named.conf.in revision 1.1.1.2
1/* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * This Source Code Form is subject to the terms of the Mozilla Public 5 * License, v. 2.0. If a copy of the MPL was not distributed with this 6 * file, You can obtain one at http://mozilla.org/MPL/2.0/. 7 * 8 * See the COPYRIGHT file distributed with this work for additional 9 * information regarding copyright ownership. 10 */ 11 12options { 13 query-source address 10.53.0.1 dscp 1; 14 notify-source 10.53.0.1 dscp 22; 15 transfer-source 10.53.0.1 dscp 3; 16 port @PORT@; 17 pid-file "named.pid"; 18 session-keyfile "session.key"; 19 listen-on { 10.53.0.1; 127.0.0.1; }; 20 listen-on-v6 { none; }; 21 recursion no; 22 notify yes; 23 minimal-responses no; 24}; 25 26acl named-acl { 27 any; 28}; 29 30key rndc_key { 31 secret "1234abcd8765"; 32 algorithm hmac-sha256; 33}; 34 35controls { 36 inet 10.53.0.1 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; 37}; 38 39key altkey { 40 algorithm hmac-md5; 41 secret "1234abcd8765"; 42}; 43 44key restricted.example.nil { 45 algorithm hmac-md5; 46 secret "1234abcd8765"; 47}; 48 49key zonesub-key.example.nil { 50 algorithm hmac-md5; 51 secret "1234subk8765"; 52}; 53 54include "ddns.key"; 55 56zone "example.nil" { 57 type primary; 58 file "example.db"; 59 check-integrity no; 60 check-mx ignore; 61 update-policy { 62 grant zonesub-key.example.nil zonesub TXT; 63 grant ddns-key.example.nil subdomain example.nil ANY; 64 grant restricted.example.nil subdomain restricted.example.nil ANY; 65 }; 66 allow-transfer { any; }; 67}; 68 69zone "max-ttl.nil" { 70 type primary; 71 file "max-ttl.db"; 72 max-zone-ttl 300; 73 check-integrity no; 74 allow-update { named-acl; }; 75 allow-transfer { any; }; 76}; 77 78zone "other.nil" { 79 type primary; 80 file "other.db"; 81 check-integrity no; 82 check-mx warn; 83 update-policy local; 84 allow-query-on { 10.53.0.1; 127.0.0.1; }; 85 allow-transfer { any; }; 86}; 87 88primaries others { 89 10.53.0.2 port @PORT@; 90 10.53.0.2 port @PORT@ key altkey; 91}; 92 93zone "update.nil" { 94 type primary; 95 file "update.db"; 96 check-integrity no; 97 check-mx fail; 98 allow-update { any; }; 99 allow-transfer { any; }; 100 also-notify { others; }; 101}; 102 103zone "unixtime.nil" { 104 type primary; 105 file "unixtime.db"; 106 check-integrity no; 107 allow-update { any; }; 108 allow-transfer { any; }; 109 serial-update-method unixtime; 110}; 111 112zone "yyyymmddvv.nil" { 113 type primary; 114 file "yyyymmddvv.db"; 115 check-integrity no; 116 allow-update { any; }; 117 allow-transfer { any; }; 118 serial-update-method date; 119}; 120 121include "md5.key"; 122include "sha1.key"; 123include "sha224.key"; 124include "sha256.key"; 125include "sha384.key"; 126include "sha512.key"; 127 128zone "keytests.nil" { 129 type primary; 130 file "keytests.db"; 131 update-policy { 132 grant md5-key name md5.keytests.nil. ANY; 133 grant sha1-key name sha1.keytests.nil. ANY; 134 grant sha224-key name sha224.keytests.nil. ANY; 135 grant sha256-key name sha256.keytests.nil. ANY; 136 grant sha384-key name sha384.keytests.nil. ANY; 137 grant sha512-key name sha512.keytests.nil. ANY; 138 }; 139}; 140 141zone "many.test" { 142 type primary; 143 allow-update { any; }; 144 file "many.test.db"; 145}; 146 147zone "sample" { 148 type primary; 149 allow-update { any; }; 150 file "sample.db"; 151}; 152 153zone "maxjournal.test" { 154 type primary; 155 allow-update { any; }; 156 file "maxjournal.db"; 157 max-journal-size default; 158}; 159