acl privatenet {
192.168.1.0/24;
127.0.0.1/32;
};
acl dmznet {
192.168.0.0/24;
};
acl external {
};
options {
directory "/etc/namedb";
pid-file "/var/run/named/pid";
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";
listen-on { 127.0.0.1; 192.168.10.0/24; 192.168.1.0/24; 192.168.0.0/24; };
allow-transfer { none; };
allow-query { none; };
recursion no;
version "(^0^)";
};
logging {
category lame-servers { null; };
channel security_log {
file "/var/log/security.log" versions 7 size 1m;
severity info;
print-time yes;
print-category yes;
};
category security { "security_log"; };
};
include "rndc.key";
controls {
inet 127.0.0.1 allow { 127.0.0.1; } keys { RNDC; };
};
view internal {
match-clients { privatenet; };
allow-transfer { privatenet; };
allow-query { privatenet; };
recursion yes;
zone "0.0.127.in-addr.arpa" {
type master;
file "master/127.0.0.zone";
allow-update { none; };
};
zone "rishiri.info" {
type master;
file "master/rishiri.info_private.zone";
};
zone "1.168.192.in-addr.arpa" {
type master;
file "master/192.168.1.zone";
};
};
view dmz {
match-clients { dmznet; };
allow-query { dmznet; };
recursion no;
zone "0.168.192.in-addr.arpa" {
type master;
file "master/192.168.0.zone";
};
zone "rishiri.info" {
type master;
file "master/rishiri.info_dmz.zone";
};
};
view external {
match-clients { any; };
allow-query { any; };
recursion no;
zone "." {
type hint;
file "named.root";
};
zone "10.168.192.in-addr.arpa" {
type master;
file "master/192.168.10.zone";
allow-update { none; };
};
zone "rishiri.info" {
type master;
file "master/rishiri.info.zone";
allow-transfer {
external;
};
};
zone "101.217.117.219.in-addr.arpa" {
type master;
file "master/219.117.217.101.zone";
allow-transfer {
external;
};
};
};
2008年11月16日日曜日
DNS Server / named.conf
# cat /etc/namedb/named.conf
登録:
コメントの投稿 (Atom)
0 件のコメント:
コメントを投稿