|
1.查询bind是否安装 [iyunv@test etc]# rpm -qa | grep bind bind-9.8.2-0.17.rc1.el6_4.4.i686 bind-utils-9.8.2-0.17.rc1.el6_4.4.i686 bind-libs-9.8.2-0.17.rc1.el6_4.4.i686 bind-chroot-9.8.2-0.17.rc1.el6_4.4.i686 bind-sdb-9.8.2-0.17.rc1.el6_4.4.i686 bind-dyndb-ldap-2.3-2.el6_4.1.i686 bind-devel-9.8.2-0.17.rc1.el6_4.4.i686 若为安装: yum –y install bind*
配置bind主配置文件named.conf [iyunv@test ~]# vi/var/named/chroot/etc/named.conf
options { listen-on port 53 { any; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-transfer { any; }; allow-query { any; }; forwarders {61.139.2.69;}; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; view localhost_resolver { match-clients {any; }; match-destinations { any;}; recursion yes; include"/etc/named.rfc1912.zones"; };
[iyunv@test ~]# vi/var/named/chroot/etc/named.rfc1912.zones
zone "text.com" IN { type master; file "test.com.zone"; allow-update { none; }; };
zone "1.168.192.in-addr.arpa" IN{ type master; file "192.168.1.zone"; allow-update { none; }; };
[iyunv@test named]# vi/var/named/chroot/var/named/test.com.zone
$TTL 86400 @ IN SOA www.test.com root.test.com. ( 42 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D) ; minimum
IN NS @ IN A 127.0.0.1 IN AAAA ::1 @ IN NS www.test.com. @ IN MX 10 mail.test.com. ftp IN A 192.168.1.11 www IN A 192.168.1.11 mail IN A 192.168.1.11
[iyunv@test named]# vi/var/named/chroot/var/named/192.168.1.zone
$TTL 86400 @ IN SOA www.test.com root.test.com ( 42 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D) ; minimum
IN NS @ IN A 127.0.0.1 IN AAAA ::1 @ IN NS www.test.com. @ IN MX 10 mail.test.com. 11 IN PTR ftp.test.com. 11 IN PTR www.test.com. 11 IN PTR mail.test.com. ----------------------------------------------------------------------------------------- 1)创建key [iyunv@server named]# rndc-confgen -r /dev/urandom -a wrote key file "/etc/rndc.key" 2)更改权限 [iyunv@server named]# rndc status rndc: connect failed: 127.0.0.1#953:connection refused [iyunv@server named]# cat /etc/rndc.key key "rndc-key" { algorithm hmac-md5; secret "MEARtiTMJzFfRwBKlY5lpQ=="; }; [iyunv@server named]# ls -l /etc/rndc.key -rw------- 1 root root 77 May 1 06:57 /etc/rndc.key [iyunv@server named]# chown root:named/etc/rndc.key [iyunv@server named]# chmod 644/etc/rndc.key [iyunv@server named]# rndc status rndc: connect failed: 127.0.0.1#953:connection refused
重启named服务! 3)验证 [iyunv@server named]# /etc/init.d/namedrestart Stopping named: . [ OK ] Starting named: [ OK ]
[iyunv@server named]# /etc/init.d/namedstatus version: 9.7.3-P3-RedHat-9.7.3-8.P3.el6 CPUs found: 1 worker threads: 1 number of zones: 21 debug level: 0 xfers running: 0 xfers deferred: 0 soa queries in progress: 0 query logging is OFF recursive clients: 0/0/1000 tcp clients: 0/100 server is up and running named (pid 4224) is running...
| 
QQ群⑧:
窥视卡
雷达卡
发表于 2013-7-29 08:57:19
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