1/* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * SPDX-License-Identifier: MPL-2.0 5 * 6 * This Source Code Form is subject to the terms of the Mozilla Public 7 * License, v. 2.0. If a copy of the MPL was not distributed with this 8 * file, you can obtain one at https://mozilla.org/MPL/2.0/. 9 * 10 * See the COPYRIGHT file distributed with this work for additional 11 * information regarding copyright ownership. 12 */ 13 14key rndc_key { 15 secret "1234abcd8765"; 16 algorithm @DEFAULT_HMAC@; 17}; 18 19controls { 20 inet 10.53.0.2 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; 21}; 22 23options { 24 query-source address 10.53.0.2; 25 notify-source 10.53.0.2; 26 transfer-source 10.53.0.2; 27 port @PORT@; 28 pid-file "named.pid"; 29 listen-on { 10.53.0.2; }; 30 listen-on-v6 { none; }; 31 recursion no; 32 notify yes; 33 ixfr-from-differences yes; 34 check-integrity no; 35 dnssec-validation no; 36}; 37 38key one { 39 algorithm hmac-md5; 40 secret "1234abcd8765"; 41}; 42 43key two { 44 algorithm hmac-md5; 45 secret "1234abcd8765"; 46}; 47 48acl rejectkeys { 49 !key one; !key two; any; 50}; 51 52acl rejectaddrs { 53 !10.53.0.1; !10.53.0.2; any; 54}; 55 56acl check1 { !key one; 10.53.0.1; }; 57 58acl check2 { !key two; 10.53.0.2; }; 59 60zone "." { 61 type hint; 62 file "../../_common/root.hint"; 63}; 64 65zone "example" { 66 type primary; 67 file "example.db"; 68}; 69 70zone "tsigzone" { 71 type primary; 72 file "tsigzone.db"; 73 allow-transfer { !rejectkeys; !rejectaddrs; !check1; !check2; any; }; 74}; 75