Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
opennic:t2slaved [2017-05-05T22:23:45Z] – updated list of masters shdwdrgn | opennic:t2slaved [2022-11-26T21:04:58Z] – Typos all over the place sry Olde16 | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Slaved Zones with BIND9 ====== | ====== Slaved Zones with BIND9 ====== | ||
+ | |||
+ | Also refer to [[opennic: | ||
FIXME This guide was copied directly from the old wiki. It likely needs some updates for the latest BIND software and OpenNIC configuration. If this guide doesn' | FIXME This guide was copied directly from the old wiki. It likely needs some updates for the latest BIND software and OpenNIC configuration. If this guide doesn' | ||
- | For those wishing to set up a more robust local nameserver, or if you plan on running a public | + | For those wishing to set up a more robust local nameserver, or if you plan on running a public |
- | Slave zones contain the full record of domain names for each OpenNIC TLD. When a query is made for an OpenNIC domain, you have the exact information needed to proceed directly to that domain, thus eliminating several hops in processing a query. Note that the only difference between a tier-1 and tier-2 server is that tier-1 servers do not process public queries for ICANN domains - they ONLY process OpenNIC TLD requests. | + | Slave zones contain the full record of domain names for each OpenNIC TLD. When a query is made for an OpenNIC domain, you have the exact information needed to proceed directly to that domain, thus eliminating several hops in processing a query. Note that the only difference between a Tier 1 and Tier 2 server is that Tier 1 servers do not process public queries for ICANN domains - they ONLY process OpenNIC TLD requests. |
Linux - BIND8/9 | Linux - BIND8/9 | ||
Line 19: | Line 21: | ||
</ | </ | ||
- | You need to comment or remove these lines. Instead of using a hints file, you will now be slaving the root zone plus another zone which contains a list of all OpenNIC public | + | You need to comment or remove these lines. Instead of using a hints file, you will now be slaving the root zone plus another zone which contains a list of all OpenNIC public |
directory "/ | directory "/ | ||
Grab | Grab | ||
Line 27: | Line 29: | ||
< | < | ||
+ | # check to make sure these are still correct! | ||
masters opennicNS { | masters opennicNS { | ||
- | 45.56.115.189; | + | 161.97.219.84; # ns2.opennic.glue |
- | 45.56.116.224; | + | 2001:470:4212: |
- | 173.160.58.202; # ns2.opennic.glue | + | 104.168.144.17; |
- | 2001:470:f032: | + | 2001: |
- | 104.168.144.17; | + | 163.172.168.171; # ns4.opennic.glue |
- | 2001: | + | 2001:bc8:4400:2100::17:213; |
- | 178.63.145.230; # ns4.opennic.glue | + | 94.103.153.176; |
- | 2a01:4f8:101:3062::5:2; # ns4.opennic.glue | + | 2001:bc8:4400:2100::17:213; |
- | 94.103.153.176; | + | 207.192.71.13; |
- | 2a02:990:219:1:ba:1337:cafe:3; # ns5.opennic.glue | + | 178.63.116.152; |
- | 207.192.71.13; | + | 2a01: |
- | 2002: | + | 138.68.128.160; |
- | 178.63.116.152; | + | 2a03: |
- | 2a01: | + | 188.226.146.136; |
- | 138.68.128.160; | + | 2001: |
- | 2a03: | + | 45.55.97.204; |
- | 188.226.146.136; | + | 2604: |
- | 2001: | + | 79.124.7.81; |
- | 138.197.44.179; # ns11.opennic.glue | + | 2a01: |
}; | }; | ||
masters opennicPeers { | masters opennicPeers { | ||
Line 52: | Line 55: | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; }; | + | masters { opennicNS; }; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
</ | </ | ||
- | Note the ' | + | Note the ' |
- | If you have a firewall or port-forwarding configured to direct DNS traffic to your server, please ensure that port 53 for both UDP and TCP are enabled. The most common failure for a public | + | If you have a firewall or port-forwarding configured to direct DNS traffic to your server, please ensure that port 53 for both UDP and TCP are enabled. The most common failure for a public |
This completes the most basic slave zone configuration, | This completes the most basic slave zone configuration, | ||
Line 77: | Line 80: | ||
< | < | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
- | }; | + | |
- | zone " | + | |
- | type slave; | + | |
- | file " | + | |
- | allow-transfer { any; }; | + | |
- | notify yes; | + | |
- | masters { opennicNS; opennicPeers; | + | |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
+ | }; | ||
+ | zone " | ||
+ | type slave; | ||
+ | file " | ||
+ | allow-transfer { any; }; | ||
+ | notify yes; | ||
+ | masters { opennicNS; opennicPeers; | ||
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
}; | }; | ||
zone " | zone " | ||
- | type slave; | + | type slave; |
- | file " | + | file " |
- | allow-transfer { any; }; | + | allow-transfer { any; }; |
- | notify yes; | + | notify yes; |
- | masters { opennicNS; opennicPeers; | + | masters { opennicNS; opennicPeers; |
+ | }; | ||
+ | zone " | ||
+ | type slave; | ||
+ | file " | ||
+ | allow-transfer { any; }; | ||
+ | notify yes; | ||
+ | masters { opennicNS; opennicPeers; | ||
+ | }; | ||
+ | zone " | ||
+ | type slave; | ||
+ | file " | ||
+ | allow-transfer { any; }; | ||
+ | notify yes; | ||
+ | masters { opennicNS; opennicPeers; | ||
}; | }; | ||
</ | </ | ||
Line 204: | Line 221: | ||
To finish your new configuration, | To finish your new configuration, | ||
- | If you are creating a public | + | **TESTING T2 Public Server** |
+ | |||
+ | If you are creating a public | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | ----------------Historical Note---------------------- | ||
+ | // The old test link http:// | ||
===== Alternate Configurations ===== | ===== Alternate Configurations ===== | ||