From 803345053926bfe56effee087be53a5964d43a29 Mon Sep 17 00:00:00 2001 From: Tristan PILAT Date: Wed, 25 Jul 2018 17:46:56 +0200 Subject: [PATCH] Improving configuration example --- HowtoNSD.md | 40 ++++++++++++++++++++++++---------------- 1 file changed, 24 insertions(+), 16 deletions(-) diff --git a/HowtoNSD.md b/HowtoNSD.md index 44c824f6..b009b564 100644 --- a/HowtoNSD.md +++ b/HowtoNSD.md @@ -76,14 +76,14 @@ Voici le fichier `nsd.conf` sur le serveur avec l'adresse IP 192.0.2.53 (master) ~~~ ~~~ - server: - server-count: 1 # use this number of cpu cores - database: "" # or use "" - zonelistfile: "/var/nsd/db/zone.list" - username: _nsd +server: + hide-version: yes + verbosity: 1 + database: "" # disable database logfile: "/var/log/nsd.log" pidfile: "/var/nsd/run/nsd.pid" xfrdfile: "/var/nsd/run/xfrd.state" + zonelistfile: "/var/nsd/db/zone.list" ## bind to a specific address/port ip-address: 192.0.2.53 @@ -97,12 +97,16 @@ key: algorithm: hmac-sha256 secret: "rMZVA3oOLyrk9Xn+aKe19aCqOf3xYv9kVw8M3crGkFE=" +pattern: + name: "talktoslave" + notify: 192.0.2.54 key + provide-xfr: 192.0.2.54 key + ## master zone example.com zone: name: "example.com" - zonefile: "master/db.example.com" - notify: 192.0.2.54 key.example.com. - provide-xfr: 192.0.2.54 key.example.com. + zonefile: "/master/db.example.com" + include-pattern: "talktoslave" ~~~ Sur le serveur master on devra également définir la zone : @@ -169,14 +173,14 @@ Et voici le fichier `nsd.conf` sur le serveur avec l'adresse IP 192.0.2.54 (slav ~~~ ~~~ - server: - server-count: 1 # use this number of cpu cores - database: "" # or use "" - zonelistfile: "/var/nsd/db/zone.list" - username: _nsd +server: + hide-version: yes + verbosity: 1 + database: "" # disable database logfile: "/var/log/nsd.log" - pidfile: "/var/nsd/run/nsd.pid" + pidfile: "/var/nsd/run/nsd.pid" xfrdfile: "/var/nsd/run/xfrd.state" + zonelistfile: "/var/nsd/db/zone.list" ## bind to a specific address/port ip-address: 192.0.2.54 @@ -189,13 +193,17 @@ key: name: "key.example.com." algorithm: hmac-sha256 secret: "rMZVA3oOLyrk9Xn+aKe19aCqOf3xYv9kVw8M3crGkFE=" + +pattern: + name: "listentomaster" + allow-notify: 192.0.2.53 key.example.com. + request-xfr: AXFR 192.0.2.53 key.example.com. ## master zone example.com zone: name: "example.com" zonefile: "slave/db.example.com" - allow-notify: 192.0.2.53 key.example.com. - request-xfr: AXFR 192.0.2.53 key.example.com. + include-pattern: "listentomaster" ~~~ On vérifie la configration :