Vault7: CIA Hacking Tools Revealed
Navigation: » Latest version
Owner: User #14587667
BIND (DNS) Server
Description: This server will function as a DNSDomain Name System server to forward DNSDomain Name System queries to the appropriate 'upstream' DNSDomain Name System server (loki.lab, devlan.net, testrange.local). Currently, there is no way to resolve to multiple internal domains. By pointing at this server, it will forward the DNSDomain Name System request to the approriate DNSDomain Name System server.
IP Address: 10.9.9.12 /24
OS: Ubuntu Server 14.04 LTSLong Term Support x64
VM Name: BINDDNSDomain Name System server software DNSDomain Name System Server - 10.9.9.12
username: ubuntu
!
Steps to Setup Server
- Clone Ubuntu Server 14.04 from VMVirtual Machine Template (ubuntu server x64 1`4.04 LTSLong Term Support)
- Using vCenter, perform the following:
- Tag VMVirtual Machine as 'Production Server'.
- Edit VMVirtual Machine settings:
- Delete NIC2.
- Add NIC1 to vmcli-29
- Power on VM
- Open Console to VMVirtual Machine and change IP address settings:
- $ sudo vi /etc/network/interfaces
- address 10.9.9.12
- dns-nameservers 10.3.1.12
- dns-search devlan.net
- $ sudo reboot
- $ sudo vi /etc/network/interfaces
- Once rebooted, access the VMVirtual Machine via PuTTY.
- Update hostname
- $ sudo /etc/hostname
- Change to 'bindserver'
- $ sudo vi /etc/hosts
- Change the IP address line to the following:
10.9.9.12 bindserver.loki.lab bindserver
- Update apt repo
- $ sudo apt-get update
- Install BIND9
- sudo apt-get install bind9 bind9utils bind9-doc
- Edit BINDDNSDomain Name System server software config
- Edit named.conf.local and add the following:
zone "devlan.net" {
type forward;
forward only;
forwarders { 10.3.1.12; };
};
- Edit named.conf.options and add the following:
forwarders {
10.0.0.12;
};forward only;
dnssec-enable yes;
dnssec-validation yes;
- Check BINDDNSDomain Name System server software config
- $ named-checkconf
- Edit named.conf.local and add the following:
- Reload BINDDNSDomain Name System server software config
- $ sudo service bind9 reload
- Update hostname