From 16b5e17c198da48382157d2dd59aaff8c07793e4 Mon Sep 17 00:00:00 2001
From: Stephen Smoogen <ssmoogen@redhat.com>
Date: Wed, 20 Jul 2022 09:45:04 -0400
Subject: [PATCH] Fix DNS issues in IAD2

Problem: Fedora Infrastructure has used various DNS servers in
PHX2. Those no longer exist. This is causing breakage in DNS and many
other internal services.

Fix: Work with Red Hat IT
     - to get new DNS servers which are infoblox devices.
     - get firewall rules fixed to that
     - update named.conf to have new ips
     - remove old ips which no longer exist.

Signed-off-by: Stephen Smoogen <ssmoogen@redhat.com>
---
 roles/dns/files/named.conf | 26 +++++++++++++-------------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/roles/dns/files/named.conf b/roles/dns/files/named.conf
index e9df836f77..908da089ff 100644
--- a/roles/dns/files/named.conf
+++ b/roles/dns/files/named.conf
@@ -22,7 +22,7 @@ acl "ns_redhat" { 66.187.233.210; 209.132.183.22; 209.132.183.30; 209.132.183.2;
 //
 acl "iad2net" { 10.3.160.0/19; 10.16.0.0/24; };
 acl "rdu2net" { 172.31.1.0/24; 172.31.2.0/24; };
-acl "rh-slaves" { 10.5.30.78; 10.11.5.70; 10.5.30.45; 10.5.30.46; };
+acl "rh-slaves" { 10.11.5.70; };
 acl "rh" { 10.0.0.0/8; };
 //
 options {
@@ -101,7 +101,7 @@ view "IAD2" {
      zone "redhat.com" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "projectatomic.io" {
@@ -140,31 +140,31 @@ view "IAD2" {
      zone "3.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "4.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "5.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "186.132.209.in-addr.arpa." {
            type forward;
            forward only;
-           forwarders { 10.39.144.11; 10.5.19.1; 10.11.191.1; };
+           forwarders { 10.39.144.11; 10.69.144.11; 10.11.191.1; };
      };
 
      zone "phx2.fedoraproject.org" {
@@ -322,7 +322,7 @@ view "RDU2" {
      zone "redhat.com" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "projectatomic.io" {
@@ -361,31 +361,31 @@ view "RDU2" {
      zone "3.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "4.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "5.10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "10.in-addr.arpa" {
            type forward;
            forward only;
-           forwarders { 10.5.26.20; 10.5.26.21; };
+           forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; };
      };
 
      zone "186.132.209.in-addr.arpa." {
            type forward;
            forward only;
-           forwarders { 10.39.144.11; 10.5.19.1; 10.11.191.1; };
+           forwarders { 10.39.144.11; 10.69.144.11; 10.11.191.1; };
      };
 
      zone "phx2.fedoraproject.org" {