DNS config
Tue 13 January 2015
// This is the primary configuration file for the BIND DNS server named. acl “lan_hosts” { 192.168.150.0/24; # network address of your local LAN 192.168.130.0/24; # network address of your local DMZ 192.168.180.0/24; # network address of your local VPN 192.168.160.0/24; # network address of your remote LAN 127.0.0.1; # allow loop back };
options { directory “/var/cache”; auth-nxdomain no; # conform to RFC1035 edns-udp-size 512; recursion no; // ban everyone by default allow-transfer {“none”;}; allow-query { lan_hosts; }; version “0”; };
view “internal” { match-clients { lan_hosts; }; # match hosts in acl “lan_hosts” above recursion yes; # allow recursive queries allow-transfer { 192.168.150.238; 192.168.150.253; };
zone "uk.bmtargoss.org" {
type forward;
forward only;
forwarders { 192.168.150.253; };
};
zone "160.168.192.in-addr.arpa" {
type forward;
forward only;
forwarders { 192.168.150.253; };
};
zone "bmtargoss.org" {
type forward;
forward only;
forwarders { 192.168.150.190; 192.168.150.189; 192.168.150.253; };
};
zone "150.168.192.in-addr.arpa" {
type forward;
forward only;
forwarders { 192.168.150.190; 192.168.150.189; 192.168.150.253; };
};
// prime the server with knowledge of the root servers
zone "." {
type hint;
file "/etc/bind/db.root";
};
// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912
zone "localhost" {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};
include "/etc/bind/zones.internal";
};
view “external” { // “localnets” and “any” are special reserved words // “localnets” mean any network address (as opposed to host address) configured // on the local network interfaces - “!” means to negate match-clients { !localnets; any; }; recursion no; # disallow recursive queries allow-transfer { 82.94.191.236; };
allow-query { any; };
include "/etc/bind/zones.external";
};
zones.internal
zone “130.168.192.in-addr.arpa” in{ type master; file “internal/130.168.192.in-addr.arpa”; notify explicit; also-notify { 192.168.150.253; }; };
zone “bmtargoss.com” in{ type master; file “internal/bmtargoss.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “argoss.nl” in{ type master; file “internal/argoss.nl”; notify explicit; also-notify { 192.168.150.253; };
}; zone “tidal-info.com” in{ type master; file “internal/tidalinfo.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “tidal-information.com” in{ type master; file “internal/tidalinfo.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “tidalinfo.com” in{ type master; file “internal/tidalinfo.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “route-climate.com” in{ type master; file “internal/routeclimate.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “routeclimate.com” in{ type master; file “internal/routeclimate.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “waveclimate.com” in{ type master; file “internal/waveclimate.com”; notify explicit; also-notify { 192.168.150.253; }; };
zone “coastalwaterquality.com” in{ type master; file “internal/cwq.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “waveforecasting.com” in{ type master; file “internal/waveforecasting.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “bmtweather.com” in{ type master; file “internal/bmtweather.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “bmtsmartservices.com” in{ type master; file “internal/bmtsmartservices.com”; notify explicit; also-notify { 192.168.150.253; }; }; zone “bmtsmart.com” in{ type master; file “internal/bmtsmart.com”; notify explicit; also-notify { 192.168.150.253; }; };
zones.external
