iankelling.org Git - automated-distro-installer/blob - bind/named.conf

   1 // This is the primary configuration file for the BIND DNS server named.
   2
   3 // deploy with:
   4 // named-checkconf named.conf && named-checkzone 0.2.10.in-addr db.0.2.10.in-addr.arpa && scp named.conf db.0.2.10.in-addr.arpa 10.2.0.1:/etc/bind; ssh 10.2.0.1 /etc/init.d/named restart
   5
   6
   7 options {
   8
   9   listen-on { localnets; localhost; };
  10   listen-on-v6 { localnets; localhost; };
  11         directory "/tmp";
  12
  13         // If your ISP provided one or more IP addresses for stable
  14         // nameservers, you probably want to use them as forwarders.
  15         // Uncomment the following block, and insert the addresses replacing
  16         // the all-0's placeholder.
  17
  18
  19         auth-nxdomain no;    # conform to RFC1035
  20 };
  21
  22 #acl trusted { 10.2.0.7; 10.2.0.3; 10.2.0.2; };
  23 acl "trusted" { 10.2.0.7; };
  24 view "trusted" {
  25   match-clients { "trusted"; };
  26   forwarders {
  27     1.1.1.1 ;
  28     1.0.0.1 ;
  29     2606:4700:4700::1111 ;
  30     2606:4700:4700::1001 ;
  31   };
  32   forward only ;
  33
  34   // prime the server with knowledge of the root servers
  35   zone "." {
  36           type hint;
  37           file "/etc/bind/db.root";
  38   };
  39
  40   // be authoritative for the localhost forward and reverse zones, and for
  41   // broadcast zones as per RFC 1912
  42
  43   zone "localhost" {
  44           type master;
  45           file "/etc/bind/db.local";
  46   };
  47
  48   zone "127.in-addr.arpa" {
  49           type master;
  50           file "/etc/bind/db.127";
  51   };
  52
  53   zone "0.in-addr.arpa" {
  54           type master;
  55           file "/etc/bind/db.0";
  56   };
  57
  58   zone "255.in-addr.arpa" {
  59           type master;
  60           file "/etc/bind/db.255";
  61   };
  62
  63   zone "0.2.10.in-addr.arpa" {
  64     type master;
  65     file "/etc/bind/db.0.2.10.in-addr.arpa";
  66   };
  67 };
  68
  69
  70 acl "guest" { localnets;  localhost; };
  71 view "guest" {
  72   match-clients { "guest"; };
  73
  74   forwarders {
  75     1.1.1.3 ;
  76     1.0.0.3 ;
  77     2606:4700:4700::1113 ;
  78     2606:4700:4700::1003 ;
  79   };
  80   forward only ;
  81   // prime the server with knowledge of the root servers
  82   zone "." {
  83           type hint;
  84           file "/etc/bind/db.root";
  85   };
  86
  87   // be authoritative for the localhost forward and reverse zones, and for
  88   // broadcast zones as per RFC 1912
  89
  90   zone "localhost" {
  91           type master;
  92           file "/etc/bind/db.local";
  93   };
  94
  95   zone "127.in-addr.arpa" {
  96           type master;
  97           file "/etc/bind/db.127";
  98   };
  99
 100   zone "0.in-addr.arpa" {
 101           type master;
 102           file "/etc/bind/db.0";
 103   };
 104
 105   zone "255.in-addr.arpa" {
 106           type master;
 107           file "/etc/bind/db.255";
 108   };
 109
 110   zone "0.2.10.in-addr.arpa" {
 111     type master;
 112     file "/etc/bind/db.0.2.10.in-addr.arpa";
 113   };
 114 };