DNS

From Fixme.ch
Revision as of 19:16, 14 March 2012 by Rorist (Talk | contribs)

Jump to: navigation, search

Description

 fixme.ch zone management with Bind9

Configurations

  • /etc/bind/named.conf.local
acl externals {
    62.220.136.2; #Nimag
    62.220.136.9;
}
 
view "external" {
    match-clients { any; };
    recursion no;
    #zone "fixme.ch" {
    #    type master;
    #    file "/etc/bind/zones/fixme.ch.db";
    #    allow-transfer { internals; externals; };
    #    notify yes;
    #};
    #zone "135.220.62.in-addr.arpa" {
    #    type master;
    #    file "/etc/bind/zones/135.220.62.in-addr.arpa";
    #    allow-transfer { internals; externals; };
    #    notify no;
    #};
}
  • /etc/bind/named.conf.options
options {
    directory "/var/cache/bind";
    auth-nxdomain no;    # conform to RFC1035
    listen-on-v6 { any; };
    allow-transfer { none; };
    allow-query { 127.0.0.1; };
    allow-recursion { none; };
    version none;
};
  • /etc/bind/named.conf.log
logging {
    channel update_debug {
        file "/var/log/update_debug.log" versions 3 size 100k;
        severity debug;
        print-severity  yes;
        print-time      yes;
    };
    channel security_info {
        file "/var/log/security_info.log" versions 1 size 100k;
        severity info;
        print-severity  yes;
        print-time      yes;
    };
    channel bind_log {
        file "/var/log/bind.log" versions 3 size 1m;
        severity info;
        print-category  yes;
        print-severity  yes;
        print-time      yes;
    };
 
    category default { bind_log; };
    category lame-servers { null; };
    category update { update_debug; };
    category update-security { update_debug; };
    category security { security_info; };
};

Participant