宇泰資訊 - 站長部落格

主選單

小圖蒐集區

登入

版面風格

站長部落格 - lutuni 的日誌

訂閱 lutuni 的日誌

選擇類別 : ubuntu 技術資料 DNS :

醫學(5)	HTML語法(7)	OSCommerce電子商務(3)
PHP 程式(1)	SQL SERVER(15)	ubuntu 技術資料(3) apache2(1) DNS(9) kubuntu 12.04 中文輸入法(1) sendmail(5) Webmin(1) 驅動程式(4)
Visual DBtools 2.2(17)	WINDOW 7作業系統(0) 開機選單(1)	windows作業(3) 電腦系統工具(0)
XOOPS入口網站(1)	友站連結公司行號(3)	其它的(12)
程式計設系統分析(1)

最新的日誌

2014/10/17

Ubuntu Server 8.041 Deb：bind9 (DNS)

分類: ubuntu 技術資料 DNS :

作者: lutuni (11:35 pm)

Environment (環境)

Operation-System：Ubuntu Server 8.041
Deb：bind9 (DNS)

jonny@ubuntu:~$ sudo apt-get install bind9

Hinet 網域註冊：

DNS Server Name：www.dadiling.com
IP Address：59.125.159.74

DNS Server Name：dns.dadiling.com
IP Address：59.125.159.74

Server Configure (伺服器設定)

1. 加入正反解設定：named.conf 會指出 Server 管轄的區域(Zone)名稱及相關檔案。於 include "/etc/bind/named.conf.local"; 上方加入預新增的設定

jonny@ubuntu:~$ sudo vim /etc/bind/named.conf
...
sudo vim /etc/bind/named.conf.local
//增加正解區域(Zone)

zone "dadiling.com" {
type master;
file "/etc/bind/db.dadiling";
};

//增加反解區域(Zone)
zone "159.125.59.in-addr.arpa" {
type master;
file "/etc/bind/db.159.125.59";
};

include "/etc/bind/named.conf.local";

2. 修改 Bind 參數

1. 備份原始參數

jonny@ubuntu:/etc/bind$ sudo cp named.conf.options named.conf.options.bak

2. 更新參數

jonny@ubuntu:/etc/bind$ sudo vim named.conf.options
options {
directory "/var/cache/bind";
forwarders {
168.95.1.1; 139.175.10.20; 203.133.1.6;
};
allow-query { any; };
allow-transfer { none; };
};

3. 建立正解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vim db.dadiling
; BIND reverse data file for local loopback interface

@ IN SOA dlp.dadiling.com. root.dadiling.com. (
2012042701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)

; define name server

@ IN NS dlp.dadiling.com.

; define name server's IP address

@ IN A 59.125.159.74

; define mail exchanger

@ IN MX 10 dlp.dadiling.com.

; define IP address of a hostname

dlp IN A 59.125.159.74

4. 3. 建立反解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vim db.159.125.59
; BIND reverse data file for local loopback interface

$TTL 604800
@ IN SOA @ root.dns.dadiling.com. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.dadiling.com.
@ IN NS www.dadiling.com.
74 IN PTR dns.dadiling.com.
74 IN PTR www.dadiling.com.

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (742)

2014/10/17

Create zone files that servers resolve IP address from domain name.

分類: ubuntu 技術資料 DNS :

作者: lutuni (3:30 pm)

[1] For internal zone
This example uses internal address[192.168.1.0/24], domain name[dadiling.com], but please use your own one when you set config on your server.

root@dlp:~#
vim /etc/bind/dadiling.com.lan
------------------------------------------------------------------
$TTL 86400
@ IN SOA dlp.dadiling.com. root.dadiling.com. (
2012042701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)

; define name server
@ IN NS dlp.dadiling.com.
; define name server's IP address
@ IN A 192.168.1.210
; define mail exchanger
@ IN MX 10 dlp.dadiling.com.
; define IP address of a hostname
dlp IN A 192.168.1.210
-------------------------------------------------------------
[2] For external zone
This example uses external address[59.125.159.70/29], domain name[dadiling.com], but please use your own one when you set config on your server.

root@dlp:~#
vim /etc/bind/dadiling.com.wan

@ IN SOA dlp.dadiling.com. root.dadiling.com. (
2012042701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)

; define name server
@ IN NS dlp.dadiling.com.
; define name server's IP address
@ IN A 59.125.159.74
; define mail exchanger
@ IN MX 10 dlp.dadiling.com.
; define IP address of a hostname
dlp IN A 59.125.159.74
------------------------------------------------------------------
Reverse resolution
create zone files that servers resolve domain names from IP address.

