From f167a84c7672430a0f751e39f52d1b2e6298d599 Mon Sep 17 00:00:00 2001 From: Jonas Smedegaard Date: Wed, 28 Jun 2006 14:45:18 +0000 Subject: Improved Kerberos setup. --- bind/fake-102/jones.dk | 30 ++++++++++++++++++------------ bind/fake-222/jones.dk | 30 ++++++++++++++++++------------ bind/pri/jones.dk | 30 ++++++++++++++++++------------ 3 files changed, 54 insertions(+), 36 deletions(-) (limited to 'bind') diff --git a/bind/fake-102/jones.dk b/bind/fake-102/jones.dk index 8cd29b9..7d9b1ae 100644 --- a/bind/fake-102/jones.dk +++ b/bind/fake-102/jones.dk @@ -180,19 +180,25 @@ perilin A 192.168.102.249 ;62.121.186.249 ;62.121.186.250 PTR hykrion.jones.dk. 192.168.102.254 PTR hykrion.jones.dk. ;62.243.165.89 -; Public SVR and other advanced LDAP- and Kerberos-related records -ldap CNAME xayide -_ldap._tcp SRV 0 0 389 xayide -kerberos-1 CNAME hykrion -kerberos-2 CNAME xayide -kerberos-3 CNAME hysbald +; Public authentication-related (LDAP and Kerberos) records +kerberos CNAME hykrion +kerberos-1 CNAME xayide +kerberos-2 CNAME hysbald +ldap CNAME hykrion +ldap-1 CNAME xayide +ldap-2 CNAME hysbald +;afs CNAME xayide _kerberos TXT "JONES.DK" -_kerberos._udp SRV 0 0 88 xayide -_krb524._udp SRV 0 0 4444 xayide -_kerberos-master._udp SRV 0 0 88 xayide -_kerberos-adm._tcp SRV 0 0 749 xayide -_kpasswd._udp SRV 0 0 464 xayide -afs CNAME xayide +_kerberos-master._udp SRV 0 0 88 kerberos +_kerberos-adm._tcp SRV 0 0 749 kerberos +_kpasswd._udp SRV 0 0 464 kerberos +;_krb524._udp SRV 0 0 4444 kerberos +_kerberos._udp SRV 0 0 88 kerberos +_kerberos._udp SRV 0 0 88 kerberos-1 +_kerberos._udp SRV 0 0 88 kerberos-2 +_ldap._tcp SRV 0 0 389 ldap +_ldap._tcp SRV 0 0 389 ldap-1 +_ldap._tcp SRV 0 0 389 ldap-2 ; Public wildcards of zone roots, hosts and non-CNAME services (use CNAME) *.mail CNAME mail diff --git a/bind/fake-222/jones.dk b/bind/fake-222/jones.dk index f593268..6261b29 100644 --- a/bind/fake-222/jones.dk +++ b/bind/fake-222/jones.dk @@ -180,19 +180,25 @@ perilin A 192.168.222.249 ;62.121.186.249 ;62.121.186.250 PTR hykrion.jones.dk. 192.168.222.254 PTR hykrion.jones.dk. ;62.243.165.89 -; Public SVR and other advanced LDAP- and Kerberos-related records -ldap CNAME xayide -_ldap._tcp SRV 0 0 389 xayide -kerberos-1 CNAME hykrion -kerberos-2 CNAME xayide -kerberos-3 CNAME hysbald +; Public authentication-related (LDAP and Kerberos) records +kerberos CNAME hykrion +kerberos-1 CNAME xayide +kerberos-2 CNAME hysbald +ldap CNAME hykrion +ldap-1 CNAME xayide +ldap-2 CNAME hysbald +;afs CNAME xayide _kerberos TXT "JONES.DK" -_kerberos._udp SRV 0 0 88 xayide -_krb524._udp SRV 0 0 4444 xayide -_kerberos-master._udp SRV 0 0 88 xayide -_kerberos-adm._tcp SRV 0 0 749 xayide -_kpasswd._udp SRV 0 0 464 xayide -afs CNAME xayide +_kerberos-master._udp SRV 0 0 88 kerberos +_kerberos-adm._tcp SRV 0 0 749 kerberos +_kpasswd._udp SRV 0 0 464 kerberos +;_krb524._udp SRV 0 0 4444 kerberos +_kerberos._udp SRV 0 0 88 kerberos +_kerberos._udp SRV 0 0 88 kerberos-1 +_kerberos._udp SRV 0 0 88 kerberos-2 +_ldap._tcp SRV 0 0 389 ldap +_ldap._tcp SRV 0 0 389 ldap-1 +_ldap._tcp SRV 0 0 389 ldap-2 ; Public wildcards of zone roots, hosts and non-CNAME services (use CNAME) *.mail CNAME mail diff --git a/bind/pri/jones.dk b/bind/pri/jones.dk index c572743..748d1c5 100644 --- a/bind/pri/jones.dk +++ b/bind/pri/jones.dk @@ -187,19 +187,25 @@ perilin A 62.121.186.249 ;62.121.186.250 PTR hykrion.jones.dk. 62.243.165.89 PTR hykrion.jones.dk. -; Public SVR and other advanced LDAP- and Kerberos-related records -ldap CNAME xayide -_ldap._tcp SRV 0 0 389 xayide -kerberos-1 CNAME hykrion -kerberos-2 CNAME xayide -kerberos-3 CNAME hysbald +; Public authentication-related (LDAP and Kerberos) records +kerberos CNAME hykrion +kerberos-1 CNAME xayide +kerberos-2 CNAME hysbald +ldap CNAME hykrion +ldap-1 CNAME xayide +ldap-2 CNAME hysbald +;afs CNAME xayide _kerberos TXT "JONES.DK" -_kerberos._udp SRV 0 0 88 xayide -_krb524._udp SRV 0 0 4444 xayide -_kerberos-master._udp SRV 0 0 88 xayide -_kerberos-adm._tcp SRV 0 0 749 xayide -_kpasswd._udp SRV 0 0 464 xayide -afs CNAME xayide +_kerberos-master._udp SRV 0 0 88 kerberos +_kerberos-adm._tcp SRV 0 0 749 kerberos +_kpasswd._udp SRV 0 0 464 kerberos +;_krb524._udp SRV 0 0 4444 kerberos +_kerberos._udp SRV 0 0 88 kerberos +_kerberos._udp SRV 0 0 88 kerberos-1 +_kerberos._udp SRV 0 0 88 kerberos-2 +_ldap._tcp SRV 0 0 389 ldap +_ldap._tcp SRV 0 0 389 ldap-1 +_ldap._tcp SRV 0 0 389 ldap-2 ; External services (use CNAME to local A, or A and TXT-wrapped CNAME, or CNAME if ok with partner) ror.ronald CNAME coreander -- cgit v1.2.3