Commit 5006de65 authored by Brian Wellington's avatar Brian Wellington

- Added query-source to each server.

- Added an insecure child of a secure parent (insecure.secure.example)
- Added a privately secure child of a secure parent (private.secure.example)
parent d01c6549
......@@ -5,6 +5,7 @@ options {
directory ".";
pid-file "named.pid";
listen-on { 10.53.0.1; };
query-source address 10.53.0.1;
recursion no;
notify yes;
};
......
......@@ -4,6 +4,7 @@ options {
port 5300;
pid-file "named.pid";
listen-on { 10.53.0.2; };
query-source address 10.53.0.2;
recursion no;
notify yes;
};
......@@ -19,5 +20,17 @@ zone "example" {
allow-update { any; };
};
zone "private.secure.example" {
type master;
file "private.secure.example.db.signed";
allow-update { any; };
};
zone "insecure.secure.example" {
type master;
file "insecure.secure.example.db";
allow-update { any; };
};
include "trusted.conf";
......@@ -51,4 +51,14 @@ cat $infile $keyname.key >$zonefile
$SIGNER -o $zone $zonefile
# Sign the privately secure file
privzone=private.secure.example.
privinfile=private.secure.example.db.in
privzonefile=private.secure.example.db
privkeyname=`$KEYGEN -a RSA -b 768 -n zone $privzone`
cat $privinfile $privkeyname.key >$privzonefile
$SIGNER -o $privzone $privzonefile
......@@ -4,6 +4,7 @@ options {
port 5300;
pid-file "named.pid";
listen-on { 10.53.0.3; };
query-source address 10.53.0.3;
recursion no;
notify yes;
};
......
......@@ -13,3 +13,10 @@ a A 10.0.0.1
b A 10.0.0.2
d A 10.0.0.4
z A 10.0.0.26
private NS ns.private
ns.private A 10.53.0.2
insecure NS ns.insecure
ns.insecure A 10.53.0.2
......@@ -5,6 +5,7 @@ options {
directory ".";
pid-file "named.pid";
listen-on { 10.53.0.4; };
query-source address 10.53.0.4;
recursion yes;
};
......
......@@ -5,6 +5,7 @@ options {
directory ".";
pid-file "named.pid";
listen-on { 10.53.0.5; };
query-source address 10.53.0.5;
recursion yes;
};
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment