/usr/share/zentyal/stubs/dns/named.conf.local.mas is in zentyal-dns 2.3.10+quantal1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 | <%args>
@domains
@inaddrs
@intnets
$confDir
$dynamicConfDir
</%args>
// Generated by Zentyal
acl "trusted" {
% foreach my $intnet (@intnets) {
<% $intnet %>;
% }
localhost;
localnets;
};
% foreach my $dom (@domains) {
% if ($dom->{type} eq EBox::DNS::DLZ_ZONE) {
dlz "<% $dom->{name} %>" {
database "dlopen <% $dom->{dlzDbPath} %>";
};
% } else {
zone "<% $dom->{name} %>." IN {
type master;
% if ($dom->{type} eq EBox::DNS::DYNAMIC_ZONE) {
file "<% $dynamicConfDir %>/db.<% $dom->{'name'} %>";
% } else {
file "<% $confDir %>/db.<% $dom->{'name'} %>";
% }
// we need to use check-names ignore so _msdcs A records can be created
check-names ignore;
% if ($dom->{type} eq EBox::DNS::DYNAMIC_ZONE) {
update-policy {
// The only allowed dynamic updates are A records
grant <% $dom->{'name'} %>. subdomain <% $dom->{'name'} %>. A TXT;
// Grant from localhost
grant local-ddns zonesub any;
};
% }
};
% }
% }
% foreach my $inaddr (@inaddrs) {
zone "<% $inaddr->{'ip'} %>.in-addr.arpa" {
type master;
file "<% $inaddr->{'file'} %>";
update-policy {
// The only allowed dynamic updates are PTR records
% foreach my $keyName (@{$inaddr->{'keyNames'}}) {
grant <% $keyName %>. subdomain <% $inaddr->{'ip'} %>.in-addr.arpa. PTR TXT;
% }
// Grant from localhost
grant local-ddns zonesub any;
};
};
% }
include "/etc/bind/zones.rfc1918";
|