/
infoblox_zone_auth Resource
Document toolboxDocument toolbox

infoblox_zone_auth Resource

Owned by Jyothi KP
Apr 17, 2024
3 min read

The infoblox_zone_auth resource enables you to perform the create, update, and delete operations on the forward-mapping and reverse-mapping authoritative zones in a NIOS appliance. The resource represents the ‘zone_auth’ WAPI object in NIOS.

The following table describes the parameters you can define in the infoblox_zone_auth resource block:

Parameter

Required/Optional

Description

Parameter

Required/Optional

Description

fqdn

Required

Specifies the name of the DNS zone in FQDN format.
For a reverse mapping zone, specify the IP address in CIDR format. For other zones, specify the value in FQDN format. This value can be in Unicode format.
Example:

  • Reverse-mapping zone: 10.1.0.0/24

  • Forward-mapping zone: zone1.com

Note that once the zone is created, the zone name (fqdn) cannot be updated.

view

Optional

Specifies the name of the DNS view in which the zone exists.
If a value is not specified, default is considered as the DNS view name.

zone_format

Optional

Determines the format of the DNS zone.
Possible values are: FORWARD, IPV4, IPV6.
The default value is FORWARD.

ns_group

Optional

Specifies the name server group that serves DNS for this zone.

restart_if_needed

Optional

Restarts the member service if set to true.

soa_default_ttl

Optional

Specifies the Time to Live (TTL) value of the SOA record of this zone.
This value is the number of seconds that data is cached.
The default value is 28800 seconds.

soa_expire

Optional

Defines the time, in seconds after which the secondary server stops giving out answers about the zone because the zone data is too old to be useful. The default value is one week.
The default value is 2419200 seconds.

soa_negative_ttl

Optional

Specifies the negative Time to Live (TTL) value of the SOA record of the zone. It indicates how long a secondary server can cache data for 'Does Not Respond' responses.
The default value is 900 seconds.

soa_refresh

Optional

Specifies the interval at which a secondary server sends a message to the primary server for a zone to check that its data is current, and to retrieve fresh data if it is not current.
The default value is 10800 seconds.

soa_retry

Optional

This indicates how long a secondary server must wait before attempting to recontact the primary server after a connection failure between the two servers occurs.
The default value is 3600 seconds.

comment

Optional

Describes the authoritative DNS zone.

ext_attrs

Optional

Specifies the set of NIOS extensible attributes that will be attached to the DNS view.

Example of Zone Auth Resource

//forward mapping zone, with full set of parameters
resource "infoblox_zone_auth" "zone1" {
fqdn = "test3.com"
view = "default"
zone_format = "FORWARD"
ns_group = ""
restart_if_needed = true
soa_default_ttl = 36000
soa_expire = 72000
soa_negative_ttl = 600
soa_refresh = 1800
soa_retry = 900
comment = "Zone Auth created newly"
ext_attrs = jsonencode({
Location = "AcceptanceTerraform"
})
}

//IPV4 reverse mapping zone, with full set of parameters
resource "infoblox_zone_auth" "zone2" {
fqdn = "10.0.0.0/24"
view = "default"
zone_format = "IPV4"
ns_group = "nsgroup1"
restart_if_needed = true
soa_default_ttl = 37000
soa_expire = 92000
soa_negative_ttl = 900
soa_refresh = 2100
soa_retry = 800
comment = "IPV4 reverse zone auth created"
ext_attrs = jsonencode({
Location = "TestTerraform"
})
}

 

//IPV6 reverse mapping zone, with minimal set of parameters
resource "infoblox_zone_auth" "zone3" {
fqdn = "2002:1100::/64"
view = "non_defaultview"
zone_format = "IPV6"
ns_group = "nsgroup2"
comment = "IPV6 reverse zone auth created"
ext_attrs = jsonencode({
Location = "Random TF location"
})
}

 

Related content