2024-01-11 02:15:00 +00:00
|
|
|
// This is the primary configuration file for the BIND DNS server named.
|
2018-11-24 03:05:31 +00:00
|
|
|
//
|
2024-01-11 02:15:00 +00:00
|
|
|
// Please read /usr/share/doc/bind9/README.Debian for information on the
|
|
|
|
|
// structure of BIND configuration files in Debian, *BEFORE* you customize
|
|
|
|
|
// this configuration file.
|
2018-11-24 03:05:31 +00:00
|
|
|
//
|
2024-01-11 02:15:00 +00:00
|
|
|
// If you are just adding zones, please do that in /etc/bind/named.conf.local
|
2018-11-24 03:05:31 +00:00
|
|
|
|
2025-09-17 20:34:03 +00:00
|
|
|
// TLS context for DoT/DoH
|
|
|
|
|
tls "dns-tls" {
|
|
|
|
|
cert-file "/etc/bind/keys/dns-fullchain.pem";
|
|
|
|
|
key-file "/etc/bind/keys/dns-privkey.pem";
|
2025-09-17 20:36:23 +00:00
|
|
|
protocols { TLSv1.3; TLSv1.2; };
|
2025-09-17 20:34:03 +00:00
|
|
|
session-tickets no;
|
|
|
|
|
};
|
|
|
|
|
|
2024-01-11 02:15:00 +00:00
|
|
|
include "/etc/bind/named.conf.options";
|
2018-11-26 02:50:21 +00:00
|
|
|
include "/etc/bind/named.conf.local";
|
2024-01-11 02:15:00 +00:00
|
|
|
include "/etc/bind/named.conf.default-zones";
|
2025-09-17 20:34:03 +00:00
|
|
|
include "/etc/bind/named.conf.opennic";
|