// // Do any local configuration here // zone “bmtargoss.com” in{ type master; file “external/bmtargoss.com”; notify no; }; zone “argoss.nl” in{ type master; file “external/argoss.nl”; notify no; }; zone “tidal-info.com”{ type master; file “external/tidalinfo.com”; notify no; }; zone “tidal-information.com”{ type master; file “external/tidalinfo.com”; notify no; }; zone “tidalinfo.com”{ type master; file “external/tidalinfo.com”; notify no; }; zone “route-climate.com”{ type master; file “external/routeclimate.com”; notify no; }; zone “routeclimate.com”{ type master; file “external/routeclimate.com”; notify no; }; zone “waveclimate.com”{ type master; file “external/waveclimate.com”; notify no; }; zone “coastalwaterquality.com”{ type master; file “external/cwq.com”; notify no; }; zone “waterforecasting.com”{ type master; file “external/waterforecasting.com”; notify no; }; zone “bmtweather.com”{ type master; file “external/bmtweather.com”; notify no; }; zone “bmtsmartservices.com”{ type master; file “external/bmtsmartservices.com”; notify no; }; zone “bmtsmart.com”{ type master; file “external/bmtsmart.com”; notify no; };
/var/cache/internal
$TTL 86400 ; 1 day argoss.nl. IN SOA ns2.argoss.nl. netadmin.argoss.nl. ( 2014111201 ; serial (yyyymmddxx) 28800 ; refresh (8 hours) 3600 ; retry (1 hour) 2419200 ; expire (4 weeks) 86400 ; minimum (1 day) ) ;;;;;;;;;;;;;;;;; NS mariner.argoss.nl. NS ns2.argoss.nl. MX 5 mail.argoss.nl. MX 10 mail1.bmtargoss.com. ; external intrepid A 82.94.191.234 ;omega A 82.94.191.235 ;gfo A 82.94.191.238 omega A 82.94.179.87 gfo A 82.94.179.86 kryten A 82.94.179.85 kroton A 82.94.179.84 ;akco A 82.94.191.238 www A 84.19.54.85
; NETWORK LAN fw1 A 192.168.150.1 ; rt1 A 192.168.150.254 sw1 A 192.168.150.232 sw2 A 192.168.150.233 sw3 A 192.168.150.234 sw4 A 192.168.150.235 sw5 A 192.168.150.236 ;
;Printers hpcolour A 192.168.150.200 xerox A 192.168.150.201 ricoh A 192.168.150.202
oki A 192.168.150.204
;Lan Servers borusa A 192.168.150.191 rassilon A 192.168.150.192 goth A 192.168.150.193 monk A 192.168.150.194
ood A 192.168.150.30 rooster A 192.168.150.197 ntserv0 A 192.168.150.198 agcn04 A 192.168.150.6 agcn06 A 192.168.150.204 ;kroton A 192.168.150.226 jb-test A 192.168.150.227 borgcube1 A 192.168.150.229 borgcube2 A 192.168.150.205 rsa A 192.168.150.246 bourbon A 192.168.150.237 mariner A 192.168.150.238 asset A 192.168.150.239 neptune A 192.168.150.240 enterprise A 192.168.150.241 zeus A 192.168.150.242 leonardo A 192.168.150.243 beagle A 192.168.150.244 oldnas A 192.168.150.245 smart3 A 192.168.150.246 tardis A 192.168.150.247 smart5 A 192.168.150.248 ;kryten A 192.168.150.249 pluto A 192.168.150.250
;ntserv3 A 192.168.150.252
; Windows domain servers
;dc2 A 192.168.150.252 ;dc1 A 192.168.150.253
;bhost hosted servers satone A 176.126.242.237 sattwo A 176.126.244.45 satthree A 176.126.246.71
; LAN cnames localdownloader CNAME kryten sugar CNAME leonardo svn CNAME bourbon intranet CNAME bourbon glpi CNAME bmtargoss1.zendesk.com. support CNAME bmtargoss1.zendesk.com. imap CNAME mariner ldap CNAME mariner wmesweb CNAME kroton blog CNAME bourbon wiki CNAME bourbon ;dc2 CNAME ntserv3 install CNAME bourbon rt CNAME asset nas CNAME borgcube2 wmeswebtest CNAME kryten wmesweb2 CNAME omega fcedit2 CNAME omega cpan CNAME bourbon wmesweb1 CNAME kroton wmesweb3 CNAME agcn04 trac CNAME bourbon wx-mail CNAME satone support1 CNAME sattwo rtsmart CNAME rooster smartaccess CNAME rooster smart CNAME rooster smartdoc CNAME rooster smartreview CNAME rooster smartwiki CNAME rooster akco CNAME gfo puppet CNAME tardis
;simons secrect machine merlin A 82.95.219.83 mas A 84.19.54.122 webmail CNAME mas
; Temp entry for peters machine helios A 192.168.150.230
$INCLUDE internal/argoss_dmz.inc ;$INCLUDE internal/netlogon.dns
130.168.192.in-addr.arpa
$TTL 86400 ; 1 day @ IN SOA ns2.argoss.nl. netadmin.argoss.nl. ( 2012091101 ; serial 86400 ; refresh (1 day) 3600 ; retry (1 hour) 2419200 ; expire (4 weeks) 86400 ; minimum (1 day) ) NS ns2.argoss.nl. NS mariner.argoss.nl.
224 IN PTR kapoor.argoss.nl. 245 IN PTR sputnik.argoss.nl. 225 IN PTR soyuz.argoss.nl. 226 IN PTR ns2.argoss.nl. 227 IN PTR smart4.argoss.nl. 228 IN PTR galileo.argoss.nl. 229 IN PTR cassini.argoss.nl. 230 IN PTR meteor.argoss.nl. 231 IN PTR aura.argoss.nl. 232 IN PTR malcomx.argoss.nl. 234 IN PTR hubble.argoss.nl. 236 IN PTR projects.argoss.nl. 237 IN PTR vela.argoss.nl. 239 IN PTR bion.argoss.nl. 240 IN PTR avalon.argoss.nl. 250 IN PTR capellas.argoss.nl.