CloudHost/zonemaster.es
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add full Zonemaster stack with Docker and Spanish UI

Browse Source 
- Clone all 5 Zonemaster component repos (LDNS, Engine, CLI, Backend, GUI)
- Dockerfile.backend: 8-stage multi-stage build LDNS→Engine→CLI→Backend
- Dockerfile.gui: Astro static build served via nginx
- docker-compose.yml: backend (internal) + frontend (port 5353)
- nginx.conf: root redirects to /es/, /api/ proxied to backend
- zonemaster-gui/config.ts: defaultLanguage set to 'es' (Spanish)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Malin
2026-04-21 08:19:24 +02:00
commit 8d4eaa1489
1567 changed files with 204155 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

156
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/README.md Normal file
View File

@@ -0,0 +1,156 @@
# Bind
## Table of contents
* [Variable below](#variable-below)
* [Configuring Bind](#configuring-bind)
* [Zone files](#zone-files)
* [Key generation and zone signing](#key-generation-and-zone-signing)
* [Creating a variant zone](#creating-a-variant-zone)
* [Synchronizing the keys and zones at checkout](#synchronizing-the-keys-and-zones-at-checkout)
* [Starting and stopping Bind](#starting-and-stopping-bind)
* [Reloading Bind](#reloading-bind)
* [Checking Bind](#checking-bind)
## Variable below
Below `%ZONE-NAME%` means the name of the zone in question, without the trailing
dot, e.g. `inconsist-nsec-nsec3-1.dnssec10.xa`.
## Configuring Bind
Specific IP addresses must be allocated for Bind in `address-plan.md`. For these
test scenarios 127.15.10.37 and 127.15.10.38 are allocated.
All Bind configuration must be kept in the
`test-zone-data/DNSSEC-TP/dnssec10/Bind` directory (and that model should always
be used for Bind data). In `named.conf` all configuration for Bind is kept. In
that file it is configured that Bind listens to the two addresses listed above.
There is no need to listen to IPv6.
Bind is configured with `views`, one view per IP address. In the normal case
a zone is only put into the `main` view (127.15.10.37). If the scenario requires
two variants of the same zone (NSEC vs NSEC3) then the same zone with other
settings are added to the `var1` view (127.15.10.38). In that way both NSEC and
NSEC3 responses can be fetched. See further below on the creation of the
variant zone.
## Zone files
Zone files are created as unsigned zones. The zone file name should be
`%ZONE-NAME%.zone`, e.g. `inconsist-nsec-nsec3-1.dnssec10.xa.zone`.
The file should reside in directory `zones/` unless it is a variant zone file
(view `var1`). Then is should reside in directory `zones-var1/`. A variant zone
file should have the same name as the main zone file.
## Key generation and zone signing
When started or restarted Bind will create keys (DNSKEY), signatures (RRSIG) and
NSEC or NSEC3 records. The unsigned zone file is unchanged and a `*.zone.signed`
file is created, e.g. `inconsist-nsec-nsec3-1.dnssec10.xa.zone.signed`.
Keys for `main` zones are put in the `key-dir` directory by Bind. Keys for the
`var1` zones are put in the `key-dir-var1` directory.
## Creating a variant zone
When a variant zone file (in `var1` view) of exactly the same zone (zone name)
then Bind will create a different set of keys, which is not what we want. To
prevent this, do the following steps:
1. Create the `main` variant.
2. Restart Bind.
3. Wait for the `zones/%ZONE-NAME%.zone.signed` file to be created.
4. Create the `var1` variant.
5. Copy all keys from `main` to `var1`:
```sh
cp key-dir/K%ZONE-NAME%* key-dir-var1/
```
6. Restart Bind
To verify that both variants of the zone have the same keys run the equivalent
of the following commnds, that should list the same DNSKEY, but maybe in
different order:
```sh
dig +noall +ans +nocrypt @127.15.10.37 inconsist-nsec-nsec3-1.dnssec10.xa dnskey
```
```sh
dig +noall +ans +nocrypt @127.15.10.38 inconsist-nsec-nsec3-1.dnssec10.xa dnskey
```
If different keys are listed, then do the following steps:
1. Stop Bind.
2. Removed signed files and keys for the `var1` zone.
```sh
rm -i zones-var1/%ZONE-NAME%.zone.* key-dir-var1/K%ZONE-NAME%*
```
3. Copy all keys for the zone:
```sh
cp key-dir/K%ZONE-NAME%* key-dir-var1/
```
4. Start Bind
5. Verify (see above).
## Synchronizing the keys and zones at checkout
The keys and signed zones are not stored in Git. When a branch has been checked
out Bind will create new keys and signature when started. Some steps must be
taken to manually sychronize the keys between the `main` view and the `var1`
view.
1. Stop Bind if running.
2. Clean the directories from signed zones and any keys for the `var1` view:
```sh
rm -i zones/*.zone.* zones-var1/*.zone.* key-dir-var1/*
```
2. Start Bind.
3. Wait for the `zones/*.zone.signed` files to be created.
4. Stop Bind.
5. Removed signed files and keys for the `var1` zones.
```sh
rm -i zones-var1/*.zone.* key-dir-var1/*
```
4. Copy all keys from `main` to `var1` which will be more than we need but that
will create no problem.
```sh
cp key-dir/K* key-dir-var1/
```
5. Start Bind.
6. Verify (see above).
## Starting and stopping Bind
To start or stop Bind go to the directory where `named.conf` is found,
```sh
cd test-zone-data/DNSSEC-TP/dnssec10/Bind
```
Start Bind with the following command where `$USER` has the owner of the git
tree, i.e. owner of the `Bind` directory and all file in that directory. In a
default installation of Ubuntu that user name is `ubuntu`.
```sh
sudo named -c $(pwd)/named.conf -u $USER
```
From the directory where Bind was started the following command stops Bind:
```sh
kill $(cat named.pid)
```
If the PID file is lost then named can be stopped with the following command,
which may kill other Bind processes (after confirmation):
```sh
killall -i named
```
## Reloading Bind
After update of `named.conf` or zone file run by Bind you must reload Bind:
```sh
kill -HUP $(cat named.pid)
```
## Checking Bind
To see log output run the following command:
```sh
tail -50 /var/log/syslog | grep named
```

