En este archivo están definidos los hosts de los que nuestro server DNS va a aceptar querys a través de definir una ACL, y también la configuración del mismo.
/etc/bind/named.conf.local
acl "localnet" {
192.168.1.0/24; # Accept querys from this subnet
};
options {
directory "/var/cache/bind";
recursion yes; # Resursive queries
allow-recursion { localnet; }; # Recursive queries
listen-on { 192.168.1.185; }; # IP address of the DNS server
allow-transfer { none; }; # Disable zone transfers
forwarders {
8.8.8.8;
8.8.4.4;
};
dnssec-validation auto;
listen-on-v6 { any; };
};
logging {
channel query {
file "/var/log/bind/query" versions 5 size 10M;
print-time yes;
severity info;
};
category queries { query; };
};
Reverse and Forward Zones
mkdir -p /etc/bind/zones
Reverse:
/etc/bind/named.conf.local
zone "dnstest.local" {
type master;
file "/etc/bind/zones/db.dnstest.local"; # zone file path
};
zone "1.1.192.in-addr.arpa" {
type master;
file "/etc/bind/zones/db.1.168.192"; # 192.168.1.0/24
};
/etc/bind/zones/db.1.168.192
$TTL 604800
@ IN SOA ns.dnstest.local. admin.dnstest.local. (
4 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
; name servers
IN NS ns.dnstest.local.
; PTR Records
105 IN PTR ns.dnstest.local. ; 192.168.1.13
160 IN PTR target.dnstest.local. ; 192.168.1.5
111 IN PTR kali.dnstest.local. ; 192.168.1.12
$TTL 604800
@ IN SOA ns.dnstest.local. admin.dnstest.local. (
4 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
; name servers - NS records
IN NS ns.dnstest.local.
; name servers - A records
ns.dnstest.local. IN A 192.168.1.185
; 192.168.122.0/24 - A records
target.dnstest.local. IN A 192.168.1.160
kali.dnstest.local. IN A 192.168.1.111
# En caso de que querramos que kali.labnet.local se encarge de la resolución DNS
# de todo el dominio dnsc2.dnstest.local
#; delegate subdomain
#dnsc2.dnstest.local. 360 IN NS kali.labnet.local.
