Bind 9.5安装入门指南
Bind 9.5安装入门指南
安装环境:CentOs5.6 64位 bind-9.5
[root@yznvm1 bind-9.5.2-P4]# uname -a
Linux yznvm1 2.6.18-238.el5 #1 SMP Thu Jan 13 15:51:15 EST 2011 x86_64 x86_64 x86_64 GNU/Linux
卸载原来系统自带的bind服务
[root@yznvm1 ~]# rpm -qa|grep bind
bind-utils-9.3.6-16.P1.el5
bind-libs-9.3.6-16.P1.el5
ypbind-1.19-12.el5
[root@yznvm1 ~]# rpm -e --nodeps bind*
error: package bind* is not installed
一、安装BIND
1、准备工作
下载稳定的BIND服务器进行安装,下载地址:http://www.isc.org/
[root@yznvm1 yzn]# wget http://ftp.isc.org/isc/bind9/9.5.2-P4/bind-9.5.2-P4.tar.gz
2 、编译安装BIND
[root@yznvm1 yzn]# tar xzvf bind-9.5.2-P4.tar.gz
[root@yznvm1 yzn]# cd bind-9.5.2-P4
[root@yznvm1 bind-9.5.2-P4]# ./configure --prefix=/usr/local/bind9 --disable-openssl-version-check
[root@yznvm1 bind-9.5.2-P4]# make;make install
[root@yznvm1 bind-9.5.2-P4]# /usr/local/bind9/sbin/named
[root@yznvm1 bind-9.5.2-P4]# ps aux |grep named | grep -v grep
没有输出
请确认syslog 启动
[root@yznvm1 bind-9.5.2-P4]# yum search syslog
[root@yznvm1 bind-9.5.2-P4]# yum install syslog
[root@yznvm1 bind-9.5.2-P4]# service syslog restart
[root@yznvm1 bind-9.5.2-P4]# tail -f /var/log/messages
Dec 28 12:19:23 yznvm1 named[10381]: none:0: open: /usr/local/bind9/etc/named.conf: file not found
配置BIND
二、配置根服务器
1、修改配置文件
[root@yznvm1 bind-9.5.2-P4]# vi /usr/local/bind9/etc/named.conf
options {
directory "/data/bind9";
};
zone "." {
type hint;
file "root.zone";
};
2、建立工作目录
[root@yznvm1 etc]# mkdir /data/bind9
3、查询根DNS服务器
[root@yznvm1 etc]# dig -t NS .
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -t NS .
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41418
;; flags: qr rd ra; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;. IN NS
;; ANSWER SECTION:
. 5 IN NS e.root-servers.net.
. 5 IN NS l.root-servers.net.
. 5 IN NS j.root-servers.net.
. 5 IN NS h.root-servers.net.
. 5 IN NS g.root-servers.net.
. 5 IN NS m.root-servers.net.
. 5 IN NS c.root-servers.net.
. 5 IN NS f.root-servers.net.
. 5 IN NS i.root-servers.net.
. 5 IN NS k.root-servers.net.
. 5 IN NS b.root-servers.net.
. 5 IN NS d.root-servers.net.
. 5 IN NS a.root-servers.net.
;; ADDITIONAL SECTION:
e.root-servers.net. 5 IN A 192.203.230.10
;; Query time: 26 msec
;; SERVER: 192.168.32.2#53(192.168.32.2)
;; WHEN: Wed Dec 28 12:36:42 2011
;; MSG SIZE rcvd: 257
4、将根服务器记录加入到/etc/resolv.conf文件中
[root@yznvm1 etc]#echo "nameserver 192.203.230.10" >/etc/resolv.conf
5、将根服务器的信息导入到/data/bind9/root.zone文件中
[root@yznvm1 etc]# dig -t NS . >/data/bind9/root.zone
[root@yznvm1 etc]# cat /data/bind9/root.zone
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -t NS .
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1781
;; flags: qr rd ra; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 2
;; QUESTION SECTION:
;. IN NS
;; ANSWER SECTION:
. 5 IN NS l.root-servers.net.
. 5 IN NS j.root-servers.net.
. 5 IN NS h.root-servers.net.
. 5 IN NS g.root-servers.net.
. 5 IN NS m.root-servers.net.
. 5 IN NS c.root-servers.net.
. 5 IN NS f.root-servers.net.
. 5 IN NS i.root-servers.net.
. 5 IN NS k.root-servers.net.
. 5 IN NS b.root-servers.net.
. 5 IN NS d.root-servers.net.
