named.conf.options

   1 options {
   2         directory "/var/cache/bind";
   3
   4         // If there is a firewall between you and nameservers you want
   5         // to talk to, you might need to uncomment the query-source
   6         // directive below.  Previous versions of BIND always asked
   7         // questions using port 53, but BIND 8.1 and later use an unprivileged
   8         // port by default.
   9
  10         // query-source address * port 53;
  11
  12         // If your ISP provided one or more IP addresses for stable
  13         // nameservers, you probably want to use them as forwarders.
  14         // Uncomment the following block, and insert the addresses replacing
  15         // the all-0's placeholder.
  16
  17         // ALEX DEHNERT: slightly updated 2008-12-19
  18         // ALEX DEHNERT: slightly updated 2010-03-01
  19         forward first;
  20         forwarders {
  21                 18.71.0.151;
  22                 18.70.0.160;
  23                 18.72.0.3;
  24         };
  25
  26         // ALEX DEHNERT: copied from old arctic version on 2008-12-19
  27         //ALEX DEHNERT: Security-related stuff:
  28         // Secure(ish):
  29         allow-recursion { 18.102.208.15; 66.92.29.156; 66.92.29.144; 127.0.0.1; 192.168.0.0/16; 18.0.0.0/8; };
  30         //allow-query   { 66.92.29.156; 66.92.29.144; 127.0.0.1; };
  31         allow-transfer { none; };
  32
  33         // Insecure:
  34         //allow-recursion       { any; };
  35         allow-query     { any; };
  36
  37
  38         auth-nxdomain no;    # conform to RFC1035
  39         listen-on-v6 { any; };
  40
  41         // Decent info on DNS
  42         // http://newweb.zytrax.com/books/dns/ch2/
  43         // http://www.madboa.com/geek/soho-bind/
  44 };
  45