xref: /netbsd-src/external/mpl/bind/dist/bin/tests/system/doth/ns5/named.conf.in (revision 0a3071956a3a9fdebdbf7f338cf2d439b45fc728) 
1/*
2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC")
3 *
4 * SPDX-License-Identifier: MPL-2.0
5 *
6 * This Source Code Form is subject to the terms of the Mozilla Public
7 * License, v. 2.0.  If a copy of the MPL was not distributed with this
8 * file, you can obtain one at https://mozilla.org/MPL/2.0/.
9 *
10 * See the COPYRIGHT file distributed with this work for additional
11 * information regarding copyright ownership.
12 */
13
14# We need a separate instance for the "rndc reconfig" test in order to
15# ensure that it does not use ephemeral keys (these are costly to
16# generate) and creates a minimal amount of TLS contexts, reducing the
17# time needed for startup/reconfiguration. Long
18# startup/reconfiguration was known to cause timeout issues in the CI
19# system, where many tests run in parallel.
20
21include "../../_common/rndc.key";
22
23controls {
24	inet 10.53.0.5 port @CONTROLPORT@ allow { any; } keys { rndc_key; };
25};
26
27options {
28	query-source address 10.53.0.5;
29	notify-source 10.53.0.5;
30	transfer-source 10.53.0.5;
31	port @PORT@;
32	tls-port @TLSPORT@;
33	https-port @HTTPSPORT@;
34	http-port @HTTPPORT@;
35	pid-file "named.pid";
36	listen-on { 10.53.0.5; };
37	listen-on-v6 { none; };
38	recursion no;
39	notify no;
40	ixfr-from-differences yes;
41	check-integrity no;
42	dnssec-validation yes;
43};
44
45zone "." {
46	type hint;
47	file "../../_common/root.hint";
48};
49
50# Let's reuse the same entry multiple times to see if transfers will succeed
51
52tls tls-v1.2 {
53	protocols { TLSv1.2; };
54	prefer-server-ciphers yes;
55};
56
57zone "example12" {
58	type secondary;
59	primaries { 10.53.0.1 port @EXTRAPORT7@ tls tls-v1.2; };
60	file "example12.db";
61	allow-transfer { any; };
62};
63
64zone "example13" {
65	type secondary;
66	primaries { 10.53.0.1 port @EXTRAPORT7@ tls tls-v1.2; };
67	file "example13.db";
68	allow-transfer { any; };
69};
70
71zone "example14" {
72	type secondary;
73	primaries { 10.53.0.1 port @EXTRAPORT7@ tls tls-v1.2; };
74	file "example14.db";
75	allow-transfer { any; };
76};
77
78zone "example15" {
79	type secondary;
80	primaries { 10.53.0.1 port @EXTRAPORT7@ tls tls-v1.2; };
81	file "example15.db";
82	allow-transfer { any; };
83};
84