Yang Chun Yi

一、套件： [root@samyang etc]# rpm -qa |grep bind bind-libs-9.3.6-4.P1.el5_4.2 bind-chroot-9.3.6-4.P1.el5_4.2 ypbind-1.19-12.el5 bind-9.3.6-4.P1.el5_4.2 bind-utils-9.3.6-4.P1.el5_4.2 [root@samyang etc]# rpm -qa |grep caching-nameserver caching-nameserver-9.3.6-4.P1.el5_4.2 二. 先前準備： 1、[root@samyang etc]# cat /etc/resolv.conf search localdomain #nameserver 8.8.4.4 #nameserver 168.95.1.1 #nameserver 208.67.222.222 nameserver 192.168.11.2 2、[root@samyang etc]# cat /etc/sysconfig/network NETWORKING=yes NETWORKING_IPV6=no HOSTNAME=samyang.com.tw 三、主設定檔： 1、/var/named/chroot/etc [root@samyang etc]# ls named.conf named.rfc1912.zones 2、[root@samyang named]# ls 192.168.11.zone samyang.com.tw.zone 四、設定檔修改： 1、 [root@samyang etc]# cat /var/named/chroot/etc/named.conf // // named.caching-nameserver.conf // // Provided by Red Hat caching-nameserver package to configure the // ISC BIND named(8) DNS server as a caching only nameserver // (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // // DO NOT EDIT THIS FILE - use system-config-bind or an editor // to create named.conf - edits to this file will be lost on // caching-nameserver package upgrade. // acl "mynic" { 192.168.11.2; 127.0.0.1; }; acl "mynet" { 192.168.11.0/24; 127.0.0.0/8; }; options { listen-on port 53 { mynic; }; listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; // Those options should be used carefully because they disable port // randomization // query-source port 53; // query-source-v6 port 53; allow-query { mynet; }; allow-recursion { mynet; }; allow-transfer { mynet; }; allow-query-cache { mynet; }; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; view localhost_resolver { match-clients { any; }; match-destinations { any; }; recursion yes; include "/etc/named.rfc1912.zones"; }; 2、 [root@samyang etc]# cat /var/named/chroot/etc/named.rfc1912.zones // named.rfc1912.zones: // // Provided by Red Hat caching-nameserver package // // ISC BIND named zone configuration for zones recommended by // RFC 1912 section 4.1 : localhost TLDs and address zones // // See /usr/share/doc/bind*/sample/ for example named configuration files. // zone "." IN { type hint; file "named.ca"; }; zone "localdomain" IN { type master; file "localdomain.zone"; allow-update { none; }; }; zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; }; }; zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; }; }; zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN { type master; file "named.ip6.local"; allow-update { none; }; }; zone "255.in-addr.arpa" IN { type master; file "named.broadcast"; allow-update { none; }; }; zone "samyang.com.tw" IN { type master; file "samyang.com.tw.zone"; allow-update { none; }; }; zone "11.168.192.in-addr.arpa" IN { type master; file "192.168.11.zone"; # allow-update { none; }; }; 3、 [root@samyang named]# cat /var/named/chroot/var/named/samyang.com.tw.zone $TTL 86400 samyang.com.tw. IN SOA dns.samyang.com.tw. root.dns.samyang.com.tw. ( 2010020701 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS dns.samyang.com.tw. dns IN A 192.168.11.2 ftp IN A 192.168.11.3 www IN A 192.168.11.4 IN AAAA ::1 4、 [root@samyang named]# cat /var/named/chroot/var/named/192.168.11.zone $TTL 86400 11.168.192.in-addr.arpa. IN SOA dns.samyang.com.tw. root.dns.samyang.com.tw. ( 2010020701 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS dns.samyang.com.tw. 2 IN PTR dns.samyang.com.tw. 3 IN PTR ftp.samyang.com.tw. 4 IN PTR www.samyang.com.tw. 5、 [root@samyang Desktop]# cat /etc/resolv.conf search localdomain #nameserver 168.95.1.1 #nameserver 8.8.8.8 nameserver 192.168.11.2 6、 [root@samyang Desktop]# cat /etc/hosts # Do not remove the following line, or various programs # that require network functionality will fail. 127.0.0.1 localhost.localdomain localhost ::1 localhost6.localdomain6 localhost6 192.168.11.2 dns.samyang.com.tw 192.168.11.18 station18.samyang.com.tw 192.168.11.25 station25.samyang.com.tw 7、 [root@samyang sysconfig]# cat /etc/sysconfig/network NETWORKING=yes NETWORKING_IPV6=no HOSTNAME=samyang.com.tw 五、注意事項： 1、 [root@samyang named]# ls -al /var/named/chroot/var/named 總計 104 drwxr-x--- 4 root named 4096 2月 7 15:57 . drwxr-x--- 6 root named 4096 1月 21 00:33 .. -rw-r----- 1 root named 573 2月 7 15:29 192.168.11.zone drwxrwx--- 2 named named 4096 2月 7 14:15 data -rw-r----- 1 root named 198 2月 7 15:32 localdomain.zone -rw-r----- 1 root root 195 2月 7 15:19 localhost.zone -rw-r----- 1 root named 427 1月 21 00:33 named.broadcast -rw-r----- 1 root named 1892 1月 21 00:33 named.ca -rw-r----- 1 root named 424 1月 21 00:33 named.ip6.local -rw-r----- 1 root root 426 2月 7 15:22 named.local -rw-r----- 1 root named 427 1月 21 00:33 named.zero -rw-r----- 1 root named 369 2月 7 15:33 samyang.com.tw.zone drwxrwx--- 2 named named 4096 7月 27 2004 slaves 2、 [root@samyang etc]# ls -al /var/named/chroot/etc 總計 64 drwxr-x--- 2 root named 4096 2月 7 17:40 . drwxr-x--- 6 root named 4096 2月 7 13:54 .. -rw-r--r-- 1 root root 724 1月 31 11:24 localtime -rw-r----- 1 root root 1230 2月 7 13:46 named.caching-nameserver.conf.backup -rw-r----- 1 root named 1367 2月 7 16:26 named.conf -rw-r----- 1 root named 1066 2月 7 16:26 named.rfc1912.zones -rw-r----- 1 root root 955 2月 7 13:57 named.rfc1912.zones.backup -rw-r----- 1 root named 113 1月 20 00:04 rndc.key