[3] For internal zone
This example uses internal address[10.0.0.0/24], domain name[server.world], but please use your own one when you set config on your server.
root@dlp:~#
vim /etc/bind/1.168.192.db
------------------------------------------------------------------
$TTL 86400
@ IN SOA dlp.dadiling.com. root.dadiling.com. (
2012042701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)
; define name server
@ IN NS dlp.dadiling.com.
; define the range of this domain included
@ IN PTR dadiling.com.
@ IN A 255.255.255.0
; define hostname of an IP address
210 IN PTR dlp.dadiling.com.

[4] For external zone
This example uses external address[172.16.0.80/29], domain name[server.world], but please use your own one when you set config on your server.
root@dlp:~#
vi /etc/bind/70.159.125.59.db
$TTL 86400
@ IN SOA dlp.dadiling.com. root.dadiling.com. (
2012042701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)

; define name server
@ IN NS dlp.dadiling.com.
; define the range of this domain included
@ IN PTR dadiling.com.
@ IN A 255.255.255.248
# define hostname of an IP address
74 IN PTR dlp.dadiling.com.

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (648)

2014/10/17

Configure DNS server which resolves domain name or IP address.

分類: ubuntu 技術資料 DNS :

作者: lutuni (2:46 pm)

[1] Install BIND
root@dlp:~# aptitude -y install bind9 bind9utils

[2] Configure BIND This example is done with grobal IP address [ 59.125.159.70/29 ], Private IP address [ 192.168.1.0/24 ], Domain name [ dadiling.com ]. However, Please use your own IPs and domain name when you set config on your server. ( Actually, [59.125.159.70/29] is for private IP address, though. )

root@dlp:~# vim /etc/bind/named.conf
include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
# make it comment
#
include "/etc/bind/named.conf.default-zones";
# add
include "/etc/bind/named.conf.internal-zones";
include "/etc/bind/named.conf.external-zones";

root@dlp:~# vim /etc/bind/named.conf.internal-zones
# create new

# define for internal section
view "internal" {

match-clients {
localhost;
192.168.1.0/24;
};
zone "." {
type hint;
file "db.root";
};

# set zone for internal

zone "dadiling.com" {
type master;
file "dadiling.com.lan";
allow-update { none; };
};

# set zone for internal *note

zone "1.169.192.in-addr.arpa" {
type master;
file "1.169.192.db";
allow-update { none; };
};
zone "localhost" {
type master;
file "db.local";
};
zone "127.in-addr.arpa" {
type master;
file "db.127";
};
zone "0.in-addr.arpa" {
type master;
file "db.0";
};
zone "255.in-addr.arpa" {
type master;
file "db.255";
};
};

root@dlp:~# vim /etc/bind/named.conf.external-zones

# create new
# define for external section

view "external" {

match-clients { any; };

# allo any query

allow-query { any; };

# prohibit recursion

recursion no;

# set zone for external

zone "dadiling.com" {
type master;
file "dadiling.com.wan";
allow-update { none; };
};

# set zone for external *note

zone "70.159.125.59.in-addr.arpa" {
type master;
file "70.159.125.59.db";
allow-update { none; };
};
};

# *note : For How to write for reverse resolving, Write network address reversely like below 10.0.0.0/24
network address
⇒ 192.168.1.0

range of network
⇒ 192.168.1.0 - 192.168.1.255

how to write
⇒ 1.168.192.in-addr.arpa
59.125.159.70/29
network address
⇒ 59.125.159.70

range of network
⇒ 59.125.159.70 - 59.125.159.78
how to write
⇒ 70.159.125.59.in-addr.arpa

