docker-bind/README.md

### ISC BIND9 Container (Stable: 9.11.2_xx) built on top of Alpine
### Last update: 2-6-18

NOTE: "Last Update" is the date of the latest DockerHub build.

This container is a super small (~5MB compressed pull, and only ~9MB
when extracted) FULL version of ISC BIND9.

It is ideal for a quick master, slave, recursive server/resolver, RPZ
"dns firewall", or just about any other purpose you can use bind for.

# Security - always on the latest stable release!
This container will _always_ be up to date on the latest
stable+patched version, usually within 24 hours of it being available
in Alpine. In fact, most of the BIND vulnerabilities so far have been
reported by me to the Alpine developers.

# Required "DATA" directory - for named.conf and zone data:
This container assumes you have a "/DATA" folder with with your container specific data.
You can change that folder (and sub-folders) as needed, but make sure you update the "-v" mounts for the run.

Specifically, you need to have these directories/paths:
```
1.) [ *REQUIRED* ]
In your "/DATA/etc/bind" directory, a file "named.conf", which acts as an entry point to your configs

2.) [ *REQUIRED* ]
A "/DATA/var/cache/bind" directory for all of the master or slave zones. If it's for slave zones, it will populate automatically and you can leave it blank.

3.) [ *OPTIONAL* ]
A "/DATA/var/log/named" directory for logging your DNS requests/returns/other breakdown. By default, logging is done to the console
```


# How to run a BIND ("named") Docker Container?

```
docker run --name=dns-master01
-it -d \
--dns=8.8.8.8 --dns=8.8.4.4 \
-p 53:53/udp -p 53:53 \
-v /DATA/etc/bind:/etc/bind \
-v /DATA/var/cache/bind:/var/cache/bind \
-v /DATA/var/log/named:/var/log/named \
ventz/bind
```
Updated for 9.11.2_p1-r0 - CVE-2017-3145 - https://kb.isc.org/article/AA-01542/0/CVE-2017-3145 2018-02-06 22:23:44 +00:00			`### ISC BIND9 Container (Stable: 9.11.2_xx) built on top of Alpine`
			`### Last update: 2-6-18`
Updated for 9.11.1_p1-r1, due to multiple medium and high vulnerabilities (https://kb.isc.org/article/AA-01503/0, https://kb.isc.org/article/AA-01504/0, https://kb.isc.org/article/AA-01495/0) 2017-09-18 18:19:07 +00:00
			`NOTE: "Last Update" is the date of the latest DockerHub build.`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`This container is a super small (~5MB compressed pull, and only ~9MB`
			`when extracted) FULL version of ISC BIND9.`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`It is ideal for a quick master, slave, recursive server/resolver, RPZ`
			`"dns firewall", or just about any other purpose you can use bind for.`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`# Security - always on the latest stable release!`
			`This container will _always_ be up to date on the latest`
			`stable+patched version, usually within 24 hours of it being available`
			`in Alpine. In fact, most of the BIND vulnerabilities so far have been`
			`reported by me to the Alpine developers.`
Cleaned up ReadMe 2016-01-10 21:24:26 +00:00
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`# Required "DATA" directory - for named.conf and zone data:`
			`This container assumes you have a "/DATA" folder with with your container specific data.`
			`You can change that folder (and sub-folders) as needed, but make sure you update the "-v" mounts for the run.`
Cleaned up ReadMe 2016-01-10 21:24:26 +00:00
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`Specifically, you need to have these directories/paths:`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00			```
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`1.) [ REQUIRED ]`
			`In your "/DATA/etc/bind" directory, a file "named.conf", which acts as an entry point to your configs`

			`2.) [ REQUIRED ]`
			`A "/DATA/var/cache/bind" directory for all of the master or slave zones. If it's for slave zones, it will populate automatically and you can leave it blank.`

			`3.) [ OPTIONAL ]`
			`A "/DATA/var/log/named" directory for logging your DNS requests/returns/other breakdown. By default, logging is done to the console`
			```


			`# How to run a BIND ("named") Docker Container?`

			```
			`docker run --name=dns-master01`
			`-it -d \`
			`--dns=8.8.8.8 --dns=8.8.4.4 \`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00			`-p 53:53/udp -p 53:53 \`
Cleaned up notes, structure, build, supplied run, etc 2017-03-14 08:37:37 +00:00			`-v /DATA/etc/bind:/etc/bind \`
			`-v /DATA/var/cache/bind:/var/cache/bind \`
			`-v /DATA/var/log/named:/var/log/named \`
Moving Docker bind container to github so that I can autobuild in docker hub 2016-01-10 21:11:56 +00:00			`ventz/bind`
			```