490
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/named.conf Normal file
View File

@@ -0,0 +1,490 @@
options {
dnssec-validation auto;
automatic-interface-scan no;
#
# Explicitly listen on specific addresses, both IPv4 and IPv6 to
# prevent Bind to bind to too many addresses
listen-on { 127.15.10.37; 127.15.10.38; };
listen-on-v6 { fda1:b2:c3:0:127:15:10:37; fda1:b2:c3:0:127:15:10:38; };
#
recursion no;
notify no;
empty-zones-enable no;
pid-file "named.pid";
masterfile-format text;
session-keyfile none;
};
# In the usual case add the zone to view "main" only. If the scenario requires
# two variants of the zone, add the variant of the zone to view "var1" (create
# view "var2" etc if required).
# Put all zone files into the "zones" sub-directory.
view "main" {
# Name of zone file in this view should be "<ZONE-NAME>.zone"
match-destinations { 127.15.10.37; fda1:b2:c3:0:127:15:10:37; };
key-directory "key-dir";
zone "localhost" {
type master;
file "zones/localhost.zone";
};
zone "good-nsec-1.dnssec10.xa" {
type master;
file "zones/good-nsec-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "good-nsec-2.dnssec10.xa" {
type master;
file "zones/good-nsec-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "good-nsec-3.dnssec10.xa" {
type master;
file "zones/good-nsec-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "good-nsec3-1.dnssec10.xa" {
type master;
file "zones/good-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "good-nsec3-2.dnssec10.xa" {
type master;
file "zones/good-nsec3-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "good-nsec3-3.dnssec10.xa" {
type master;
file "zones/good-nsec3-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "algo-not-supp-by-zm-1.dnssec10.xa" {
type master;
file "zones/algo-not-supp-by-zm-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "algo-not-supp-by-zm-2.dnssec10.xa" {
type master;
file "zones/algo-not-supp-by-zm-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "bad-servers-but-good-nsec-1.dnssec10.xa" {
type master;
file "zones/bad-servers-but-good-nsec-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "err-mult-nsec-1.dnssec10.xa" {
type master;
file "zones/err-mult-nsec-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "err-mult-nsec-2.dnssec10.xa" {
type master;
file "zones/err-mult-nsec-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "err-mult-nsec3-1.dnssec10.xa" {
type master;
file "zones/err-mult-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "err-mult-nsec3param-1.dnssec10.xa" {
type master;
file "zones/err-mult-nsec3param-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "exp-nsec-nsec3-miss-1.dnssec10.xa" {
# The scenario has neither NSEC nor NSEC3, but we have to select
# something to get the DNSKEY and RRSIG.
type master;
file "zones/exp-nsec-nsec3-miss-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "inconsistent-nsec-1.dnssec10.xa" {
type master;
file "zones/inconsistent-nsec-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "inconsistent-nsec3-1.dnssec10.xa" {
type master;
file "zones/inconsistent-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "inconsist-nsec-nsec3-1.dnssec10.xa" {
type master;
file "zones/inconsist-nsec-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "inconsist-nsec-nsec3-2.dnssec10.xa" {
type master;
file "zones/inconsist-nsec-nsec3-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "mixed-nsec-nsec3-1.dnssec10.xa" {
type master;
file "zones/mixed-nsec-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "mixed-nsec-nsec3-2.dnssec10.xa" {
type master;
file "zones/mixed-nsec-nsec3-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec3param-gives-err-answer-1.dnssec10.xa" {
type master;
file "zones/nsec3param-gives-err-answer-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3param-gives-err-answer-2.dnssec10.xa" {
type master;
file "zones/nsec3param-gives-err-answer-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3param-mismatches-apex-1.dnssec10.xa" {
type master;
file "zones/nsec3param-mismatches-apex-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3param-q-response-err-1.dnssec10.xa" {
type master;
file "zones/nsec3param-q-response-err-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3param-q-response-err-2.dnssec10.xa" {
type master;
file "zones/nsec3param-q-response-err-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3param-q-response-err-3.dnssec10.xa" {
type master;
file "zones/nsec3param-q-response-err-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-err-type-list-1.dnssec10.xa" {
type master;
file "zones/nsec3-err-type-list-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-err-type-list-2.dnssec10.xa" {
type master;
file "zones/nsec3-err-type-list-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-mismatches-apex-1.dnssec10.xa" {
type master;
file "zones/nsec3-mismatches-apex-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-missing-signature-1.dnssec10.xa" {
type master;
file "zones/nsec3-missing-signature-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-nodata-missing-soa-1.dnssec10.xa" {
