Difference between revisions of "Private Nameservers"
(Created page with "Install bind yum install bind bind-utils nano Open BIND conf file: nano /etc/named.conf Edit the file so it looks like below: options { #listen-on port 53 { 127.0.0...") |
|||
Line 14: | Line 14: | ||
allow-transfer { localhost; 1.2.3.4; }; | allow-transfer { localhost; 1.2.3.4; }; | ||
recursion no; | recursion no; | ||
− | + | ||
dnssec-enable yes; | dnssec-enable yes; | ||
dnssec-validation yes; | dnssec-validation yes; | ||
dnssec-lookaside auto; | dnssec-lookaside auto; | ||
− | + | ||
/* Path to ISC DLV key */ | /* Path to ISC DLV key */ | ||
bindkeys-file "/etc/named.iscdlv.key"; | bindkeys-file "/etc/named.iscdlv.key"; | ||
− | + | ||
managed-keys-directory "/var/named/dynamic"; | managed-keys-directory "/var/named/dynamic"; | ||
}; | }; |
Revision as of 16:52, 19 May 2016
Install bind
yum install bind bind-utils nano
Open BIND conf file:
nano /etc/named.conf
Edit the file so it looks like below:
options { #listen-on port 53 { 127.0.0.1; }; listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { any; }; allow-transfer { localhost; 1.2.3.4; }; recursion no; dnssec-enable yes; dnssec-validation yes; dnssec-lookaside auto; /* Path to ISC DLV key */ bindkeys-file "/etc/named.iscdlv.key"; managed-keys-directory "/var/named/dynamic"; };
logging {
channel default_debug { file "data/named.run"; severity dynamic; };
};
zone "." IN {
type hint; file "named.ca";
};
zone "example.com" IN { type master; file "example.com.zone"; allow-update { none; }; };
include "/etc/named.rfc1912.zones"; include "/etc/named.root.key";
Where 1.2.3.4 is the IP of ns2 and example.com is your domain.