一,安裝BIND
1.下載BIND 也可以去本站下載 bind9 dns軟件���。
2.編譯安裝
復制代碼 代碼如下:
# tar zxvf bind-9.4.0.tar.gz
# cd bind-9.4.0
# ./configure sysconfdir=/etc //更多安裝選項 ./configure --help
# make
# make install
二,配置BIND
A.創建需要文件
1)./etc/named.conf
# vi /etc/named.conf 推出保存即可 或 touch /etc/named.conf
2)./etc/rndc.conf
# rndc-confgen > /etc/rndc.conf
B.創建目錄 /var/named
# mkdir /var/named
B.編輯/etc/named.conf 內容如下
復制代碼 代碼如下:
options {
directory "/var/named"; //表示默認的數據庫文件在/var/named中 若沒有需手動創建
// pid-file "/var/run/named/named.pid"; //運行的PID文件路徑,用于使用其他用戶啟動named
};
zone "." {//創建root域
type hint;
file "named.ca";
};
zone "localhost" { //創建 localhost域
type master;
file "named.local";
};
zone "example.com" { //創建 example.com域
type master;
file "example.com.zone";
};
zone "0.0.127.in-addr.arpa"{ //localhost的反解析
type master;
file "127.0.0.zone";
};
zone "100.168.192.in-addr.arpa" { //example.com的反向解析
type master;
file "192.168.100.zone";
};
//這段文件在/etc/rndc.conf 的尾部需拷貝才能使用 # tail +13 /etc/rndc.conf >>/etc/named.conf
# Use with the following in named.conf, adjusting the allow list as needed:
key "rndc-key" {
algorithm hmac-md5;
secret "HWM3L+e7LWDZJJ/dJEzQEw==";
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
# End of named.conf
D.在/var/named 中創建相應的數據文件 文件名由named.conf 中的file 參數制定
由named.conf可知有 named.ca, named.local, example.com.zone, 127.0.0.zone , 192.168.100.zone
1. named.ca
# dig -t NS . >/var/named/named.ca
2. named.local #vi /var/named/named.local 加入以下內容
復制代碼 代碼如下:
$TTL 1D
@ IN SOA localhost. root (
2007042801
1H
15M
1W
1D )
IN NS @
IN A 127.0.0.1
3. example.com.zone
復制代碼 代碼如下:
$TTL 1D
@ IN SOAexample.com.root (
2007042801
1H
15M
1W
1D )
IN NSns.example.com.
IN MX 10 mail.example.com.
IN A192.168.100.125
wwwIN A192.168.100.125
dbIN A192.168.100.124
nsIN A192.168.100.126
mailIN A192.168.100.251
shopIN A192.168.100.125
*.shopIN A192.168.100.124
newsIN CNAME www
3. 127.0.0.zone
$TTl 1D
@ INSOA @root.localhost. (
2007042801
1H
15M
1W
1D
)
IN NSlocalhost.
1IN PTRlocalhost.
4. 192.168.100.zone
$TTL 1D
@IN SOA@root.example.com. (
2007042801
1H
15M
1W
1D )
INNSexample.com.
125INPTRexample.com.
125INPTR
124INPTRdb.example.com.
126INPTRns.example.com.
251INPTRmail.example.com.
補充說明
a. named服務器的啟動問題
1. 啟動 #named //以root用戶啟動
#named -u named //以named用戶啟動,必須有這個用戶而且,named.pid的屬主是 named
2. 更改配置后如何重啟
# rndc reload
3.測試配置是否成功,可用 host, dig ,nslookup 判斷
