Difference between revisions of "DNS"
From Fixme.ch
(Created page with "Category:Ongoing_Projects == Description == fixme.ch zone management == Components == * Bind == Participant == * User:Rorist") |
|||
| (12 intermediate revisions by one other user not shown) | |||
| Line 1: | Line 1: | ||
| − | [[Category: | + | [[Category:Services]] |
| + | |||
== Description == | == Description == | ||
| − | fixme.ch zone management | + | fixme.ch zone management with Bind9 |
| + | * Part of the [[Internal_Server]] foo.fixme.ch | ||
| + | |||
| + | == Configurations == | ||
| + | * /etc/bind/named.conf.local | ||
| + | <syntaxhighlight lang="bash"> | ||
| + | acl externals { | ||
| + | 127.0.0.1; | ||
| + | 62.220.136.2; #Nimag1 | ||
| + | 195.70.27.21; #Nimag2 | ||
| + | }; | ||
| + | |||
| + | view "external" { | ||
| + | match-clients { any; }; | ||
| + | recursion no; | ||
| + | zone "fixme.ch" { | ||
| + | type master; | ||
| + | file "/etc/bind/zones/fixme.ch.db"; | ||
| + | allow-transfer { externals; }; | ||
| + | allow-query { externals; }; | ||
| + | notify yes; | ||
| + | }; | ||
| + | }; | ||
| + | </syntaxhighlight> | ||
| + | |||
| + | * /etc/bind/named.conf.options | ||
| + | <syntaxhighlight lang="bash"> | ||
| + | options { | ||
| + | directory "/var/cache/bind"; | ||
| + | auth-nxdomain no; # conform to RFC1035 | ||
| + | listen-on-v6 { any; }; | ||
| + | allow-transfer { none; }; | ||
| + | allow-query { 127.0.0.1; }; | ||
| + | allow-recursion { none; }; | ||
| + | version none; | ||
| + | }; | ||
| + | </syntaxhighlight> | ||
| + | * /etc/bind/named.conf.log | ||
| + | <syntaxhighlight lang="bash"> | ||
| + | logging { | ||
| + | channel update_debug { | ||
| + | file "/var/log/update_debug.log" versions 3 size 100k; | ||
| + | severity debug; | ||
| + | print-severity yes; | ||
| + | print-time yes; | ||
| + | }; | ||
| + | channel security_info { | ||
| + | file "/var/log/security_info.log" versions 1 size 100k; | ||
| + | severity info; | ||
| + | print-severity yes; | ||
| + | print-time yes; | ||
| + | }; | ||
| + | channel bind_log { | ||
| + | file "/var/log/bind.log" versions 3 size 1m; | ||
| + | severity info; | ||
| + | print-category yes; | ||
| + | print-severity yes; | ||
| + | print-time yes; | ||
| + | }; | ||
| − | + | category default { bind_log; }; | |
| − | + | category lame-servers { null; }; | |
| + | category update { update_debug; }; | ||
| + | category update-security { update_debug; }; | ||
| + | category security { security_info; }; | ||
| + | }; | ||
| + | </syntaxhighlight> | ||
== Participant == | == Participant == | ||
* [[User:Rorist]] | * [[User:Rorist]] | ||
Latest revision as of 22:14, 17 July 2012
Description
fixme.ch zone management with Bind9
- Part of the Internal_Server foo.fixme.ch
Configurations
- /etc/bind/named.conf.local
acl externals { 127.0.0.1; 62.220.136.2; #Nimag1 195.70.27.21; #Nimag2 }; view "external" { match-clients { any; }; recursion no; zone "fixme.ch" { type master; file "/etc/bind/zones/fixme.ch.db"; allow-transfer { externals; }; allow-query { externals; }; notify yes; }; };
- /etc/bind/named.conf.options
options { directory "/var/cache/bind"; auth-nxdomain no; # conform to RFC1035 listen-on-v6 { any; }; allow-transfer { none; }; allow-query { 127.0.0.1; }; allow-recursion { none; }; version none; };
- /etc/bind/named.conf.log
logging { channel update_debug { file "/var/log/update_debug.log" versions 3 size 100k; severity debug; print-severity yes; print-time yes; }; channel security_info { file "/var/log/security_info.log" versions 1 size 100k; severity info; print-severity yes; print-time yes; }; channel bind_log { file "/var/log/bind.log" versions 3 size 1m; severity info; print-category yes; print-severity yes; print-time yes; }; category default { bind_log; }; category lame-servers { null; }; category update { update_debug; }; category update-security { update_debug; }; category security { security_info; }; };
