Rozdíly

Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.

--- private:poznamky:linux:dns-bind [2016/09/01 05:39] – [Views] snemec
+++ private:poznamky:linux:dns-bind [2016/09/01 06:54] (aktuální) – [Views] snemec
@@ Řádek 1: / Řádek 1: @@
+====== Bind ======
+===== Konfigurace =====
+==== Views ====
+https://kb.isc.org/article/AA-00851/0/Understanding-views-in-BIND-9-by-example.html
+**Příklad konfigurace**
+<code - /etc/bind/named.conf>
+include "/etc/bind/named.conf.options";
+include "/etc/bind/named.conf.local";
+</code>
+<code - /etc/bind/named.conf.options>
+acl goodclients {
+.0.1.0/24;
+.0.3.0/24;
+    localhost;
+    localnets;
+};
+options {
+        directory "/var/cache/bind";
+        recursion yes;
+        allow-query { goodclients; };
+        dnssec-enable no;
+        dnssec-validation no;
+        dnssec-lookaside auto;
+        #dnssec-validation auto;
+        auth-nxdomain no;    # conform to RFC1035
+        listen-on-v6 port 53 { noneo; };
+forwarders {
+.8.8.8;
+.8.4.4;
+};
+forward first;
+};
+</code>
+<code - /etc/bind/named.conf.local>
+//
+// Do any local configuration here
+//
+// Consider adding the 1918 zones here, if they are not used in your
+// organization
+//include "/etc/bind/zones.rfc1918";
+view "ucitele" {
+      match-clients { 10.0.3.0/24; localhost; };
+      include "/etc/bind/named.conf.default-zones";
+      include "/etc/bind/named.conf.forward-zones";
+};
+view "ucitele-vyjimky" {
+      match-clients { 10.0.1.31; 10.0.1.152; 10.0.1.153; localhost; };
+      include "/etc/bind/named.conf.default-zones";
+      include "/etc/bind/named.conf.forward-zones";
+};
+view "zaci" {
+      match-clients { 10.0.1.0/24; localhost; };
+      include "/etc/bind/named.conf.default-zones";
+      include "/etc/bind/named.conf.forward-zones";
+      zone "facebook.com" {
+             type master;
+             file "/etc/bind/db.fcbook.com";
+      };
+};
+</code>