mirror of
https://github.com/11notes/docker-bind.git
synced 2025-10-24 08:33:34 +00:00
auto update README.md
This commit is contained in:
100
README.md
Normal file
100
README.md
Normal file
@@ -0,0 +1,100 @@
|
||||

|
||||
|
||||
# ⛰️ bind
|
||||
[<img src="https://img.shields.io/badge/github-source-blue?logo=github&color=040308">](https://github.com/11notes/docker-bind)[<img src="https://img.shields.io/github/issues/11notes/docker-bind?color=7842f5">](https://github.com/11notes/docker-bind/issues)
|
||||
|
||||
High performance bind with default operating modes
|
||||
|
||||
# MAIN TAGS 🏷️
|
||||
These are the main tags for the image. There is also a tag for each commit and its shorthand sha256 value.
|
||||
|
||||
* [9.18.35](https://hub.docker.com/r/11notes/bind/tags?name=9.18.35)
|
||||
* [stable](https://hub.docker.com/r/11notes/bind/tags?name=stable)
|
||||
* [latest](https://hub.docker.com/r/11notes/bind/tags?name=latest)
|
||||
|
||||
# SYNOPSIS 📖
|
||||
**What can I do with this?** This image will run BIND9 DNS server precompiled for large installations and maximum performance. It also offers three operating modes: Master, Slave and Resolver set via **command: ["mode"]**.
|
||||
|
||||
# Master
|
||||
If run as master, set the IPs of the slaves via *BIND_SLAVES*. Bind will operate with catalog zones for all slaves. You can add new zones via the *addzone* script that requires the zone name and the IP of at least one NS (slave). You can then use nsupdate to update the master with new records and all changes are populates to all slaves automatically. Add a new zone like this:
|
||||
|
||||
```shell
|
||||
docker exec master addzone contoso.com 10.255.53.52
|
||||
```
|
||||
|
||||
It will automatically create a default zone and populate it as well as add a random key for managing the zone via nsupdate or via the dynamically created root key at startup (check /bind/etc/keys.conf for generated keys). Checkout **compose.authoritative.yaml** for an example.
|
||||
|
||||
# Slave
|
||||
If run as slave, make sure you set the *BIND_MASTERS* IPs so they will pickup all changes automatically. The slave enables recursion, so make sure you have a resolver present to resolve queries not handles by the slave. The slave will respond to all IPs on RFC1918 by default. You can setup your own config as well. You can run as many slaves as you like.
|
||||
|
||||
# Resolver
|
||||
If run as a resolver, it will cache all results and use the root zone NS to create its own cache database for all records requested. Make sure the resolver has internet access. The resolver will accept all connections from any RFC1918 address. Checkout **compose.resolver.yaml** for an example.
|
||||
|
||||
# VOLUMES 📁
|
||||
* **/bind/etc** - Directory of named.conf
|
||||
* **/bind/var** - Directory of Directory of zone data
|
||||
|
||||
# COMPOSE ✂️
|
||||
```yaml
|
||||
name: "bind"
|
||||
services:
|
||||
bind:
|
||||
image: "11notes/bind:9.18.35"
|
||||
command: ["master"]
|
||||
environment:
|
||||
TZ: "Europe/Zurich"
|
||||
volumes:
|
||||
- "etc:/bind/etc"
|
||||
- "var:/bind/var"
|
||||
ports:
|
||||
- "53:53/udp"
|
||||
- "53:53/tcp"
|
||||
- "8053:8053/tcp"
|
||||
networks:
|
||||
frontend:
|
||||
sysctls:
|
||||
net.ipv4.ip_unprivileged_port_start: 53
|
||||
restart: "always"
|
||||
|
||||
volumes:
|
||||
etc:
|
||||
var:
|
||||
|
||||
networks:
|
||||
frontend:
|
||||
```
|
||||
|
||||
# DEFAULT SETTINGS 🗃️
|
||||
| Parameter | Value | Description |
|
||||
| --- | --- | --- |
|
||||
| `user` | docker | user name |
|
||||
| `uid` | 1000 | [user identifier](https://en.wikipedia.org/wiki/User_identifier) |
|
||||
| `gid` | 1000 | [group identifier](https://en.wikipedia.org/wiki/Group_identifier) |
|
||||
| `home` | /bind | home directory of user docker |
|
||||
|
||||
# ENVIRONMENT 📝
|
||||
| Parameter | Value | Default |
|
||||
| --- | --- | --- |
|
||||
| `TZ` | [Time Zone](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones) | |
|
||||
| `DEBUG` | Will activate debug option for container image and app (if available) | |
|
||||
| `BIND_SLAVES` | IPs of bind slaves if using authoritative master (add ;) | |
|
||||
| `BIND_MASTERS` | IPs of bind master if using authoritative slave (add ;) | |
|
||||
|
||||
# SOURCE 💾
|
||||
* [11notes/bind](https://github.com/11notes/docker-bind)
|
||||
|
||||
# PARENT IMAGE 🏛️
|
||||
* [11notes/alpine:stable](https://hub.docker.com/r/11notes/alpine)
|
||||
|
||||
# BUILT WITH 🧰
|
||||
* [bind](https://gitlab.isc.org/isc-projects/bind9)
|
||||
* [11notes/util](https://github.com/11notes/docker-util)
|
||||
|
||||
# GENERAL TIPS 📌
|
||||
* Use a reverse proxy like Traefik, Nginx, HAproxy to terminate TLS and to protect your endpoints
|
||||
* Use Let’s Encrypt DNS-01 challenge to obtain valid SSL certificates for your services
|
||||
|
||||
# ElevenNotes™️
|
||||
This image is provided to you at your own risk. Always make backups before updating an image to a different version. Check the [releases](https://github.com/11notes/docker-bind/releases) for breaking changes. If you have any problems with using this image simply raise an [issue](https://github.com/11notes/docker-bind/issues), thanks. If you have a question or inputs please create a new [discussion](https://github.com/11notes/docker-bind/discussions) instead of an issue. You can find all my other repositories on [github](https://github.com/11notes?tab=repositories).
|
||||
|
||||
*created 20.03.2025, 14:46:24 (CET)*
|
Reference in New Issue
Block a user