一.BIND 安装
./configure --prefix=/usr/local/bind
make
make install
二.配置
目录:/usr/local/bind/etc/named.conf
acl allow_ip{192.168.1.154;
192.168.1.163;
};
acl intranet{192.168.1.154;};
acl internet{!192.168.1.154;any;};
key "rndc-key" {
algorithm hmac-md5;
secret "hQkOpTgg5NsKdpgmnMf/iw==";
};
key dns{
algorithm hmac-md5;
secret "XACxrlZ4yTm7jmN0jzf8RA=="; //dnssec-keygen 生成
};
server 192.168.1.154{ //TSIG 加密
keys{dns;};
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
options {
directory "/var/named";
pid-file "named.pid";
// forward only;
// forwarders {
// 168.95.1.1;
// 139.175.10.20;
// };
};
view "lan"{
match-clients {"intranet";};
zone "."IN{
type master;
file "named.root";
};
zone "localhost" IN{
type master;
file "named.localhost";
};
zone "0.0.127.in-addr.arpa"IN{
type master;
file "named.127.0.0";
};
zone "company.com" IN {
type master;
file "named.company.com";
allow-query{any;};
//allow-update {none;};
allow-transfer{key dns;};
};
zone "1.168.192.in-addr.arpa" IN{
type master;
file "named.192.168.1";
allow-update {none;};
allow-transfer{key dns;};
};
};
view "wan"{
match-clients {"internet";};
zone "."IN {
type master;
file "named.root";
};
zone "localhost"IN{
type master;
file "named.localhost";
};
zone "company.com" IN {
type master;
file "named.company.com.inter";
//allow-query{allow_ip;};
//allow-update {none;};
//allow-transfer{192.168.1.154;};
};
};
slave 配置
目录:/usr/local/bind/etc/named.conf
acl allow_ip{
192.168.1.163;
192.168.1.154;
};
key "rndc-key" {
algorithm hmac-md5;
secret "hQkOpTgg5NsKdpgmnMf/iw==";
};
key dns{
algorithm hmac-md5;
secret "XACxrlZ4yTm7jmN0jzf8RA==";
};
server 192.168.1.163{
keys{dns;};
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
options {
directory "/var/named";
pid-file "named.pid";
// forward only;
// forwarders {
// 168.95.1.1;
// 139.175.10.20;
// };
};
zone "." IN{
type hint;
file "named.root";
};
zone "localhost" IN{
type master;
file "named.localhost";
allow-update {none;};
};
zone "0.0.127.in-addr.arpa" IN{
type master;
file "named.127.0.0";
allow-update {none;};
};
zone "company.com" IN {
type slave;
file "named.company.com";
masters{192.168.1.163;};
};
zone "1.168.192.in-addr.arpa" IN{
type slave;
file "named.192.168.1";
masters{192.168.1.163;};
};
正反解设定
name.root (工具生成)
named.localhost
named.127.0.0
named.company.com(正解)
目录:/var/named/
内容:$TTL 600
@ IN SOA dns.company.com. root(2012031901 28800 14400 720000 86400)
@ IN NS dns.company.com.
dns IN A 192.168.1.154
www IN CNAME dns
ftp IN CNAME dns
named.192.168.1反解)
目录:/var/named/
内容: $TTL 600
@ IN SOA dns.company.com. root (2012031901 28800 14400 720000 86400)
@ IN NS dns.company.com.
1 IN PTR dns.company.com.
开启 master named & 后台运行 tail --20 /var/log/messages 观察
Mar 19 13:42:32 localhost named[4469]: managed-keys-zone/wan: loaded serial 0
Mar 19 13:42:32 localhost named[4469]: zone ./IN/lan: has 0 SOA records
Mar 19 13:42:32 localhost named[4469]: zone ./IN/lan: not loaded due to errors.
Mar 19 13:42:32 localhost named[4469]: zone 0.0.127.in-addr.arpa/IN/lan: loaded serial 2012031302
Mar 19 13:42:32 localhost named[4469]: zone 1.168.192.in-addr.arpa/IN/lan: loaded serial 2012031304
Mar 19 13:42:32 localhost named[4469]: zone company.com/IN/lan: loaded serial 2012031303
Mar 19 13:42:32 localhost named[4469]: zone ./IN/wan: has 0 SOA records
Mar 19 13:42:32 localhost named[4469]: zone ./IN/wan: not loaded due to errors.
