1# $NetBSD: named.conf,v 1.5 2008/07/23 05:47:48 dholland Exp $ 2 3# boot file for secondary name server 4# Note that there should be one primary entry for each SOA record. 5 6options { 7 directory "/etc/namedb"; 8 dnssec-enable yes; 9 dnssec-validation yes; 10 dnssec-lookaside auto; 11 managed-keys-directory "keys"; 12 allow-recursion { localhost; localnets; }; 13 14 # 15 # This forces all queries to come from port 53; might be 16 # needed for firewall traversals but should be avoided if 17 # at all possible because of the risk of spoofing attacks. 18 # 19 #query-source address * port 53; 20}; 21 22zone "." { 23 type hint; 24 file "root.cache"; 25}; 26 27zone "localhost" { 28 type master; 29 file "localhost"; 30}; 31 32zone "127.IN-ADDR.ARPA" { 33 type master; 34 file "127"; 35}; 36 37zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" { 38 type master; 39 file "loopback.v6"; 40}; 41 42# example secondary server config: 43# 44# zone "Berkeley.EDU" { 45# type slave; 46# file "berkeley.edu.cache"; 47# masters { 48# 128.32.130.11; 49# 128.32.133.1; 50# }; 51# }; 52 53# zone "32.128.IN-ADDR.ARPA" { 54# type slave; 55# file "128.32.cache"; 56# masters { 57# 128.32.130.11; 58# 128.32.133.1; 59# }; 60# }; 61 62# example primary server config: 63# 64# zone "Berkeley.EDU" { 65# type master; 66# file "berkeley.edu"; 67# }; 68 69# zone "32.128.IN-ADDR.ARPA" { 70# type master; 71# file "128.32"; 72# }; 73