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (881)

2010/03/23

架設DNS Server

分類: ubuntu 技術資料 DNS :

作者: lutuni (8:16 am)

Ubuntu Server上所提供的DNS Server套件是bind
接著我們開啟一個terminal
並輸入下列指令:
檢視原始檔複製到剪貼簿列印關於

1. sudo apt-get install bind9

sudo apt-get install bind9

接下來請提供具管理權限密碼並回答Y進行套件的安裝
安裝完成之後就要來設定了
首先編輯/etc/bind/named.conf.local
檢視原始檔複製到剪貼簿列印關於

1. sudo vim /etc/bind/named.conf.local

sudo vim /etc/bind/named.conf.local

例如我們申請了一個網域叫作dadiling.com
且我們申請的真實IP是59.125.159.74
因此要新增底下的內容到named.conf.local中
檢視原始檔複製到剪貼簿列印關於

1. zone "dadiling.com" {
2. type master;
3. file "/etc/bind/dadiling.com.hosts";
4. };
5. zone "159.125.59.in-addr.arpa" {
6. type master;
7. file "/etc/bind/159.125.59.rev";
8. };

zone "dadiling.com" {
type master;
file "/etc/bind/dadiling.com.hosts";
};
zone "159.125.59.in-addr.arpa" {
type master;
file "/etc/bind/159.125.59.rev";
};

接下來要產生正向網域名稱檔案且新增一筆主機紀錄(mail.dadiling.com的真實IP對應到59.125.159.74)
請執行下列指令:
檢視原始檔複製到剪貼簿列印關於

1. sudo vim /etc/bind/dadiling.com.hosts

sudo vim /etc/bind/dadiling.com.hosts

新增內容如下:
檢視原始檔複製到剪貼簿列印關於

1. $ttl 38400
2. dadiling.com. IN SOA mail1. dadiling.com. (
3. 1255760316
4. 10800
5. 3600
6. 604800
7. 38400 )
8. dadiling.com. IN NS mail1.
9. mail.dadiling.com. IN A 59.125.159.74

$ttl 38400
dadiling.com. IN SOA mail1.dadiling.com. (
1255760316
10800
3600
604800
38400 )
dadiling.com. IN NS mail1.
mail.dadiling.com. IN A 59.125.159.74

接下來要產生反向網域名稱檔案且新增一筆反向IP紀錄(真實IP 59.125.159.74對應到mail.dadiling.com)
請執行下列指令:
檢視原始檔複製到剪貼簿列印關於

1. sudo vim /etc/bind/159.125.59.rev

sudo vim /etc/bind/159.125.59.rev

新增內容如下:
檢視原始檔複製到剪貼簿列印關於

1. $ttl 38400
2. 159.125.59.in-addr.arpa. IN SOA mail1.dadiling.com. (
3. 1255760379
4. 10800
5. 3600
6. 604800
7. 38400 )
8. 159.125.59.in-addr.arpa. IN NS mail1.
9. 74.159.125.59.in-addr.arpa. IN PTR mail.

$ttl 38400
159.125.59.in-addr.arpa. IN SOA mail1.dadiling.com. (
1255760379
10800
3600
604800
38400 )
159.125.59.in-addr.arpa. IN NS mail1.
74.159.125.59.in-addr.arpa. IN PTR mail.

最後執行下列指令重新啟動bind DNS服務
檢視原始檔複製到剪貼簿列印關於

1. sudo /etc/init.d/bind9 restat

sudo /etc/init.d/bind9 restat

就完成bind DNS Server的安裝了

參考資料�Ghttps://help.ubuntu.com/9.04/serverguide/C/dns-installation.html

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (714)

2010/03/22

如何在Ubuntu上安裝DNS BIND

分類: ubuntu 技術資料 DNS :

作者: lutuni (2:08 pm)

安裝
[編輯] 如何在Ubuntu上安裝DNS BIND

你可以直接在命令列上輸入下列指令：

sudo apt-get install bind

[編輯] 如何在Fedora上安裝DNS BIND

你可以直接在命令列上輸入下列指令：

yum -y install bind

[編輯] 如何在Debian上安裝DNS BIND

你可以直接在命令列上輸入下列指令：

apt-get install bind9

[編輯] 設定
[編輯] Ubuntu的設定

config 設定檔的放置路徑如下：

/etc/bind/named.conf

[編輯] Fedora的設定

config 設定檔的放置路徑如下：

/var/named/chroot/etc/named.conf

[編輯] Debian的設定

config 設定檔的放置路徑如下：

/etc/bind/named.conf

[編輯] named.conf 檔案內容

named.conf 檔案主要的內容包含4個部分，分別為:

1.options

2.關於 .(root) 的內容

3.關於 localhost 的正反解

4.關於其他 domain 的正反解

一個完整的 named.conf 的檔案如下:

acl internals { 192.168.10.0/24; };
options {
directory "/var/named";
allow-transfer{ 192.168.11.7;
internals;
};
};
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." { //.(root) 的內容
type hint;
file "root.servers";
};
zone "localhost"{ //localhost 的正解
type master;
file "master.localhost";
};
zone "0.0.127.in-addr.arpa"{ //localhost 的反解
type master;
file "localhost.rev";
};
zone "twnic.com.tw"{ //使用者domain的正解
type master;
file "twnic.hosts";
};
zone "10.168.192.in-addr.arpa"{ //使用者domain的反解
type master;
file "twnic.rev";
};

master.localhost檔案範例如下:

$TTL 86400 ; 24 hours could have been written as 24h
$ORIGIN localhost.
; line below = localhost 1D IN SOA localhost root.localhost
@ 1D IN SOA @ root (
2002022401 ; serial
3H ; refresh
15 ; retry
1w ; expire
3h ; minimum
)
@ 1D IN NS @
1D IN A 127.0.0.1

localhost.rev檔案範例如下:

$TTL 86400 ;
; could use $ORIGIN 0.0.127.IN-ADDR.ARPA.
@ IN SOA localhost. root.localhost. (
1997022700 ; Serial
3h ; Refresh
15 ; Retry
1w ; Expire
3h ) ; Minimum
IN NS localhost.
1 IN PTR localhost.

[編輯] 如何使用
[編輯] 如何啟動 BIND Server

FOR Redhat / Fedora

chkconfig 指令能幫您設定在開機時啟動BIND:

chkconfig named on

在開機後啟動,關閉,重新啟動BIND的指令如下:

/etc/init.d/named start
/etc/init.d/named stop
/etc/init.d/named restart

FOR Debian / Ubuntu

sysv-rc-conf 指令能幫您設定在開機時啟動BIND:

sysv-rc-conf bind on

在開機後啟動,關閉,重新啟動BIND的指令如下:

/etc/init.d/bind start
/etc/init.d/bind stop
/etc/init.d/bind restart

[編輯] 如何測試 DNS 是否正常運作

The Host Command

host 指令接參數，用來查詢正反解並顯示出結果，用法如下

使用 host 查詢正解

host www.linuxhomenetworking.com

使用 host 查詢反解

host 65.115.71.34

The nslookup Command

nslookup 指令接參數，用來查詢正反解並顯示出結果，用法如下

使用 nslookup 查詢正解

nslookup www.linuxhomenetworking.com

使用 nslookup 查詢反解

nslookup 65.115.71.34

[編輯] 如何設定 sub-domain

sub-domain 的定義為:

zone (domain) name = example.com
domain host name = bill.example.com
sub-domain name = us.example.com
sub-domain host name = ftp.us.example.com

若要設定 sub-domain，其 named.conf 檔可參考下面的設定:

// named.conf file fragment
....
options {
....
// stop everyone
allow-transfer {"none";};
....
};
zone "example.com" in{
type master;
file "master/master.example.com";
// explicitly allow slave
allow-transfer {192.168.0.4;};
};

master.example.com 檔可參考下面的設定:

