RedHatLinux AS3中BIND 的配置
1.所需配置文件
/etc/named.conf---------系统自带,需要配置
/etc/resolv.conf----------系统自带,需要配置
/var/named/supermaster.com.hosts---------系统没有,需要创建配置
/var/named/192.168.0.rev--------系统没有,需要创建配置
/var/named/named.local------------------------系统自带,不需修改
/var/named/named.ca--------------------------系统自带,不需修改
2.配置方案
2.1、/etc/named.conf
说明:DNS主配置文件,定义了域数据库信息的基本参数和源点,该文件可以存放在本地或远程的服务器上。源文件如下:
// generated by named-bootconf.pl
options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
//=========add new content========
zone "supermaster.com" IN {
type master;
file "supermaster.com.hosts";
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
//=======add new content========
zone "0.168.192.in-addr.arpa" IN {
type master;
file "192.168.0.rev";
};
include "/etc/rndc.key";
2.2、/var/named/supermaster.com.hosts
说明:正向解析配置文件,即实现name2ip的对应,源文件如下:
$TTL 86400
@ IN SOA www.supermaster.com. master.supermaster.com. (
2 ; serial
28800 ; refresh
7200 ; retry
604800 ; expire
86400 ; ttl
)
IN NS www.supermaster.com. //注意:左边留一个空格
IN MX 5 mail.supermaster.com.//注意:左边留一个空格
ssl IN A 192.168.0.111 //注意:左边没有空格
www IN A 192.168.0.111
ftp IN A 192.168.0.111
mail IN A 192.168.0.111
2.3、/var/named/192.168.0.rev
说明:DNS反向解析配置文件,即实现IP2name的对应,源文件如下:
$TTL 86400
@ IN SOA www.supermaster.com. root.supermaster.com. (
7 ; serial
28800 ; refresh
7200 ; retry
604800 ; expire
86400 ; ttk
)
IN NS www.supermaster.com. //注意:左边留一个空格
111 IN PTR www.supermaster.com.//注意:左边没有空格
111 IN PTR ftp.supermaster.com.
111 IN PTR mail.supermaster.com.
111 IN PTR ssh.supermaster.com.
2.4、/etc/resolv.conf
说明:指定域名服务器的IP和搜索顺序,源文件如下:
search supermaster.com
nameserver 192.168.0.111
3.测试及管理办法
3.1、修改完DNS的配置文件,需要重新启动named,输入:named -u named
来使更改的配置生效
3.2、用host测试DNS
A.//正向查询主机地址
#host www.supermaster.com
www.supermaster.com has address 192.168.0.111
B.//反向查询域名
#host 192.168.0.111
111.0.168.192.in-addr.arpa domain name pointer ftp.supermaster.com.
111.0.168.192.in-addr.arpa domain name pointer ssh.supermaster.com.
111.0.168.192.in-addr.arpa domain name pointer www.supermaster.com.
111.0.168.192.in-addr.arpa domain name pointer mail.supermaster.com.
C.//查询不同类型的资源记录配置
#host -t NS supermaster.com
supermaster.com name server www.supermaster.com.
#host -t SOA supermaster.com
supermaster.com SOA www.supermaster.com. master.supermaster.com. 2 28800 7200 604800 86400
#host -t MX supermaster.com
supermaster.com mail is handled by 5 mail.supermaster.com.
D.//查询整个域的信息
#host -l supermaster.com. 192.168.0.111
Using domain server:
Name: 192.168.0.111
Address: 192.168.0.111#53
Aliases:
supermaster.com SOA www.supermaster.com. master.supermaster.com. 2 28800 7200 604800 86400
supermaster.com name server www.supermaster.com.
supermaster.com mail is handled by 5 mail.supermaster.com.
ftp.supermaster.com has address 192.168.0.111
mail.supermaster.com has address 192.168.0.111
ssl.supermaster.com has address 192.168.0.111
www.supermaster.com has address 192.168.0.111
supermaster.com SOA www.supermaster.com. master.supermaster.com. 2 28800 7200 604800 86400
E.//列出与一个主机名相关的资源记录的详细信息
#host -a www.supermaster.com
Trying "www.supermaster.com"
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30624
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;www.supermaster.com. IN ANY
;; ANSWER SECTION:
www.supermaster.com. 86400 IN A 192.168.0.111
;; AUTHORITY SECTION:
supermaster.com. 86400 IN NS www.supermaster.com.
Received 67 bytes from 192.168.0.111#53 in 1 ms
|
