Jeffrey 的學習筆記: DNS - ISC BIND 設定檔範例備份

"BIND path"\etc\named.conf:

options {
directory "C:\Windows\System32\dns\zone";
};

key "rndc-key" {
algorithm hmac-md5;
secret "H42yg4KaMNqHcPSFuBRuWg==";
};

controls {

inet 127.0.0.1 port 953 allow { localhost; } keys { "rndc-key"; };

};

zone "dstestdns.com" IN {
type master;
file "mydomain.txt";
allow-transfer { none; };
};

zone "dstestgods.com" IN {
type master;
file "gotods.txt";
allow-transfer { none; };
};

logging
{
channel default-log {
file "C:\Windows\System32\dns\log\BIND_default.log" versions 10 size 200m;
severity info;
print-time yes;
};
channel lamer-log {
file"C:\Windows\System32\dns\log\BIND_lamer.log" versions 3 size 100m;
severity info;
print-severity yes;
print-time yes;
print-category yes;
};
channel query-log {
file "C:\Windows\System32\dns\log\BIND_query.log" versions 10 size 1000m;
severity info;
print-time yes;
};
channel security-log {
file"C:\Windows\System32\dns\log\BIND_security.log" versions 3 size 100m;
severity info;
print-severity yes;
print-time yes;
print-category yes;
};
category lame-servers { lamer-log; };
category security { security-log;};
category queries { query-log;};
category default { default-log;};
};

//=======================================================

"BIND path"\zone\mydomain.txt:

$TTL 600

@ IN SOA dstestdns.com. root.dstestdns.com. (

2006102001 ; Serial 僅作為序號而已

28800 ; Refresh slave 伺服器的更新時間

14400 ; Retry 當 slave 主機更新失敗，多久再重新更新一次

720000 ; Expire 重複 retry 多久後就宣告不治....不再更新

86400 ) ; Minimum 可視為 TTL ，尤其是你沒有設定 $TTL 時

@ IN NS dstestdns.com.

www IN A 192.168.11.227 //將www.dstestdsn.com轉到192.168.11.227

dns IN A 192.168.11.166

@ IN A 192.168.11.166

IN MX 10 dns

IN MX 20 dns

IN MX 30 dns

blog IN CNAME www

ftp IN CNAME www

photo IN CNAME www

mail IN CNAME www

//=======================================================

"BIND path"\zone\gotods.txt: