cvs updates from Mon Dec 20 21:24:21 EST 2010

[tridge/bind9.git] / bin / tests / system / tsiggss / ns1 / named.conf

diff --git a/bin/tests/system/tsiggss/ns1/named.conf b/bin/tests/system/tsiggss/ns1/named.conf
new file mode 100644 (file)
index 0000000..8dbab39
--- /dev/null
+++ b/bin/tests/system/tsiggss/ns1/named.conf
@@ -0,0 +1,37 @@
+controls { };
+
+options {
+       query-source address 10.53.0.1;
+       notify-source 10.53.0.1;
+       transfer-source 10.53.0.1;
+       port 5300;
+       pid-file "named.pid";
+       session-keyfile "session.key";
+       listen-on { 10.53.0.1; 127.0.0.1; };
+       listen-on-v6 { none; };
+       recursion no;
+       notify yes;
+       tkey-gssapi-keytab "dns.keytab";
+};
+
+key rndc_key {
+       secret "1234abcd8765";
+       algorithm hmac-md5;
+};
+
+controls {
+       inet 10.53.0.1 port 9953 allow { any; } keys { rndc_key; };
+};
+
+zone "example.nil." IN {
+       type master;
+       file "example.nil.db";
+
+       update-policy {
+               grant Administrator@EXAMPLE.NIL wildcard * A AAAA SRV CNAME;
+               grant testdenied@EXAMPLE.NIL wildcard * TXT;
+       };
+
+       /* we need to use check-names ignore so _msdcs A records can be created */
+       check-names ignore;
+};