type master;
file "zones/nsec3-nodata-missing-soa-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-nodata-wrong-soa-1.dnssec10.xa" {
type master;
file "zones/nsec3-nodata-wrong-soa-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-no-verified-signature-1.dnssec10.xa" {
type master;
file "zones/nsec3-no-verified-signature-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-no-verified-signature-2.dnssec10.xa" {
type master;
file "zones/nsec3-no-verified-signature-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-no-verified-signature-3.dnssec10.xa" {
type master;
file "zones/nsec3-no-verified-signature-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec3-no-verified-signature-4.dnssec10.xa" {
type master;
file "zones/nsec3-no-verified-signature-4.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "nsec-err-type-list-1.dnssec10.xa" {
type master;
file "zones/nsec-err-type-list-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-err-type-list-2.dnssec10.xa" {
type master;
file "zones/nsec-err-type-list-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-gives-err-answer-1.dnssec10.xa" {
type master;
file "zones/nsec-gives-err-answer-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-gives-err-answer-2.dnssec10.xa" {
type master;
file "zones/nsec-gives-err-answer-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-mismatches-apex-1.dnssec10.xa" {
type master;
file "zones/nsec-mismatches-apex-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-mismatches-apex-2.dnssec10.xa" {
type master;
file "zones/nsec-mismatches-apex-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-missing-signature-1.dnssec10.xa" {
type master;
file "zones/nsec-missing-signature-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-nodata-missing-soa-1.dnssec10.xa" {
type master;
file "zones/nsec-nodata-missing-soa-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-nodata-wrong-soa-1.dnssec10.xa" {
type master;
file "zones/nsec-nodata-wrong-soa-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-no-verified-signature-1.dnssec10.xa" {
type master;
file "zones/nsec-no-verified-signature-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-no-verified-signature-2.dnssec10.xa" {
type master;
file "zones/nsec-no-verified-signature-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-no-verified-signature-3.dnssec10.xa" {
type master;
file "zones/nsec-no-verified-signature-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-no-verified-signature-4.dnssec10.xa" {
type master;
file "zones/nsec-no-verified-signature-4.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-query-response-err-1.dnssec10.xa" {
type master;
file "zones/nsec-query-response-err-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-query-response-err-2.dnssec10.xa" {
type master;
file "zones/nsec-query-response-err-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "nsec-query-response-err-3.dnssec10.xa" {
type master;
file "zones/nsec-query-response-err-3.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "server-no-dnssec-1.dnssec10.xa" {
type master;
file "zones/server-no-dnssec-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec;
inline-signing yes;
};
zone "server-no-dnssec-2.dnssec10.xa" {
type master;
file "zones/server-no-dnssec-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
}; # End view "main"
view "var1" {
# This view is for a variant of the zone already defined in view
# "main". Do not put zones here unless they already exist in view
# "main".
# Name of zone file in this view should be "<ZONE-NAME>.zone", i.e.
# the same name as in the main view, but stored in directory
# "zones-var1".
match-destinations { 127.15.10.38; fda1:b2:c3:0:127:15:10:38; };
key-directory "key-dir-var1";
zone "localhost" {
type master;
file "zones-var1/localhost.zone";
};
zone "inconsist-nsec-nsec3-1.dnssec10.xa" {
type master;
file "zones-var1/inconsist-nsec-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "inconsist-nsec-nsec3-2.dnssec10.xa" {
type master;
file "zones-var1/inconsist-nsec-nsec3-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "mixed-nsec-nsec3-1.dnssec10.xa" {
type master;
file "zones-var1/mixed-nsec-nsec3-1.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
zone "mixed-nsec-nsec3-2.dnssec10.xa" {
type master;
file "zones-var1/mixed-nsec-nsec3-2.dnssec10.xa.zone";
dnssec-policy dnssec10-nsec3;
inline-signing yes;
};
}; # End view "var1"
## DNSSEC policy
# Period duration definition: https://en.wikipedia.org/wiki/ISO_8601#Durations
dnssec-policy dnssec10-nsec3 {
dnskey-ttl PT24H;
keys {
ksk lifetime unlimited algorithm 13; # ECDSAP256SHA256
zsk lifetime unlimited algorithm 13; # ECDSAP256SHA256
};
max-zone-ttl P7W;
nsec3param iterations 0 optout no salt-length 0;
signatures-validity P8Y;
signatures-validity-dnskey P8Y;
};
dnssec-policy dnssec10-nsec {
dnskey-ttl PT24H;
keys {
ksk lifetime unlimited algorithm 13; # ECDSAP256SHA256
zsk lifetime unlimited algorithm 13; # ECDSAP256SHA256
};
max-zone-ttl PT24H;
signatures-validity P8Y;
signatures-validity-dnskey P8Y;
};

