added some configurations and SOA's. Now to test

4 years ago · 6fa9ce7995
7 changed files with 109 additions and 6 deletions
--- a/db.ctl.sec
+++ b/db.ctl.sec
@ -0,0 +1,13 @@
+$TTL 3d
+@		IN SOA ctl.sec. root.ctl.sec. (
+			1	; serial
+			3h	; refresh
+			1h	; retry
+			1w	; expire
+			1800 )	; negative caching-ttl
+; Nameservers
+@		IN NS	secnet
+
+; IPv4 A Records
+secnet		IN A	10.2.0.1
+@		IN A	10.2.0.1
--- a/db.net1.sec
+++ b/db.net1.sec
@ -0,0 +1,13 @@
+$TTL 3d
+@		IN SOA net1.sec. root.net1.sec. (
+			1	; serial
+			3h	; refresh
+			1h	; retry
+			1w	; expire
+			1800 )	; negative caching-ttl
+; Nameservers
+@		IN NS	secnet
+
+; IPv4 A Records
+secnet		IN A	10.2.1.1
+@		IN A	10.2.1.1
--- a/db.net2.sec
+++ b/db.net2.sec
@ -0,0 +1,13 @@
+$TTL 3d
+@		IN SOA net2.sec. root.net2.sec. (
+			1	; serial
+			3h	; refresh
+			1h	; retry
+			1w	; expire
+			1800 )	; negative caching-ttl
+; Nameservers
+@		IN NS	secnet
+
+; IPv4 A Records
+secnet		IN A	10.2.2.1
+@		IN A	10.2.2.1
--- a/db.net3.sec
+++ b/db.net3.sec
@ -0,0 +1,13 @@
+$TTL 3d
+@		IN SOA net3.sec. root.net3.sec. (
+			1	; serial
+			3h	; refresh
+			1h	; retry
+			1w	; expire
+			1800 )	; negative caching-ttl
+; Nameservers
+@		IN NS	secnet
+
+; IPv4 A Records
+secnet		IN A	10.2.3.1
+@		IN A	10.2.3.1
--- a/db.net4.sec
+++ b/db.net4.sec
@ -0,0 +1,13 @@
+$TTL 3d
+@		IN SOA net4.sec. root.net4.sec. (
+			1	; serial
+			3h	; refresh
+			1h	; retry
+			1w	; expire
+			1800 )	; negative caching-ttl
+; Nameservers
+@		IN NS	secnet
+
+; IPv4 A Records
+secnet		IN A	10.2.4.1
+@		IN A	10.2.4.1
--- a/named.conf.local
+++ b/named.conf.local
@ -2,7 +2,33 @@
 // Do any local configuration here
 //

-// Consider adding the 1918 zones here, if they are not used in your
-// organization
-//include "/etc/bind/zones.rfc1918";
+//.ctl.sec
+zone "ctl.sec" in {
+  type master;
+  file "/etc/bind/db.ctl.sec";
+}
+
+//.net1.sec
+zone "net1.sec" in {
+  type master;
+  file "/etc/bind/db.net1.sec";
+}
+
+//.net2.sec
+zone "net2.sec" in {
+  type master;
+  file "/etc/bind/db.net2.sec";
+}
+
+//.net3.sec
+zone "net3.sec" in {
+  type master;
+  file "/etc/bind/db.net3.sec";
+}
+
+//.net4.sec
+zone "net4.sec" in {
+  type master;
+  file "/etc/bind/db.net4.sec";
+}

--- a/named.conf.options
+++ b/named.conf.options
@ -1,3 +1,10 @@
+acl a_trusted {
+	10.0.0.0/8;
+	localhost;
+	localnets;
+};
+
+
 options {
 	directory "/var/cache/bind";

@ -10,9 +17,14 @@ options {
 	// Uncomment the following block, and insert the addresses replacing 
 	// the all-0's placeholder.

-	// forwarders {
-	// 	0.0.0.0;
-	// };
+	forwarders {
+		128.153.145.3;
+	};
+
+	recursion yes;
+	allow-recursion {
+		a_trusted;
+	};

 	//========================================================================
 	// If BIND logs error messages about the root key being expired,