Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
linux:bind [2007/05/27 12:15] a |
linux:bind [2015/08/12 10:53] zagi |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== BIND (is there anyting else?) ====== | ====== BIND (is there anyting else?) ====== | ||
- | **Speedup tips** | + | ==== DNSSEC ==== |
+ | |||
+ | |||
+ | To enable add to bind.named.options: | ||
+ | |||
+ | |||
+ | dnssec-validation auto;\\ | ||
+ | dnssec-enable yes;\\ | ||
+ | dnssec-lookaside auto;\\ | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | https:// | ||
+ | \\ | ||
+ | logging {\\ | ||
+ | ...\\ | ||
+ | category dnssec { null; | ||
+ | |||
+ | |||
+ | ==== Letting bind/named query a specific DNS server for only one specific domain ==== | ||
+ | |||
+ | Add to the file **''/ | ||
+ | |||
+ | < | ||
+ | zone " | ||
+ | type forward; | ||
+ | forward only; | ||
+ | forwarders { 192.168.0.2; | ||
+ | }; | ||
+ | </ | ||
+ | |||
+ | Of course you need to replace ' | ||
+ | |||
+ | |||
+ | ==== Unsorted ==== | ||
+ | |||
+ | |||
+ | host -t txt -c CHAOS version.bind localhost | ||
+ | |||
+ | named - options {version "DNS daemon"; | ||
+ | |||
+ | host -t txt -c CHAOS hostname.bind localhost | ||
+ | |||
+ | gethostbyname() | ||
+ | |||
+ | |||
+ | ==== audit dns ==== | ||
+ | < | ||
+ | kernel: audit(1209076817.081: | ||
+ | </ | ||
+ | |||
+ | So I had a look in: | ||
+ | ''/ | ||
+ | |||
+ | and changed this line: | ||
+ | < | ||
+ | / | ||
+ | </ | ||
+ | |||
+ | to this: | ||
+ | < | ||
+ | / | ||
+ | </ | ||
+ | |||
+ | ==== Fixing syntax highlighting in VIM ==== | ||
+ | |||
+ | **~/ | ||
+ | < | ||
+ | " BIND zone | ||
+ | au BufNewFile, | ||
+ | " BIND configuration | ||
+ | au BufNewFile, | ||
+ | </ | ||
- | > I have built a local DNS server bind (Debian Sarge).The DNS should | ||
- | > accelerate DNS look ups by LAN clients. | ||
- | > But Now, in contrary the local dns is slower than a custom DNS by my | ||
- | > webhoster :-( | ||
- | | ||
- | You should use BIND 9, disable lookups over IPv6 (OPTIONS=" | ||
- | in / | ||
- | cache has been filled. |