/etc/named.conf
//
// named.conf for Red Hat caching-nameserver
//
// 内部ネットワーク定義
acl localnet{
192.168.0.0/24;
127.0.0.1;
};
options {
version "unknown";
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
allow-transfer {
203.bbb.ccc.ddd; ← 自分のグローバルIP
203.141.128.33; ← セカンダリDNSアドレス
};
};
//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
logging {
category lame-servers { null; };
};
// 内部向けゾーン情報
view "lan" {
match-clients { localnet; };
recursion yes;
// ルートキャッシュファイル
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
// sea-bird.org の正引きゾーン情報
zone "sea-bird.org" IN {
type master;
file "sea-bird.org.db.lan";
allow-update { none; };
};
// 192.168.0.XXX の逆引きゾーン情報
zone "0.168.192.in-addr.arpa" IN {
type master;
file "0.168.192.in-addr.arpa.db";
allow-update { none; };
};
};
// 外部向けゾーン情報 / sea-bird.org
view "wan" {
match-clients { any; };
recursion no;
// sea-bird.org の正引きゾーン情報
zone "sea-bird.org" IN {
type master;
file "sea-bird.org.db";
allow-query { any; };
};
};
include "/etc/rndc.key";