diff --git a/ansible/deploy_home.yml b/ansible/deploy_home.yml
index b2a9f26..a5d7830 100644
--- a/ansible/deploy_home.yml
+++ b/ansible/deploy_home.yml
@@ -4,6 +4,7 @@
   - vars/vault.yml
   roles:
   - role: common
+  - role: ddns
   - role: ssl
   - role: http
   - role: drone
diff --git a/ansible/roles/ddns/meta/main.yml b/ansible/roles/ddns/meta/main.yml
new file mode 100644
index 0000000..fdda41b
--- /dev/null
+++ b/ansible/roles/ddns/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+  - role: common
diff --git a/ansible/roles/ddns/tasks/awsddns.yml b/ansible/roles/ddns/tasks/awsddns.yml
new file mode 100644
index 0000000..5c31708
--- /dev/null
+++ b/ansible/roles/ddns/tasks/awsddns.yml
@@ -0,0 +1,18 @@
+---
+- name: create awsddns server container
+  diff: false
+  docker_container:
+    name: awsddns
+    image: bdebyl/awsddns
+    pull: true
+    recreate: true
+    restart: true
+    restart_policy: on-failure
+    restart_retries: 3
+    env:
+      AWS_ZONE_ID: "{{ aws_zone_id }}"
+      AWS_ZONE_HOSTNAME: "{{ aws_zone_hostname }}"
+      AWS_ACCESS_KEY_ID: "{{ aws_access_key_id }}"
+      AWS_SECRET_ACCESS_KEY: "{{ aws_secret_access_key }}"
+      AWS_DEFAULT_REGION: "{{ aws_default_region }}"
+  tags: ddns
diff --git a/ansible/roles/ddns/tasks/main.yml b/ansible/roles/ddns/tasks/main.yml
new file mode 100644
index 0000000..4857114
--- /dev/null
+++ b/ansible/roles/ddns/tasks/main.yml
@@ -0,0 +1,2 @@
+---
+- import_tasks: awsddns.yml
diff --git a/ansible/vars/vault.yml b/ansible/vars/vault.yml
index 6088c9d..e844e71 100644
Binary files a/ansible/vars/vault.yml and b/ansible/vars/vault.yml differ