These are now limited to our own internal network, LAN.
See // If your ISP provided one or more IP addresses for stable // nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing // the all-; //======================================================================== // If BIND logs error messages about the root key being expired, // you will need to update your keys.
It is very easy to break a working setup, let alone fail to get it working, by missing off a single semi-colon or full stop.
Talking about full stops, if your system fails to work it is most likely a missing full stop that is stopping it from working. The official documentation for bind9 which is rather extensive and very well written, so go there first, there is no need to go anywhere else for help 🙂 Get it from it is also installed with the bind9-doc package. The first configuration file to look at, is one you should not change.
Not sure why the guys in China are so interested in hacking my servers.
You can now use the name internals in the three sections for allow-query, allow-recursion and allow-transfer.
This is all tried and tested out in a test Networking Lab with Virtual Box.
Add your changes to the files which are included or to those included further down the branches. // This is the primary configuration file for the BIND DNS server named. for information on the // structure of BIND configuration files in Debian, *BEFORE* you customize // this configuration file.// // If you are just adding zones, please do that in /etc/bind/local include "/etc/bind/options"; include "/etc/bind/local"; include "/etc/bind/default-zones"; directory "/var/cache/bind"; // If there is a firewall between you and nameservers you want // to talk to, you may need to fix the firewall to allow multiple // ports to talk.