named.conf.in revision 1.1.1.3
1/* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * This Source Code Form is subject to the terms of the Mozilla Public 5 * License, v. 2.0. If a copy of the MPL was not distributed with this 6 * file, You can obtain one at http://mozilla.org/MPL/2.0/. 7 * 8 * See the COPYRIGHT file distributed with this work for additional 9 * information regarding copyright ownership. 10 */ 11 12key rndc_key { 13 secret "1234abcd8765"; 14 algorithm hmac-sha256; 15}; 16 17key foo { 18 secret "aaaaaaaaaaaa"; 19 algorithm hmac-sha256; 20}; 21 22server 10.53.0.10 { 23 keys foo; 24}; 25 26controls { 27 inet 10.53.0.1 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; 28}; 29 30options { 31 query-source address 10.53.0.1 dscp 1; 32 notify-source 10.53.0.1 dscp 2; 33 transfer-source 10.53.0.1 dscp 3; 34 port @PORT@; 35 pid-file "named.pid"; 36 listen-on { 10.53.0.1; }; 37 listen-on-v6 { none; }; 38 recursion yes; 39 dnssec-validation yes; 40 deny-answer-addresses { 192.0.2.0/24; 2001:db8:beef::/48; } 41 except-from { "example.org"; }; 42 deny-answer-aliases { "example.org"; } 43 except-from { "goodcname.example.net"; 44 "gooddname.example.net"; }; 45 allow-query {!10.53.0.8; any; }; 46 send-cookie yes; 47 nocookie-udp-size 512; 48}; 49 50zone "." { 51 type hint; 52 file "root.hint"; 53}; 54 55zone "example" { 56 type primary; 57 file "example.db"; 58}; 59