Samples of BIND/DNS server config files
There probably should be IN (see named.local) in some records, but it works fine this way, as well.
;
; a caching only nameserver config
;
directory /var/named
cache . named.ca
primary 0.0.127.in-addr.arpa named.local
;Added by jakub
primary nova2 nova2.zone
primary 199.100.199.in-addr.arpa nova2.rev
File nova2.zone
;
; Zone file for nova2
;
; Mandatory minimum for a working domain
;
@ IN SOA jakubpc.nova2. root.jakubpc.nova2. (
199511301 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
3600000 ; expire, seconds
86400 ) ; minimum, seconds
NS jakubpc.nova2.
MX 10 jakubpc.nova2. ; Primary Mail Exchanger
; MX 20 mail.friend.bogus. ; Secondary Mail Exchanger
intranet A 199.100.199.4
jakubpc A 199.100.199.2
martapc A 199.100.199.3
vladolab A 199.100.199.1
File nova2.rev
;
; Reverse Zone file for nova2
;
; Mandatory minimum for a working domain
;
@ IN SOA jakubpc.nova2. root.jakubpc.nova2. (
199511302 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
3600000 ; expire, seconds
86400 ) ; minimum, seconds
NS jakubpc.nova2.
; MX 10 jakubpc.nova2. ; Primary Mail Exchanger
; MX 20 mail.friend.bogus. ; Secondary Mail Exchanger
;here comes machines
1 PTR vladolab.nova2.
2 PTR jakubpc.nova2.
3 PTR martapc.nova2.
4 PTR intranet.nova2.
File named.local
@ IN SOA localhost. root.localhost. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS localhost.
1 IN PTR localhost.
File named.ca contains Internet's root DNS servers - no need to use it on intranet.
2001 November
-------------
DIG Topic
--
Paul Vixie: nslookup's functionality will probably return in some form, since a lot of people seem to
like it. The existing BIND8 implementation of nslookup is very closely bound to the internal API of
BIND8, which does not exist in BIND9. Generally, "dig NAME RRTYPE" is all most people need to
know, but if it's important to direct a query to a particular server then the syntax is "dig NAME
RRTYPE @SERVERADDRESS". Lastly, if what you want is a zone transfer (which nslookup
implemented in its "ls" command), the syntax is "dig NAME axfr @SERVERADDRESS", in other
words, use an RRTYPE of "axfr".
dig labath.org axfr @ganymede.wiredkingdom.com
#to query for a www.labath.org A record on a server ganymede.wiredkingdom.com
dig www.labath.org A @ganymede.wiredkingdom.com
#to query for MS records of labath.org on server ganymede.wiredkingdom.com
dig labath.org MX @ganymede.wiredkingdom.com
DYNIP topic
--
ipmasqadm portfw -a -P udp -L 53 -R 53
ipmasqadm portfw -a -P tcp -L 53 -R 53
ipmasqadm portfw -a -P tcp -L 9876 -R 9876
;
;
$TTL 60 ;TTL for records MAXIMUM the Negative TTL has to be even smaller than this
;labath.org. SOA odkial pochadza a kto je zodpovedny
;pochadza z ganymede.wiredkingdom.com a zodpovedny je [email protected]
@ IN SOA ganymede.wiredkingdom.com. jakub.wiredkingdom.com. (
2001103101 ; Serial
1800 ; Refresh this is for secondary DNS
3600 ; Retry so is this
1d ; Expire so is this
30 ) ; Negative Cache TTL
;
@ IN MX 10 mail
@ IN NS ganymede.wiredkingdom.com.
www IN A 24.156.188.237
mail IN A 24.156.188.237
labath.org. IN A 24.156.188.237
parenica IN A 24.156.188.237
ftp IN A 24.156.188.237
; negative cache explained
; nikto pozrie na ssh.labath.org
;lenze ssh.labath.org neexistuje takze to zostane trcat 30 sekund ako ze neexistuje
; aj ked pocas tych 30 sekund niekto toho ssh prida
to allow for dynamic updates
zone "labath.org" {
type master;
file "/etc/bind/db.labath.org";
allow-update {
127.0.0.1;
192.168.0.105;
};
};
#use nsupdate to add records
update add mailhub.labath.org 60 A 24.156.188.237
update add mailhub.labath.org 60 A 24.156.188.237
#removing
update delete mailhub.labath.org A
#or just
update delete mailhub.labath.org
#problem ze ganymede neni znama ako dns server
vytvoril som server dns2.labath.org u svojho providera
a subor vyzera asi nejak takto
;BIND DUMP V8
$ORIGIN org.
labath 86400 IN MX 10 mail.labath.org. ;Cl=2
86400 IN NS dns2.labath.org. ;Cl=2
86400 IN SOA dns2.labath.org. jakub.wiredkingdom.com. (
2001112428 3600 1800 86400 30 ) ;Cl=2
60 IN A 24.156.188.237 ;Cl=2
$ORIGIN labath.org.
jakub 60 IN A 24.156.188.237 ;Cl=2
ftp 60 IN A 24.156.188.237 ;Cl=2
mail 60 IN A 24.156.188.237 ;Cl=2
vlado 60 IN A 24.156.188.237 ;Cl=2
parenica 60 IN A 24.156.188.237 ;Cl=2
www 60 IN A 24.156.188.237 ;Cl=2
#problem s nsupdate (request timed out)
kedze je moj dns za firewallom
a nemal tu adresu ako vo svetovom dns
tak nsupdate nechodil kym som dns2 nevyhodil z hore uvedeneho zone suboru
zaroven som dns2.labath.org pridal do /etc/hosts
aby ho nsupdate vedel najst
nevadi ze dns2 sa nenachadza v zone subore
pretoze uz sme ho staticky dali do svojho providera
takze ho rozlustia org servre