DNS
时间:2006-03-14 来源:77902543
[root@localhost root]# cat /etc/dhcpd.conf
ddns-update-style interim;
ignore client-updates;
subnet 192.168.0.0 netmask 255.255.255.0{
range 192.168.0.150 192.168.0.155;
default-lease-time 86400;
option routers 192.168.0.3;
option domain-name "test.com";
option domain-name-servers 202.102.192.68;
option broadcast-address 192.168.0.255;
default-lease-time 6000;
max-lease-time 7000; } host AC{
hardware ethernet 00:E0:4C:90:88:30;
fixed-address 192.168.0.25;
} key "dhcpkey" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
} zone test.com. {
primary 127.0.0.1;
key "dhcpkey";
}
zone 0.168.192.in-addr.arpa. {
primary 127.0.0.1;
key "dhcpkey";
} http://www.worldhello.net/doc/dns_howto/dns_howto.htm http://www.chinaunix.net/jh/4/340551.html ---------------------------------------------------------------------- [root@localhost named]# cat named.root
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.root
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: Jan 29, 2004
; related version of root zone: 2004012900
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; operated by VeriSign, Inc.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
;
; operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; operated by ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
; End of File [root@localhost named]# cat localhost.zone
$TTL 86400
$ORIGIN localhost.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS localhost.
@ IN A 127.0.0.1
[root@localhost named]# cat 0.0.127.in-addr.arpa
$TTL 86400
$ORIGIN 0.0.127.in-addr.arpa.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS localhost.
1 IN PTR localhost. [root@localhost named]# cat test.zone
$TTL 86400
$ORIGIN test.com.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS ns1.test.com.
@ IN MX 10 mail.test.com. @ IN A 192.168.0.9
ns1 IN A 192.168.0.9
mail IN A 192.168.0.10
www IN A 192.168.0.11
bbs IN A 192.168.0.12 new IN CNAME www [root@localhost named]# cat 0.168.192.in-addr.arpa
$TTL 86400
$ORIGIN 0.168.192.in-addr.arpa.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS ns1.test.com.
@ IN MX 10 mail.test.com.
9 IN PTR ns1.test.com.
10 IN PTR mail.test.com.
11 IN PTR www.test.com.
12 IN PTR bbs.test.com. [root@localhost named]# cat etc/named.conf
acl "lan" { 127.0.0.0/8; 192.168.0.0/24;}; options{
directory "/var/named/";
pid-file "/var/run/named.pid";
version "BIND 0";
allow-transfer {"lan";};
notify yes;
allow-notify {"lan";};
transfer-format one-answer;
transfers-in 5;
transfers-out 5;
forward first;
forwarders {202.102.192.68;}; }; view "local"{
match-clients{127.0.0.0/8;};
zone "." {
type hint;
file "named.root";
}; zone "localhost"{
type master;
file "localhost.zone";
}; zone "0.0.127.in-addr.arpa" {
type master;
file "0.0.127.in-addr.arpa";
};
}; view "Internet" {
match-clients {192.168.0.0/24;};
zone "." {
type hint;
file "named.root";
}; zone "test.com"{
type master;
file "test.zone"; allow-update { key "dhcpkey";};
}; zone "0.168.192.in-addr.arpa"{
type master;
file "0.168.192.in-addr.arpa"; allow-update { key "dhcpkey";};
};
};
#view "TYPE" {
# match-clients {any;};
#zone "." {
#type hint;
#file "named.root";
# }; #zone "test.com"{
#type master;
#file "test.zone.out";
# }; #zone "1.168.192.in-addr.arpa"{
#type master;
#file "1.168.192.in-addr.arpa.out";
# };
key "dhcpkey" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; key "rndc-key" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
}; [root@localhost sbin]# cat rndc.conf key "rndc-key" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
}; /usr/sbin/dnssec-keygen -a hmac-md5 -b 128 -n HOST localhost 在当前目录下产生两个文件
ddns-update-style interim;
ignore client-updates;
subnet 192.168.0.0 netmask 255.255.255.0{
range 192.168.0.150 192.168.0.155;
default-lease-time 86400;
option routers 192.168.0.3;
option domain-name "test.com";
option domain-name-servers 202.102.192.68;
option broadcast-address 192.168.0.255;
default-lease-time 6000;
max-lease-time 7000; } host AC{
hardware ethernet 00:E0:4C:90:88:30;
fixed-address 192.168.0.25;
} key "dhcpkey" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
} zone test.com. {
primary 127.0.0.1;
key "dhcpkey";
}
zone 0.168.192.in-addr.arpa. {
primary 127.0.0.1;
key "dhcpkey";
} http://www.worldhello.net/doc/dns_howto/dns_howto.htm http://www.chinaunix.net/jh/4/340551.html ---------------------------------------------------------------------- [root@localhost named]# cat named.root
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.root
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: Jan 29, 2004
; related version of root zone: 2004012900
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; operated by VeriSign, Inc.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
;
; operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; operated by ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
; End of File [root@localhost named]# cat localhost.zone
$TTL 86400
$ORIGIN localhost.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS localhost.
