OS X BIND Config Cleanup | Slaptijack

2/18/12 7:07 AM

HOME ABOUT PROJECTS SEARCH

OS X BIND Config Cleanup

by Scott Hebert Before we can start running BIND on OS X, we have to make a few configuration changes. Although BIND is pre-installed in Mac OS X 10.4 (Tiger), it's not ready to run right out of the box. We've already created our Startup Item, but now we need to cleanup a few problems in the BIND configuration before we can start running our caching-only name server. Update /etc/hostconfig. You may have noticed in our BIND Startup Item that we referred to a variable called ${DNSSERVER}. This variable is set in the /etc/hostconfig file. Using your favorite text editor, add the the following line to the end of the file.
DNSSERVER=-YES-

That's all there is to that. If you want to disable BIND sometime in the future, simple change that 'YES' to 'NO' and you're done. Add RNDC Configuration Files. RNDC is short for "Remote Name Daemon Control". Although we won't enable the "Remote" part of that, it is useful for doing things like flushing the name cache or reloading the configuration of a running name server. We're going to run an application called rndc-confgen to generate the values we need for our two new configuration files: /etc/rndc.conf and /etc/rndc.key. Let's create the files before hand. As always, the '$' indicates the shell prompt and should not be typed.
$ sudo touch /etc/rndc.conf $ sudo touch /etc/rndc.key

The file rndc.conf contains information regarding how the rndc application should communicate with the BIND daemon. The rndc.key file contains key information used by rndc and BIND. We'll run rndc-confgen -p 54 from the command line to automatically generate the data we need for these files. Here's an example.
$ rndc-confgen -p 54 # Start of rndc.conf
http://slaptijack.com/system-administration/os-x-bind-config-cleanup/ Page 1 of 5

OS X BIND Config Cleanup | Slaptijack

2/18/12 7:07 AM

key "rndc-key" { algorithm hmac-md5; secret "Ebd1XQUSxfQxw78FG9HERA=="; }; options { default-key "rndc-key"; default-server 127.0.0.1; default-port 54; }; # End of rndc.conf # # # # # # # # # # # Use with the following in named.conf, adjusting the allow list as needed: key "rndc-key" { algorithm hmac-md5; secret "Ebd1XQUSxfQxw78FG9HERA=="; }; controls { inet 127.0.0.1 port 54 allow { 127.0.0.1; } keys { "rndc-key"; }; }; End of named.conf

Using your favorite text editor, add the key{}; and options{}; stanzas to /etc/rndc.conf. Next, update /etc/rndc.key with just the key{}; stanza. Don't forget to save! That should be all the changes necessary to the configuration files. Related Reading: Mac OS X Internals: A Systems Approach by Amit Singh DNS & BIND Cookbook by Cricket Liu
0 Tweet 2 Like

Related Posts
http://slaptijack.com/system-administration/os-x-bind-config-cleanup/ Page 2 of 5

OS X BIND Config Cleanup | Slaptijack

2/18/12 7:07 AM

Starting BIND In OS X (Even After Reboot) Updating OS X Network Settings to Use a Local DNS Server BIND Startup in Mac OS X 10.4 (Tiger) Creating an OS X Startup Item For BIND OS X Caching Only Name Server

3 Responses to OS X BIND Config Cleanup

1. OS X Caching Only Name Server | Slaptijack says: June 1, 2007 at 9:35 am [...] OS X BIND Config Cleanup [...] Reply 2. Starting BIND In OS X (Even After Reboot) | Slaptijack says: June 4, 2007 at 3:58 am [...] that weve cleaned up the configuration files for BIND on our Mac OS X 10.4 (Tiger) system, its time to start it up. If we execute our [...] Reply 3. DNS Root Server IP Address Change | Slaptijack says: November 2, 2007 at 5:29 pm [...] the rndc reload should load the new hints file. Heres some additional information on how to configure rndc. [...] Reply

Leave a Reply
Name (required) Mail (will not be published) (required) Website

Submit Comment

http://slaptijack.com/system-administration/os-x-bind-config-cleanup/

Page 3 of 5

OS X BIND Config Cleanup | Slaptijack

2/18/12 7:07 AM

Receive comments via e-mail.

Get Slaptijack updates delivered to your Inbox or RSS Reader for free!

CATEGORIES
Graphics Design Information Systems IT Management Networking Programming Security Updates Software System Administration Tech Messages Uncategorized Voice / Voice over IP

ARCHIVES
2012 2011 2010 2009 2008 2007

http://slaptijack.com/system-administration/os-x-bind-config-cleanup/

Page 4 of 5

OS X BIND Config Cleanup | Slaptijack

2/18/12 7:07 AM

2012 Slaptijack All Rights Reserved Wordpress CoreCloud

http://slaptijack.com/system-administration/os-x-bind-config-cleanup/

Page 5 of 5