<pre style='margin:0'>
Frank Schima (mf2k) pushed a commit to branch master
in repository macports-ports.
</pre>
<p><a href="https://github.com/macports/macports-ports/commit/35819b1fb0af7011c7838bab5d37e5f9cee6fa02">https://github.com/macports/macports-ports/commit/35819b1fb0af7011c7838bab5d37e5f9cee6fa02</a></p>
<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:
<span style='display:block; white-space:pre;color:#404040;'> new 35819b1 dns-server: Submission of named DNS server working configuration
</span>35819b1 is described below
<span style='display:block; white-space:pre;color:#808000;'>commit 35819b1fb0af7011c7838bab5d37e5f9cee6fa02
</span>Author: Steven Thomas Smith <s.t.smith@ieee.org>
AuthorDate: Fri Jun 28 23:11:08 2019 -0400
<span style='display:block; white-space:pre;color:#404040;'> dns-server: Submission of named DNS server working configuration
</span><span style='display:block; white-space:pre;color:#404040;'>
</span><span style='display:block; white-space:pre;color:#404040;'> * Basic, working, easily modifiable LAN DNS server
</span><span style='display:block; white-space:pre;color:#404040;'> * Example LAN, .private, and localhost zones
</span><span style='display:block; white-space:pre;color:#404040;'> * A, PTR, and CNAME (alias) records
</span><span style='display:block; white-space:pre;color:#404040;'> * MX, SPF, DKIM, and DMARC records for email servers
</span><span style='display:block; white-space:pre;color:#404040;'> * URI, TXT, and SRV records for Kerberos servers
</span><span style='display:block; white-space:pre;color:#404040;'> * Semi-automated initial configuration using LAN setup
</span>---
net/dns-server/Portfile | 194 +++++++++++++++++++++
.../files/db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa | 10 ++
net/dns-server/files/db.@domain@.@tld@ | 46 +++++
net/dns-server/files/db.@domain@.private | 9 +
net/dns-server/files/localhost.zone | 11 ++
net/dns-server/files/named.ca | 88 ++++++++++
net/dns-server/files/named.conf | 96 ++++++++++
net/dns-server/files/named.local | 10 ++
8 files changed, 464 insertions(+)
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/Portfile b/net/dns-server/Portfile
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..0a159b8
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,194 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# -*- coding: utf-8; mode: tcl; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- vim:fenc=utf-8:ft=tcl:et:sw=4:ts=4:sts=4
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+PortSystem 1.0
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+name dns-server
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# use port:bind9's version as the version number
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+version 9.14.3
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+categories net
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+platforms darwin freebsd sunos
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+supported_archs noarch
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+maintainers {ieee.org:s.t.smith @essandess} openmaintainer
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+license BSD
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+distfiles
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+description Domain Name System server configuration
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+long_description ${description} \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ DNS server working configuration for named that provides a basic, \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ working, easily modifiable LAN DNS server. The configuration includes \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ example LAN, .private, and localhost zones, with example A, PTR, \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ and CNAME (alias) records, MX, SPF, DKIM, and DMARC records for email \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ servers, and URI, TXT, and SRV records for Kerberos servers. This \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ configuration is based upon macOS Server.app's VPN server prior to \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ its deprecation in Server.app version 5.8. See `man named`.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+homepage https://www.isc.org/
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+depends_run-append port:bind9
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+use_configure no
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# Network configuration
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set named_fullhost [exec /bin/hostname -f]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set named_host [exec /bin/sh -c "echo ${named_fullhost} | /usr/bin/sed -E -e 's|^(\[\[:alnum:\]_-\]+\\.)*((\[\[:alnum:\]_-\]+\\.)\[a-zA-Z0-9-\]{2,24})\\.?|\\1|' | /usr/bin/sed -E -e 's|^(\[\[:alnum:\]_-\]+)\\.?$|\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set named_domaintld [exec /bin/sh -c "echo ${named_fullhost} | /usr/bin/sed -E -e 's|^(\[\[:alnum:\]_-\]+\\.)*((\[\[:alnum:\]_-\]+\\.)\[a-zA-Z0-9-\]{2,24})\\.?|\\2|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set named_domain [exec /bin/sh -c "echo ${named_domaintld} | /usr/bin/sed -E -e 's|^(\[\[:alnum:\]_-\]+)\\.\[a-zA-Z0-9-\]{2,24}\\.?|\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set named_tld [exec /bin/sh -c "echo ${named_domaintld} | /usr/bin/sed -E -e 's|^\[\[:alnum:\]_-\]+\\.(\[a-zA-Z0-9-\]{2,24})\\.?|\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set host_lan_ip_address [exec /bin/sh -c "/sbin/ifconfig `/usr/sbin/netstat -nr | /usr/bin/awk '{ if (\$1 ~/default/) { print \$6} }' | /usr/bin/head -1` | /usr/bin/awk '{ if (\$1 ~/inet\$/) { print \$2} }'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set lan_reverse_ip_subnet [exec /bin/sh -c "echo ${host_lan_ip_address} | /usr/bin/sed -E -e 's|(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\$|\\3.\\2.\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set host_lan_reverse_ip_address [exec /bin/sh -c "echo ${host_lan_ip_address} | /usr/bin/sed -E -e 's|(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\$|\\4.\\3.\\2.\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# aribitrary example for client IP address
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set client_lan_ip_address [exec /bin/sh -c "echo ${host_lan_ip_address} | /usr/bin/sed -E -e 's|(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\$|\\1.\\2.\\3.201|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+set client_lan_reverse_ip_address [exec /bin/sh -c "echo ${client_lan_ip_address} | /usr/bin/sed -E -e 's|(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\\.(\[\[:digit:\]\]{1,3})\$|\\4.\\3.\\2.\\1|'"]
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+build {}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+destroot {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ # Ensure needed directories
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ xinstall -o named -g named -m 755 -d \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/log/named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ # Install and configure the conf file
