Difference between revisions of "DNS"

From Fixme.ch
Jump to: navigation, search
(Configurations)
Line 8: Line 8:
 
<syntaxhighlight lang="bash">
 
<syntaxhighlight lang="bash">
 
acl externals {
 
acl externals {
     62.220.136.2; #Nimag 1
+
    127.0.0.1;
     195.70.27.21; #Nimag 2
+
     62.220.136.2; #Nimag1
}
+
     195.70.27.21; #Nimag2
 +
};
  
 
view "external" {
 
view "external" {
Line 19: Line 20:
 
         file "/etc/bind/zones/fixme.ch.db";
 
         file "/etc/bind/zones/fixme.ch.db";
 
         allow-transfer { externals; };
 
         allow-transfer { externals; };
         allow-query { 127.0.0.1; 62.220.136.2; 195.70.27.21; };
+
         allow-query { externals; };
 
         notify yes;
 
         notify yes;
 
     };
 
     };
}
+
};
 
</syntaxhighlight>
 
</syntaxhighlight>
  

Revision as of 20:35, 16 March 2012

Description

 fixme.ch zone management with Bind9

Configurations

  • /etc/bind/named.conf.local
acl externals {
    127.0.0.1;
    62.220.136.2; #Nimag1
    195.70.27.21; #Nimag2
};
 
view "external" {
    match-clients { any; };
    recursion no;
    zone "fixme.ch" {
        type master;
        file "/etc/bind/zones/fixme.ch.db";
        allow-transfer { externals; };
        allow-query { externals; };
        notify yes;
    };
};
  • /etc/bind/named.conf.options
options {
    directory "/var/cache/bind";
    auth-nxdomain no;    # conform to RFC1035
    listen-on-v6 { any; };
    allow-transfer { none; };
    allow-query { 127.0.0.1; };
    allow-recursion { none; };
    version none;
};
  • /etc/bind/named.conf.log
logging {
    channel update_debug {
        file "/var/log/update_debug.log" versions 3 size 100k;
        severity debug;
        print-severity  yes;
        print-time      yes;
    };
    channel security_info {
        file "/var/log/security_info.log" versions 1 size 100k;
        severity info;
        print-severity  yes;
        print-time      yes;
    };
    channel bind_log {
        file "/var/log/bind.log" versions 3 size 1m;
        severity info;
        print-category  yes;
        print-severity  yes;
        print-time      yes;
    };
 
    category default { bind_log; };
    category lame-servers { null; };
    category update { update_debug; };
    category update-security { update_debug; };
    category security { security_info; };
};

Participant