Date: Tue, 05 Dec 2006 09:38:05 +0000 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Andrew Falanga <af300wsm@gmail.com> Cc: freebsd-questions <freebsd-questions@freebsd.org> Subject: Re: Configuring DNS (BIND) in isolation Message-ID: <45753DFD.1060904@infracaninophile.co.uk> In-Reply-To: <340a29540612041225n1e36975bj261fd450a56805df@mail.gmail.com> References: <340a29540612011303n4b6d6367gc385021cfe0be7dc@mail.gmail.com> <4570AC93.60600@infracaninophile.co.uk> <340a29540612041225n1e36975bj261fd450a56805df@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigB8FBD36047E3745234B99B1C
Content-Type: text/plain; charset=ISO-8859-15
Content-Transfer-Encoding: quoted-printable
Andrew Falanga wrote:
>>
>>
>> You're on the right track. Yes, you'ld need a zone file for the root =
of
>> your DNS -- if it's all served from one machine then that would replac=
e
>> the
>> 'hint' zone and named.root stuff in the example named.conf
>>
>> The zone file for '.' would contain an SOA record and then delegation =
for
>> whatever forward and reverse domains you want to use. Eg. supposing y=
ou
>> want to use the TLD 'in.isolation' with IP numbers from 192.168.0.0/24=
>> then you'ld need something like:
>>
>> ;
>> ; Root of the private domain name system
>> ;
>> $TTL 604800 ; 1 week
>>
>> @ IN SOA ns0.in.isolation.
>> hostmaster.in.isolation. (
>> 2006120100 ; Serial
>> 1800 ; Refresh (30min)
>> 900 ; Retry (15min)
>> 604800 ; Expire (1week)
>> 86400 ) ; Minimum (1day)
>> in.isolation. IN NS ns0.in.isolation.
>> 0.168.192.in-addr.arpa. IN NS ns0.in.isolation.
>> ns0.in.isolation. IN A 192.168.0.1 ; Glue
>> ;
>> ; That's All Folks!
>> ;
>>
>=20
> Ok, here's the problems I've got so far. I've made the following files=
,
>=20
> isolated.zone, isolated.rev, localhost.rev, localhost-v6.rev and root.z=
one
>=20
> The isolated.* files are for the forward addresses and the reverse poin=
ters
> for 192.168.0.0/24 that I've set up. The root.zone file contains, what=
I
> thought should be, for the "." zone. (Matthew, from your message above=
, I
> wasn't clear if all I'd need is what you have above, or that it was imp=
lied
> that I'd need a SOA for the "." zone as well. So, I made one.)
The above *is* for the root zone. =20
> Now, I'm getting a few errors. Sometimes it seems that named can't fin=
d
> the
> files that I told it to look for in named.conf. I used the original
> named.conf file as a reference, and just filled in the "blanks" as it w=
ere,
> for my zones.
>=20
> Also, named keeps complaining about rndc.key files missing. How do I
> generate these key files? I didn't find anything from 'man rndc'?
Use rndc-confgen and follow the instructions written in the file
it outputs about editing named.conf. You won't need a separate
rndc.key file.
Matthew
--=20
Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
Kent, CT11 9PW
--------------enigB8FBD36047E3745234B99B1C
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFFdT4D8Mjk52CukIwRCPQFAJ90extEDpD5Dzj/l4I3eGWd/stCegCeLrWN
owI3/WTtXzAbqO9ulvsdJVM=
=hz+s
-----END PGP SIGNATURE-----
--------------enigB8FBD36047E3745234B99B1C--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45753DFD.1060904>