named.conf revision 1.7.32.1
1 1.7.32.1 sborrill # $NetBSD: named.conf,v 1.7.32.1 2020/03/27 08:43:42 sborrill Exp $ 2 1.1 tron 3 1.1 tron # boot file for secondary name server 4 1.1 tron # Note that there should be one primary entry for each SOA record. 5 1.7 christos # If you cannot get DNSSEC to work, and you see the following message: 6 1.7 christos # DNSKEY: verify failed due to bad signature (keyid=19036): \ 7 1.7 christos # RRSIG validity period has not begun 8 1.7 christos # Fix your clock. You can comment out the dnssec entries temporarily to 9 1.7 christos # get to an ntp server. 10 1.1 tron 11 1.1 tron options { 12 1.1 tron directory "/etc/namedb"; 13 1.6 christos dnssec-enable yes; 14 1.7 christos dnssec-validation auto; 15 1.6 christos managed-keys-directory "keys"; 16 1.7 christos bindkeys-file "bind.keys"; 17 1.4 itojun allow-recursion { localhost; localnets; }; 18 1.5 dholland 19 1.5 dholland # 20 1.5 dholland # This forces all queries to come from port 53; might be 21 1.5 dholland # needed for firewall traversals but should be avoided if 22 1.5 dholland # at all possible because of the risk of spoofing attacks. 23 1.5 dholland # 24 1.5 dholland #query-source address * port 53; 25 1.1 tron }; 26 1.1 tron 27 1.1 tron zone "." { 28 1.1 tron type hint; 29 1.1 tron file "root.cache"; 30 1.1 tron }; 31 1.1 tron 32 1.1 tron zone "localhost" { 33 1.1 tron type master; 34 1.1 tron file "localhost"; 35 1.1 tron }; 36 1.1 tron 37 1.1 tron zone "127.IN-ADDR.ARPA" { 38 1.1 tron type master; 39 1.1 tron file "127"; 40 1.1 tron }; 41 1.1 tron 42 1.1 tron zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" { 43 1.1 tron type master; 44 1.1 tron file "loopback.v6"; 45 1.1 tron }; 46 1.1 tron 47 1.1 tron # example secondary server config: 48 1.1 tron # 49 1.1 tron # zone "Berkeley.EDU" { 50 1.1 tron # type slave; 51 1.1 tron # file "berkeley.edu.cache"; 52 1.1 tron # masters { 53 1.1 tron # 128.32.130.11; 54 1.1 tron # 128.32.133.1; 55 1.1 tron # }; 56 1.1 tron # }; 57 1.1 tron 58 1.1 tron # zone "32.128.IN-ADDR.ARPA" { 59 1.1 tron # type slave; 60 1.1 tron # file "128.32.cache"; 61 1.1 tron # masters { 62 1.1 tron # 128.32.130.11; 63 1.1 tron # 128.32.133.1; 64 1.1 tron # }; 65 1.1 tron # }; 66 1.1 tron 67 1.1 tron # example primary server config: 68 1.1 tron # 69 1.1 tron # zone "Berkeley.EDU" { 70 1.1 tron # type master; 71 1.1 tron # file "berkeley.edu"; 72 1.1 tron # }; 73 1.1 tron 74 1.1 tron # zone "32.128.IN-ADDR.ARPA" { 75 1.1 tron # type master; 76 1.1 tron # file "128.32"; 77 1.1 tron # }; 78
Indexes created Mon Oct 13 16:09:52 GMT 2025