|
|
|
|
|
Linux Training King of Glory Lutheran Church Do a presentation at NTLUG. What is the Linux Installation Project? Real companies using Linux! Not just for business anymore. Providing ready to run platforms on Linux |
# Include include/000comments1
# Copyright (c) 2001-2004 SuSE Linux AG, Nuernberg, Germany.
# All rights reserved.
#
# Author: Frank Bodammer, Lars Mueller <lmuelle@suse.de>
#
# /etc/named.conf
#
# This is a sample configuration file for the name server BIND 9. It works as
# a caching only name server without modification.
#
# A sample configuration for setting up your own domain can be found in
# /usr/share/doc/packages/bind/sample-config.
#
# A description of all available options can be found in
# /usr/share/doc/packages/bind/misc/options.
# Include include/01keys
acl domain-controllers { 192.168.44.33; };
key FBC_UPDATER {
algorithm hmac-md5;
secret "cw4fCmKNv9GZ9ygHab2ynA==";
};
key "rndc-key" {
algorithm hmac-md5;
secret "HTOQ0BOyKotHm3r0U1BiyA==";
};
# Include include/10access
# Syntax is wrong here
controls {
inet * allow { 127.0.0.1; } keys { "rndc-key"; };
};
# Include include/20options
options {
# need this for _ names
check-names master warn;
# The directory statement defines the name server's working directory
directory "/var/lib/named";
# Write dump and statistics file to the log subdirectory. The
# pathenames are relative to the chroot jail.
dump-file "/var/log/named_dump.db";
statistics-file "/var/log/named.stats";
# The forwarders record contains a list of servers to which queries
# should be forwarded. Enable this line and modify the IP address to
# your provider's name server. Up to three servers may be listed.
#forwarders { 192.0.2.1; 192.0.2.2; };
# Enable the next entry to prefer usage of the name server declared in
# the forwarders section.
#forward first;
# The listen-on record contains a list of local network interfaces to
# listen on. Optionally the port can be specified. Default is to
# listen on all interfaces found on your system. The default port is
# 53.
listen-on port 53 { any; };
# The listen-on-v6 record enables or disables listening on IPv6
# interfaces. Allowed values are 'any' and 'none' or a list of
# addresses.
#listen-on-v6 { any; };
# The next three statements may be needed if a firewall stands between
# the local server and the internet.
#query-source address * port 53;
#transfer-source * port 53;
#notify-source * port 53;
# The allow-query record contains a list of networks or IP addresses
# to accept and deny queries from. The default is to allow queries
# from all hosts.
#allow-query { 127.0.0.1; };
# If notify is set to yes (default), notify messages are sent to other
# name servers when the the zone data is changed. Instead of setting
# a global 'notify' statement in the 'options' section, a separate
# 'notify' can be added to each zone definition.
notify yes;
# include "/etc/named.d/forwarders.conf";
};
# Include include/300comments3
# To configure named's logging remove the leading '#' characters of the
# following examples.
#logging {
# # Log queries to a file limited to a size of 100 MB.
# channel query_logging {
# file "/var/log/named_querylog"
# versions 3 size 100M;
# print-time yes; // timestamp log entries
# };
# category queries {
# query_logging;
# };
#
# # Or log this kind alternatively to syslog.
# channel syslog_queries {
# syslog user;
# severity info;
# };
# category queries { syslog_queries; };
#
# # Log general name server errors to syslog.
# channel syslog_errors {
# syslog user;
# severity error;
# };
# category default { syslog_errors; };
#
# # Don't log lame server messages.
# category lame-servers { null; };
#};
# Include include/30logging
logging {
category update { update_log_file; };
category security { security_log_file; };
category default { log_file; };
category xfer-in { log_file; };
category xfer-out { log_file; };
channel log_file {
file "/var/lib/named/log/named.log" size 2M versions 5;
severity info;
};
channel update_log_file {
file "/var/lib/named/log/ddns.log" size 2M versions 5;
severity info;
};
channel security_log_file {
file "/var/lib/named/log/security.log" size 2M versions 5;
severity info;
};
};
# Include include/30root-local
zone "." in {
type hint;
file "root.hint";
};
zone "localhost" in {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "127.0.0.zone";
};
# Include include/40includes
# Include the meta include file generated by createNamedConfInclude. This
# includes all files as configured in NAMED_CONF_INCLUDE_FILES from
# /etc/sysconfig/named
include "/etc/named.conf.include";
zone "44.168.192.in-addr.arpa" in {
type master;
allow-update { key FBC_UPDATER; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/44.168.192.in-addr.arpa";
};
zone "theendlesshome.com" in {
type master;
allow-update { key FBC_UPDATER; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/theendlesshome.com";
};
zone "_udp.theendlesshome.com" in {
type master;
allow-update { key FBC_UPDATER; domain-controllers; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/_udp.theendlesshome.com";
};
zone "_msdcs.theendlesshome.com" in {
type master;
allow-update { key FBC_UPDATER; domain-controllers; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/_msdcs.theendlesshome.com";
};
zone "_sites.theendlesshome.com" in {
type master;
allow-update { key FBC_UPDATER; domain-controllers; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/_sites.theendlesshome.com";
};
zone "_tcp.theendlesshome.com" in {
type master;
allow-update { key FBC_UPDATER; domain-controllers; };
allow-transfer { localhost; key FBC_UPDATER; };
file "master/_tcp.theendlesshome.com";
};
|
