Fichiers TP DNS

2022-03-03 11:02:41 +01:00 · 2022-03-03 11:02:41 +01:00 · a745538538
commit a745538538
parent cbcaf7b39b
5 changed files with 93 additions and 0 deletions
--- a/db.domaine.lan
+++ b/db.domaine.lan
@ -0,0 +1,21 @@
+;
+; BIND data file for local loopback interface
+;
+$TTL	604800
+domaine.lan.	IN	SOA	dns-srv1.domaine.lan. root.domaine.lan. (
+			      2		; Serial
+			 604800		; Refresh
+			  86400		; Retry
+			2419200		; Expire
+			 604800 )	; Negative Cache TTL
+;
+@	IN	NS	dns-srv1.domaine.lan.
+@	IN	NS	dns-srv2.domaine.lan.
+dns-srv1	IN	A	192.168.0.130
+dns-srv2	IN	A	192.168.0.132
+
+poste1	IN	A	192.168.0.131
+poste2	IN	A	192.168.0.132
+www	IN	CNAME	poste1
+
+
--- a/db.domaine.lan.rev
+++ b/db.domaine.lan.rev
@ -0,0 +1,17 @@
+;
+; BIND data file for local loopback interface
+;
+$TTL	604800
+@	IN	SOA	dns-srv1.domaine.lan. root.domaine.lan. (
+			      2		; Serial
+			 604800		; Refresh
+			  86400		; Retry
+			2419200		; Expire
+			 604800 )	; Negative Cache TTL
+;
+@	IN	NS	dns-srv1.domaine.lan.
+@	IN	NS	dns-srv2.domaine.lan.
+
+130	IN	PTR	dns-srv1.domaine.lan.
+131	IN	PTR	xp.domaine.lan.
+132	IN	PTR	dns-srv2.domaine.lan.
--- a/named.conf
+++ b/named.conf
@ -0,0 +1,11 @@
+// This is the primary configuration file for the BIND DNS server named.
+//
+// Please read /usr/share/doc/bind9/README.Debian.gz for information on the 
+// structure of BIND configuration files in Debian, *BEFORE* you customize 
+// this configuration file.
+//
+// If you are just adding zones, please do that in /etc/bind/named.conf.local
+
+include "/etc/bind/named.conf.options";
+include "/etc/bind/named.conf.local";
+include "/etc/bind/named.conf.default-zones";
--- a/named.conf.local
+++ b/named.conf.local
@ -0,0 +1,20 @@
+//
+// Do any local configuration here
+//
+
+// Consider adding the 1918 zones here, if they are not used in your
+// organization
+//include "/etc/bind/zones.rfc1918";
+
+// zone directe
+zone "domaine.lan" {
+	type master;
+	file "/etc/bind/db.domaine.lan";
+};
+
+// zone inverse 
+zone "0.168.192.in-addr.arpa" {
+	type master;
+	notify no;
+	file "/etc/bind/db.domaine.lan.rev";
+};
--- a/named.conf.options
+++ b/named.conf.options
@ -0,0 +1,24 @@
+options {
+	directory "/var/cache/bind";
+
+	// If there is a firewall between you and nameservers you want
+	// to talk to, you may need to fix the firewall to allow multiple
+	// ports to talk.  See http://www.kb.cert.org/vuls/id/800113
+
+	// If your ISP provided one or more IP addresses for stable 
+	// nameservers, you probably want to use them as forwarders.  
+	// Uncomment the following block, and insert the addresses replacing 
+	// the all-0's placeholder.
+
+	forwarders {
+		10.121.38.7;
+	};
+
+	//========================================================================
+	// If BIND logs error messages about the root key being expired,
+	// you will need to update your keys.  See https://www.isc.org/bind-keys
+	//========================================================================
+	dnssec-validation no;
+
+	listen-on-v6 { any; };
+};