X-Git-Url: https://dehnerts.com/gitweb/?a=blobdiff_plain;f=named.conf.local;h=cffad2e4710a1cf15841c4d6460f6ea85f7b6604;hb=03c4635c97c1274df603bba7e027b4fde6122858;hp=9f092090bcf989a72ef4a7ef85baf9bb315c44c6;hpb=6351ccb1853e565aba2da733c5de0e3382541fb1;p=sysconfig%2Fbind.git

diff --git a/named.conf.local b/named.conf.local
index 9f09209..cffad2e 100644
--- a/named.conf.local
+++ b/named.conf.local
@@ -12,22 +12,89 @@
 #        notify no;
 #};
 
-//added by Alex Dehnert on 2004-11-27
+acl "transfer-allowed" {
+	localhost;
+	207.29.250.54;  // ???
+	18.4.60.36;     // charon
+	18.49.3.1;      // charon4
+	18.25.131.1;    // charon4
+	74.207.246.137; // arctic
+	66.92.29.156;   // copan
+	18.18.208.12;   // olinda
+	18.25.129.162;  // adehnert3.xvm
+	130.44.166.3;   // DD
+	// Linode
+	104.237.137.10;
+	45.79.109.10;
+	74.207.225.10;
+	207.192.70.10;
+	109.74.194.10;
+	2600:3c00::a;
+	2600:3c01::a;
+	2600:3c02::a;
+	2600:3c03::a;
+	2a01:7e00::a;
+};
+
+masters "primary-ns" {
+	18.18.208.12;   // olinda
+};
+
+masters "secondary-ns" {
+	18.25.129.162;  // adehnert3.xvm
+	// Linode
+	// https://www.linode.com/docs/products/networking/dns-manager/guides/incoming-dns-zone-transfers/#operate-as-a-secondary-read-only-dns-service
+	104.237.137.10;
+	45.79.109.10;
+	74.207.225.10;
+	207.192.70.10;
+	109.74.194.10;
+	2600:3c00::a;
+	2600:3c01::a;
+	2600:3c02::a;
+	2600:3c03::a;
+	2a01:7e00::a;
+};
+
+include "/etc/bind/named.conf.per-host";
+
+zone "dynamic.dehnert.arctic.org" IN {
+	// DNAME to the real, dynamic.dehnerts.com, zone
+	type master;
+	file "/etc/bind/pri/arctic-dynamic.zone";
+	allow-update { none; };
+	allow-transfer { "transfer-allowed"; };
+	allow-query { any; };
+	//notify no;
+};
+
 zone "dehnert.arctic.org" IN {
 	type master;
-//	file "pri/arctic.zone";
 	file "/etc/bind/pri/combined-dehnerts.zone";
-	allow-update { none; };
-	allow-transfer { localhost;  207.29.250.54; 18.181.0.36; 74.207.246.137; };
+        allow-update { none; };
+	allow-transfer { "transfer-allowed"; };
 	allow-query { any; };
-	notify no;
+	//notify no;
 };
 zone "dehnerts.com" IN {
 	type master;
-//	file "pri/dehnerts.zone";
 	file "/etc/bind/pri/combined-dehnerts.zone";
-	allow-update { none; };
-	allow-transfer { localhost;  207.29.250.54; 18.181.0.36; 74.207.246.137; };
+	#update-policy { grant * selfsub * A TXT;};
+        allow-update { none; };
+	allow-transfer { "transfer-allowed"; };
 	allow-query { any; };
-	notify no;
+	//notify no;
+};
+
+logging {
+    channel query.log {
+        file "/var/log/named/query.log" versions 10 size 100M;
+        // Set the severity to dynamic to see all the debug messages.
+        severity debug 3;
+        print-category yes;
+        print-severity yes;
+        print-time yes;
+    };
+
+    category queries { query.log; };
 };