|
|
| ・BIND (name server) named.conf 設定 |
[fedora@fedoracore4 ~]$ su -
[root@fedoracore4 ~]# ls -all /etc/ |grep named.conf
lrwxrwxrwx 1 root root 32 6月 15 22:09 named.conf -> /var/named/chroot/etc/named.conf /etc/named.conf は/var/named/chroot/etc/named.confのシンボリックリンク
[root@fedoracore4 ~]# vi /var/named/chroot/etc/named.conf |
named.conf の内容が表示されたらそのまま /port と入力して下さい。(portを検索)
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
allow-query{
127.0.0.1;
192.168.1.0/24;
};
forwarders{
192.168.1.2;
XXX.XXX.XXX.XXXX; プロバイダー等のDNS(自己解決できなかった場合の問い合わせ先
YYY.YYY.YYY.YYY;
}; 追記
};
<Esc>でコマンドモードに戻り、<Shift>+<g>で行末へ移動
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
zone "fedoracore4.com" IN {
type master;
file "fedoracore4.com.zone"; ※1
allow-update { none; };
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "1.168.192.in-addr.arapa.zone"; ※2
allow-update { none; };
}; 追記
include "/etc/rndc.key";
:wq で保存
|
[root@fedoracore4 ~]# cat /var/named/chroot/etc/named.conf |grep directory zone fileの置き場所を確認
directory "/var/named";
[root@fedoracore4 ~]# ls -all /var/named/ デフォルトで設置しているファイルの設置方法を確認
合計 68
drwxr-x--- 5 root named 4096 6月 15 22:09 .
drwxr-xr-x 24 root root 4096 6月 15 22:09 ..
drwxrwx--- 5 root named 4096 6月 15 22:09 chroot
drwxrwx--- 2 named named 4096 5月 18 11:39 data
lrwxrwxrwx 1 root root 44 6月 15 22:09 localdomain.zone -> /var/named/chroot/var/named/localdomain.zone
lrwxrwxrwx 1 root root 42 6月 15 22:09 localhost.zone -> /var/named/chroot/var/named/localhost.zone
lrwxrwxrwx 1 root root 43 6月 15 22:09 named.broadcast -> /var/named/chroot/var/named/named.broadcast
lrwxrwxrwx 1 root root 36 6月 15 22:09 named.ca -> /var/named/chroot/var/named/named.ca
lrwxrwxrwx 1 root root 43 6月 15 22:09 named.ip6.local -> /var/named/chroot/var/named/named.ip6.local
lrwxrwxrwx 1 root root 39 6月 15 22:09 named.local -> /var/named/chroot/var/named/named.local
lrwxrwxrwx 1 root root 38 6月 15 22:09 named.zero -> /var/named/chroot/var/named/named.zero
drwxrwx--- 2 named named 4096 5月 18 11:39 slaves
/var/named/chroot/var/named 下に設置し、/var/named 下にシンボリックリンクを張れということ。
[root@fedoracore4 ~]# vi /var/named/chroot/var/named/fedoracore4.com.zone ※1で指定したファイル名で作成
$TTL 86400
@ IN SOA fedoracore4.com. root.fedoracore4.com.(
2004031901 ;
Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS fedoracore4.com.
IN MX 10 fedoracore4.com.
@ IN A 192.168.1.1
[root@fedoracore4 ~]# vi /var/named/chroot/var/named/1.168.192.in-addr.arapa.zone ※2で指定したファイル名で作成
$TTL 86400
@ IN SOA fedoracore4.com. root.fedoracore4.com.(
2004031901 ;
Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS fedoracore4.com.
IN MX 10 fedoracore4.com.
