source: server/other/bind/bind-config-exp.xml@ 7319b78

<sect2>
<title>Configuration command explanations</title>
<para><screen><userinput>groupadd -g 200 named
useradd -m -g named -u 200 -s /bin/false named
cd /home/named
mkdir -p dev etc/namedb/slave var/run
mknod /home/named/dev/null c 1 3
mknod /home/named/dev/random c 1 8
chmod 666 /home/named/dev/{null,random}
mkdir /home/named/etc/namedb/pz
cp /etc/localtime /home/named/etc : </userinput></screen>

Create the unprivileged user and group named, along with device files
that named will need access to inside the chroot jail.</para>

<para><userinput>
cat &gt; /home/named/etc/named.conf &lt;&lt; "EOF" :</userinput>
Create the BIND configuration file, from which named will read the
location of zone files, root nameservers and secure DNS keys.</para>
<para><userinput>
cat &gt; /home/named/etc/namedb/pz/127.0.0 &lt;&lt; "EOF" :</userinput>
Create a single zone file.</para>
<para><userinput>
cat &gt; /home/named/etc/namedb/root.hints &lt;&lt; "EOF" :</userinput>
The root.hints file is a list of root nameservers.  This file must be
updated periodically with the dig utility.  Consult the BIND 9
Administrator Reference Manual for details.</para>
<para><userinput>
cat &gt; /etc/rndc.conf &lt;&lt; "EOF" :</userinput>
The rndc.conf file contains information for controlling named
operations with the rndc utility.</para>

<para><userinput>
cat &gt; /etc/resolv.conf &lt;&lt; "EOF" :</userinput>
The resolv.conf file will specify the local host(127.0.0.1) as the
nameserver.</para>

<para><userinput>
cat &gt; /etc/rc.d/init.d/bind &lt;&lt; "EOF" :</userinput>
Create the boot script for BIND 9, used to start and stop the name
server daemon, named.</para>



</sect2>