2008年3月24日 星期一

Bind Dns Master-Slave











(Masters DNS)

// generated by named-bootconf.pl

options { directory "/var/named";

statistics-file "/var/named/named.stats";

dump-file "/var/named/data/cache_dump.db";

// query-source address * port 53;
listen-on-v6 { none; };
notify yes;
allow-notify { 10.0.1.1; 10.0.1.6; };
auth-nxdomain yes; # conform to RFC1035
version " " ;
listen-on {10.0.1.1; 10.0.99.1; };
//allow-transfer {10.0.1.1; 10.0.1.6; };
//check-names master ignore;
//check-names slave ignore;
//check-names response ignore;};
};
controls { inet * port 953 allow { 127.0.0.1; 10.0.1.1; 10.0.99.1; } keys { "rndckey"; };};
key "rndckey" { algorithm hmac-md5; secret "tqqAoUEYJN48iWP1knJLmzb2ZvtEChfjLXyteWYqxRTNHeVr46MOSFdzOnKH";};
acl inside-group { 10.0.1.0/24; 10.0.2.0/24; };
acl dns-transfer-group { !10.0.1.1; 10.0.1.6; };

view "internal" {
allow-query { inside-group; };
match-clients { 10.0.1.1; 10.0.1.6; !10.0.99.0/24; inside-group; };
allow-transfer { dns-transfer-group; } ;
recursion yes ;
zone "." IN {
type hint;
file "named.ca"; };
zone "domain.com" IN {
type master;
file "domain.com.internal"; };
zone "1.0.10.in-addr.arpa" IN {
type master;
file "10.0.1.rev"; };
};

view "external" {
allow-query { any; };
match-clients { any; };
allow-transfer { 10.0.99.6; !10.0.99.1; };
recursion no;

zone "." IN {
type hint;
file "named.ca"; };

zone "domain.com" IN {
type master;
file "domain.com.external"; };

zone "domain.com.tw" IN {
type master;
file "domain.com.tw.external"; };
// zone "0.0.127.in-addr.arpa" IN {
// type master;
// file "localhost.rev";
// };
};
(Slave DNS)
// generated by named-bootconf.pl

controls { inet * port 953 allow { 127.0.0.1; 10.0.1.6; 10.0.99.6; } keys { "rndckey"; };};
key "rndckey" { algorithm hmac-md5; secret "tqqAoUEYJN48iWP1knJLmzb2ZvtEChfjLXyteWYqxRTNHeVr46MOSFdzOnKH";};
acl inside-group { 10.0.1.0/24; 10.0.2.0/24; };
acl dns-transfer-group { 10.0.1.1; !10.0.1.6; };

view "internal" {
allow-query { inside-group; };
match-clients { !10.0.1.1; 10.0.1.6 ; inside-group; };
allow-transfer { dns-transfer-group ; } ;
recursion yes ;

zone "." IN {
type hint;
file "named.ca"; };
zone "domain.com" IN {
type slave;
masters { 10.0.1.1; };
transfer-source 10.0.1.6;
file "domain.com.internal"; };
zone "1.0.10.in-addr.arpa" IN {
type slave;
masters { 10.0.1.1; };
transfer-source 10.0.1.6;
file "10.0.1.rev"; };
};

view "external" {
allow-query { any; };
match-clients { any; };
allow-transfer { 10.0.99.1; !10.0.99.6; };
recursion no;

zone "." IN {
type hint;
file "named.ca"; };

zone "domain.com" IN {
type slave;
masters { 10.0.99.1; };
transfer-source 10.0.99.6;
file "domain.com.external"; };

zone "domain.com.tw" IN {
type slave;
masters { 10.0.99.1; };
transfer-source 10.0.99.6;
file "domain.com.tw.external"; };


// zone "0.0.127.in-addr.arpa" IN {
// type master;
// file "localhost.rev";
// };
};
沒有留言:
標籤:

心,態,習,性

心若改變,你的態度跟著改變。
態度改變,你的習慣跟著改變。
習慣改變,你的性格跟著改變。
性格改變,你的人生跟著改變。
沒有留言:
標籤:
訂閱: 文章 (Atom)

Windows Server AD dsquery (查詢指令)

Windows Server  AD  dsquery     ( 查詢指令 ) 通用的參數:    -limit 0   指定傳回符合搜尋條件的物件數目,如果值是 0 ,將傳回所有符合的物件。 如果不指定此參數,根據預設將只顯示前 100 個結果。 ...

  • 簡單了解Intel VT-d及VM Passthrough 設定
    本文 取自 虛擬先生Blog站台 http://vaemon.com/article/865.html 【長篇教學】簡單了解Intel VT-d 2010年4月18日 嘉許 發表評論 閱讀評論 大約在2006年後生產的中高級CPU/晶片組產品...
  • 透過批次指令執行壓縮、備份工作
    透過批次指令執行壓縮、備份工作 想要透過腳本程式或批次檔,定期將指定目錄底下的每個檔案,壓製成獨立的壓縮檔,以下提供幾種方法供大家參考。 A.怎麼樣透過腳本程式或批次檔,定期將指定目錄底下的每個檔案,壓製成獨立的壓縮檔? 程式碼(因篇幅限制,完整程式碼請參考網站原文)的功能...