BIND

• stáhnout http://www.isc.org/products/BIND/

./configure     --prefix=/usr/local/bind
make clean
make
make install

• podívat se do nastavení /etc/nsswitch.conf a do /etc/resolv.conf
• manuál named.conf, RedHat

options{
    directory "/var"; # hlavni adresar

    listen-on port 53 { ip.ad.re.sa;};

    forward only; # jen forwarduje
    forwarders {  # na tyto stroje
        192.168.20.200;
        192.168.20.55;
        193.85.1.12;
        193.85.3.50;
    };
};

# vzdalene (i lokalni) RNDC pripojeni pro dálkovou správu DNS
include "/etc/rndc.key"; # klic
controls {
        inet 127.0.0.1  allow { localhost; }
        keys { rndc-key; };
    };

# Zony - pomocný server - musí vždy být!
zone "." {
    type hint;
    file "named.root";
};

zone "0.0.127.in-addr.arpa" {
    type master;
    file "named.local"; # stáhnout z netu, strana 269
}

• je dobré pustit chrootovaný named

$TTL 1w
@	IN	SOA	okrnet.loc. root.okrnet.loc. (
	2005051503	; Seriove cislo
	10800		; Refresh
	1800 		; Retry
	604800 	; Expire na DNS 2
	900
)
		IN NS 	server.okrnet.loc.
		IN MX 10 	mail.okrnet.loc.
server	IN A 		10.10.10.1
mail		IN CNAME 	server
pop3		IN CNAME 	server
smtp		IN CNAME 	server
www		IN CNAME 	server
ns		IN CNAME 	server
dns		IN CNAME 	server
proxy		IN CNAME 	server
gw		IN CNAME 	server

$TTL 1w
@	IN	SOA	10.in-addr.arpa. root.okrnet.loc. (
	2005051504	; Seriove cislo
	10800		; Refresh
	1800 		; Retry
	604800 	; Expire na DNS 2
	900
)
		IN NS server.okrnet.loc.
253.20.10	IN PTR ovislink.okrnet.loc.
1.10.10	IN PTR server.okrnet.loc.

• je dobré sputit BIND jako chrootovaný