1 // This is the primary configuration file for the BIND DNS server named.
3 // Please read /usr/share/doc/bind9/README.Debian for information on the
4 // structure of BIND configuration files in Debian, *BEFORE* you customize
5 // this configuration file.
9 directory "/var/cache/bind";
11 // If there is a firewall between you and nameservers you want
12 // to talk to, you might need to uncomment the query-source
13 // directive below. Previous versions of BIND always asked
14 // questions using port 53, but BIND 8.1 and later use an unprivileged
17 // query-source address * port 53;
19 // If your ISP provided one or more IP addresses for stable
20 // nameservers, you probably want to use them as forwarders.
21 // Uncomment the following block, and insert the addresses replacing
22 // the all-0's placeholder.
28 auth-nxdomain no; # conform to RFC1035
32 // define a key - you should really change the secret since
33 // all Debian boxes everywhere will have the same secret
36 secret "c3Ryb25nIGVub3VnaCBmb3IgYSBtYW4gYnV0IG1hZGUgZm9yIGEgd29tYW4K";
39 // fortunately, using this control statement, we restrict access
40 // to the control port 953/tcp to only the localhost and we
41 // configure named to listen to 953 only on the lo interface
43 inet 127.0.0.1 allow { 127.0.0.1; } keys { "key"; };
47 // prime the server with knowledge of the root servers
50 file "/etc/bind/db.root";
53 // be authoritative for the localhost forward and reverse zones, and for
54 // broadcast zones as per RFC 1912
58 file "/etc/bind/db.local";
63 file "/etc/bind/db.freeswan";
67 zone "1.0.192.in-addr.arpa" {
69 file "/etc/bind/db.1.0.192.in-addr.arpa";
73 zone "2.1.192.in-addr.arpa" {
75 file "/etc/bind/db.2.1.192.in-addr.arpa";
79 zone "2.0.192.in-addr.arpa" {
81 file "/etc/bind/db.2.0.192.in-addr.arpa";
84 zone "127.in-addr.arpa" {
86 file "/etc/bind/db.127";
89 zone "0.in-addr.arpa" {
91 file "/etc/bind/db.0";
94 zone "255.in-addr.arpa" {
96 file "/etc/bind/db.255";
99 // add entries for other zones below here