Tiends voila un exemple de named.conf comprenant une part interne et une
part externe:
include "/etc/named.acl";
include "/etc/named.key";
include "/etc/named.srv";
controls {
inet 127.0.0.1 port 953 allow { localhost; 127.0.0.1; } keys {
key1; key2; };
inet <ip serveur dns> port 953 allow { controls; } keys { key1;
key2; };
};
options {
directory "/var/named";
key-directory "/var/named";
dump-file "/var/named/dumps/named_dump.db";
memstatistics-file "/var/named/stats/named.memstats";
pid-file "/var/run/named/named.pid";
statistics-file "/var/named/stats/named.stats";
port 53;
notify yes;
recursion yes;
dnssec-enable yes;
forwarders {
<ip dns fai>;
<ip dns fai>;
};
allow-query {
home;
};
allow-update-forwarding { none; };
allow-transfer { slaves; };
listen-on { any; };
listen-on-v6 { none; };
query-source address * port 53;
transfer-format many-answers;
version none;
hostname none;
server-id none;
};
view "interne" IN {
match-clients { home; };
recursion yes;
zone "." {
type hint;
file "named.ca";
};
zone "0.0.127.in-addr.arpa" {
type master;
file "named.local";
allow-update { none; };
allow-transfer { none; };
};
zone "255.in-addr.arpa" {
type master;
file "named.255";
allow-update { none; };
allow-transfer { none; };
};
zone "<mon domaine interne>" {
type master;
file "named.<mon domaine interne>";
allow-update {
key key1;
key key2;
};
allow-transfer {
key key2;
};
};
zone "<ip reseau interne>.in-addr.arpa" {
type master;
file "named.reverse";
allow-update {
key key1;
key key2;
};
allow-transfer {
key key2;
};
};
};
view "externe" IN {
match-clients { any; };
recursion no;
zone "<mon domaine externe>m" {
type master;
file "named.<mon domaine externe>";
allow-update {
key key2;
};
allow-transfer {
slaves;
key key2;
};
allow-query { any; };
};
zone "<mon autre domaine externe>" {
type master;
file "named.<mon autre domaine externe>";
allow-update {
key key2;
};
allow-transfer {
slaves;
key key2;
};
allow-query { any; };
};
};
view "chaos" CHAOS {
match-clients { any; };
allow-query { none; };
zone "." {
type hint;
file "/dev/null";
};
};
____________________________________________________
Want to buy your Pack or Services from Mandriva?
Go to http://store.mandriva.com
Join the Club : http://www.mandrivaclub.com
____________________________________________________