. 5 IN NS a.root-servers.net.
. 5 IN NS e.root-servers.net.
;; ADDITIONAL SECTION:
l.root-servers.net. 5 IN A 199.7.83.42
e.root-servers.net. 5 IN A 192.203.230.10
;; Query time: 8 msec
;; SERVER: 192.168.32.2#53(192.168.32.2)
;; WHEN: Wed Dec 28 12:40:53 2011
;; MSG SIZE rcvd: 273
6、配置rndc
添加rndf串
[root@yznvm1 bind-9.5.2-P4]# /usr/local/bind9/sbin/rndc-confgen >/usr/local/bind9/etc/rndc.conf
[root@yznvm1 bind-9.5.2-P4]# cat /usr/local/bind9/etc/rndc.conf
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "s4c1gghNiBxa9aeSZ7RlrQ==";
};
options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
# End of rndc.conf
# Use with the following in named.conf, adjusting the allow list as needed:
# key "rndc-key" {
# algorithm hmac-md5;
# secret "s4c1gghNiBxa9aeSZ7RlrQ==";
# };
#
# controls {
# inet 127.0.0.1 port 953
# allow { 127.0.0.1; } keys { "rndc-key"; };
# };
# End of named.conf
7、将rndc中的部分记录导入到/usr/local/bind9/etc/named.conf文件中,并修改/usr/local/bind9/etc/named.conf,将导入的配置前面的注释去掉。
[root@yznvm1 bind-9.5.2-P4]# cd /usr/local/bind9/etc
[root@yznvm1 etc]# tail -10 rndc.conf | head -9 | sed s/#\ //g >> named.conf
8、检查并重新启动named服务,查看日志文件并检查rndc访问状态
[root@yznvm1 etc]# killall named
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc status
rndc: connect failed: 127.0.0.1#953: connection refused
[root@yznvm1 etc]# /usr/local/bind9/sbin/named
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc status
version: 9.5.2-P4
number of zones: 12
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is OFF
recursive clients: 0/0/1000
tcp clients: 0/100
server is up and running
9、修改/etc/resolv.conf,并使用host命令测试
[root@yznvm1 etc]# echo "nameserver 127.0.0.1" > /etc/resolv.conf
[root@yznvm1 etc]# host http://www.lvping.com/
http://www.lvping.com/ is an alias for http://www.lvping.ccgslb.com.cn/.
http://www.lvping.ccgslb.com.cn/ is an alias for http://www.lvping.tel.ccgslb.com.cn/.
http://www.lvping.tel.ccgslb.com.cn/ has address 114.80.124.122
三、配置localhost区域
(一)、配置localhost的正向区域
1、修改/usr/local/bind9/etc/named.conf,插入如下内容
[root@yznvm1 etc]# vi named.conf
zone "localhost" {
type master;
file "localhost.zone";
};
2、配置/data/bind9/localhost.zone
[root@yznvm1 etc]# vi /data/bind9/localhost.zone
$ORIGIN localhost.
@ IN SOA localhost. root.localhost. (
2011122600 ; Serial (YYMMDDSN)
1800 ; Refresh
300 ; Retry
3600 ; Expiry
300 ) ; Minimum
@ IN NS localhost.
@ IN A 127.0.0.1
3、检查配置文件
[root@yznvm1 etc]# /usr/local/bind9/sbin/named-checkconf/usr/local/bind9/sbin/named-checkconf
[root@yznvm1 etc]# /usr/local/bind9/sbin/named-checkzone -q localhost /data/bind9/localhost.zone
4、测试
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc reload
[root@yznvm1 etc]# tail -f /var/log/messages
[root@yznvm1 etc]# host localhost
localhost has address 127.0.0.1
[root@yznvm1 etc]# dig localhost
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> localhost
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40173
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;localhost. IN A
;; ANSWER SECTION:
localhost. 86400 IN A 127.0.0.1
;; AUTHORITY SECTION:
localhost. 86400 IN NS localhost.
;; Query time: 9 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Dec 28 13:53:13 2011
;; MSG SIZE rcvd: 57
[root@yznvm1 etc]# dig -t NS localhost
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -t NS localhost
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38630
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;localhost. IN NS
;; ANSWER SECTION:
localhost. 86400 IN NS localhost.
;; ADDITIONAL SECTION:
localhost. 86400 IN A 127.0.0.1
;; Query time: 3 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Dec 28 13:54:52 2011
;; MSG SIZE rcvd: 57
[root@yznvm1 etc]# dig -t A localhost
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -t A localhost
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29725
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;localhost. IN A
;; ANSWER SECTION:
localhost. 86400 IN A 127.0.0.1
;; AUTHORITY SECTION:
localhost. 86400 IN NS localhost.
