dgemzer.euc.vmware.com
    type: primary
    replication: none
    dns_servers:
      - 10.19.20.1

Scanned by Steampunk Spotter

- name: Ensure primary DNS zone is present without replication
  community.windows.win_dns_zone:
    name: basavaraju.euc.vmware.com
    replication: none
    type: primary

Scanned by Steampunk Spotter

- name: Ensure primary DNS zone has nonsecureandsecure dynamic updates enabled
  community.windows.win_dns_zone:
    name: basavaraju.euc.vmware.com
    replication: none
    dynamic_update: nonsecureandsecure
    type: primary

Scanned by Steampunk Spotter

- name: Ensure DNS zone is absent
  community.windows.win_dns_zone:
    name: marshallb.euc.vmware.com
    state: absent

Scanned by Steampunk Spotter

- name: Ensure DNS zones are absent
  community.windows.win_dns_zone:
    name: "{{ item }}"
    state: absent
  loop:
    - jamals.euc.vmware.com
    - dgemzer.euc.vmware.com
    - wpinner.euc.vmware.com
    - marshallb.euc.vmware.com
    - basavaraju.euc.vmware.com

Inputs

name:
description:
- Fully qualified name of the DNS zone.
required: true
type: str

type:
choices:
- primary
- secondary
- stub
- forwarder
description:
- Specifies the type of DNS zone.
- When l(type=secondary), the DNS server will immediately attempt to perform a zone
transfer from the servers in this list. If this initial transfer fails, then the
zone will be left in an unworkable state. This module does not verify the initial
transfer.
type: str

state:
choices:
- present
- absent
default: present
description:
- Specifies the desired state of the DNS zone.
- When l(state=present) the module will attempt to create the specified DNS zone if
it does not already exist.
- When l(state=absent), the module will remove the specified DNS zone and all subsequent
DNS records.
type: str

dns_servers:
description:
- Specifies an list of IP addresses of the primary servers of the zone.
- DNS queries for a forwarded zone are sent to primary servers.
- Required if l(type=secondary), l(type=forwarder) or l(type=stub), otherwise ignored.
- At least one server is required.
elements: str
type: list

replication:
choices:
- forest
- domain
- legacy
- none
description:
- Specifies the replication scope for the DNS zone.
- l(replication=forest) will replicate the DNS zone to all domain controllers in the
Active Directory forest.
- l(replication=domain) will replicate the DNS zone to all domain controllers in the
Active Directory domain.
- l(replication=none) disables Active Directory integration and creates a local file
with the name of the zone.
- This is the equivalent of selecting l(store the zone in Active Directory) in the
GUI.
type: str

dynamic_update:
choices:
- secure
- none
- nonsecureandsecure
description:
- Specifies how a zone handles dynamic updates.
- Secure DNS updates are available only for Active Directory-integrated zones.
- When not specified during new zone creation, Windows will default this to l(none).
type: str

forwarder_timeout:
description:
- Specifies a length of time, in seconds, that a DNS server waits for a remote DNS
server to resolve a query.
- Accepts integer values between 0 and 15.
- If the provided value is not valid, it will be omitted and a warning will be issued.
type: int

Outputs

zone:
  description: New/Updated DNS zone parameters
  returned: When l(state=present)
  sample:
    dns_servers: null
    dynamic_update: null
    forwarder_timeout: null
    name: null
    paused: null
    replication: null
    reverse_lookup: null
    shutdown: null
    type: null
    zone_file: null
  type: dict