@ IN A 127.0.0.1
[root@localhost named]# cat 0.0.127.in-addr.arpa
$TTL 86400
$ORIGIN 0.0.127.in-addr.arpa.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS localhost.
1 IN PTR localhost. [root@localhost named]# cat test.zone
$TTL 86400
$ORIGIN test.com.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS ns1.test.com.
@ IN MX 10 mail.test.com. @ IN A 192.168.0.9
ns1 IN A 192.168.0.9
mail IN A 192.168.0.10
www IN A 192.168.0.11
bbs IN A 192.168.0.12 new IN CNAME www [root@localhost named]# cat 0.168.192.in-addr.arpa
$TTL 86400
$ORIGIN 0.168.192.in-addr.arpa.
@ IN SOA @ root.test.com. ( 20060101
3H
15M
1H
86400)
@ IN NS ns1.test.com.
@ IN MX 10 mail.test.com.
9 IN PTR ns1.test.com.
10 IN PTR mail.test.com.
11 IN PTR www.test.com.
12 IN PTR bbs.test.com. [root@localhost named]# cat etc/named.conf
acl "lan" { 127.0.0.0/8; 192.168.0.0/24;}; options{
directory "/var/named/";
pid-file "/var/run/named.pid";
version "BIND 0";
allow-transfer {"lan";};
notify yes;
allow-notify {"lan";};
transfer-format one-answer;
transfers-in 5;
transfers-out 5;
forward first;
forwarders {202.102.192.68;}; }; view "local"{
match-clients{127.0.0.0/8;};
zone "." {
type hint;
file "named.root";
}; zone "localhost"{
type master;
file "localhost.zone";
}; zone "0.0.127.in-addr.arpa" {
type master;
file "0.0.127.in-addr.arpa";
};
}; view "Internet" {
match-clients {192.168.0.0/24;};
zone "." {
type hint;
file "named.root";
}; zone "test.com"{
type master;
file "test.zone"; allow-update { key "dhcpkey";};
}; zone "0.168.192.in-addr.arpa"{
type master;
file "0.168.192.in-addr.arpa"; allow-update { key "dhcpkey";};
};
};
#view "TYPE" {
# match-clients {any;};
#zone "." {
#type hint;
#file "named.root";
# }; #zone "test.com"{
#type master;
#file "test.zone.out";
# }; #zone "1.168.192.in-addr.arpa"{
#type master;
#file "1.168.192.in-addr.arpa.out";
# };
key "dhcpkey" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; key "rndc-key" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
}; [root@localhost sbin]# cat rndc.conf key "rndc-key" {
algorithm hmac-md5;
secret "g7/EQX5HUw5BhfWtmNSLLA==";
}; options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
}; /usr/sbin/dnssec-keygen -a hmac-md5 -b 128 -n HOST localhost 在当前目录下产生两个文件
相关阅读 更多 +
排行榜 更多 +
