Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
opennic:srvzone [2017-04-19T02:01:22Z] – created jonaharagon | opennic:srvzone [2023-06-18T11:47:52Z] (current) – resingm | ||
---|---|---|---|
Line 3: | Line 3: | ||
The information below is based on a Debian/ | The information below is based on a Debian/ | ||
- | Note that this configuration may be used for both Tier-1 and Tier-2 servers, as well as private servers. | + | Note that this configuration may be used for both [[tier1|Tier 1]] and [[tier2|Tier 2]] servers, as well as private servers. |
===== Getting the script ===== | ===== Getting the script ===== | ||
Line 9: | Line 9: | ||
This script will automatically generate a file for BIND9 that lists all of the OpenNIC zones and their master servers. The conf file needs to be located in the same directory as the script. For convenience, | This script will automatically generate a file for BIND9 that lists all of the OpenNIC zones and their master servers. The conf file needs to be located in the same directory as the script. For convenience, | ||
- | wget http://173.160.58.202/ | + | wget http://161.97.219.84/ |
- | wget http://173.160.58.202/ | + | wget http://161.97.219.84/ |
- | chown bind.bind srvzone | + | chown bind:bind srvzone |
chmod 700 srvzone | chmod 700 srvzone | ||
- | Now edit srvzone.conf with your preferred editor. You will see a section with paths for several files, which can be changed to match your configuration. The first three entries dictate where BIND will store the zone files. Note that file_master does not apply to Tier-2 servers. In the example paths given, note that $TLD will be expanded to each zone name as it is created -- so for example the string " | + | Now edit srvzone.conf with your preferred editor. You will see a section with paths for several files, which can be changed to match your configuration. The first three entries dictate where BIND will store the zone files. Note that file_master does not apply to Tier 2 servers. In the example paths given, note that $TLD will be expanded to each zone name as it is created -- so for example the string " |
Make sure the folder where you wish to store the files has been created. In the example srvzone.conf file, zones would be stored in / | Make sure the folder where you wish to store the files has been created. In the example srvzone.conf file, zones would be stored in / | ||
+ | |||
+ | If you're using an apparmour-enabled distro, such as debian or ubuntu, the /etc/bind directory will not be writeable by default. This is because BIND work directory has been moved to / | ||
+ | |||
+ | * Add an apparmour exception to / | ||
+ | * Edit srvzone.conf to point zones to / | ||
+ | |||
+ | Regardless of which one you may choose, remember to create the required directories with proper permissions, | ||
:!: If you are a [[opennic: | :!: If you are a [[opennic: | ||
Line 27: | Line 34: | ||
Once the script runs without errors, check the generated output file at the location you specified in tmp_dest (/ | Once the script runs without errors, check the generated output file at the location you specified in tmp_dest (/ | ||
- | |||
===== Configuring BIND ===== | ===== Configuring BIND ===== | ||
Line 63: | Line 69: | ||
This should produce a list of several nameservers that can be used to query the .geek zone. At the bottom you should see an entry for SERVER which shows your IP address -- if not, check troubleshooting below. | This should produce a list of several nameservers that can be used to query the .geek zone. At the bottom you should see an entry for SERVER which shows your IP address -- if not, check troubleshooting below. | ||
- | If you are setting up a public server and wish to confirm it is responding properly to queries from the internet, visit http:// | + | If you are setting up a public server and wish to confirm it is responding properly to queries from the internet, visit https://servers.opennicproject.org/ |
===== Automating Everything ===== | ===== Automating Everything ===== |