Ola, eu coloquei nos fowarder o IP do opnDNS, ate então esta ok.
Esse servidor já estava configurado quando entrei na empresa, então apenas copiei as configurações.
eu vou postar o resultado conforme solicitado pelo selvaking! Obrigado..
=== /etc/bind/bind.keys ===
/* $Id: bind.keys,v 1.5.42.2 2011-01-04 19:14:48 each Exp $ */
# The bind.keys file is used to override built-in DNSSEC trust anchors
# which are included as part of BIND 9. As of the current release (BIND
# 9.7), the only trust anchor it sets is the one for the ISC DNSSEC
# Lookaside Validation zone ("dlv.isc.org"). Trust anchors for any other
# zones MUST be configured elsewhere; if they are configured here, they
# will not be recognized or used by named.
#
# This file also contains a copy of the trust anchor for the DNS root zone
# ("."). However, named does not use it; it is provided here for
# informational purposes only. To switch on DNSSEC validation at the
# root, the root key below can be copied into named.conf.
#
# The built-in DLV trust anchor in this file is used directly by named.
# However, it is not activated unless specifically switched on. To use
# the DLV key, set "dnssec-lookaside auto;" in the named.conf options.
# Without this option being set, the key in this file is ignored.
#
# This file is NOT expected to be user-configured.
#
# These keys are current as of January 2011. If any key fails to
# initialize correctly, it may have expired. In that event you should
# replace this file with a current version. The latest version of
# bind.keys can always be obtained from ISC at
https://www.isc.org/bind-keys.
managed-keys {
# ISC DLV: See
https://www.isc.org/solutions/dlv for details.
# NOTE: This key is activated by setting "dnssec-lookaside auto;"
# in named.conf.
dlv.isc.org. initial-key 154 2 3 "BEABBPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2
brhQv5rN32RKtMzX6fd70jdzeND4XknW58dnJNsdCxn8+jAGl2FZLK8t+
1uq4sWnnA3qO2+DL+k6BD4mewMdLdIYFwesdPsd73Te9fZ2kJb56dhg+Mde5
ymX4BI/o+QtcAK50/xvJd0tFrf8kw6tcMTtFlgPe+jnGxPPEmHAte/URk
Y62Zfkk+LoBtADLHkQ9dIrS2tryAe7mbBZVcOwIeU/kRw/asdoijDWSosDopDs;wwMCkTgNboM
QKtUdvNXvrcJDvivvejklvSHZws3xddXqF1Rf+al9UmZfSav/4kNWLKjHzpT59k/VSpomcbQ/t
TDN0k+YUuxWrBN//h";
# ROOT KEY: See
https://data.iana.org/root-anchors/root-anchors.xml # ROOT KEY: See
https://data.iana.org/root-anchors/root-anchors.xml # for current trust anchor information.
# NOTE: This key is activated by setting "dnssec-validation auto;"
# in named.conf.
. initial-key 154 2 3 "AwfssjkaokvAdERVBrpC6Ia7gEzahOR+9W29eu//xhJhVsVLOyQbSEW0O8gc/CjF
FVQUTf6v58fLjwfghjklYI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX
bfDaUeVPQuYEhgkjoaZWAJQs9VnM+VDxP/VHL496M/QZx/kjf5/Efucp2gaD
X6RS6CXdenm+ffghkighbnPVjssR0ZSwzz1apAzvN9/dlzEheX7ICJBBtuA6G3LQpz
W5hOA+2hzCTMjJPJ8LbqsdsddsV6xDoBQzgul/0sGIcGOYl+7OyQdXfZ57rWelS
Qageu+ipAdTTJ25AsRTAsdwavhjk8xONG+cL/mqrAmASEEDVP1SddfSdwhYB4N7knNnulq/
QxA+Uk1ihz0=";
};
=== /etc/bind/db.0 ===
;
; BIND reverse data file for broadcast zone
;
$TTL 604800
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost.
=== /etc/bind/db.127 ===
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost.
1.0.0 IN PTR localhost.
=== /etc/bind/db.255 ===
;
; BIND reverse data file for broadcast zone
;
$TTL 604800
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refreshzone "21.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "22.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "23.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "24.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "25.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "26.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "27.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "28.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "29.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "30.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "31.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "168.192.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost.
=== /etc/bind/db.empty ===
; BIND reverse data file for empty rfc1918 zone
;
; DO NOT EDIT THIS FILE - it is used for multiple zones.
; Instead, copy it, edit named.conf, and use that copy.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
86400 ) ; Negative Cache TTL
;
@ IN NS localhost.
=== /etc/bind/db.local ===
;
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA localhost. root.localhost. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
zone "22.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "23.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "24.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "25.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "26.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "27.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "28.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "29.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "30.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "31.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "168.192.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
;
@ IN NS localhost.