1 IN PTR fedoracore4.com.
[root@fedoracore4 ~]# ln -s /var/named/chroot/var/named/fedoracore4.com.zone
/var/named/fedoracore4.com.zone シンボリクリンク作成
[root@fedoracore4 ~]# ln -s /var/named/chroot/var/named/1.168.192.in-addr.arapa.zone
/var/named
/1.168.192.in-addr.arapa.zone シンボリクリンク作成
[root@fedoracore4 ~]# ls -all /var/named/ シンボリックリンク確認
合計 68
drwxr-x--- 5 root named 4096 6月 21 22:26 .
drwxr-xr-x 24 root root 4096 6月 15 22:09 ..
lrwxrwxrwx 1 root root 51 6月 21 22:26 1.168.192.in-addr.arapa.zone -> /var/named/chroot/var/named/1.168.192.in-addr.arapa.zone OK
drwxrwx--- 5 root named 4096 6月 15 22:09 chroot
drwxrwx--- 2 named named 4096 5月 18 11:39 data
lrwxrwxrwx 1 root root 43 6月 21 22:26 fedoracore4.com.zone -> /var/named/chroot/var/named/fedoracore4.com.zone OK
lrwxrwxrwx 1 root root 44 6月 15 22:09 localdomain.zone -> /var/named/chroot/var/named/localdomain.zone
lrwxrwxrwx 1 root root 42 6月 15 22:09 localhost.zone -> /var/named/chroot/var/named/localhost.zone
lrwxrwxrwx 1 root root 43 6月 15 22:09 named.broadcast -> /var/named/chroot/var/named/named.broadcast
lrwxrwxrwx 1 root root 36 6月 15 22:09 named.ca -> /var/named/chroot/var/named/named.ca
lrwxrwxrwx 1 root root 43 6月 15 22:09 named.ip6.local -> /var/named/chroot/var/named/named.ip6.local
lrwxrwxrwx 1 root root 39 6月 15 22:09 named.local -> /var/named/chroot/var/named/named.local
lrwxrwxrwx 1 root root 38 6月 15 22:09 named.zero -> /var/named/chroot/var/named/named.zero
drwxrwx--- 2 named named 4096 5月 18 11:39 slaves
|
| ・BIND (name server) 起動・設定確認・起動設定 |
[root@fedoracore4 ~]# /etc/init.d/named start BIND起動
named を起動中: [ OK ]
[root@fedoracore4 ~]# dig fedoracore4.com 正引きテスト
; <<>> DiG 9.3.1 <<>> fedoracore4.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13653
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;fedoracore4.com. IN A
;; ANSWER SECTION:
fedoracore4.com. 86400 IN A 192.168.1.1 fedoracore4.com = 192.168.1.1 とキチンと紐解いている。
;; AUTHORITY SECTION:
fedoracore4.com. 86400 IN NS fedoracore4.com.
;; Query time: 7 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
;; WHEN: Wed Jun 22 23:13:08 2005
;; MSG SIZE rcvd: 63
[root@fedoracore4 ~]# dig -x 192.168.1.1 逆引きテスト
; <<>> DiG 9.3.1 <<>> -x 192.168.1.1
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61935
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;1.1.168.192.in-addr.arpa. IN PTR
;; ANSWER SECTION:
1.1.168.192.in-addr.arpa. 86400 IN PTR fedoracore4.com. キチンとfedoracore4.comの値を返してきている
;; AUTHORITY SECTION:
1.168.192.in-addr.arpa. 86400 IN NS fedoracore4.com.
;; ADDITIONAL SECTION:
fedoracore4.com. 86400 IN A 192.168.1.1
;; Query time: 7 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
;; WHEN: Wed Jun 22 23:23:48 2005
;; MSG SIZE rcvd: 105
[root@fedoracore4 ~]# cat chkcofig_def.txt |grep named BINDの起動設定確認
named 0:off 1:off 2:off 3:off 4:off 5:off 6:off
初期値では自動起動しない
[root@fedoracore4 ~]# chkconfig named on BINDの起動設定
[root@fedoracore4 ~]# chkconfig --list named BINDの起動設定確認
named 0:off 1:off 2:on 3:on 4:on 5:on 6:off
[root@fedoracore4 ~]# |
Postfix設定へ
 1杯19円!簡単便利なドリップコーヒー、インスタントにさようなら。
|
