named.conf revision 1.7
1 1.7 christos # $NetBSD: named.conf,v 1.7 2013/04/25 20:28:05 christos Exp $ 2 1.1 tron 3 1.1 tron # boot file for secondary name server 4 1.1 tron # Note that there should be one primary entry for each SOA record. 5 1.7 christos # If you cannot get DNSSEC to work, and you see the following message: 6 1.7 christos # DNSKEY: verify failed due to bad signature (keyid=19036): \ 7 1.7 christos # RRSIG validity period has not begun 8 1.7 christos # Fix your clock. You can comment out the dnssec entries temporarily to 9 1.7 christos # get to an ntp server. 10 1.1 tron 11 1.1 tron options { 12 1.1 tron directory "/etc/namedb"; 13 1.6 christos dnssec-enable yes; 14 1.7 christos dnssec-validation auto; 15 1.6 christos dnssec-lookaside auto; 16 1.6 christos managed-keys-directory "keys"; 17 1.7 christos bindkeys-file "bind.keys"; 18 1.4 itojun allow-recursion { localhost; localnets; }; 19 1.5 dholland 20 1.5 dholland # 21 1.5 dholland # This forces all queries to come from port 53; might be 22 1.5 dholland # needed for firewall traversals but should be avoided if 23 1.5 dholland # at all possible because of the risk of spoofing attacks. 24 1.5 dholland # 25 1.5 dholland #query-source address * port 53; 26 1.1 tron }; 27 1.1 tron 28 1.1 tron zone "." { 29 1.1 tron type hint; 30 1.1 tron file "root.cache"; 31 1.1 tron }; 32 1.1 tron 33 1.1 tron zone "localhost" { 34 1.1 tron type master; 35 1.1 tron file "localhost"; 36 1.1 tron }; 37 1.1 tron 38 1.1 tron zone "127.IN-ADDR.ARPA" { 39 1.1 tron type master; 40 1.1 tron file "127"; 41 1.1 tron }; 42 1.1 tron 43 1.1 tron zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" { 44 1.1 tron type master; 45 1.1 tron file "loopback.v6"; 46 1.1 tron }; 47 1.1 tron 48 1.1 tron # example secondary server config: 49 1.1 tron # 50 1.1 tron # zone "Berkeley.EDU" { 51 1.1 tron # type slave; 52 1.1 tron # file "berkeley.edu.cache"; 53 1.1 tron # masters { 54 1.1 tron # 128.32.130.11; 55 1.1 tron # 128.32.133.1; 56 1.1 tron # }; 57 1.1 tron # }; 58 1.1 tron 59 1.1 tron # zone "32.128.IN-ADDR.ARPA" { 60 1.1 tron # type slave; 61 1.1 tron # file "128.32.cache"; 62 1.1 tron # masters { 63 1.1 tron # 128.32.130.11; 64 1.1 tron # 128.32.133.1; 65 1.1 tron # }; 66 1.1 tron # }; 67 1.1 tron 68 1.1 tron # example primary server config: 69 1.1 tron # 70 1.1 tron # zone "Berkeley.EDU" { 71 1.1 tron # type master; 72 1.1 tron # file "berkeley.edu"; 73 1.1 tron # }; 74 1.1 tron 75 1.1 tron # zone "32.128.IN-ADDR.ARPA" { 76 1.1 tron # type master; 77 1.1 tron # file "128.32"; 78 1.1 tron # }; 79
Indexes created Sun Oct 12 20:09:57 GMT 2025