Bind For Private Network DNS Server: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
|||
| Line 17: | Line 17: | ||
19.83.10.1; # gtw | 19.83.10.1; # gtw | ||
19.83.10.2; # apn | 19.83.10.2; # apn | ||
19.83.10.3; # rpi, | 19.83.10.3; # rpi, dns | ||
19.83.10.6; # ceo | 19.83.10.6; # ceo | ||
19.83.10.10; # mac | 19.83.10.10; # mac | ||
| Line 26: | Line 26: | ||
recursion yes; # enables resursive queries | recursion yes; # enables resursive queries | ||
allow-recursion { trusted; }; # allows recursive queries from "trusted" clients | allow-recursion { trusted; }; # allows recursive queries from "trusted" clients | ||
listen-on { 19.83.10.3; }; # | listen-on { 19.83.10.3; }; # dns private IP address - listen on private network only | ||
allow-transfer { none; }; # disable zone transfers by default | allow-transfer { none; }; # disable zone transfers by default | ||
forward first; | forward first; | ||
| Line 63: | Line 63: | ||
; | ; | ||
$TTL 604800 | $TTL 604800 | ||
@ IN SOA | @ IN SOA dns.dev.shahed.biz. admin.dev.shahed.biz. ( | ||
3 ; Serial | 3 ; Serial | ||
604800 ; Refresh | 604800 ; Refresh | ||
| Line 71: | Line 71: | ||
; | ; | ||
; name servers - NS records | ; name servers - NS records | ||
@ IN NS | @ IN NS dns.dev.shahed.biz. | ||
; | ; | ||
; name servers - A records | ; name servers - A records | ||
dns.dev.shahed.biz. IN A 19.83.10.3 | |||
; 19.83.10.0/24 - A records | ; 19.83.10.0/24 - A records | ||
| Line 94: | Line 94: | ||
; | ; | ||
$TTL 604800 | $TTL 604800 | ||
@ IN SOA | @ IN SOA dns.dev.shahed.biz. admin.dev.shahed.biz. ( | ||
3 ; Serial | 3 ; Serial | ||
604800 ; Refresh | 604800 ; Refresh | ||
| Line 102: | Line 102: | ||
; | ; | ||
; name servers - NS records | ; name servers - NS records | ||
@ IN NS | @ IN NS dns.dev.shahed.biz. | ||
; | ; | ||
; PTR Records | ; PTR Records | ||
1.10 IN PTR gtw.dev.shahed.biz. ; 19.83.10.1 | 1.10 IN PTR gtw.dev.shahed.biz. ; 19.83.10.1 | ||
2.10 IN PTR apn.dev.shahed.biz. ; 19.83.10.2 | 2.10 IN PTR apn.dev.shahed.biz. ; 19.83.10.2 | ||
3.10 IN PTR | 3.10 IN PTR dns.dev.shahed.biz. ; 19.83.10.3 | ||
3.10 IN PTR rpi.dev.shahed.biz. ; 19.83.10.3 | 3.10 IN PTR rpi.dev.shahed.biz. ; 19.83.10.3 | ||
6.10 IN PTR ceo.dev.shahed.biz. ; 19.83.10.6 | 6.10 IN PTR ceo.dev.shahed.biz. ; 19.83.10.6 | ||
Revision as of 19:00, 30 July 2019
apt install bind9 bind9utils bind9-doc dnsutils
nano /etc/default/bind9
# run resolvconf?
RESOLVCONF=no
# startup options for the server
OPTIONS="-u bind -4"
nano /etc/bind/named.conf.options
acl "trusted" {
19.83.10.1; # gtw
19.83.10.2; # apn
19.83.10.3; # rpi, dns
19.83.10.6; # ceo
19.83.10.10; # mac
};
options {
directory "/var/cache/bind";
recursion yes; # enables resursive queries
allow-recursion { trusted; }; # allows recursive queries from "trusted" clients
listen-on { 19.83.10.3; }; # dns private IP address - listen on private network only
allow-transfer { none; }; # disable zone transfers by default
forward first;
forwarders {
8.8.8.8;
8.8.4.4;
};
dnssec-validation auto;
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};
nano /etc/bind/named.conf.local
zone "dev.shahed.biz" {
type master;
file "/etc/bind/zones/db.dev.shahed.biz"; # zone file path
};
zone "19.83.10.in-addr.arpa" {
type master;
file "/etc/bind/zones/db.19.83.10"; # 19.83.10.0/24 subnet
};
mkdir /etc/bind/zones
cp /etc/bind/db.local /etc/bind/zones/db.dev.shahed.biz
nano /etc/bind/zones/db.dev.shahed.biz
;
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA dns.dev.shahed.biz. admin.dev.shahed.biz. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
; name servers - NS records
@ IN NS dns.dev.shahed.biz.
;
; name servers - A records
dns.dev.shahed.biz. IN A 19.83.10.3
; 19.83.10.0/24 - A records
gtw.dev.shahed.biz. IN A 19.83.10.1
apn.dev.shahed.biz. IN A 19.83.10.2
rpi.dev.shahed.biz. IN A 19.83.10.3
ceo.dev.shahed.biz. IN A 19.83.10.6
mac.dev.shahed.biz. IN A 19.83.10.10
cp /etc/bind/db.127 /etc/bind/zones/db.19.83.10
nano /etc/bind/zones/db.19.83.10
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA dns.dev.shahed.biz. admin.dev.shahed.biz. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
; name servers - NS records
@ IN NS dns.dev.shahed.biz.
;
; PTR Records
1.10 IN PTR gtw.dev.shahed.biz. ; 19.83.10.1
2.10 IN PTR apn.dev.shahed.biz. ; 19.83.10.2
3.10 IN PTR dns.dev.shahed.biz. ; 19.83.10.3
3.10 IN PTR rpi.dev.shahed.biz. ; 19.83.10.3
6.10 IN PTR ceo.dev.shahed.biz. ; 19.83.10.6
10.10 IN PTR mac.dev.shahed.biz. ; 19.83.10.10
nano /etc/resolv.conf
nameserver 19.83.10.3
nameserver 8.8.8.8
nameserver 8.8.4.4
search dev.shahed.biz
nano /etc/network/interfaces
dns-nameservers 19.83.10.3 8.8.8.8 8.8.4.4
dns-search dev.shahed.biz
/etc/init.d/bind9 restart
named-checkconf -z
named-checkzone dev.shahed.biz /etc/bind/zones/db.dev.shahed.biz
named-checkzone 19.83.10.in-addr.arpa /etc/bind/zones/db.19.83.10
References
- How To Configure Bind as an Authoritative-Only DNS Server on Ubuntu 14.04
- How To Configure BIND as a Private Network DNS Server on Ubuntu 16.04
- How To Configure BIND as a Private Network DNS Server on Ubuntu 18.04
- Set Up Authoritative DNS Server on Ubuntu 18.04, 16.04 with BIND9
- Raspberry Pi Bind9 DNS/DDNS (Dynamic DNS) Server
- Configuring a DNS Server in Raspberry Pi
- Setting up Private DNS Server with BIND9