named.conf.local

   1 //
   2 // Do any local configuration here
   3 //
   4
   5 // Consider adding the 1918 zones here, if they are not used in your
   6 // organization
   7 //include "/etc/bind/zones.rfc1918";
   8
   9 # zone "debuntu.foo" {
  10 #        type master;
  11 #        file "debuntu.foo.db";
  12 #        notify no;
  13 #};
  14
  15 acl "transfer-allowed" {
  16         localhost;
  17         207.29.250.54;  // ???
  18         18.4.60.36;     // charon
  19         18.49.3.1;      // charon4
  20         18.25.131.1;    // charon4
  21         74.207.246.137; // arctic
  22         66.92.29.156;   // copan
  23         18.18.208.12;   // olinda
  24         18.25.129.162;  // adehnert3.xvm
  25         130.44.166.3;   // DD
  26         18.18.208.22;   // chankillo
  27         // Linode
  28         104.237.137.10;
  29         45.79.109.10;
  30         74.207.225.10;
  31         207.192.70.10;
  32         109.74.194.10;
  33         2600:3c00::a;
  34         2600:3c01::a;
  35         2600:3c02::a;
  36         2600:3c03::a;
  37         2a01:7e00::a;
  38 };
  39
  40 masters "primary-ns" {
  41         18.18.208.12;   // olinda
  42 };
  43
  44 masters "secondary-ns" {
  45         18.25.129.162;  // adehnert3.xvm
  46         18.18.208.22;   // chankillo
  47         // Linode
  48         // https://www.linode.com/docs/products/networking/dns-manager/guides/incoming-dns-zone-transfers/#operate-as-a-secondary-read-only-dns-service
  49         104.237.137.10;
  50         45.79.109.10;
  51         74.207.225.10;
  52         207.192.70.10;
  53         109.74.194.10;
  54         2600:3c00::a;
  55         2600:3c01::a;
  56         2600:3c02::a;
  57         2600:3c03::a;
  58         2a01:7e00::a;
  59 };
  60
  61 include "/etc/bind/named.conf.per-host";
  62
  63 zone "dynamic.dehnert.arctic.org" IN {
  64         // DNAME to the real, dynamic.dehnerts.com, zone
  65         type master;
  66         file "/etc/bind/pri/arctic-dynamic.zone";
  67         allow-update { none; };
  68         allow-transfer { "transfer-allowed"; };
  69         allow-query { any; };
  70         //notify no;
  71 };
  72
  73 zone "dehnert.arctic.org" IN {
  74         type master;
  75         file "/etc/bind/pri/combined-dehnerts.zone";
  76         allow-update { none; };
  77         allow-transfer { "transfer-allowed"; };
  78         allow-query { any; };
  79         //notify no;
  80 };
  81 zone "dehnerts.com" IN {
  82         type master;
  83         file "/etc/bind/pri/combined-dehnerts.zone";
  84         #update-policy { grant * selfsub * A TXT;};
  85         allow-update { none; };
  86         allow-transfer { "transfer-allowed"; };
  87         allow-query { any; };
  88         //notify no;
  89 };
  90
  91 logging {
  92     channel query.log {
  93         file "/var/log/named/query.log" versions 10 size 100M;
  94         // Set the severity to dynamic to see all the debug messages.
  95         severity debug 3;
  96         print-category yes;
  97         print-severity yes;
  98         print-time yes;
  99     };
 100
 101     category queries { query.log; };
 102 };