Difference between revisions of "DNS"
From Fixme.ch
| Line 5: | Line 5: | ||
== Configurations == | == Configurations == | ||
| − | /etc/bind/named.conf.options | + | * /etc/bind/named.conf.local |
| + | <syntaxhighlight lang="bash"> | ||
| + | acl externals { | ||
| + | 62.220.136.2; #Nimag | ||
| + | 62.220.136.9; | ||
| + | } | ||
| + | |||
| + | view "external" { | ||
| + | match-clients { any; }; | ||
| + | recursion no; | ||
| + | #zone "fixme.ch" { | ||
| + | # type master; | ||
| + | # file "/etc/bind/zones/fixme.ch.db"; | ||
| + | # allow-transfer { internals; externals; }; | ||
| + | # notify yes; | ||
| + | #}; | ||
| + | #zone "135.220.62.in-addr.arpa" { | ||
| + | # type master; | ||
| + | # file "/etc/bind/zones/135.220.62.in-addr.arpa"; | ||
| + | # allow-transfer { internals; externals; }; | ||
| + | # notify no; | ||
| + | #}; | ||
| + | } | ||
| + | </syntaxhighlight> | ||
| + | |||
| + | * /etc/bind/named.conf.options | ||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
options { | options { | ||
Revision as of 21:16, 14 March 2012
Description
fixme.ch zone management with Bind9
- Part of the Internal_Server foo.fixme.ch
Configurations
- /etc/bind/named.conf.local
acl externals { 62.220.136.2; #Nimag 62.220.136.9; } view "external" { match-clients { any; }; recursion no; #zone "fixme.ch" { # type master; # file "/etc/bind/zones/fixme.ch.db"; # allow-transfer { internals; externals; }; # notify yes; #}; #zone "135.220.62.in-addr.arpa" { # type master; # file "/etc/bind/zones/135.220.62.in-addr.arpa"; # allow-transfer { internals; externals; }; # notify no; #}; }
- /etc/bind/named.conf.options
options { directory "/var/cache/bind"; auth-nxdomain no; # conform to RFC1035 listen-on-v6 { any; }; allow-transfer { none; }; allow-query { 127.0.0.1; }; allow-recursion { none; }; version none; };
- /etc/bind/named.conf.log
logging { channel update_debug { file "/var/log/update_debug.log" versions 3 size 100k; severity debug; print-severity yes; print-time yes; }; channel security_info { file "/var/log/security_info.log" versions 1 size 100k; severity info; print-severity yes; print-time yes; }; channel bind_log { file "/var/log/bind.log" versions 3 size 1m; severity info; print-category yes; print-severity yes; print-time yes; }; category default { bind_log; }; category lame-servers { null; }; category update { update_debug; }; category update-security { update_debug; }; category security { security_info; }; };
