系统:RedHat6
一、安装必要软件:
二、全局配置文件:(/etc/named.conf)
[root@ www.linuxidc.com etc]# vi named.conf
options {
listen-on port 53 { 210.*.241.115; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; }; //允许所有人查询
//match-clients { any; }; //允许任意客户端
//match-destinations { any; }; //允许任意目标
recursion yes;
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view example_resolver {
match-clients { any; }; //指定提交DNS客户端的源IP地址范围
match-destinations { any; }; //指定提交DNS客户端的目标IP地址范围
recursion yes; //指定是否只允许递归查询
include "/etc/named.zones"; //指定主配置文件
};
三、主配置文件(/etc/named.zones)
[root@ www.linuxidc.com etc]# vi named.zones
// named.rfc1912.zones:
//
// Provided by Red Hat caching-nameserver package
//
// ISC BIND named zone configuration for zones recommended by
// RFC 1912 section 4.1 : localhost TLDs and address zones
// and http://www.ietf.org/internet-drafts/draft-ietf-dnsop-default-local-zones-02.txt
// (c)2007 R W Franks
//
// See /usr/share/doc/bind*/sample/ for
zone "example.com" IN { //指定一个正向查询区域
type master; //指定区域类型为主要区域
file "example.com.zero"; //指定区域配置文件名为"example.com.zero",路径默认为全局配置文件的“directory"路径
allow-update { none; };
};
zone " 241.*.210.in-addr.arpa" IN { //指定一个反向查询区域
type master; //指定区域类型为主要区域
file "241 .*.210.local"; //指定区域配置文件名为"241.38.210.local",路径默认为全局配置文件的“directory"
allow-update { none; };
};
四、区域配置文件:(在/var/named下)
正向:example.com.zero
[root@ www.linuxidc.com named]# vi example.com.zero
;指定默认的TTL值
$TTL 1D
;区域名称 记录类型 SOA 主域名服务器(FQDN) 管理员邮件地址(@用“.”代替)
@ IN SOA example.com. root.example.com. (
1 ; serial 序列号
1D ; refresh 刷新间隔
1H ; retry 重试间隔
1W ; expire 过期间隔
3H ) ; minimum TTL
;#(1)NS记录:区域名称 IN NS FQDN
IN NS example.com.
;#(2)A记录:FQDN IN A IP地址
IN AAAA ::1
IN A 210.*.241.115
www IN A 210.*.241.115
mail IN A 210.*.241.115
上面配置解析:
; 用作注释
@ 表示当前域
反向:241.*.210.local
[root@ www.linuxidc.com named]# vi 241.*.210.local
$TTL 1D
@ IN SOA localhost. root.localhost. (
1997022700 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
;#(1)NS记录:区域名称 IN NS FQDN
IN NS localhost.
;#(2)PTR资源记录:IP地址 IN PTR FQDN
115 IN PTR www.example.com.
1 IN PTR mail.example.com.
五、启动服务
service named restart
六、测试:
[root@ www.linuxidc.com email]# nslookup
> server 210.*.241.115
Default server: 210.*.241.115
Address: 210.*.241.115#53
> www.example.com
Server: 210.*.241.115
Address: 210.*.241.115#53
Name: www.example.com
Address: 210.*.241.115
> 210.*.241.115
Server: 210.*.241.115
Address: 210.*.241.115#53
115.241.*.210.in-addr.arpa name = www.example.com.
> 210.*.241.1
Server: 210.*.241.115
Address: 210.*.241.115#53
1.241.*.210.in-addr.arpa name = mail.example.com.
> mail.example.com
Server: 210.*.241.115
Address: 210.*.241.115#53
Name: mail.example.com
Address: 210.*.241.115
>
OK
如果上面过程有什么错误的,欢迎指正。
京公网安备 11010802041100号 | 京ICP备19059560号-4 | PHP1.CN 第一PHP社区 版权所有 