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ xinstall -o root -m 644 ${filespath}/named.conf \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc/named.conf.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@PREFIX@|${prefix}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc/named.conf.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@LAN_REVERSE_IP_SUBNET@|${lan_reverse_ip_subnet}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc/named.conf.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@domain@|${named_domain}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc/named.conf.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@tld@|${named_tld}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/etc/named.conf.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ # Install and configure the db files
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ foreach f "\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.@domain@.@tld@ \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.@domain@.private \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ localhost.zone \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ named.ca \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ named.local \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ " {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ xinstall -o named -g named -m 644 ${filespath}/${f} \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@PREFIX@|${prefix}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@host@|${named_host}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@domain@|${named_domain}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@tld@|${named_tld}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ # case sensitive for Kerberos REALMs
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@HOST@|[string toupper ${named_host}]|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@DOMAIN@|[string toupper ${named_domain}]|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@TLD@|[string toupper ${named_tld}]|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@HOST_LAN_IP_ADDRESS@|${host_lan_ip_address}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@LAN_REVERSE_IP_SUBNET@|${lan_reverse_ip_subnet}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@HOST_LAN_REVERSE_IP_ADDRESS@|${host_lan_reverse_ip_address}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@CLIENT_LAN_IP_ADDRESS@|${client_lan_ip_address}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ reinplace "s|@CLIENT_LAN_REVERSE_IP_ADDRESS@|${client_lan_reverse_ip_address}|g" \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/${f}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ }
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ move ${destroot}${prefix}/var/named/db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa.macports \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/db.${lan_reverse_ip_subnet}.in-addr.arpa.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ move ${destroot}${prefix}/var/named/db.@domain@.@tld@.macports \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/db.${named_domain}.${named_tld}.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ move ${destroot}${prefix}/var/named/db.@domain@.private.macports \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${destroot}${prefix}/var/named/db.${named_domain}.private.macports
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ui_msg "Configuring DNS Server with:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Host ${named_host}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Domain ${named_domain}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ TLD ${named_tld}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Host IP Address ${host_lan_ip_address}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Reverse IP Subnet ${lan_reverse_ip_subnet}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ This configuration can be changed in the directory\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${prefix}/var/named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ See `man named` for details.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+destroot.keepdirs ${destroot}${prefix}/var/log/named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+post-activate {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ # copy to actual config files if they don't already exist
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ if ![file exists ${prefix}/etc/named.conf] {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ xinstall -o root -g named -m 644 ${prefix}/etc/named.conf.macports \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${prefix}/etc/named.conf
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ }
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ foreach f "\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.${lan_reverse_ip_subnet}.in-addr.arpa \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.${named_domain}.${named_tld} \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ db.${named_domain}.private \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ localhost.zone \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ named.ca \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ named.local \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ " {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ if ![file exists ${prefix}/var/named/${f}] {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ xinstall -o named -g named -m 644 ${prefix}/var/named/${f}.macports \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${prefix}/var/named/${f}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ }
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ }
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ if ![file exists ${prefix}/var/named/rndc.key] {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ system "${prefix}/sbin/rndc-confgen -A hmac-sha512 -a -c ${prefix}/var/named/rndc.key -u named"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ }
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+notes "
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+DNS Server is configured with\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Host ${named_host}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Domain ${named_domain}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ TLD ${named_tld}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Host IP Address ${host_lan_ip_address}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ Reverse IP Subnet ${lan_reverse_ip_subnet}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ This configuration can be changed in the directory\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ ${prefix}/var/named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ See `man named` for details.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+Post Installation\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1. Edit files in the directory ${prefix}/var/named to specify correct DNS
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ and reverse DNS entries. Example: These two commands should point to
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ each other\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ host ${named_host} ${host_lan_ip_address}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ host ${host_lan_ip_address} ${host_lan_ip_address}
