include "/etc/controls.conf";

options {
	directory	"/zones";
	pid-file	"/var/run/named.pid";
	statistics-file	"/var/run/named.stats";
	dump-file	"/var/run/named.db";

	# hide our "real" version number
	version		"[secured]";
#	query-source port 53;
};


acl "internal" {
	169.132.5.0/24;
	169.132.6.0/24;
	169.132.7.0/24;
	169.132.9.0/24;
	169.132.10.0/24;
	169.132.12.0/24;
	169.132.32.0/24;
	169.132.44.0/24;
	213.232.78.0/24;
	198.4.64.0/24;
	198.4.66.0/24;
	10.0.0.0/8;
	172.16.0.0/16;
	192.168.0.0/16;
	127.0.0.1;
};



# Be sure NOT to include "/dns/" in front of these files
# because named is chrooted to /dns !

# MAKE SURE THE INTERNAL VIEW COMES *BEFORE* THE EXTERNAL VIEW!!!

view "internal" {
	match-clients { "internal"; };
	recursion yes;

	# The root nameservers
	zone "." {
		type	hint;
		file	"root.hints";
	};

	# localhost - forward zone
	zone	"localhost" {
		type	master;
		file	"localhost.db";
		notify	no;
	};

#	# localhost - reverse zone
#	zone	"0.0.127.in-addr.arpa" {
#		type	master;
#		file	"0.0.127.in-addr.arpa.db";
#		notify	no;
#	};

	include "/zones/dns-internal-forward-zones.conf";
	include "/zones/dns-internal-reverse-zones.conf";
};


view "external" {
	match-clients { any; };
	recursion no;

	# The root nameservers
	zone "." {
		type	hint;
		file	"root.hints";
	};

	# localhost - forward zone
	zone	"localhost" {
		type	master;
		file	"localhost.db";
		notify	no;
	};

#	# localhost - reverse zone
#	zone	"0.0.127.in-addr.arpa" {
#		type	master;
#		file	"0.0.127.in-addr.arpa.db";
#		notify	no;
#	};

	include "/zones/dns-external-forward-zones.conf";
	include "/zones/dns-external-reverse-zones.conf";
};