configure_dns.yml

---
- name: "Configure DNS Services"
  hosts: "localhost"
  connection: "local"
  vars_files:
    - '{{ "site_" + deployment_site + ".yml" }}'

  tasks:
    - name: "Create DNS VSVip"
      vmware.alb.avi_vsvip:
        avi_credentials: "{{ avi_credentials }}"
        api_context: "{{ avi_api_context | default(omit) }}"
        name: '{{ "vsvip-" + dns_config.dns_vs_name + "-" + cloud_parameters.name }}'
        cloud_ref: '{{ "/api/cloud/?name=" + cloud_parameters.name }}'
        vip:
          - enabled: true
            auto_allocate_ip: false
            ip_address:
              addr: "{{ dns_config.dns_vip }}"
              type: "V4"
            vip_id: "1"
#        dns_info:
#          - fqdn: "{{ dns_config.dns_vs_name }}"
      register: vsvip

    - name: "Create DNS Application Profile"
      vmware.alb.avi_applicationprofile:
        avi_credentials: "{{ avi_credentials }}"
        api_context: "{{ avi_api_context | default(omit) }}"
        name: Avi-DNS-Profile
        dns_service_profile:
          aaaa_empty_response: true
          admin_email: hostmaster
          dns_over_tcp_enabled: true
          ecs_stripping_enabled: true
          edns: true
          edns_client_subnet_prefix_len: 24
          error_response: DNS_ERROR_RESPONSE_NONE
          negative_caching_ttl: 30
          num_dns_ip: 1
          ttl: 30
          dns_zones: "{{ dns_config.auth_domains | default(omit) }}"
          domain_names: "{{ dns_config.valid_domains | default(omit) }}"
        type: APPLICATION_PROFILE_TYPE_DNS
      register: appprofile

    - name: "Create Virtual Service"
      vmware.alb.avi_virtualservice:
        avi_credentials: "{{ avi_credentials }}"
        api_context: "{{ avi_api_context | default(omit) }}"
        name: "{{ dns_config.dns_vs_name }}"
        vsvip_ref: "{{ vsvip.obj.url }}"
        cloud_ref: '{{ "/api/cloud/?name=" + cloud_parameters.name }}'
        application_profile_ref: "{{ appprofile.obj.url }}"
        services:
          - enable_ssl: false
            port: 53
          - enable_ssl: false
            override_network_profile_ref: "/api/networkprofile/?name=System-TCP-Proxy"
            port: 53
        network_profile_ref: "/api/networkprofile/?name=System-UDP-Per-Pkt"
        enabled: true
        se_group_ref: "/api/serviceenginegroup/?name=GSLB-Group"
        analytics_policy:
          all_headers: false
          client_insights: NO_INSIGHTS
          full_client_logs:
            duration: 0
            enabled: true
            throttle: 20
          metrics_realtime_update:
            enabled: false
      register: dnsvs

    - name: "Set System DNS VS Configuration"
      vmware.alb.avi_api_session:
        avi_credentials: "{{ avi_credentials }}"
        api_context: "{{ avi_api_context | default(omit) }}"
        http_method: "patch"
        path: "systemconfiguration"
        data:
          replace:
            dns_virtualservice_refs:
              - "{{ dnsvs.obj.url }}"