etc/namedb/named.conf

193323Sed// $Id: named.conf,v 1.3 1998/12/01 21:36:33 dillon Exp $
193323Sed//
193323Sed// Refer to the named(8) man page for details.  If you are ever going
193323Sed// to setup a primary server, make sure you've understood the hairy
193323Sed// details of how DNS is working.  Even with simple mistakes, you can
193323Sed// break connectivity for affected parties, or cause huge amount of
193323Sed// useless Internet traffic.
193323Sed
193323Sedoptions {
193323Sed	directory "/etc/namedb";
193323Sed
193323Sed// In addition to the "forwarders" clause, you can force your name
193323Sed// server to never initiate queries of its own, but always ask its
193323Sed// forwarders only, by enabling the following line:
193323Sed//
193323Sed//      forward only;
193323Sed
193323Sed// If you've got a DNS server around at your upstream provider, enter
193323Sed// its IP address here, and enable the line below.  This will make you
193323Sed// benefit from its cache, thus reduce overall DNS traffic in the Internet.
193323Sed/*
193323Sed	forwarders {
193323Sed		127.0.0.1;
193323Sed	};
193323Sed*/
198090Srdivacky	/*
193323Sed	 * If there is a firewall between you and nameservers you want
193323Sed	 * to talk to, you might need to uncomment the query-source
193323Sed	 * directive below.  Previous versions of BIND always asked
194710Sed	 * questions using port 53, but BIND 8.1 uses an unprivileged
193323Sed	 * port by default.
193323Sed	 */
193323Sed	// query-source address * port 53;
193323Sed};
193323Sed
193323Sed// Note: the following will be supported in a future release.
193323Sed/*
193323Sedhost { any; } {
193323Sed	topology {
193323Sed		127.0.0.0/8;
193323Sed	};
193323Sed};
193323Sed*/
193323Sed
193323Sed// Setting up secondaries is way easier and the rough picture for this
193323Sed// is explained below.
193323Sed//
193323Sed// If you enable a local name server, don't forget to enter 127.0.0.1
194710Sed// into your /etc/resolv.conf so this server will be queried first.
194710Sed// Also, make sure to enable it in /etc/rc.conf.
193323Sed
193323Sedzone "." {
193323Sed	type hint;
193323Sed	file "named.root";
193323Sed};
193323Sed
198090Srdivackyzone "0.0.127.IN-ADDR.ARPA" {
193323Sed	type master;
193323Sed	file "localhost.rev";
193323Sed};
193323Sed
193323Sed// NB: Do not use the IP addresses below, they are faked, and only
193323Sed// serve demonstration/documentation purposes!
193323Sed//
193323Sed// Example secondary config entries.  It can be convenient to become
193323Sed// a secondary at least for the zone where your own domain is in.  Ask
193323Sed// your network administrator for the IP address of the responsible
193323Sed// primary.
193323Sed//
193323Sed// Never forget to include the reverse lookup (IN-ADDR.ARPA) zone!
193323Sed// (This is the first bytes of the respective IP address, in reverse
193323Sed// order, with ".IN-ADDR.ARPA" appended.)
193323Sed//
193323Sed// Before starting to setup a primary zone, better make sure you fully
193323Sed// understand how DNS and BIND works, however.  There are sometimes
193323Sed// unobvious pitfalls.  Setting up a secondary is comparably simpler.
193323Sed//
193323Sed// NB: Don't blindly enable the examples below. :-)  Use actual names
193323Sed// and addresses instead.
193323Sed//
193323Sed// NOTE!!! FreeBSD runs bind in a sandbox (see named_flags in rc.conf).
193323Sed// The directory containing the secondary zones must be write accessible
193323Sed// to bind.  The following sequence is suggested:
193323Sed//
193323Sed//	mkdir /etc/namedb/s
193323Sed//	chown bind.bind /etc/namedb/s
193323Sed//	chmod 750 /etc/namedb/s
193323Sed
193323Sed/*
193323Sedzone "domain.com" {
193323Sed	type slave;
193323Sed	file "s/domain.com.bak";
193323Sed	masters {
193323Sed		192.168.1.1;
193323Sed	};
193323Sed};
193323Sed
198090Srdivackyzone "0.168.192.in-addr.arpa" {
193323Sed	type slave;
198090Srdivacky	file "s/0.168.192.in-addr.arpa.bak";
193323Sed	masters {
193323Sed		192.168.1.1;
198090Srdivacky	};
193323Sed};
198090Srdivacky*/
198090Srdivacky
193323Sed