From b59170a84448f21ca15fcff4941b5694d6ede224 Mon Sep 17 00:00:00 2001
From: Ricky Elrod <codeblock@fedoraproject.org>
Date: Thu, 30 Jun 2016 08:55:17 +0000
Subject: [PATCH] allow named to bind to 8053 so stats work again (fixes
 "couldn't allocate statistics channel" in logs)

Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
---
 roles/dns/tasks/main.yml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/roles/dns/tasks/main.yml b/roles/dns/tasks/main.yml
index da9b123dc3..1a7b4b9422 100644
--- a/roles/dns/tasks/main.yml
+++ b/roles/dns/tasks/main.yml
@@ -5,6 +5,8 @@
   - bind
   - unzip
   - git
+  - libsemanage-python
+  - policycoreutils-python-utils
   tags:
   - packages
   - dns
@@ -87,6 +89,22 @@
   tags:
   - dns
 
+- name: check semanage ports
+  command: semanage port -l
+  register: semanageoutput
+  always_run: yes
+  changed_when: "1 != 1"
+  tags:
+  - dns
+
+- name: set ports so bind statistics-channel can bind to 8053
+  command: semanage port -a -t dns_port_t -p tcp 8053
+  when: semanageoutput.stdout.find("8053") == -1
+  notify:
+  - restart named
+  tags:
+  - dns
+
 - name: named service
   service: name=named state=started enabled=yes
   tags: