// Maintained by: shareef12 admin@twelvetacos.com
// Last known public ip: 10.1.1.0

acl self { 10.1.1.0; 127.0.0.1; };
acl dmz {};
acl internal_dns { 10.24.24.1; };
acl evil {};

controls {};

options {
    hostname none;
    version "burninator 5.0";
    listen-on port 53 { self; };
    directory "/var/named";
    dump-file "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
    recursion yes;
    allow-recursion { self; internal_dns; dmz; };
    allow-query-cache { self, internal_dns; dmz; };
    
    allow-update { none; };
    allow-transfer { none; };
    blackhole { evil; };
    
    minimal-responses yes;
    querylog yes
    notify no;

    //TODO: Configure DNSSEC
};

// log to /var/log/named/example.log all events from 
// info UP in severity (no debug)
// defaults to use 3 files in rotation
// failure messages up to this point are in (syslog) 
// typically /var/log/messages
//
logging {
    channel dns_log {
        file "/var/log/named/example.log" versions 3 size 2m;
        severity info;
        print-severity yes;
        print-time yes;
        print-category yes;
    };
    category default {
        example_log;
    };
};

// required zone for recursive queries
zone "." {
    type hint;
    file "root.servers";
};

zone "twelvetacos.com" in {
    type master;
    file "twelvetacos.com";
};

zone "localhost" in {
    type master;
    file "localhost";
};

zone "0.0.127.in-addr.arpa" in {
    type master;
    file "localhost.rev";
};