Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

API & Integration, DevOps,NetOps,SecOps


Using ansible nios_zone to create new auth rev mapping zone with /27

New Member
Posts: 1
3646     0

Trying to create a new auth reverse mapping zone via ansible module "nios_zone". In this case the CIDR is The zone creates as "" - clearly not what I wanted as the range should be 161-190. Best I can tell I need to be passing the right range as a "RFC2317 prefix",  however this field does not appear to exist to the ansible module per the documentation. (not listed).


How does one accomplish this using ansible?







Re: Using ansible nios_zone to create new auth rev mapping zone with /27

Posts: 109
3647     0

What you're running into here is the design of the DNS protocol itself. DNS zones can only be 'classful', meaning that they fall under the 8, 16 or 24 bit boundaries.


To support environments that are working with smaller subnets, RFC 2317 is used. This allows for classless zones to be delegated out to other servers and uses a prefix and CNAME records to enable this. I do not believe the Ansible modules have been built to support this so you may need to use a custom module to support RFC 2317 enabled configurations.


For reference: (this requires a valid login to the Infoblox Support Portal).



Showing results for 
Search instead for 
Did you mean: 

Recommended for You