xref: /netbsd-src/external/mpl/bind/dist/bin/tests/system/acl/ns2/named4.conf.in (revision 8feb0f0b7eaff0608f8350bbfa3098827b4bb91b)
1/*
2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC")
3 *
4 * SPDX-License-Identifier: MPL-2.0
5 *
6 * This Source Code Form is subject to the terms of the Mozilla Public
7 * License, v. 2.0.  If a copy of the MPL was not distributed with this
8 * file, you can obtain one at https://mozilla.org/MPL/2.0/.
9 *
10 * See the COPYRIGHT file distributed with this work for additional
11 * information regarding copyright ownership.
12 */
13
14key rndc_key {
15	secret "1234abcd8765";
16	algorithm hmac-sha256;
17};
18
19controls {
20	inet 10.53.0.2 port @CONTROLPORT@ allow { any; } keys { rndc_key; };
21};
22
23options {
24	query-source address 10.53.0.2;
25	notify-source 10.53.0.2;
26	transfer-source 10.53.0.2;
27	port @PORT@;
28	pid-file "named.pid";
29	listen-on { 10.53.0.2; };
30	listen-on-v6 { none; };
31	recursion no;
32	notify yes;
33	ixfr-from-differences yes;
34	check-integrity no;
35};
36
37key one {
38	algorithm hmac-md5;
39	secret "1234abcd8765";
40};
41
42key two {
43	algorithm hmac-md5;
44	secret "1234abcd8765";
45};
46
47acl rejectkeys {
48	!key one; !key two; any;
49};
50
51acl rejectaddrs {
52	!10.53.0.1; !10.53.0.2; any;
53};
54
55acl check1 { !key one; 10.53.0.1; };
56
57acl check2 { !key two; 10.53.0.2; };
58
59zone "." {
60	type hint;
61	file "../../common/root.hint";
62};
63
64zone "example" {
65	type primary;
66	file "example.db";
67};
68
69zone "tsigzone" {
70	type primary;
71	file "tsigzone.db";
72	allow-transfer { !rejectkeys; !rejectaddrs; !check1; !check2; any; };
73};
74