if you deploying public DNS server at Ubuntu linux, you should refer this sample configurations.
public DNS server need to update its records to upper DNS server.
configuration file located /etc/bind/named.conf.options
================================================================================
ubuntu@ip-172-31-16-49:/etc/bind$ cat named.conf.options
options {
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
recursion yes;
allow-query { any; };
forwarders {
8.8.8.8;
8.8.4.4;
};
forward only;
//========================================================================
// If BIND logs error messages about the root key being expired,
// you will need to update your keys. See https://www.isc.org/bind-keys
//========================================================================
dnssec-enable yes;
dnssec-validation yes;
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};
================================================================================
Ubuntu Public DNS Server Configuration Sample.zip
Good luck!
No comments:
Post a Comment