From 111d781a38cceca68d63b660cff9e1c6308862be Mon Sep 17 00:00:00 2001 From: Paul Date: Sat, 23 Nov 2024 07:20:04 +0100 Subject: [PATCH 1/2] updated systemd state --- states/systemd/defaults.yaml | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/states/systemd/defaults.yaml b/states/systemd/defaults.yaml index 437492f..51618f9 100644 --- a/states/systemd/defaults.yaml +++ b/states/systemd/defaults.yaml @@ -10,6 +10,17 @@ systemd: networkd: Network: SpeedMeter: "yes" + resolved: + Resolve: + DNS: 9.9.9.9 149.112.112.112 2620:fe::fe 2620:fe::9 + Domains: paulbsd.com + LLMNR: "no" + MulticastDNS: "no" + DNSSEC: "no" + DNSOverTLS: "no" + DNSStubListener: "yes" + Cache: "yes" + ReadEtcHosts: "yes" presets: ssh: - enable ssh.service From 9a02f2b4b68c4fdd7bbdd32482dcbc41f5da9c99 Mon Sep 17 00:00:00 2001 From: Paul Date: Sat, 23 Nov 2024 07:37:03 +0100 Subject: [PATCH 2/2] updated vector state --- states/vector/templates/vector.service.j2 | 1 + 1 file changed, 1 insertion(+) diff --git a/states/vector/templates/vector.service.j2 b/states/vector/templates/vector.service.j2 index 12fde3a..c44a6a9 100644 --- a/states/vector/templates/vector.service.j2 +++ b/states/vector/templates/vector.service.j2 @@ -13,6 +13,7 @@ ExecStartPre=/usr/local/bin/vector validate ExecStart=/usr/local/bin/vector ExecReload=/usr/local/bin/vector validate ExecReload=/bin/kill -HUP $MAINPID +ExecStop=/bin/kill $MAINPID Restart=always AmbientCapabilities=CAP_NET_BIND_SERVICE EnvironmentFile=-/etc/default/vector