1/*****************************************************************
2**
3**      #(@)    named.conf	(c) 6. May 2004 (hoz)
4**
5*****************************************************************/
6
7/*****************************************************************
8**      logging options
9*****************************************************************/
10logging {
11        channel "named-log" {
12                file "/var/log/named" versions 3 size 2m;
13                print-time yes;
14                print-category yes;
15                print-severity yes;
16                severity info;
17        };
18        channel "resolver-log" {
19                file "/var/log/named";
20                print-time yes;
21                print-category yes;
22                print-severity yes;
23                severity debug 1;
24        };
25        channel "dnssec-log" {
26#                file "/var/log/named-dnssec" ;
27                file "/var/log/named" ;
28                print-time yes;
29                print-category yes;
30                print-severity yes;
31                severity debug 3;
32        };
33        category "dnssec" { "dnssec-log"; };
34        category "default" { "named-log"; };
35        category "resolver" { "resolver-log"; };
36        category "client" { "resolver-log"; };
37        category "queries" { "resolver-log"; };
38};
39
40/*****************************************************************
41**      name server options
42*****************************************************************/
43options {
44	directory ".";
45
46	dump-file "/var/log/named_dump.db";
47	statistics-file "/var/log/named.stats";
48
49	listen-on-v6 { any; };
50
51	query-source address * port 53;
52	transfer-source * port 53;
53	notify-source * port 53;
54
55	recursion yes;
56	dnssec-enable yes;
57	edns-udp-size 4096;
58
59#	dnssec-lookaside "." trust-anchor "trusted-keys.de.";
60
61	querylog yes;
62
63};
64
65/*****************************************************************
66**      include shared secrets...
67*****************************************************************/
68/**      for control sessions ...	**/
69#	include "rndc.key";
70controls {
71 	inet 127.0.0.1
72 		allow { localhost; }
73		keys { "rndc-key"; };
74 	inet ::1
75 		allow { localhost; }
76		keys { "rndc-key"; };
77};
78
79/*****************************************************************
80**      ... and trusted_keys
81*****************************************************************/
82# include "trusted-keys.conf" ;
83
84/*****************************************************************
85**      root server hints and required 127 stuff
86*****************************************************************/
87zone "." in {
88	type hint;
89	file "root.hint";
90};
91
92zone "localhost" in {
93	type master;
94	file "localhost.zone";
95};
96
97zone "0.0.127.in-addr.arpa" in {
98	type master;
99	file "127.0.0.zone";
100};
101
102include "zone.conf";
103