; zone fragment for 'zone name' example.com
; name servers in the same zone
$TTL 2d ; zone default TT = 2 days
$ORIGIN example.com.
@ IN SOA ns1.example.com. hostmaster.example.com. (
2003080800 ; serial number
2h ; refresh = 2 hours
15M ; update retry = 15 minutes
3W12h ; expiry = 3 weeks + 12 hours
2h20M ; minimum = 2 hours + 20 minutes
)
; main domain name servers
IN NS ns1.example.com.
IN NS ns2.example.com.
; mail servers for main domain
IN MX 10 mail.example.com.
; A records for name servers above
ns1 IN A 192.168.0.3
ns2 IN A 192.168.0.4
; A record for mail servers above
mail IN A 192.168.0.5
; other domain level hosts and services
bill IN A 192.168.0.6
....
; sub-domain definitions
$ORIGIN us.example.com.
IN MX 10 mail
; record above could have been written as
; us.example.com. IN MX 10 mail.us.example.com.
; A record for subdomain mail server
mail IN A 10.10.0.28
; the record above could have been written as
; mail.us.example.com. A 10.10.0.28 if it's less confusing
ftp IN A 10.10.0.29
; the record above could have been written as
; ftp.us.example.com. A 10.10.0.29 if it's less confusing
....
; other subdomain definitions as required

[編輯] 如何設定 forwarding DNS

Forwarding DNS 主機主要做為一個中間傳遞資料的角色，將用戶端所需要查詢的資訊轉交給其它合法的 DNS 主機代為查詢，因此 forwarding DNS 本身並沒有提供主機名稱與 IP 正反解的設定檔。

要設定一台 DNS 為 forwarding ，請編輯主要設定檔 named.conf 如下:

options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
forward only;
forwarders {
192.168.0.1;
};
};
include "/etc/rndc.key";

其中各參數的意義:

forward only

指示這台 DNS 只做為 forwarding DNS。

forwarders

設定把我們的查詢 forward 給哪台 DNS 來幫我們代查，可設定多台 forwarders 。

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (1229)

2010/03/22

fluxtek /etc/bind/db.210.71.163

分類: ubuntu 技術資料 DNS :

作者: lutuni (10:58 am)

; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA fluxtek.com. root.www.fluxtek.com. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS www.fluxtek.com.
225 IN PTR www.fluxtek.com.
225 IN PTR mail.fluxtek.com.

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (772)

2010/03/22

fluxtek /etc/bind/named.conf

分類: ubuntu 技術資料 DNS :

作者: lutuni (12:26 am)

// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
// structure of BIND configuration files in Debian, *BEFORE* you customize
// this configuration file.
//
// If you are just adding zones, please do that in /etc/bind/named.conf.local

include "/etc/bind/named.conf.options";

// prime the server with knowledge of the root servers
zone "." {
type hint;
file "/etc/bind/db.root";
};

// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912

zone "localhost" {
type master;
file "/etc/bind/db.local";
};

zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};

zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};

zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};

zone "163.71.210.in-addr.arpa" {
type master;
file "/etc/bind/db.210.71.163";
};

include "/etc/bind/named.conf.local";
zone "www.fluxtek.com" {
type forward;
forwarders {
210.71.163.225 port 80;
192.168.1.52 port 80;
};
};

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (709)

2010/03/21

Domain Name System (DNS)

分類: ubuntu 技術資料 DNS :

作者: lutuni (11:52 pm)

Environment (環境)

Operation-System：Ubuntu Server 8.041
Deb：bind9 (DNS)

jonny@ubuntu:~$ sudo apt-get install bind9

Hinet 網域註冊：

DNS Server Name：www.hjz.com.tw
IP Address：122.xxx.xxx.41

DNS Server Name：dns.hjz.com.tw
IP Address：122.xxx.xxx.41

Server Configure (伺服器設定)

1. 加入正反解設定：named.conf 會指出 Server 管轄的區域(Zone)名稱及相關檔案。於 include "/etc/bind/named.conf.local"; 上方加入預新增的設定

jonny@ubuntu:~$ sudo vi /etc/bind/named.conf
...
//增加正解區域(Zone)
zone "hjz.com.tw" {
type master;
file "/etc/bind/db.hjz";
};

//增加反解區域(Zone)
zone "205.117.122.in-addr.arpa" {
type master;
file "/etc/bind/db.205.117.122";
};

include "/etc/bind/named.conf.local";