@ IN A 127.0.0.1
@ IN AAAA ::1
=== /etc/bind/db.root ===
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.cache
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: Jun 17, 2010
; related version of root zone: 2010061700
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
A.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:BA3E::2:30
;
; FORMERLY NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
;
; FORMERLY C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; FORMERLY TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; FORMERLY NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; FORMERLY NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
F.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2F::F
;
; FORMERLY NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; FORMERLY AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
H.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:1::803F:235
;
; FORMERLY NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
I.ROOT-SERVERS.NET. 3600000 AAAA 2001:7FE::53
;
; OPERATED BY VERISIGN, INC.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
J.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:C27::2:30
; OPERATED BY RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
K.ROOT-SERVERS.NET. 3600000 AAAA 2001:7FD::1
;
; OPERATED BY ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 199.7.83.42
L.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:3::42
;
; OPERATED BY WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
M.ROOT-SERVERS.NET. 3600000 AAAA 2001:DC3::35
; End of File
=== /etc/bind/managed-keys.bind ===
=== /etc/bind/named.conf ===
// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
// structure of BIND configuration files in Debian, *BEFORE* you customize
// this configuration file.
//
// If you are just adding zones, please do that in /etc/bind/named.conf.local
include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";
include "/etc/bind/bind.keys";
=== /etc/bind/named.conf.default-zones ===
// prime the server with knowledge of the root servers
zone "." {
type hint;
file "/etc/bind/db.root";
};
// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912
zone "localhost" {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};
=== /etc/bind/named.conf.local ===
zone "dominio.com.br" {
type master;
allow-transfer {none;};
file "/etc/bind/pri.dominio.com.br";
};
zone "4.200.200.200.in-addr.arpa" {
type master;
allow-transfer {none;};
file "/etc/bind/pri.4.200.200.200.in-addr.arpa";
};
zone "2.200.200.200.in-addr.arpa" {
type master;
allow-transfer {none;};
file "/etc/bind/pri.2.200.200.200.in-addr.arpa";
};
=== /etc/bind/named.conf.options ===
options {
directory "/var/cache/bind";
allow-recursion { 127.0.0.1; 200.200.200.2; 200.200.200.4;};
listen-on { 127.0.0.1; 200.200.200.2; 200.200.200.4;};
forwarders { 208.67.222.222; 208.67.220.220; };
forward first;
version "Nao disponivel.";
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
managed-keys-directory "/var/cache/bind";
recursion no;
# dnssec-enable yes;
# dnssec-validation yes;
# dnssec-lookaside auto;
};
#logging {
# category lame-servers {null; };
#};
logging{
channel default_syslog {
syslog daemon;
severity notice;
};
};
=== /etc/bind/pri.2.200.200.200.in-addr.arpa ===
$TTL 3600
@ IN SOA ns1.dominio.com.br. admin.dominio.com.br. (
2012030903 ; serial, todays date + todays serial #
7200 ; refresh, seconds
540 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
86400 NS ns1.dominio.com.br.
2 86400 PTR ns1.dominio.com.br.
=== /etc/bind/pri.4.200.200.200.in-addr.arpa ===
$TTL 3600
@ IN SOA ns2.dominio.com.br. admin.dominio.com.br. (
2012030909 ; serial, todays date + todays serial #
7200 ; refresh, seconds
540 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
86400 NS ns2.dominio.com.br.
4 IN PTR ns2.dominio.com.br.
=== /etc/bind/pri.dominio.com.br ===
$TTL 3600
@ IN SOA ns1.dominio.com.br. admin.dominio.com.br. (
2012042001 ; serial, todays date + todays serial #
7200 ; refresh, seconds
540 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
3600 MX 10 mail.dominio.com.br.
3600 MX 10 dominio.com.br.
3600 MX 10
www.dominio.com.br.
ftp 3600 A 200.200.200.2
helpdeskweb 86400 A 200.200.200.2
ic 86400 A 200.200.200.2
mail 3600 A 200.200.200.2
server 86400 A 200.200.200.2
ns1 86400 A 200.200.200.2
ns2 86400 A 200.200.200.4
dominio.com.br. 3600 A 200.200.200.2
dominio.com.br. 3600 NS ns1.dominio.com.br.
dominio.com.br. 3600 NS ns2.dominio.com.br.
dominio.com.br. 86400 TXT "v=spf1 a mx ptr ~all"
pop 3600 A 200.200.200.2
pop3 3600 A 200.200.200.2
projetosweb 86400 A 200.200.200.4
smtp 3600 A 200.200.200.2
svn 86400 A 200.200.200.2
www 3600 A 200.200.200.2
=== /etc/bind/rndc.key ===
key "rndc-key" {pgqp 86400 A 200.200.200.2
algorithm hmac-md5;
secret "+Hc0Etuw5cgEOB3rNdWDMeAg==";
};
=== /etc/bind/slave ===
=== /etc/bind/zones.rfc1918 ===
zone "10.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "16.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "17.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "18.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "19.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "20.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "21.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "22.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "23.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "24.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "25.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "26.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "27.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "28.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "29.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "30.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "31.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };
zone "168.192.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };