1/* 2 * Copyright (C) 2010, 2011 Internet Systems Consortium, Inc. ("ISC") 3 * 4 * Permission to use, copy, modify, and/or distribute this software for any 5 * purpose with or without fee is hereby granted, provided that the above 6 * copyright notice and this permission notice appear in all copies. 7 * 8 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH 9 * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY 10 * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT, 11 * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM 12 * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE 13 * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR 14 * PERFORMANCE OF THIS SOFTWARE. 15 */ 16 17/* $Id: named.conf,v 1.6 2011/01/06 23:47:00 tbox Exp $ */ 18 19controls { }; 20 21options { 22 query-source address 10.53.0.1; 23 notify-source 10.53.0.1; 24 transfer-source 10.53.0.1; 25 port 5300; 26 pid-file "named.pid"; 27 session-keyfile "session.key"; 28 listen-on { 10.53.0.1; 127.0.0.1; }; 29 listen-on-v6 { none; }; 30 recursion no; 31 notify yes; 32 tkey-gssapi-keytab "dns.keytab"; 33}; 34 35key rndc_key { 36 secret "1234abcd8765"; 37 algorithm hmac-md5; 38}; 39 40controls { 41 inet 10.53.0.1 port 9953 allow { any; } keys { rndc_key; }; 42}; 43 44zone "example.nil." IN { 45 type master; 46 file "example.nil.db"; 47 48 update-policy { 49 grant Administrator@EXAMPLE.NIL wildcard * A AAAA SRV CNAME; 50 grant testdenied@EXAMPLE.NIL wildcard * TXT; 51 grant "local:auth.sock" external * CNAME; 52 }; 53 54 /* we need to use check-names ignore so _msdcs A records can be created */ 55 check-names ignore; 56}; 57