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ A rndc.key fil is automatically created with the command\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ rndc-confgen -A hmac-sha512 -a -c ${prefix}/var/named/rndc.key -u named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 2. It is necessary to launch named with\:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ sudo port load bind9
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3. DNS cache on macOS is flushed with the commands:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ dscacheutil -flushcache ; sudo killall -HUP mDNSResponder ; \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ sudo port reload bind9
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 4. The DNS server is configured by default to accept requests on port 53
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ over the LAN. Make sure that this port is not exposed to the open
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ internet.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+livecheck.type none
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa b/net/dns-server/files/db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..7425806
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,10 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@LAN_REVERSE_IP_SUBNET@.in-addr.arpa. 10800 IN SOA @LAN_REVERSE_IP_SUBNET@.in-addr.arpa. admin.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa. (
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 2019033101
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 900
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1209600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 86400)
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN NS @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@HOST_LAN_REVERSE_IP_ADDRESS@.in-addr.arpa. 10800 IN PTR @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@CLIENT_LAN_REVERSE_IP_ADDRESS@.in-addr.arpa. 10800 IN PTR client1.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@CLIENT_LAN_REVERSE_IP_ADDRESS@.in-addr.arpa. 10800 IN PTR client2.@domain@.@tld@.
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/db.@domain@.@tld@ b/net/dns-server/files/db.@domain@.@tld@
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..d91c904
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/db.@domain@.@tld@
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,46 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@domain@.@tld@. 10800 IN SOA @domain@.@tld@. admin.@domain@.@tld@. (
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 2019033101
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 900
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1209600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 86400)
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN NS @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN A @HOST_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN MX 10 @domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN MX 20 mail.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; SPF, DKIM, and DMARC records. The public DNS records must match these.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; 10800 IN TXT "v=spf1 a mx +include:comcast.net -all"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;dkim_rsa2048._domainkey 10800 IN TXT ( "v=DKIM1; k=rsa; "
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; "p=public hash line 1"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; "public hash line 2" )
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;dkim_ed25519._domainkey 10800 IN TXT "v=DKIM1; k=ed25519; p=public hash"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_dmarc 10800 IN TXT "v=DMARC1; p=reject; adkim=r; aspf=r; sp=reject; pct=100; rua=mailto:dmarcreports@@domain@.@tld@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@host@.@domain@.@tld@. 10800 IN A @HOST_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; MX records *must* point to A records, not CNAME aliases
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+mail.@domain@.@tld@. 10800 IN A @HOST_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+lists.@domain@.@tld@. 10800 IN A @HOST_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+server.@domain@.@tld@. 10800 IN CNAME @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+www.@domain@.@tld@. 10800 IN CNAME @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+smtp.@domain@.@tld@. 10800 IN CNAME @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; Kerberos configuration with URI, TXT, and SRV records
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos.@HOST@.@DOMAIN@.@TLD@. IN URI 10 1 "udp://@host@.@domain@.@tld@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos.@HOST@.@DOMAIN@.@TLD@. IN URI 20 1 "tcp://@host@.@domain@.@tld@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master.@HOST@.@DOMAIN@.@TLD@. IN URI 10 1 "udp://@host@.@domain@.@tld@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master.@HOST@.@DOMAIN@.@TLD@. IN URI 20 1 "tcp://@host@.@domain@.@tld@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos.@host@.@domain@.@tld@. IN TXT "@HOST@.@DOMAIN@.@TLD@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master.@host@.@domain@.@tld@. IN TXT "@HOST@.@DOMAIN@.@TLD@"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos._udp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 88 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos._tcp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 88 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos._tls._tcp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 88 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master._udp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 749 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master._tcp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 749 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;_kerberos-master._tls._tcp.@HOST@.@DOMAIN@.@TLD@. IN SRV 10 1 749 @host@.@domain@.@tld@.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; LAN clients
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+client1.@domain@.@tld@. 10800 IN A @CLIENT_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+client2.@domain@.@tld@. 10800 IN A @CLIENT_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+client2-alias.@domain@.@tld@. 10800 IN CNAME client2.@domain@.@tld@.
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/db.@domain@.private b/net/dns-server/files/db.@domain@.private
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..429191a
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/db.@domain@.private
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,9 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@domain@.private. 10800 IN SOA @domain@.private. admin.@domain@.private. (
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 2019033101
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 900
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1209600
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 86400)
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN NS @domain@.private.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10800 IN A @HOST_LAN_IP_ADDRESS@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+proxy.@domain@.private. 10800 IN CNAME @domain@.private.
