halfway working idm server and laptop hostclasses

author: Cullum Smith <cullum@sacredheartsc.com> 2024-08-02 19:10:39 -0400
committer: Cullum Smith <cullum@sacredheartsc.com> 2024-08-02 19:10:39 -0400
commit: cbcd022f302adc39ecb89fba6faf72e68184c0e0 (patch)
tree: a5ab154e08fa3c4fa110b09d3475736c66840c8b /vars/hostclass
parent: ceb339370d7a0cc4a83fe54103a650dfb3f72261 (diff)
download: infrastructure-cbcd022f302adc39ecb89fba6faf72e68184c0e0.tar.gz
2 files changed, 11 insertions, 0 deletions
diff --git a/vars/hostclass/idm_server b/vars/hostclass/idm_server
new file mode 100644
index 0000000..eec6d1c
--- /dev/null
+++ b/vars/hostclass/idm_server
@@ -0,0 +1,9 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh ldap ldaps domain kerberos-sec kerberos-adm'
+allowed_udp_ports='domain kerberos-sec kpasswd'
+
+ssh_authorized_keys_user=nobody
+
+unbound_blocklists="\
+https://raw.githubusercontent.com/hagezi/dns-blocklists/main/unbound/pro.plus.blacklist.conf"
diff --git a/vars/hostclass/roadwarrior_laptop b/vars/hostclass/roadwarrior_laptop
new file mode 100644
index 0000000..99f8b9c
--- /dev/null
+++ b/vars/hostclass/roadwarrior_laptop
@@ -0,0 +1,2 @@
+#!/bin/sh
+resolvers=$bootstrap_resolvers
author	Cullum Smith <cullum@sacredheartsc.com>	2024-08-02 19:10:39 -0400
committer	Cullum Smith <cullum@sacredheartsc.com>	2024-08-02 19:10:39 -0400
commit	cbcd022f302adc39ecb89fba6faf72e68184c0e0 (patch)
tree	a5ab154e08fa3c4fa110b09d3475736c66840c8b /vars/hostclass
parent	ceb339370d7a0cc4a83fe54103a650dfb3f72261 (diff)
download	infrastructure-cbcd022f302adc39ecb89fba6faf72e68184c0e0.tar.gz