BIND的DNS服务
时间:2006-11-14 来源:augustusqing
玩玩BIND,DNS服务对于一个网络来说是不可少的
先按照BLFS BOOK安装BIND-9.3.1,是可以让服务chroot状态下运行的
参考文章:1):http://www.linuxsir.org/bbs/showthread.php?t=269426
2):http://zz.315top.com/news/38/20051218197290538.htm
完全按照BLFS上的来,可以启动服务,dig -x 127.0.0.1可以,但不能用,参考上面文章
文章1理解概念,但里面的某些有误,关键是设置named.conf中的关于zone的设置问题,
初始设置(BLFS中)只有localhost的设置,对照着文二设置好localhost zone,设置mylinux.com时出现错误:
named -t /home/named -g
31-Oct-2006 02:48:17.121 zone 0.254.38.202.in-addr.arpa/IN: loaded serial 1
31-Oct-2006 02:48:17.124 mylinux.com.zone:2: SOA record not at top of zone (mylinux.com.mylinux.com)
应该是关于mylinux.conf.zone的设置有错误了,几经周折,终于可以了,我的设置是:
vi named.conf
options {
directory "/etc/namedb";
pid-file "/var/run/named.pid";
statistics-file "/var/run/named.stats";
};
controls {
inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
};
key "rndc_key" {
algorithm hmac-md5;
secret " 5FJys15CptnfObI8lrxvwQ10ZulWoZNPLioIHwfvgFGum7BBwJke+aIvZjeqgpurhdAzJT2UW9LrEhdhOZ6PXg==";
};
zone "." {
type hint;
file "root.hints";
};
zone "localhost" IN {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" {
type master;
file "pz/127.0.0";
};
zone "mylinux.com" IN {
type master;
file "mylinux.com.zone";
};
zone "0.254.38.202.in-addr.arpa" {
type master;
file "pz/mylinux.com.arpa";
};
logging {
category default { default_syslog; default_debug; };
category unmatched { null; };
channel default_syslog {
syslog daemon; // send to syslog's daemon
// facility
severity info; // only send priority info
// and higher
};
channel default_debug {
file "named.run";
severity dynamic;
};
channel default_stderr {
stderr;
severity info;
};
channel null {
null;
};
};
另外建立的相应的区域文件和反向解析文件分别是:
vi localhost.zone
$TTL 86400
@ IN SOA @ root (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS @
IN A 127.0.0.1
vi mylinux.com.zone
$TTL 86400
@ IN SOA www.mylinux.com master.mylinux.com (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS 202.38.254.253
www IN A 202.38.254.253
ftp IN A 202.38.254.253
vi pz/127.0.0
$TTL 3D
@ IN SOA localhost. root.localhost. (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS localhost.
1 PTR localhost.
vi pz/mylinux.com.arpa
$TTL 86400
@ IN SOA www.mylinux.com. master.mylinux.com. (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS www.mylinux.com
253 IN PTR www.mylinux.com
253 IN PTR ftp
注意这些里面空格的地方,当然关键是理解含义,关于rndc的设置比较好理解
先按照BLFS BOOK安装BIND-9.3.1,是可以让服务chroot状态下运行的
参考文章:1):http://www.linuxsir.org/bbs/showthread.php?t=269426
2):http://zz.315top.com/news/38/20051218197290538.htm
完全按照BLFS上的来,可以启动服务,dig -x 127.0.0.1可以,但不能用,参考上面文章
文章1理解概念,但里面的某些有误,关键是设置named.conf中的关于zone的设置问题,
初始设置(BLFS中)只有localhost的设置,对照着文二设置好localhost zone,设置mylinux.com时出现错误:
named -t /home/named -g
31-Oct-2006 02:48:17.121 zone 0.254.38.202.in-addr.arpa/IN: loaded serial 1
31-Oct-2006 02:48:17.124 mylinux.com.zone:2: SOA record not at top of zone (mylinux.com.mylinux.com)
应该是关于mylinux.conf.zone的设置有错误了,几经周折,终于可以了,我的设置是:
vi named.conf
options {
directory "/etc/namedb";
pid-file "/var/run/named.pid";
statistics-file "/var/run/named.stats";
};
controls {
inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
};
key "rndc_key" {
algorithm hmac-md5;
secret " 5FJys15CptnfObI8lrxvwQ10ZulWoZNPLioIHwfvgFGum7BBwJke+aIvZjeqgpurhdAzJT2UW9LrEhdhOZ6PXg==";
};
zone "." {
type hint;
file "root.hints";
};
zone "localhost" IN {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" {
type master;
file "pz/127.0.0";
};
zone "mylinux.com" IN {
type master;
file "mylinux.com.zone";
};
zone "0.254.38.202.in-addr.arpa" {
type master;
file "pz/mylinux.com.arpa";
};
logging {
category default { default_syslog; default_debug; };
category unmatched { null; };
channel default_syslog {
syslog daemon; // send to syslog's daemon
// facility
severity info; // only send priority info
// and higher
};
channel default_debug {
file "named.run";
severity dynamic;
};
channel default_stderr {
stderr;
severity info;
};
channel null {
null;
};
};
另外建立的相应的区域文件和反向解析文件分别是:
vi localhost.zone
$TTL 86400
@ IN SOA @ root (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS @
IN A 127.0.0.1
vi mylinux.com.zone
$TTL 86400
@ IN SOA www.mylinux.com master.mylinux.com (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS 202.38.254.253
www IN A 202.38.254.253
ftp IN A 202.38.254.253
vi pz/127.0.0
$TTL 3D
@ IN SOA localhost. root.localhost. (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS localhost.
1 PTR localhost.
vi pz/mylinux.com.arpa
$TTL 86400
@ IN SOA www.mylinux.com. master.mylinux.com. (
1 ; Serial
8H ; Refresh
2H ; Retry
4W ; Expire
1D) ; Minimum TTL
IN NS www.mylinux.com
253 IN PTR www.mylinux.com
253 IN PTR ftp
注意这些里面空格的地方,当然关键是理解含义,关于rndc的设置比较好理解
相关阅读 更多 +