2. 修改 Bind 參數

1. 備份原始參數

jonny@ubuntu:/etc/bind$ sudo cp named.conf.options named.conf.options.bak

2. 更新參數

jonny@ubuntu:/etc/bind$ sudo vi named,conf.options
options {
directory "/var/cache/bind";
forwarders {
168.95.1.1; 139.175.10.20; 203.133.1.6;
};
allow-query { any; };
allow-transfer { none; };
};

3. 建立正解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vi db.hjz
; BIND reverse data file for local loopback interface

$TTL 604800
@ IN SOA hjz.com.tw. dns.hjz.com.tw. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.hjz.com.tw.
@ IN NS www.hjz.com.tw.
@ IN MX 10 122.xxx.xxx.41
@ IN A 122.xxx.xxx.41
www IN A 122.xxx.xxx.41

4. 3. 建立反解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vi db.xxx.xxx.122
; BIND reverse data file for local loopback interface

$TTL 604800
@ IN SOA @ root.dns.hjz.com.tw. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.hjz.com.tw.
@ IN NS www.hjz.com.tw.
41 IN PTR dns.hjz.com.tw.
41 IN PTR www.hjz.com.tw.

5. 重開 DNS Server

jonny@ubuntu:~$ sudo /etc/init.d/bind9 restart
[sudo] password for jonny:
* Stopping domain name service... bind [ OK ]
* Starting domain name service... bind [ OK ]

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (746)

2010/03/21

Domain Name System (DNS)

分類: ubuntu 技術資料 DNS :

作者: lutuni (11:52 pm)

Environment (環境)

Operation-System：Ubuntu Server 8.041
Deb：bind9 (DNS)

jonny@ubuntu:~$ sudo apt-get install bind9

Hinet 網域註冊：

DNS Server Name：www.etype.idv.tw
IP Address：123.204.51.114

DNS Server Name：dns.etype.idv.tw
IP Address：123.204.51.114

Server Configure (伺服器設定)

1. 加入正反解設定：named.conf 會指出 Server 管轄的區域(Zone)名稱及相關檔案。於 include "/etc/bind/named.conf.local"; 上方加入預新增的設定

jonny@ubuntu:~$ sudo vim /etc/bind/named.conf
...
//增加正解區域(Zone)
zone "etype.idv.tw" {
type master;
file "/etc/bind/db.etype";
};

//增加反解區域(Zone)
zone "51.204.123.in-addr.arpa" {
type master;
file "/etc/bind/db.51.204.123";
};

include "/etc/bind/named.conf.local";

2. 修改 Bind 參數

1. 備份原始參數

jonny@ubuntu:/etc/bind$ sudo cp named.conf.options named.conf.options.bak

2. 更新參數

jonny@ubuntu:/etc/bind$ sudo vim named,conf.options
options {
directory "/var/cache/bind";
forwarders {
168.95.1.1; 139.175.10.20; 203.133.1.6;
};
allow-query { any; };
allow-transfer { none; };
};

3. 建立正解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vim db.etype
; BIND reverse data file for local loopback interface

$TTL 604800
@ IN SOA etype.idv.tw. dns.etype.idv.tw. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.etype.idv.tw.
@ IN NS www.etype.idv.tw.
@ IN MX 10 123.204.51.114
@ IN A 123.204.51.114
www IN A 123.204.51.114

4. 3. 建立反解區域設定檔

jonny@ubuntu:/etc/bind$ sudo vim db.51.204.123
; BIND reverse data file for local loopback interface

$TTL 604800
@ IN SOA @ root.dns.etype.idv.tw. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.etype.idv.tw.
@ IN NS www.etype.idv.tw.
114 IN PTR dns.etype.idv.tw.
114 IN PTR www.etype.idv.tw.

5. 重開 DNS Server

jonny@ubuntu:~$ sudo /etc/init.d/bind9 restart
[sudo] password for jonny:
* Stopping domain name service... bind [ OK ]
* Starting domain name service... bind [ OK ]

閱讀 lutuni 的日誌 | 迴響 (0) | 引用次數 (0) | 瀏覽次數 (758)