1/* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * This Source Code Form is subject to the terms of the Mozilla Public 5 * License, v. 2.0. If a copy of the MPL was not distributed with this 6 * file, You can obtain one at http://mozilla.org/MPL/2.0/. 7 * 8 * See the COPYRIGHT file distributed with this work for additional 9 * information regarding copyright ownership. 10 */ 11 12 13/* 14 * Main rpz test DNS server. 15 */ 16 17options { 18 query-source address 10.53.0.8; 19 notify-source 10.53.0.8; 20 transfer-source 10.53.0.8; 21 port @PORT@; 22 pid-file "named.pid"; 23 statistics-file "named.stats"; 24 session-keyfile "session.key"; 25 listen-on { 10.53.0.8; }; 26 listen-on-v6 { none; }; 27 notify yes; 28 minimal-responses no; 29 recursion yes; 30 dnssec-validation yes; 31 32 response-policy { 33 zone "manual-update-rpz"; 34 } 35 // add-soa yes // do not set testing default mode 36 min-ns-dots 0 37 qname-wait-recurse yes 38 min-update-interval 0 39 nsdname-enable yes 40 nsip-enable yes 41 ; 42 43 include "../dnsrps.conf"; 44 also-notify { 10.53.0.8 port @EXTRAPORT1@; }; 45 notify-delay 0; 46}; 47 48logging { category rpz { default_debug; }; }; 49 50key rndc_key { 51 secret "1234abcd8765"; 52 algorithm hmac-sha256; 53}; 54controls { 55 inet 10.53.0.8 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; 56}; 57 58 59zone "." { type hint; file "hints"; }; 60 61zone "manual-update-rpz." { 62 type master; 63 file "manual-update-rpz.db"; 64 notify no; 65}; 66