Views and recursion

Tim Jakobsen tja at jakobsen.vg
Tue Oct 5 18:32:59 UTC 2004


Hey,

On Tue, Oct 05, 2004 at 10:14:00AM -0400, David Botham wrote:
> Yes.  Post your actual config so we can help you.

Okay here goes:

acl "internal" { 192.168/16; };

/* Global options */
options {
        directory "/var/chroot/named/etc/namedb/";
	version "Guess";
	recursion no;
	recursive-clients 100;
};

key "rndc-key" {
        algorithm hmac-md5;
        secret "XXXXXXXXXXXXXXX";
};
 
 controls {
       inet 127.0.0.1 port 953
               allow { 127.0.0.1; } keys { "rndc-key"; };
 };

logging {
channel default2 {
                file "log/default.log" versions 200 size 3m;
                print-time yes;
                print-category yes;
		severity debug 10;
		};


	channel logging_all_queries {
		file "log/dns-allqueries.log" versions 200 size 3m;
		print-time yes;
		print-category yes;
		};

        channel logging_security {
                file "log/security.log" versions 200 size 3m;
		severity debug 2;
                print-time yes;
                print-category yes;
                };



	channel axfr_log {
		file "log/dns-axfr.log" versions 200 size 3m;
		print-time yes;
		print-category yes;
		};

/*	category queries { logging_all_queries; };*/
	category xfer-out { axfr_log; };
	category xfer-in { axfr_log; };
	category security { logging_security; };
	category default { null; };
	category default { logging_all_queries; };
	category lame-servers { null; };

};

/* My views */

view "internal" {

	match-clients { "internal"; };
        recursion yes;

	zone "ipv6.dk" {
		type master;
		file "/var/chroot/named/etc/namedb/db.ipv6.internal";
	};

	zone "2.168.192.in-addr.arpa" {
		type master;
		file "/var/chroot/named/etc/namedb/db.192.168.2";
	};

	zone "3.168.192.in-addr.arpa" {
		type master;
		file "/var/chroot/named/etc/namedb/db.192.168.3";
	};

	zone "4.168.192.in-addr.arpa" {
		type master;
		file "/var/chroot/named/etc/namedb/db.192.168.4";
	};

	/* loopback zone address-to-name */
	zone "0.0.127.IN-ADDR.ARPA" in {
       		 type master;
       		 file "/var/chroot/named/etc/namedb/db.127.0.0";
	};

	/* root hint zone */
	zone "." in {
       		 type hint;
       		 file "/var/chroot/named/etc/namedb/db.cache";
	};
};

view "external" {

	match-clients { any; };
        recursion no;

	zone "ipv6.dk" {
		type master;
		file "/var/chroot/named/etc/namedb/db.ipv6.external";
       		 allow-transfer { 80.63.205.140; 193.88.144.238; 217.157.39.7; 80.199.169.165; };
	};

	/* ipv6.dk zone address-to-name */
	zone "163.242.212.IN-ADDR.ARPA" in {
       		 type master;
       		 file "/var/chroot/named/etc/namedb/db.212.242.163";
       		 allow-transfer { 80.63.205.140; 193.88.144.238; 217.157.39.7; 80.199.169.165; };
	};

	/* root hint zone */
	zone "." in {
       		 type hint;
       		 file "/var/chroot/named/etc/namedb/db.cache";
	};
};



-- 
Regards,
 Tim


More information about the bind-users mailing list