User Tools

Site Tools


bdnog11:netsec:bind-authoritative

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revision Both sides next revision
bdnog11:netsec:bind-authoritative [2020/01/12 12:48]
Muhammad Moinur Rahman
bdnog11:netsec:bind-authoritative [2020/01/12 15:30]
Muhammad Moinur Rahman
Line 20: Line 20:
 ) )
      
-IN NS   ​ns.groupXX.net.+@       IN NS      ns.groupXX.net.
  
 ns IN A 192.168.30.X ns IN A 192.168.30.X
Line 45: Line 45:
 zone "​groupYY.net"​ { zone "​groupYY.net"​ {
  type slave;  type slave;
- file "/var/​named/​slave/​db.groupYY.net";​+ file "/etc/​named/​slave/​db.groupYY.net";​
  masters { 192.168.30.YY;​  masters { 192.168.30.YY;​
  };  };
 };</​code>​ };</​code>​
   - Secure your zones by restricting who can get the zone file. You can test this by trying zone transfer from another nameserver in the lab.\\ <​code>​dig @localhost groupYY.net AXFR</​code>​\\ If successful, you will see all the resource records as an output.   - Secure your zones by restricting who can get the zone file. You can test this by trying zone transfer from another nameserver in the lab.\\ <​code>​dig @localhost groupYY.net AXFR</​code>​\\ If successful, you will see all the resource records as an output.
-  - Now, add the following ​line in your ''​named.conf.local''​ for the zones where you are primary:\\ <​code>​+  - Now, add the ''​allow-transfer'' ​line in your ''​named.conf.local''​ for the zones where you are primary ​so that your zone block looks like following:\\ <​code>​
 zone "​groupXX.net"​ { zone "​groupXX.net"​ {
  type master;  type master;
bdnog11/netsec/bind-authoritative.txt ยท Last modified: 2020/01/12 16:00 by Muhammad Moinur Rahman