Open main menu

CDOT Wiki β

Changes

SRA840 Lab4

595 bytes added, 15:20, 28 February 2009
Stealth Name Server:
</pre>
=='''Stealth Name Server:=='''
A stealth server is defined as being a name server which does not appear in any publicly visible NS Record for the domain. The stealth server is normally used in a configuration called Split Severs which can be roughly defined as having the following characteristics:
1.The organisation needs a public DNS to enable access to its public services e.g. web, mail ftp etc..
2.The organisation does not want the world to see any of its internal hosts either by interrogation (query or zone transfer) or should the DNS service be compromised.
 
'''Configuration file for slave server, Caching only Name server and Authoritative only Name Server'''
// Slaver server configuration file
zone "varinder.net" {
type slave;
file "slave/varinder.net";
allow-transfer { localhost; };
allow-update { key rndc-key};
};
// Caching only Name server configuration file
zone "." {
type hint;
file "cache/varinder.net";
};
// options section for Authoritative Name Server
// recursion no = limits caching
options {
directory "/var/named";
version "not currently available";
recursion no;
};
1
edit