Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- acl "xfer" {
- /* Deny transfers by default except for the listed hosts.
- * If we have other name servers, place them here.
- */
- none;
- };
- acl "localhost.local" { 127.0.0.0/8; };
- acl "satt.10" { 192.168.10.0/24; };
- acl "satt.11" { 192.168.11.0/24; };
- options {
- directory "/var/bind";
- pid-file "/var/run/named/named-11.pid";
- /* https://www.isc.org/solutions/dlv >=bind-9.7.x only */
- bindkeys-file "/etc/bind/bind.keys";
- listen-on-v6 { none; };
- listen-on { 127.0.0.2; 192.168.11.1; };
- allow-query { localhost.local; satt.10; satt.11; };
- allow-query-cache { localhost.local; satt.10; satt.11; };
- allow-query-cache-on { localhost.local; satt.10; satt.11; };
- allow-recursion { localhost.local; satt.10; satt.11; };
- allow-transfer { none; };
- allow-update { key DHCP_UPDATER; };
- forwarders {
- 192.168.10.254;
- 8.8.4.4; // Google Open DNS
- 8.8.8.8; // Google Open DNS
- 4.2.2.1; // Level3 Public DNS
- 4.2.2.2; // Level3 Public DNS
- };
- forward first;
- dnssec-enable no;
- dnssec-validation no;
- dnssec-lookaside auto;
- max-ncache-ttl 0;
- hostname "satt11";
- };
- #include "/etc/bind/rndc.key";
- key DHCP_UPDATER {
- algorithm hmac-md5;
- secret "rdJuK9q33GvCORLY7Xm4Sw==";
- };
- controls { inet 127.0.0.2 port 953 allow { 127.0.0.1/32; } keys { "DHCP_UPDATER"; }; };
- zone "." in {
- type hint;
- file "/var/bind/named.cache";
- };
- zone "localhost" IN {
- type master;
- file "pri/localhost.zone";
- };
- zone "127.in-addr.arpa" IN {
- type master;
- file "pri/127.zone";
- };
- zone "satt11.local" IN {
- type master;
- file "dyn/network.11/satt11.local.zone";
- allow-update { key DHCP_UPDATER; };
- };
- zone "11.168.192.in-addr.arpa" IN {
- type master;
- file "dyn/network.11/192.168.11.zone-rev";
- allow-update { key DHCP_UPDATER; };
- };
- zone "satt.local" {
- type forward;
- forwarders { 192.168.10.254; };
- };
- zone "10.168.192.in-addr.arpa" IN {
- type forward;
- forwarders { 192.168.10.254; };
- };
- server 192.168.11.1 { keys { DHCP_UPDATER; }; };
- logging {
- channel log_default {
- file "/var/log/named/network-11/named-default.log" versions 5 size 50m;
- severity debug;
- print-category yes;
- print-severity yes;
- print-time yes;
- };
- channel log_resolving {
- file "/var/log/named/network-11/named-resolving.log" versions 5 size 50m;
- severity info;
- print-category yes;
- print-severity yes;
- print-time yes;
- };
- channel log_security {
- file "/var/log/named/network-11/named-security.log" versions 5 size 10m;
- severity info;
- print-category yes;
- print-severity yes;
- print-time yes;
- };
- channel null { null; };
- channel log_clients {
- file "/var/log/named/network-11/named-clients.log" versions 5 size 50m;
- severity info;
- print-category yes;
- print-severity yes;
- print-time yes;
- };
- category lame-servers { null; null; };
- category queries { log_clients; };
- category client { log_default; };
- category unmatched { log_clients; };
- category security { log_security; };
- category default { log_default; };
- };
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement