Never been to TextSnippets before?

Snippets is a public source code repository. Easily build up your personal collection of code snippets, categorize them with tags / keywords, and share them with the world (or not, you can keep them private!)

About this user

Ignacio Torres Masdeu http://ignacio.torresmasdeu.name

« Newer Snippets
Older Snippets »
6 total  XML / RSS feed 

Generate a bind9 rndc key

// description of your code here

dnssec-keygen -a hmac-md5 -b 256 -n HOST mybrandnewkey


The result will be something like "K%2Ftmp%2Fmybrandnewkey.+157+42885", so you do

cat K%2Ftmp%2Fmybrandnewkey.+157+42885.private


Put the key in /etc/rndc.key like this:
key "rndc-key" {
        algorithm hmac-md5;
        secret "Hr1U28EsMhp8r0TEEjAmksoldReEYuiWwQFH0/gkk6I=";
};

bind9 rndc.conf template

I'm in your /etc, managing your named.

include "/etc/rndc.key";

options {
default-server  127.0.0.1;
default-key     "rndc-key";
};

bind9 google apps zone template

Change 1.2.3.4 for your accelerator's ip and mydomain.net for your domain name

$TTL 86400
@ IN SOA ns1.mydomain.net. hostmaster.mydomain.net. (
                              2007052701      ; serial
                              3H              ; refresh
                              15M             ; retry
                              1W              ; expiry
                              1D )            ; minimum

                    IN NS     ns1.mydomain.net.
                    IN NS     ns1.everydns.net.
                    IN NS     ns2.everydns.net.
                    IN NS     ns3.everydns.net.
                    IN NS     ns4.everydns.net.

@                   IN TXT    "v=spf1 ip4:1.2.3.4 include:gmail.com~all include:mydomain.joyent.net~all ~all"

@                   IN MX   1 aspmx.l.google.com.
@                   IN MX   3 alt1.aspmx.l.google.com.
@                   IN MX   3 alt2.aspmx.l.google.com.
@                   IN MX   5 aspmx2.googlemail.com.
@                   IN MX   5 aspmx3.googlemail.com.
@                   IN MX   5 aspmx4.googlemail.com.
@                   IN MX   5 aspmx5.googlemail.com.

_xmpp-server._tcp   IN SRV  5 0 5269 xmpp-server.l.google.com.
_xmpp-server._tcp   IN SRV 20 0 5269 xmpp-server1.l.google.com.
_xmpp-server._tcp   IN SRV 20 0 5269 xmpp-server2.l.google.com.
_xmpp-server._tcp   IN SRV 20 0 5269 xmpp-server3.l.google.com.
_xmpp-server._tcp   IN SRV 20 0 5269 xmpp-server4.l.google.com.

_jabber._tcp        IN SRV  5 0 5269 xmpp-server.l.google.com.
_jabber._tcp        IN SRV 20 0 5269 xmpp-server1.l.google.com.
_jabber._tcp        IN SRV 20 0 5269 xmpp-server2.l.google.com.
_jabber._tcp        IN SRV 20 0 5269 xmpp-server3.l.google.com.
_jabber._tcp        IN SRV 20 0 5269 xmpp-server4.l.google.com.


@                   IN A      1.2.3.4
www                 IN CNAME  @
mail                IN CNAME  ghs.google.com.
start               IN CNAME  ghs.google.com.
calendar            IN CNAME  ghs.google.com.

bind9 0.0.127.in-addr.arpa template

Refered as /var/named/named.local in my named.conf template

$TTL    86400
@       IN      SOA     localhost. root.localhost.  (
                                      1997022700 ; Serial
                                      28800      ; Refresh
                                      14400      ; Retry
                                      3600000    ; Expire
                                      86400 )    ; Minimum
              IN      NS      localhost.

1       IN      PTR     localhost.

bind9 localhost.zone template

Localhost zone template.

$TTL    86400
$ORIGIN localhost.
@                       1D IN SOA       @ root (
                                        42              ; serial (d. adams)
                                        3H              ; refresh
                                        15M             ; retry
                                        1W              ; expiry
                                        1D )            ; minimum

                        1D IN NS        @
                        1D IN A         127.0.0.1

bind9 named.conf template

Replace 1.2.3.4 with your accelerator's public ip.

acl "internals" { 1.2.3.4 ; 127.0.0/8 ; };
acl "everydns" { 64.158.219.0/24; 4.79.232.0/24; 38.99.14.0/24; 216.218.240.206; 80.84.249.169; 63.219.183.200; };
acl "gandi" { 217.70.177.40; }

options {
        directory "/var/named";
        allow-recursion { "internals"; };
        allow-transfer { "internals"; "everydns"; "gandi";};
        statistics-file "/var/log/named.stats";
        listen-on { 127.0.0.1; 1.2.3.4; };
        forwarders { 208.67.220.220; 208.67.222.222; };
};

include "/etc/rndc.key";

controls {
        inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { "rndc-key"; };
};

logging {
        channel namedlog {
                file "/var/log/named.log" versions 5 size 2m;
                print-time yes;
                print-category yes;
        };
        category xfer-out { namedlog; };
        category security { namedlog; };
        category lame-servers { null; };
};

zone "." { type hint; file "named.root"; };
zone "0.0.127.in-addr.arpa" { type master; file "named.local"; };
zone "localhost" { type master; file "localhost.zone"; };

zone "mydomain.net" { type master; file "mydomain.net.zone"; };
« Newer Snippets
Older Snippets »
6 total  XML / RSS feed