1// 2// Include keys file 3// 4include "/etc/rndc.key"; 5 6// Declares control channels to be used by the rndc utility. 7// 8// It is recommended that 127.0.0.1 be the only address used. 9// This also allows non-privileged users on the local host to manage 10// your name server. 11 12// 13// Default controls 14// 15controls { 16 inet 127.0.0.1 port 54 allow {any;} 17 keys { "rndc-key"; }; 18}; 19 20options { 21 directory "/var/named"; 22 /* 23 * If there is a firewall between you and nameservers you want 24 * to talk to, you might need to uncomment the query-source 25 * directive below. Previous versions of BIND always asked 26 * questions using port 53, but BIND 8.1 uses an unprivileged 27 * port by default. 28 */ 29 // query-source address * port 53; 30}; 31// 32// a caching only nameserver config 33// 34zone "." IN { 35 type hint; 36 file "named.ca"; 37}; 38 39zone "localhost" IN { 40 type master; 41 file "localhost.zone"; 42 allow-update { none; }; 43}; 44 45zone "0.0.127.in-addr.arpa" IN { 46 type master; 47 file "named.local"; 48 allow-update { none; }; 49}; 50 51logging { 52 category default { 53 _default_log; 54 }; 55 56 channel _default_log { 57 file "/Library/Logs/named.log"; 58 severity info; 59 print-time yes; 60 }; 61}; 62