DNS for LAN

dhcpd.conf

# /etc/dhcpd.conf
#
# Global Settings
#

# Turn on Dynamic DNS:
ddns-update-style interim;
ddns-updates on;

# Don't allow clients to update DNS, make the server do it
# based on the hostname passed by the DHCP client:
deny client-updates;
allow unknown-clients;

#
# 192.168.0.0/255.255.255.0 Scope Settings
#
subnet 192.168.0.0 netmask 255.255.255.0 {

        # Range of DHCP assigned addresses for this scope
        range                           192.168.0.3 192.168.0.6;
        # 1 day
        default-lease-time              86400;
        # 2 days
        max-lease-time                  172800;

        # Configure the client's default Gateway:
        option subnet-mask              255.255.255.0;
        option broadcast-address        192.168.0.255;
        option routers                  192.168.0.2;

        # Configure the client's DNS settings:
        option domain-name              "lab.local";
        option domain-name-servers      192.168.0.2;

        # If you want the client to be configured to also use
        # a WINS server:
        option netbios-name-servers     192.168.0.2;
        option netbios-node-type        8;

}

named.conf

## /etc/named.conf
options {

        directory "/var/named";
};

controls {
        inet 127.0.0.1 allow { localhost; } keys { rndckey; };

};
zone "." IN {
        type hint;
        file "named.ca";
};

zone "localhost" IN {

        type master;
        file "localhost.zone";
        allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
        type master;
        file "named.local";
        allow-update { none; };
};

zone "lab.local" IN {
        type master;
        file "lab.local";
        allow-update { localhost; };
};

zone "0.168.192.in-addr.arpa" IN {
        type master;
        file "192.168.0.rev";
        allow-update { localhost; };
};

include "/etc/rndc.key";

note : FC3 users or any other SELINUX enabled distro users must modify the selinux security policy to allow named to overwrite the zone files (in FC3 is done using the security-level tool)