In this part we will install BIND and secondary name server. For primary name server installation please check INSTALL NSD AS PRIMARY DNS SERVER & BIND AS SECONDARY NAME SERVER (PART 1)
1. Update package library and install BIND
sudo apt-get update
sudo apt-get install bind9 bind9utils bind9-doc
2. All the configuration files are in /etc/bind/
folder. Most of the cases the default options work fine. The only thing I did is add the TSIG key for zone transfer.
3. First create they key file
vi ssh.com.bd-key
key ssh.com.bd-key {
algorithm hmac-md5;
secret "N1aqkdyRDOOM01NYt3Vat3v+QmonX8bsNoSdBUyKNB0=";
};
Make sure you copy the secret properly
4. Add the key in named.conf
file
sudo vi named.conf
#TSIG key kompella->martini
include "/etc/bind/ssh.com.bd-key";
server 192.0.2.10 {
keys { ssh.com.bd-key; };
};
5. Add the related zone in named.conf.default-zones
file:
zone "ssh.com.bd" IN {
type slave;
file "/var/cache/bind/ssh.com.bd.zone";
masters { 192.0.2.10; };
};
zone "113.0.203.in-addr.arpa" IN {
type slave;
file "/var/cache/bind/203.0.113.zone";
masters { 192.0.2.10; };
};
6. Save and reload BIND service.
sudo /etc/init.d/bind9 restart
7. Test the zone transfer:
dig axfr @192.0.2.10 ssh.com.bd soa -k ssh.com.bd-key
If all are on; you can see all the zone entry.