Fichier named.conf. : Différence entre versions
De Wiki iRENALA
| Ligne 2 : | Ligne 2 : | ||
[[les interfaces qui ecoutes]] | [[les interfaces qui ecoutes]] | ||
| + | |||
acl INTERFACES { 127.0.0.1; 192.168.254.3;192.168.122.1; }; | acl INTERFACES { 127.0.0.1; 192.168.254.3;192.168.122.1; }; | ||
[[le port par qui ecoute]] | [[le port par qui ecoute]] | ||
| + | |||
options { | options { | ||
listen-on port 53 { INTERFACES; }; | listen-on port 53 { INTERFACES; }; | ||
| − | + | [[le répertoire de travail du DNS]] | |
| + | |||
directory "/var/named"; | directory "/var/named"; | ||
[[masquer la version pour sécuité]] | [[masquer la version pour sécuité]] | ||
| + | |||
version "Version indisponible"; | version "Version indisponible"; | ||
Version du 21 juillet 2011 à 13:53
sudo vim /var/named/chroot/etc/named.confTitre du lien
acl INTERFACES { 127.0.0.1; 192.168.254.3;192.168.122.1; };
options { listen-on port 53 { INTERFACES; };
le répertoire de travail du DNS
directory "/var/named";
masquer la version pour sécuité
version "Version indisponible";
- statistics-file "/var/log/stats.log";
};
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
logging {
channel log_queries {
file "/var/log/queries.log" versions 5 size 5m;
print-time yes;
print-category yes;
print-severity yes;
severity info;
};
category queries {
log_queries;
default_syslog;
default_debug;
default_stderr;
null;
};
};
view "back" IN {
match-clients { 192.168.254.0/24;127.0.0.1;10.240.24.0/24; };
allow-query { 192.168.254.0/24;127.0.0.1;10.240.24.0/24;};
recursion yes;
allow-recursion { 192.168.254.0/24;127.0.0.1;10.240.24.0/24;};
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "local";
allow-update { none; };
};
zone "edu.mg" IN {
type master;
file "edu.mg";
allow-update { none; };
};
zone "254.168.192.in-addr.arpa" IN {
type master;
file "edu.mg.rev";
allow-update { none; };
};
};
un view pour la DTIC encore en TEST
view "dtic" IN {
match-clients { 192.168.10.0/24; };
allow-query { 192.168.10.0/24; };
recursion yes;
allow-recursion { 192.168.10.0/24; };
zone "edu.mg" IN {
type master;
file "edu.mg";
allow-update { none; };
};
};
include "/etc/rndc.key";
