From 0f091b1f1d11448ecb20696243a91adf1209bc4e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D0=94=D0=BE=D0=BB=D0=B3=D0=B8=D0=B9=20=D0=90=D1=80=D1=82?= =?UTF-8?q?=D1=91=D0=BC?= Date: Mon, 4 Jul 2022 09:08:15 +0300 Subject: [PATCH] add multizone --- bind9/multi_zones/named.conf | 13 +++++++++ bind9/multi_zones/named.conf.options | 27 ++++++++++++++++++ bind9/multi_zones/named.conf.zones | 38 ++++++++++++++++++++++++++ bind9/multi_zones/zones/dav.lan.rzone | 21 ++++++++++++++ bind9/multi_zones/zones/dav.lan.zone | 22 +++++++++++++++ bind9/multi_zones/zones/k8s.lan.rzone | 12 ++++++++ bind9/multi_zones/zones/k8s.lan.zone | 14 ++++++++++ bind9/multi_zones/zones/test.lan.rzone | 12 ++++++++ bind9/multi_zones/zones/test.lan.zone | 14 ++++++++++ 9 files changed, 173 insertions(+) create mode 100644 bind9/multi_zones/named.conf create mode 100644 bind9/multi_zones/named.conf.options create mode 100644 bind9/multi_zones/named.conf.zones create mode 100644 bind9/multi_zones/zones/dav.lan.rzone create mode 100644 bind9/multi_zones/zones/dav.lan.zone create mode 100644 bind9/multi_zones/zones/k8s.lan.rzone create mode 100644 bind9/multi_zones/zones/k8s.lan.zone create mode 100644 bind9/multi_zones/zones/test.lan.rzone create mode 100644 bind9/multi_zones/zones/test.lan.zone diff --git a/bind9/multi_zones/named.conf b/bind9/multi_zones/named.conf new file mode 100644 index 0000000..edd13e9 --- /dev/null +++ b/bind9/multi_zones/named.conf @@ -0,0 +1,13 @@ +// This is the primary configuration file for the BIND DNS server named. +// +// Please read /usr/share/doc/bind9/README.Debian.gz for information on the +// structure of BIND configuration files in Debian, *BEFORE* you customize +// this configuration file. +// +// If you are just adding zones, please do that in /etc/bind/named.conf.local + +include "/etc/bind/named.conf.options"; +include "/etc/bind/named.conf.local"; +include "/etc/bind/named.conf.default-zones"; + +include "/etc/bind/named.conf.zones"; diff --git a/bind9/multi_zones/named.conf.options b/bind9/multi_zones/named.conf.options new file mode 100644 index 0000000..bffb3fc --- /dev/null +++ b/bind9/multi_zones/named.conf.options @@ -0,0 +1,27 @@ +options { + directory "/var/cache/bind"; + + // интерфейсы, на которых принимаются DNS запросы + listen-on port 53 { + 127.0.0.1; + 192.168.13.2; + }; + + listen-on-v6 port 53 { + any; + }; + + // кто может обращаться за DNS запросами к этому серверу. { any; } значит любой + allow-query { + any; + }; + + // вышестоящие DNS-сервера, на которые будет переадресован запрос при отсутствии ответа + forwarders { + 77.88.8.8; + 77.88.8.1; + }; + + dnssec-validation auto; + +}; diff --git a/bind9/multi_zones/named.conf.zones b/bind9/multi_zones/named.conf.zones new file mode 100644 index 0000000..039da61 --- /dev/null +++ b/bind9/multi_zones/named.conf.zones @@ -0,0 +1,38 @@ +# ## dav.lan ## +zone "dav.lan" { + type master; + file "/etc/bind/zones/dav.lan.zone"; + }; + +zone "13.168.192.in-addr.arpa" { + type master; + file "/etc/bind/zones/dav.lan.rzone"; + }; + +### + +# ## test.lan ## +zone "test.lan" { + type master; + file "/etc/bind/zones/test.lan.zone"; + }; + +zone "10.168.192.in-addr.arpa" { + type