#======================================================
# named.conf for dbfiles_external directory.  
#
# NOTE: Comments in this file begin with a # symbol.
#
# NOTE: Remember we're chrooted.  Don't break the paths
#       below by forgetting that. 
#======================================================
options {
        directory "/dbfiles_external";
        pid-file "/dbfiles_external/external.pid";
        named-xfer "/sbin/named-xfer";
        #
        # depending on how/if you packet filter, you may 
        # want this. AFAIK, it doesn't hurt.
        query-source address * port 53;
        #
        # global options set to only allow queries from
        # us.  We explicitly allow our served zones to be 
        # queried on a per-zone basis later in this file.
        allow-query { 192.168.1.0/24; 127.0.0.1; 172.16.10.1; };
        listen-on { 172.16.10.1; 127.0.0.1; };
};
 
controls{
        unix "/dbfiles_external/ndc_external"
        perm 0600
        owner 0
        group 0;
};
 
zone "somedomain.com" in {
        type master;
        file "db.somedomain.com";
        allow-query { any; };
        allow-transfer { 172.16.12.10; 10.0.0.1; };
};
 
zone "10.16.172.in-addr.arpa" in {
        type master;
        allow-query { any; };
        file "db.172.16.10";
        allow-transfer { 172.16.12.10; 10.0.0.1; };
};
 
zone "0.0.127.in-addr.arpa" in {
        type master;
        allow-query { any; };
        file "db.127.0.0";
};
 
zone "." in {
        type hint;
        file "db.cache";
};