blocks
This is an old revision of the document!
Master
mkdir /var/cache/bind/rpz/
ln -s /var/cache/bind/rpz/ /etc/bind/rpz
nano /etc/bind/named.conf.local
zone "rpz.zone" {
type master;
file "/var/cache/bind/rpz/db.rpz.zone.hosts";
allow-query { private; };
allow-transfer { 172.31.255.12; };
also-notify { 172.31.255.12; };
};
nano /var/cache/bind/rpz/db.rpz.zone.hosts
$TTL 1H
@ IN SOA LOCALHOST. bloqueadonobrasil..com.br. (
2024012201 ; Serial
1h ; Refresh
15m ; Retry
30d ; Expire
2h ; Negative Cache TTL
)
NS bloqueadonobrasil..com.br.
; ou
; NS localhost.
nano /etc/bind/named.conf.options
response-policy {
zone "rpz.zone" policy CNAME localhost;
};
wget https://protocol.be/public/planilha_operacao_url20241011_09_10-1.dns
cat planilha_operacao_url20241011_09_10-1.dns >> /var/cache/bind/rpz/db.rpz.zone.hosts
chown bind: /var/cache/bind/rpz/ -R
systemctl restart bind9
Slave
mkdir /var/cache/bind/rpz/
ln -s /var/cache/bind/rpz/ /etc/bind/rpz
nano /etc/bind/named.conf.local
zone "rpz.zone" {
type slave;
file "/var/cache/bind/rpz/db.rpz.zone.hosts";
masters { 172.31.255.11; };
allow-notify { 172.31.255.11; };
};
nano /etc/bind/named.conf.options
response-policy {
zone "rpz.zone" policy CNAME localhost;
};
chown bind: /var/cache/bind/rpz/ -R
systemctl restart bind9
blocks.1728703931.txt.gz · Last modified: 2024/10/12 00:32 by protocol