1 /* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * SPDX-License-Identifier: MPL-2.0 5 * 6 * This Source Code Form is subject to the terms of the Mozilla Public 7 * License, v. 2.0. If a copy of the MPL was not distributed with this 8 * file, you can obtain one at https://mozilla.org/MPL/2.0/. 9 * 10 * See the COPYRIGHT file distributed with this work for additional 11 * information regarding copyright ownership. 12 */ 13 14 dnssec-policy "internet" { 15 keys { 16 ksk key-directory lifetime unlimited algorithm ecdsa256; 17 zsk key-directory lifetime P90D algorithm ecdsa256; 18 }; 19 20 nsec3param iterations 0 optout no salt-length 8; 21 }; 22 23 dnssec-policy "intranet" { 24 keys { 25 ksk key-directory lifetime unlimited algorithm ecdsa256; 26 zsk key-directory lifetime P30D algorithm ecdsa256; 27 }; 28 nsec3param iterations 0 optout no salt-length 8; 29 }; 30 31 dnssec-policy "localhost" { 32 keys { 33 ksk key-directory lifetime unlimited algorithm ecdsa256; 34 zsk key-directory lifetime P30D algorithm ecdsa256; 35 }; 36 nsec3param iterations 0 optout no salt-length 8; 37 }; 38 39 options { 40 key-directory "global/keys"; 41 }; 42 43 view "localhost" { 44 match-clients { 127.0.0.1; ::1; }; 45 zone "example.com" IN { 46 type primary; 47 file "localhost/example.com.zone"; 48 dnssec-policy "localhost"; 49 }; 50 }; 51 52 view "external" { 53 match-clients { 0/0; }; 54 key-directory "external/keys"; 55 zone "example.com" IN { 56 type primary; 57 file "external/example.com.zone"; 58 dnssec-policy "internet"; 59 }; 60 }; 61 62 view "internal" { 63 match-clients { ::/0; }; 64 key-directory "internal/keys"; 65 zone "example.com" IN { 66 type primary; 67 file "internal/example.com.zone"; 68 dnssec-policy "intranet"; 69 }; 70 }; 71
Indexes created Mon Mar 02 05:31:46 UTC 2026