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones-var1/inconsist-nsec-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN inconsist-nsec-nsec3-1.dnssec10.xa.
; NSEC3 version of the zone.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones-var1/inconsist-nsec-nsec3-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN inconsist-nsec-nsec3-2.dnssec10.xa.
; NSEC3 version of the zone.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
14 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

15
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones-var1/localhost.zone Normal file
View File

@@ -0,0 +1,15 @@
; For the dnssec10-38 view.
;
$TTL 604800
@ SOA localhost. root.localhost. (
5 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS localhost.
@ A 127.0.0.1
@ AAAA ::1
@ TXT "127.15.10.38 fda1:b2:c3:0:127:15:10:38"

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones-var1/mixed-nsec-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN mixed-nsec-nsec3-1.dnssec10.xa.
; NSEC3 version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
16 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones-var1/mixed-nsec-nsec3-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN mixed-nsec-nsec3-2.dnssec10.xa.
; NSEC3 version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
17 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/algo-not-supp-by-zm-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN algo-not-supp-by-zm-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
10 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/algo-not-supp-by-zm-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN algo-not-supp-by-zm-2.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

27
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/bad-servers-but-good-nsec-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,27 @@
$ORIGIN bad-servers-but-good-nsec-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
12 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
@ NS ns3
@ NS ns4
@ NS ns5
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32
ns3 A 127.15.10.33
ns3 AAAA fda1:b2:c3:0:127:15:10:33
ns4 A 127.15.10.34
ns4 AAAA fda1:b2:c3:0:127:15:10:34
ns5 A 127.15.10.35
ns5 AAAA fda1:b2:c3:0:127:15:10:35

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/err-mult-nsec-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN err-mult-nsec-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/err-mult-nsec-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN err-mult-nsec-2.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/err-mult-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN err-mult-nsec3-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
12 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/err-mult-nsec3param-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN err-mult-nsec3param-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
14 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/exp-nsec-nsec3-miss-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN exp-nsec-nsec3-miss-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
12 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN good-nsec-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
9 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

21
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,21 @@
$ORIGIN good-nsec-2.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1a
@ NS ns1b
@ NS ns1c
ns1a A 127.15.10.31
ns1a AAAA fda1:b2:c3:0:127:15:10:31
ns1b A 127.15.10.31
ns1b AAAA fda1:b2:c3:0:127:15:10:31
ns1c A 127.15.10.31
ns1c AAAA fda1:b2:c3:0:127:15:10:31

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN good-nsec-3.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS dns1
@ NS dns2
dns1 A 127.15.10.31
dns1 AAAA fda1:b2:c3:0:127:15:10:31
dns2 A 127.15.10.32
dns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN good-nsec3-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
9 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

