From d3196a48c2e3e1a1449725ef225174e37b8a0416 Mon Sep 17 00:00:00 2001
From: Timotej Lazar <timotej.lazar@fri.uni-lj.si>
Date: Wed, 26 Mar 2025 10:35:00 +0100
Subject: [PATCH] firewall: set up resolv.conf

To use IPv6 nameserver addresses.
---
 roles/firewall/tasks/main.yml | 6 ++++++
 templates/resolv.conf.j2      | 4 ++++
 2 files changed, 10 insertions(+)
 create mode 100644 templates/resolv.conf.j2

diff --git a/roles/firewall/tasks/main.yml b/roles/firewall/tasks/main.yml
index df83109..83e748f 100644
--- a/roles/firewall/tasks/main.yml
+++ b/roles/firewall/tasks/main.yml
@@ -51,6 +51,12 @@
     mode: 0644
   notify: enable interfaces
 
+- name: Set up resolv.conf
+  template:
+    dest: /etc/resolv.conf
+    src: resolv.conf.j2
+    mode: 0644
+
 - name: Set up sysctls
   template:
     dest: /etc/sysctl.d/firewall.conf
diff --git a/templates/resolv.conf.j2 b/templates/resolv.conf.j2
new file mode 100644
index 0000000..feadf5d
--- /dev/null
+++ b/templates/resolv.conf.j2
@@ -0,0 +1,4 @@
+search {{ domain }}
+{% for server in dns6 %}
+nameserver {{ server }}
+{% endfor %}