53 lines
1.3 KiB
Plaintext
53 lines
1.3 KiB
Plaintext
acl goodclients {
|
|
localhost;
|
|
192.168.1.0/24;
|
|
};
|
|
|
|
options {
|
|
directory "/var/cache/bind";
|
|
|
|
// If there is a firewall between you and nameservers you want
|
|
// to talk to, you may need to fix the firewall to allow multiple
|
|
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
|
|
|
|
// If your ISP provided one or more IP addresses for stable
|
|
// nameservers, you probably want to use them as forwarders.
|
|
// Uncomment the following block, and insert the addresses replacing
|
|
// the all-0's placeholder.
|
|
|
|
//Set the IP addresses of your ISP's DNS servers:
|
|
forwarders {
|
|
80.67.169.12; // fdn.fr
|
|
80.67.169.40; // fdn.fr
|
|
1.1.1.1; // Cloudflare
|
|
};
|
|
|
|
allow-query { goodclients; };
|
|
|
|
//========================================================================
|
|
// If BIND logs error messages about the root key being expired,
|
|
// you will need to update your keys. See https://www.isc.org/bind-keys
|
|
//========================================================================
|
|
dnssec-validation auto;
|
|
|
|
listen-on-v6 { any; };
|
|
};
|
|
|
|
// Provide a reverse mapping for the loopback
|
|
// address 127.0.0.1
|
|
//zone "0.0.127.in-addr.arpa" {
|
|
// type master;
|
|
// file "localhost.rev";
|
|
// notify no;
|
|
//};
|
|
|
|
zone "localhost" {
|
|
type master;
|
|
file "/etc/bind/local.db";
|
|
};
|
|
|
|
zone "lan" {
|
|
type master;
|
|
file "/etc/bind/lan.db";
|
|
};
|