Difference between revisions of "DNS"
From Fixme.ch
(Created page with "Category:Ongoing_Projects == Description == fixme.ch zone management == Components == * Bind == Participant == * User:Rorist") |
|||
(12 intermediate revisions by one other user not shown) | |||
Line 1: | Line 1: | ||
− | [[Category: | + | [[Category:Services]] |
+ | |||
== Description == | == Description == | ||
− | fixme.ch zone management | + | fixme.ch zone management with Bind9 |
+ | * Part of the [[Internal_Server]] foo.fixme.ch | ||
+ | |||
+ | == Configurations == | ||
+ | * /etc/bind/named.conf.local | ||
+ | <syntaxhighlight lang="bash"> | ||
+ | acl externals { | ||
+ | 127.0.0.1; | ||
+ | 62.220.136.2; #Nimag1 | ||
+ | 195.70.27.21; #Nimag2 | ||
+ | }; | ||
+ | |||
+ | view "external" { | ||
+ | match-clients { any; }; | ||
+ | recursion no; | ||
+ | zone "fixme.ch" { | ||
+ | type master; | ||
+ | file "/etc/bind/zones/fixme.ch.db"; | ||
+ | allow-transfer { externals; }; | ||
+ | allow-query { externals; }; | ||
+ | notify yes; | ||
+ | }; | ||
+ | }; | ||
+ | </syntaxhighlight> | ||
+ | |||
+ | * /etc/bind/named.conf.options | ||
+ | <syntaxhighlight lang="bash"> | ||
+ | options { | ||
+ | directory "/var/cache/bind"; | ||
+ | auth-nxdomain no; # conform to RFC1035 | ||
+ | listen-on-v6 { any; }; | ||
+ | allow-transfer { none; }; | ||
+ | allow-query { 127.0.0.1; }; | ||
+ | allow-recursion { none; }; | ||
+ | version none; | ||
+ | }; | ||
+ | </syntaxhighlight> | ||
+ | * /etc/bind/named.conf.log | ||
+ | <syntaxhighlight lang="bash"> | ||
+ | logging { | ||
+ | channel update_debug { | ||
+ | file "/var/log/update_debug.log" versions 3 size 100k; | ||
+ | severity debug; | ||
+ | print-severity yes; | ||
+ | print-time yes; | ||
+ | }; | ||
+ | channel security_info { | ||
+ | file "/var/log/security_info.log" versions 1 size 100k; | ||
+ | severity info; | ||
+ | print-severity yes; | ||
+ | print-time yes; | ||
+ | }; | ||
+ | channel bind_log { | ||
+ | file "/var/log/bind.log" versions 3 size 1m; | ||
+ | severity info; | ||
+ | print-category yes; | ||
+ | print-severity yes; | ||
+ | print-time yes; | ||
+ | }; | ||
− | + | category default { bind_log; }; | |
− | + | category lame-servers { null; }; | |
+ | category update { update_debug; }; | ||
+ | category update-security { update_debug; }; | ||
+ | category security { security_info; }; | ||
+ | }; | ||
+ | </syntaxhighlight> | ||
== Participant == | == Participant == | ||
* [[User:Rorist]] | * [[User:Rorist]] |
Latest revision as of 22:14, 17 July 2012
Description
fixme.ch zone management with Bind9
- Part of the Internal_Server foo.fixme.ch
Configurations
- /etc/bind/named.conf.local
acl externals { 127.0.0.1; 62.220.136.2; #Nimag1 195.70.27.21; #Nimag2 }; view "external" { match-clients { any; }; recursion no; zone "fixme.ch" { type master; file "/etc/bind/zones/fixme.ch.db"; allow-transfer { externals; }; allow-query { externals; }; notify yes; }; };
- /etc/bind/named.conf.options
options { directory "/var/cache/bind"; auth-nxdomain no; # conform to RFC1035 listen-on-v6 { any; }; allow-transfer { none; }; allow-query { 127.0.0.1; }; allow-recursion { none; }; version none; };
- /etc/bind/named.conf.log
logging { channel update_debug { file "/var/log/update_debug.log" versions 3 size 100k; severity debug; print-severity yes; print-time yes; }; channel security_info { file "/var/log/security_info.log" versions 1 size 100k; severity info; print-severity yes; print-time yes; }; channel bind_log { file "/var/log/bind.log" versions 3 size 1m; severity info; print-category yes; print-severity yes; print-time yes; }; category default { bind_log; }; category lame-servers { null; }; category update { update_debug; }; category update-security { update_debug; }; category security { security_info; }; };