master; + file "/etc/bind/zones/test.lan.rzone"; + }; + +### + +# ## k8s.lan ## +zone "k8s.lan" { + type master; + file "/etc/bind/zones/k8s.lan.zone"; + }; + +zone "2.1.10.in-addr.arpa" { + type master; + file "/etc/bind/zones/k8s.lan.rzone"; + }; + +### diff --git a/bind9/multi_zones/zones/dav.lan.rzone b/bind9/multi_zones/zones/dav.lan.rzone new file mode 100644 index 0000000..8fd20f2 --- /dev/null +++ b/bind9/multi_zones/zones/dav.lan.rzone @@ -0,0 +1,21 @@ +$TTL 604800 +@ IN SOA dav.lan. root.dav.lan. ( + 2 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL + +@ IN NS ns. + +2 IN PTR ns.dav.lan. +3 IN PTR zidoo.dav.lan. +4 IN PTR voip.dav.lan. +5 IN PTR qnap.dav.lan. +6 IN PTR printserver.dav.lan. +7 IN PTR docker.dav.lan. +8 IN PTR dnas.dav.lan. +9 IN PTR pve.dav.lan. +10 IN PTR bastion.dav.lan. +12 IN PTR smarthome.dav.lan. +15 IN PTR syno.dav.lan. diff --git a/bind9/multi_zones/zones/dav.lan.zone b/bind9/multi_zones/zones/dav.lan.zone new file mode 100644 index 0000000..28effca --- /dev/null +++ b/bind9/multi_zones/zones/dav.lan.zone @@ -0,0 +1,22 @@ +$TTL 604800 +@ IN SOA dav.lan. root.dav.lan. ( + 2022070101 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL +; +@ IN NS ns +@ IN AAAA ::1 +ns IN A 192.168.13.2 + +zidoo IN A 192.168.13.3 +voip IN A 192.168.13.4 +qnap IN A 192.168.13.5 +printserver IN A 192.168.13.6 +docker IN A 192.168.13.7 +dnas IN A 192.168.13.8 +pve IN A 192.168.13.9 +bastion IN A 192.168.13.10 +smarthome IN A 192.168.13.12 +syno IN A 192.168.13.16 diff --git a/bind9/multi_zones/zones/k8s.lan.rzone b/bind9/multi_zones/zones/k8s.lan.rzone new file mode 100644 index 0000000..66d2462 --- /dev/null +++ b/bind9/multi_zones/zones/k8s.lan.rzone @@ -0,0 +1,12 @@ +$TTL 604800 +@ IN SOA k8s.lan. root.k8s.lan. ( + 2 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL + +@ IN NS ns. + +5 IN PTR test1.k8s.lan. +10 IN PTR test2.k8s.lan. diff --git a/bind9/multi_zones/zones/k8s.lan.zone b/bind9/multi_zones/zones/k8s.lan.zone new file mode 100644 index 0000000..a935fa0 --- /dev/null +++ b/bind9/multi_zones/zones/k8s.lan.zone @@ -0,0 +1,14 @@ +$TTL 604800 +@ IN SOA k8s.lan. root.k8s.lan. ( + 2022070101 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL + +@ IN NS ns +@ IN AAAA ::1 +ns IN A 192.168.13.2 + +test1 IN A 10.1.2.5 +test2 IN A 10.1.2.10 diff --git a/bind9/multi_zones/zones/test.lan.rzone b/bind9/multi_zones/zones/test.lan.rzone new file mode 100644 index 0000000..6b9bf88 --- /dev/null +++ b/bind9/multi_zones/zones/test.lan.rzone @@ -0,0 +1,12 @@ +$TTL 604800 +@ IN SOA test.lan. root.test.lan. ( + 2 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL + +@ IN NS ns. + +5 IN PTR test1.test.lan. +6 IN PTR test2.test.lan. diff --git a/bind9/multi_zones/zones/test.lan.zone b/bind9/multi_zones/zones/test.lan.zone new file mode 100644 index 0000000..f20cf06 --- /dev/null +++ b/bind9/multi_zones/zones/test.lan.zone @@ -0,0 +1,14 @@ +$TTL 604800 +@ IN SOA test.lan. root.test.lan. ( + 2022070101 ; Serial + 604800 ; Refresh + 86400 ; Retry + 2419200 ; Expire + 604800 ) ; Negative Cache TTL + +@ IN NS ns +@ IN AAAA ::1 +ns IN A 192.168.13.2 + +test1 IN A 192.168.10.5 +test2 IN A 192.168.10.6