Installation guide
Chapter 16. Berkeley Internet Name Domain (BIND) 231
The /etc/named.conf file must be free of errors in order for named to start. While some erroneous
options are not considered critical enough to stop the server, any errors in the statements themselves
will prevent the named service from starting.
Warning
Do not manually edit the /etc/named.conf file or any files in the /var/named/ directory if you are
using the Bind Configuration Tool. Any manual changes to those files will be overwritten the next
time the Bind Configuration Tool is used.
16.2.1. /etc/named.conf
The /etc/named.conf file is a collection of statements using nested options placed in ellipses { }.
A sample /etc/named.conf file is organized similar to this:
statement-1 [" statement-1-name "] [ statement-1-class ] {
option-1 ;
option-2 ;
option-N ;
};
statement-2 [" statement-2-name "] [ statement-2-class ] {
option-1 ;
option-2 ;
option-N ;
};
statement-N [" statement-N-name "] [ statement-N-class ] {
option-1 ;
option-2 ;
option-N ;
};
The statement-N-name is only needed with acl, include, server, view, and zone state-
ments. The
statement-N-class may only be specified with the zone statement.
The following is a list of valid comment tags you may use within /etc/named.conf:
• // — Use at the begining of a line comment that line.
• # — Use at the begining of a line comment that line.
• /* and */ — Enclose text in these tags to create a block comment.
The following statements may be used in /etc/named.conf:
• acl acl-name 4 — Configures an access control list of IP addresses to be allowed or disal-
lowed certain named services. Most of the time, individual IP addresses or IP network notation
(such as 10.0.1.0/24) is used identify the exact IP addresses.
A few access control lists are already defined, so you do not have to configure an acl statement to
define them:
• any — Matches every IP address.
• localhost — Matches any IP address in use by the local system.
• localnets — Matches any IP address on any network to which the local system is connected .
• none — Matches no IP addresses.