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/localhost.zone b/net/dns-server/files/localhost.zone
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..c47baf5
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/localhost.zone
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,11 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+$TTL 86400
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+$ORIGIN localhost.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@ 1D IN SOA @ root (
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 42 ; serial (d. adams)
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3H ; refresh
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 15M ; retry
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1W ; expiry
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1D ) ; minimum
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1D IN NS @
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1D IN A 127.0.0.1
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/named.ca b/net/dns-server/files/named.ca
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..6c19741
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/named.ca
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,88 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; This file holds the information on root name servers needed to
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; initialize cache of Internet domain name servers
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; (e.g. reference this file in the "cache . <file>"
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; configuration file of BIND domain name servers).
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; This file is made available by InterNIC
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; under anonymous FTP as
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; file /domain/named.cache
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; on server FTP.INTERNIC.NET
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; -OR- RS.INTERNIC.NET
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; last update: Jan 3, 2013
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; related version of root zone: 2013010300
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; formerly NS.INTERNIC.NET
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 IN NS A.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+A.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:BA3E::2:30
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY NS1.ISI.EDU
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS B.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY C.PSI.NET
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS C.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY TERP.UMD.EDU
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS D.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+D.ROOT-SERVERS.NET. 3600000 A 199.7.91.13
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+D.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2D::D
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY NS.NASA.GOV
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS E.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY NS.ISC.ORG
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS F.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+F.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2F::F
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY NS.NIC.DDN.MIL
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS G.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY AOS.ARL.ARMY.MIL
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS H.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+H.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:1::803F:235
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; FORMERLY NIC.NORDU.NET
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS I.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+I.ROOT-SERVERS.NET. 3600000 AAAA 2001:7FE::53
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; OPERATED BY VERISIGN, INC.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS J.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+J.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:C27::2:30
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; OPERATED BY RIPE NCC
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS K.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+K.ROOT-SERVERS.NET. 3600000 AAAA 2001:7FD::1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; OPERATED BY ICANN
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS L.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+L.ROOT-SERVERS.NET. 3600000 A 199.7.83.42
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+L.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:3::42
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; OPERATED BY WIDE
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+. 3600000 NS M.ROOT-SERVERS.NET.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+M.ROOT-SERVERS.NET. 3600000 AAAA 2001:DC3::35
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+; End of File
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/named.conf b/net/dns-server/files/named.conf
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..6ff97cc
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/named.conf
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,96 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# flush DNS cache and restart named
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# dscacheutil -flushcache ; sudo killall -HUP mDNSResponder ; sudo port unload bind9 ; sudo port load bind9
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+include "@PREFIX@/var/named/rndc.key";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+options {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ directory "@PREFIX@/var/named";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ listen-on-v6 {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ "any";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-query {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ org.macports.dns-server.public;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-recursion {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ org.macports.dns-server.public;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-transfer {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ forwarders {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 8.8.8.8;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 4.4.4.4;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ pid-file "@PREFIX@/var/run/named/named.pid";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+};
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+controls {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ inet ::1 port 54 allow {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ "any";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ } keys {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ "rndc-key";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+};
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+acl "org.macports.dns-server.public" {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 10.8.0.0/16;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ localhost;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ localnets;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+};
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+logging {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ channel "_default_log" {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "/opt/local/var/log/named/named.log" versions 10 size 2m;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ severity info;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ print-time yes;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ category "default" {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ "_default_log";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+};
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+view "org.macports.dns-server.public" {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "@LAN_REVERSE_IP_SUBNET@.in-addr.arpa" IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type master;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "db.@LAN_REVERSE_IP_SUBNET@.in-addr.arpa";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-transfer {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-update {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "@domain@.private" IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type master;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "db.@domain@.private";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-transfer {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-update {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "0.0.127.in-addr.arpa" IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type master;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "named.local";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-update {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "@domain@.@tld@" IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type master;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "db.@domain@.@tld@";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-transfer {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-update {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "localhost" IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type master;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "localhost.zone";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ allow-update {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ none;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ zone "." IN {
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ type hint;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ file "named.ca";
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ };
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+};
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/net/dns-server/files/named.local b/net/dns-server/files/named.local
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..8bfc435
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/net/dns-server/files/named.local
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,10 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+$TTL 86400
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@ IN SOA localhost. root.localhost. (
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 1997022700 ; Serial
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 28800 ; Refresh
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 14400 ; Retry
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 3600000 ; Expire
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 86400 ) ; Minimum
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ IN NS localhost.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+1 IN PTR localhost.
</span></pre><pre style='margin:0'>
</pre>