// ian: ok. uncommented. 1918 zones are private ip ranges.
include "/etc/bind/zones.rfc1918";
-
+# based on random internet tutorials, then reading
+# file:///usr/share/doc/bind9-doc/arm/Bv9ARM.ch06.html#dynamic_update_policies
zone "b8.nz" {
type master;
-file "/etc/bind/bind-writable/db.b8.nz";
+file "/var/lib/bind/db.b8.nz";
update-policy {
- // allow host to update themselves with a key having their own name
- grant b8.nz. name b8.nz. A TXT;
- grant b8.nz. name *.b8.nz. A TXT;
+ // allow updating almost anything in the zone or subdomains.
+ grant b8.nz. subdomain b8.nz.;
};
};
include "/etc/bind/key.b8.nz";