;; Query time: 7 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Dec 28 13:55:31 2011
;; MSG SIZE rcvd: 57
如果受防火墙影响可能rndc无法使用,可以调整防火墙设置,或者调试的时候关闭防火墙。
service iptables statu
service iptables stop
(二)、配置127.0.0的反向区域
1、修改/usr/local/bind9/etc/named.conf,添加如下内容
zone "0.0.127.in-addr.arpa" {
type master;
file "localhost.rzone";
};
2、创建/data/bind9/127.0.0.zone,添加如下内容
[root@yznvm1 etc]# vi /data/bind9/localhost.rzone
$TTL 86400
@ IN SOA localhost. root.localhost. (
2011122800 ; Serial (YYMMDDSN)
30M ; Refresh
5M ; Retry
1H ; Expire
5M ) ; Minimum
@ IN NS localhost.
1 IN PTR localhost.
3、重新启动rndc访问,并测试
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc reload
[root@yznvm1 etc]# tail /var/log/messages
[root@yznvm1 etc]# host 127.0.0.1
1.0.0.127.in-addr.arpa domain name pointer localhost.
[root@yznvm1 etc]# dig -x 127.0.0.1
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -x 127.0.0.1
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23750
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;1.0.0.127.in-addr.arpa. IN PTR
;; ANSWER SECTION:
1.0.0.127.in-addr.arpa. 86400 IN PTR localhost.
;; AUTHORITY SECTION:
0.0.127.in-addr.arpa. 86400 IN NS localhost.
;; ADDITIONAL SECTION:
localhost. 86400 IN A 127.0.0.1
;; Query time: 3 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Dec 28 14:08:41 2011
;; MSG SIZE rcvd: 93
四、配置yanzn.com区域
(一)、配置yanzn.com区域
1、配置/usr/local/bind9/etc/named.conf文件,加入如下内容
zone "yanzn.com" IN {
type master;
file "yanzn.com.zone";
allow-update { none; };
};
2、配置/data/bind9/yanzn.com.zone
@ IN SOA yanzn.com. webmaster.yanzn.com. (
2011122800 ; Serial (YYMMDDSN)
1800 ; Refresh
300 ; Retry
3600 ; Expiry
300 ) ; Minimum
@ IN NS ns1.yanzn.com.
@ IN A 192.168.32.128
ns1 IN A 192.168.32.128
www IN A 192.168.32.128
web IN CNAME www
3、重新启动rndc服务进行测试
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc reload
[root@yznvm1 etc]# host -t A yanzn.com
yanzn.com has address 192.168.32.128
[root@yznvm1 etc]# host -t NS yanzn.com
yanzn.com name server ns1.yanzn.com.
(二)、增加的反向区域
1、修改/usr/local/bind9/etc/named.conf,添加如下内容
zone "32.168.192.in-addr.arpa" IN {
type master;
file "yanzn.com.rzone";
allow-update { none; };
};
2、创建/data/bind9/yanzn.com.rzone,添加如下内容
[root@yznvm1 etc]# cat /data/bind9/yanzn.com.rzone
$TTL 600
@ IN SOA yanzn.com. webmaster.yanzn.com. (
2006083100 ; Serial (YYMMDDSN)
1800 ; Refresh
300 ; Retry
3600 ; Expire
300 ) ; Minimum
@ IN NS ns1.yanzn.com.
128 IN PTR http://www.yanzn.com/.
3、重新启动rndc访问,并测试
[root@yznvm1 etc]# /usr/local/bind9/sbin/rndc reload
[root@yznvm1 etc]# host 192.168.32.128
128.32.168.192.in-addr.arpa domain name pointer http://www.yanzn.com/.
[root@yznvm1 etc]# dig -x 192.168.32.128
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> -x 192.168.32.128
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44864
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;128.32.168.192.in-addr.arpa. IN PTR
;; ANSWER SECTION:
128.32.168.192.in-addr.arpa. 600 IN PTR http://www.yanzn.com/.
;; AUTHORITY SECTION:
32.168.192.in-addr.arpa. 600 IN NS ns1.yanzn.com.