21
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec3-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,21 @@
$ORIGIN good-nsec3-2.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1a
@ NS ns1b
@ NS ns1c
ns1a A 127.15.10.31
ns1a AAAA fda1:b2:c3:0:127:15:10:31
ns1b A 127.15.10.31
ns1b AAAA fda1:b2:c3:0:127:15:10:31
ns1c A 127.15.10.31
ns1c AAAA fda1:b2:c3:0:127:15:10:31

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/good-nsec3-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN good-nsec3-3.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS dns1
@ NS dns2
dns1 A 127.15.10.31
dns1 AAAA fda1:b2:c3:0:127:15:10:31
dns2 A 127.15.10.32
dns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/inconsist-nsec-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN inconsist-nsec-nsec3-1.dnssec10.xa.
; NSEC version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/inconsist-nsec-nsec3-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN inconsist-nsec-nsec3-2.dnssec10.xa.
; NSEC version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
14 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/inconsistent-nsec-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN inconsistent-nsec-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
12 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

17
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/inconsistent-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,17 @@
$ORIGIN inconsistent-nsec3-1.dnssec10.xa.
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

15
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/localhost.zone Normal file
View File

@@ -0,0 +1,15 @@
; For the dnssec10-37 view.
;
$TTL 604800
@ SOA localhost. root.localhost. (
4 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS localhost.
@ A 127.0.0.1
@ AAAA ::1
@ TXT "127.15.10.37 fda1:b2:c3:0:127:15:10:37"

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/mixed-nsec-nsec3-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN mixed-nsec-nsec3-1.dnssec10.xa.
; NSEC version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
15 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/mixed-nsec-nsec3-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN mixed-nsec-nsec3-2.dnssec10.xa.
; NSEC version of the zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
16 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-err-type-list-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-err-type-list-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
4 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-err-type-list-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-err-type-list-2.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
5 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

21
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-gives-err-answer-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,21 @@
$ORIGIN nsec-gives-err-answer-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
8 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
@ TXT Text-string
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

21
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-gives-err-answer-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,21 @@
$ORIGIN nsec-gives-err-answer-2.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
10 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
@ TXT Text-string
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-mismatches-apex-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-mismatches-apex-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
12 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-mismatches-apex-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-mismatches-apex-2.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-missing-signature-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-missing-signature-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
14 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-no-verified-signature-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-no-verified-signature-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
6 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-no-verified-signature-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-no-verified-signature-2.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
7 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-no-verified-signature-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-no-verified-signature-3.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
7 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-no-verified-signature-4.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-no-verified-signature-4.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
9 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-nodata-missing-soa-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-nodata-missing-soa-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
2 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-nodata-wrong-soa-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-nodata-wrong-soa-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
4 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-query-response-err-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-query-response-err-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
2 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-query-response-err-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-query-response-err-2.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
3 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec-query-response-err-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec-query-response-err-3.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
5 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-err-type-list-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-err-type-list-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
2 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-err-type-list-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-err-type-list-2.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
3 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-mismatches-apex-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-mismatches-apex-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
3 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-missing-signature-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-missing-signature-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
5 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-no-verified-signature-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-no-verified-signature-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
11 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-no-verified-signature-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-no-verified-signature-2.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
13 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-no-verified-signature-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-no-verified-signature-3.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
15 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-no-verified-signature-4.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-no-verified-signature-4.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
17 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-nodata-missing-soa-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-nodata-missing-soa-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
7 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3-nodata-wrong-soa-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3-nodata-wrong-soa-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
9 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-gives-err-answer-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3param-gives-err-answer-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
17 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
@ TXT Text-string
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-gives-err-answer-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3param-gives-err-answer-2.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
18 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
@ TXT Text-string
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

18
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-mismatches-apex-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,18 @@
$ORIGIN nsec3param-mismatches-apex-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
23 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-q-response-err-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3param-q-response-err-1.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
24 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-q-response-err-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3param-q-response-err-2.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
26 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/nsec3param-q-response-err-3.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN nsec3param-q-response-err-3.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
28 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/server-no-dnssec-1.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN server-no-dnssec-1.dnssec10.xa.
; NSEC zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
7 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32

19
zonemaster/test-zone-data/DNSSEC-TP/dnssec10/Bind/zones/server-no-dnssec-2.dnssec10.xa.zone Normal file
View File

@@ -0,0 +1,19 @@
$ORIGIN server-no-dnssec-2.dnssec10.xa.
; NSEC3 zone
;
$TTL 86400
@ IN SOA localhost. root.localhost. (
9 ; Serial
3600 ; Refresh
1200 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ NS ns1
@ NS ns2
ns1 A 127.15.10.31
ns1 AAAA fda1:b2:c3:0:127:15:10:31
ns2 A 127.15.10.32
ns2 AAAA fda1:b2:c3:0:127:15:10:32