09207867e4
We should not check the port of the request, we *should* actually normalize it to port 53 - as that will probably be the address of the server. Still need to double check if this will work if the axfr should actually be done from a different port. That will come later, this is good enough for now. |
||
|---|---|---|
| .. | ||
| tree | ||
| closest.go | ||
| closest_test.go | ||
| dnssec_test.go | ||
| ent_test.go | ||
| file.go | ||
| file_test.go | ||
| lookup.go | ||
| lookup_test.go | ||
| notify.go | ||
| README.md | ||
| secondary.go | ||
| secondary_test.go | ||
| wildcard_test.go | ||
| xfr.go | ||
| xfr_test.go | ||
| zone.go | ||
| zone_test.go | ||
file
file enables serving zone data from a RFC-1035 styled file.
The file middleware is used for "old-style" DNS server. It serves from a preloaded file that exists on disk.
Syntax
file dbfile [zones...]
dbfilethe database file to read and parse.zoneszones it should be authoritative for. If empty the zones from the configuration block are used.
If you want to round robin A and AAAA responses look at the loadbalance middleware.
TSIG key configuration is TODO; directive format for transfer will probably be extended with
TSIG key information, something like transfer out [address] key [name] [base64]
file dbfile [zones... ] {
transfer out [address...]
transfer to [address]
}
transferenables zone transfers. It may be specified multiples times. To or from signals the direction. Address must be denoted in CIDR notation (127.0.0.1/32 etc.). The special wildcard "*" means: the entire internet.
Examples
Load the miek.nl zone from miek.nl.signed and allow transfers to the internet.
file miek.nl.signed miek.nl {
transfer to *
}