;; ADDITIONAL SECTION:
ns1.yanzn.com. 600 IN A 192.168.32.128
;; Query time: 2 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Dec 28 14:50:30 2011
;; MSG SIZE rcvd: 106
至此初步的yanzn.com也配置完毕。
转载于:https://www.cnblogs.com/yanzhenan/archive/2011/12/28/2304831.html
Bind 9.5安装入门指南相关推荐
- fish shell使用及安装入门指南
fish是一个用户友好的命令行外壳程序,全称Friendly Interactive Shell. fish功能简介 语法高亮:输入命令时,你会发现输入错误的命令显示为红色,正确的命令为淡紫色,参数提 ...
- Netfiex Conductor安装入门指南以及切换为mysql数据源
通过git下载源码到本地 git@github.com:Netflix/conductor.git. 由于Conductor依赖于gradle编译,我们可以通过两种方式安装gradle. 通过命令gr ...
- python入门指南-Python 30分钟入门指南
Part0:环境安装 Windows 访问Python官网,下载并安装. 使用交互式界面,在开始菜单打开Python3 IDLE即可. 您也可以新建一个filename.py的文件,写上Python脚 ...
- Spark快速入门指南 – Spark安装与基础使用
本文转载自Spark快速入门指南 – Spark安装与基础使用 Apache Spark 是一个新兴的大数据处理通用引擎,提供了分布式的内存抽象.Spark 正如其名,最大的特点就是快(Lightni ...
- macos安装vscode_VS Code 代码编辑器入门指南:核心组件与概念
作者:思考问题的熊 写在前面 如果当电脑只能装一个软件还需要尽量不影响日常学习工作时,不知道你的选择会是什么.我把这个看似「荒诞」的问题理解为「All-in-One」的升级版拷问. 这个问题陪伴了我很 ...
- python入门指南txt-pip安装和使用入门指南
pip新手要看的入门教程,包含pip安装和pip 各个参数使用的具体用法, 熟练使用pip可以更方便的管Python第三方库. pip是什么 不免俗套的要先介绍一下,pip是Python的第三方包( ...
- html怎样使用ui套件,weui框架组件小白入门指南:如何安装使用weui.js?
本博客不欢迎:各种镜像采集行为,请尊重知识产权法律法规.大家都是程序员,不要闹得不开心. 苏南大叔在本文中说说腾讯的weui这个前端框架的基本使用方法.这款框架已经问世有几年的时间了,因为其可以把微信 ...
- Swoole入门指南:PHP7安装Swoole详细教程(一) 1
这里不在使用apache做为web server.该用nginx + php-fpm,性能更强大,配置更方便.并且为了跟上php的步伐,也使用了比较新的php版本 [x] centos7 [x] ph ...
- RedHat Linux 9.0的安装+下载+入门指南(图文并茂)
转自: http://www.360doc.com/myindex.aspx?login=1 [系统]RedHat Linux 9.0的安装+下载+入门指南(图文并茂) 2007-09-2 ...
最新文章
- 将0移到最后,在原数组操作,并且不能改变源数据顺序(JS编程)
- Java对象容器——集合Set
- 投资人赞上海某寺很靠谱 饿了么曾获10万元天使投资
- P2766-最长不下降子序列问题【网络流,dp】
- java学习(102):arraylist的查询和删除
- LeetCode 网易-1. 分割环(前缀和 + 哈希)
- 蓝桥杯 BASIC-13 基础练习 数列排序
- 磊科nw336+linux驱动程序,磊科NW336无线网卡驱动程序
- plc编程及应用_西门子PLC编程及应用
- mysql函数大全之数字函数
- 兄弟扫描机无法连接计算机,可以网络打印, 但是不能进行网络扫描。
- 从程序员角度看“上帝“玩游戏
- Windows下网络共享文件夹挂载到wsl系统
- Flowable入门系列文章35 - Activity解读 11
- 7.4 FIN及其ACK的接收
- 跟随自己,让自己的灵魂做主
- 野火STM32资源免费下载(视频,资料、手册、书籍等免费下载),知识传递
- (华师)CSMA技术的P—坚持算法规则是什么?
- C语言中#if的使用
- 1.5数学基础-概率计算
热门文章
- final,finally,finaliz的区别(Java)
- 解决goldengate复制进程应用缓慢一例
- Oracle中RAISE异常详解
- ReactNative开发笔记(持续更新...)
- MainService流程
- Mozilla Prism v0.9 For Windows/Linux/Mac
- ASP.NET 2.0便捷数据访问
- 用vhdl实现4位加减法计数器_频率计数器的使用方法介绍
- java局域网 端口扫描_java 如何端口扫描出ssh端口?
- flask 项目基本框架的搭建