named.conf.in revision 1.1.1.1
1/* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * This Source Code Form is subject to the terms of the Mozilla Public 5 * License, v. 2.0. If a copy of the MPL was not distributed with this 6 * file, You can obtain one at http://mozilla.org/MPL/2.0/. 7 * 8 * See the COPYRIGHT file distributed with this work for additional 9 * information regarding copyright ownership. 10 */ 11 12options { 13 query-source address 10.53.0.1 dscp 1; 14 notify-source 10.53.0.1 dscp 22; 15 transfer-source 10.53.0.1 dscp 3; 16 port @PORT@; 17 pid-file "named.pid"; 18 session-keyfile "session.key"; 19 listen-on { 10.53.0.1; 127.0.0.1; }; 20 listen-on-v6 { none; }; 21 recursion no; 22 notify yes; 23 minimal-responses no; 24}; 25 26key rndc_key { 27 secret "1234abcd8765"; 28 algorithm hmac-sha256; 29}; 30 31controls { 32 inet 10.53.0.1 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; 33}; 34 35key altkey { 36 algorithm hmac-md5; 37 secret "1234abcd8765"; 38}; 39 40include "ddns.key"; 41 42zone "example.nil" { 43 type master; 44 file "example.db"; 45 check-integrity no; 46 check-mx ignore; 47 update-policy { 48 grant ddns-key.example.nil subdomain example.nil ANY; 49 }; 50 allow-transfer { any; }; 51}; 52 53zone "max-ttl.nil" { 54 type master; 55 file "max-ttl.db"; 56 max-zone-ttl 300; 57 check-integrity no; 58 allow-update { any; }; 59 allow-transfer { any; }; 60}; 61 62zone "other.nil" { 63 type master; 64 file "other.db"; 65 check-integrity no; 66 check-mx warn; 67 update-policy local; 68 allow-query-on { 10.53.0.1; 127.0.0.1; }; 69 allow-transfer { any; }; 70}; 71 72masters othermasters { 73 10.53.0.2 port @PORT@; 74 10.53.0.2 port @PORT@ key altkey; 75}; 76 77zone "update.nil" { 78 type master; 79 file "update.db"; 80 check-integrity no; 81 check-mx fail; 82 allow-update { any; }; 83 allow-transfer { any; }; 84 also-notify { othermasters; }; 85}; 86 87zone "unixtime.nil" { 88 type master; 89 file "unixtime.db"; 90 check-integrity no; 91 allow-update { any; }; 92 allow-transfer { any; }; 93 serial-update-method unixtime; 94}; 95 96zone "yyyymmddvv.nil" { 97 type master; 98 file "yyyymmddvv.db"; 99 check-integrity no; 100 allow-update { any; }; 101 allow-transfer { any; }; 102 serial-update-method date; 103}; 104 105include "md5.key"; 106include "sha1.key"; 107include "sha224.key"; 108include "sha256.key"; 109include "sha384.key"; 110include "sha512.key"; 111 112zone "keytests.nil" { 113 type master; 114 file "keytests.db"; 115 update-policy { 116 grant md5-key name md5.keytests.nil. ANY; 117 grant sha1-key name sha1.keytests.nil. ANY; 118 grant sha224-key name sha224.keytests.nil. ANY; 119 grant sha256-key name sha256.keytests.nil. ANY; 120 grant sha384-key name sha384.keytests.nil. ANY; 121 grant sha512-key name sha512.keytests.nil. ANY; 122 }; 123}; 124 125zone "many.test" { 126 type master; 127 allow-update { any; }; 128 file "many.test.db"; 129}; 130 131zone "sample" { 132 type master; 133 allow-update { any; }; 134 file "sample.db"; 135}; 136 137zone "maxjournal.test" { 138 type master; 139 allow-update { any; }; 140 file "maxjournal.db"; 141 max-journal-size default; 142}; 143