Mar 19 13:42:32 localhost named[4469]: zone localhost/IN/lan: loaded serial 2012031301
Mar 19 13:42:32 localhost named[4469]: zone localhost/IN/wan: loaded serial 2012031301
Mar 19 13:42:32 localhost named[4469]: zone company.com/IN/wan: loaded serial 2012031901
Mar 19 13:42:32 localhost named[4469]: all zones loaded
Mar 19 13:42:32 localhost named[4469]: running
Mar 19 13:42:32 localhost named[4469]: zone company.com/IN/lan: sending notifies (serial 2012031303)
Mar 19 13:42:32 localhost named[4469]: zone 1.168.192.in-addr.arpa/IN/lan: sending notifies (serial 2012031304)
Mar 19 13:42:32 localhost named[4469]: zone company.com/IN/wan: sending notifies (serial 2012031901)
Mar 19 13:44:05 localhost named[4469]: client 192.168.1.154#39095/key dns (1.168.192.in-addr.arpa): view lan: transfer of '1.168.192.in-addr.arpa/IN': AXFR started: TSIG dns
Mar 19 13:44:05 localhost named[4469]: client 192.168.1.154#39095/key dns (1.168.192.in-addr.arpa): view lan: transfer of '1.168.192.in-addr.arpa/IN': AXFR ended
Mar 19 13:44:05 localhost named[4469]: client 192.168.1.154#50110/key dns (company.com): view lan: transfer of 'company.com/IN': AXFR started: TSIG dns
Mar 19 13:44:05 localhost named[4469]: client 192.168.1.154#50110/key dns (company.com): view lan: transfer of 'company.com/IN': AXFR ended
开启 slave named &
19-Mar-2012 13:42:52.103 command channel listening on 127.0.0.1#953
19-Mar-2012 13:42:52.103 ignoring config file logging statement due to -g option
19-Mar-2012 13:42:52.103 managed-keys-zone: loaded serial 0
19-Mar-2012 13:42:52.104 zone 0.0.127.in-addr.arpa/IN: loaded serial 2012031302
19-Mar-2012 13:42:52.106 zone localhost/IN: loaded serial 2012031301
19-Mar-2012 13:42:52.106 all zones loaded
19-Mar-2012 13:42:52.106 running
19-Mar-2012 13:42:52.124 zone 1.168.192.in-addr.arpa/IN: Transfer started.
19-Mar-2012 13:42:52.125 transfer of '1.168.192.in-addr.arpa/IN' from 192.168.1.163#53: connected using 192.168.1.154#39095
19-Mar-2012 13:42:52.138 zone 1.168.192.in-addr.arpa/IN: transferred serial 2012031304: TSIG 'dns'
19-Mar-2012 13:42:52.139 transfer of '1.168.192.in-addr.arpa/IN' from 192.168.1.163#53: Transfer completed: 1 messages, 6 records, 283 bytes, 0.013 secs (21769 bytes/sec)
19-Mar-2012 13:42:52.139 zone 1.168.192.in-addr.arpa/IN: sending notifies (serial 2012031304)
19-Mar-2012 13:42:52.609 zone company.com/IN: Transfer started.
19-Mar-2012 13:42:52.617 transfer of 'company.com/IN' from 192.168.1.163#53: connected using 192.168.1.154#50110
19-Mar-2012 13:42:52.619 zone company.com/IN: transferred serial 2012031303: TSIG 'dns'
19-Mar-2012 13:42:52.620 transfer of 'company.com/IN' from 192.168.1.163#53: Transfer completed: 1 messages, 10 records, 344 bytes, 0.002 secs (172000 bytes/sec)
19-Mar-2012 13:42:52.620 zone company.com/IN: sending notifies (serial 2012031303)
分享到:
相关推荐
主要介绍了C++ 11 std::function和std::bind使用详解,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友们下面随着小编来一起学习学习吧
今天小编就为大家分享一篇在vue中v-bind使用三目运算符绑定class的实例,具有很好的参考价值,希望对大家有所帮助。一起跟随小编过来看看吧
bind bind bind bind
主要介绍了angular.bind使用心得,以及个人对于angular.bind的理解,这里分享给大家,希望大家能够喜欢。
它使用bind9服务器,该服务器与最新的Ubuntu LTS发行版捆绑在一起。 如何建造 按照上的说明安装Docker。 运行./build以创建本地prehley/bind9映像prehley/bind9 。 如何使用 最常见的用例是向运行Docker的机器的...
js apply/call/caller/callee/bind使用方法与区别分析,需要的朋友可以参考下。
BIND9中文手册 BIND9中文手册 BIND9中文手册 BIND9中文手册 BIND9中文手册
c++11使用bind11的例子,对学习c++11 的新特性有所帮助。
首先apply和call是老生常谈的东西,但是对于bind,我愣了下,因为这个词是jquery中使用频率很高的一个方法,用来给DOM元素绑定事件用的。 为了搞清这个陌生又熟悉的bind,google一下,发现javascript1.8.5版本中...
目前智能DNS的实现主要有两种方式,一种是使用F5公司的BIG-IP GTM,另一种是使用bind自带的view来实现。BIG-IP GTM是一款商业产品,功能、性能极为强大,但是由于价格昂贵,中小型企业基本不会考虑花巨资购买此产品...
赠送jar包:jakarta.xml.bind-api-2.3.3.jar; 赠送原API文档:jakarta.xml.bind-api-2.3.3-javadoc.jar; 赠送源代码:jakarta.xml.bind-api-2.3.3-sources.jar; 赠送Maven依赖信息文件:jakarta.xml.bind-api-...
赠送jar包:jakarta.xml.bind-api-2.3.3.jar; 赠送原API文档:jakarta.xml.bind-api-2.3.3-javadoc.jar; 赠送源代码:jakarta.xml.bind-api-2.3.3-sources.jar; 赠送Maven依赖信息文件:jakarta.xml.bind-api-...
使用bind构建高可用智能DNS,超详细,不可错过
为页面标签使用bind绑定事件,使用jquery改变单行文本框的背景色
小例子。不使用bind函数,也可以建立udp套接字并与一个已知端口通信