Bind Configuraatio

Hezze · Marraskuu 24, 2011, 1.38pm

Hei haluisin tiedustella että onko alla oleva konfiguraatio miten oikein tehty. Konfiguroin Bindin Webminin avulla tein master zonen ja reserven mielestäni…
Otan mielelläni vastaan jos se on ihan väärin, olisi mukava tietää miten konfiguraatiota olisi hyvä täydentää.

//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//

options {
listen-on port 53 {
192.168.0.190;
};
listen-on-v6 port 53 { ::1; };
directory “/var/named”;
dump-file “/var/named/data/cache_dump.db”;
statistics-file “/var/named/data/named_stats.txt”;
memstatistics-file “/var/named/data/named_mem_stats.txt”;
recursion yes;

dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;

/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";
multiple-cnames yes;
forwarders {
	192.168.0.1;
	};
forward first;

};

logging {
channel default_debug {
file “data/named.run”;
severity dynamic;
};
};

zone “.” IN {
type hint;
file “named.ca”;
};

include “/etc/named.rfc1912.zones”;
include “/etc/named.root.key”;

zone “linux.local” {
type master;
file “/var/named/linux.local.hosts”;
};
server 192.168.0.1 {
};
zone “0.0.168.192.in-addr.arpa” {
type forward;
forwarders {
192.168.0.190;
192.168.0.1;
};
forward first;
};
server 192.168.0.190 {
};

eero · Marraskuu 28, 2011, 2.01pm

[quote=“Hezze, post:1, topic:1375”]Hei haluisin tiedustella että onko alla oleva konfiguraatio miten oikein tehty. Konfiguroin Bindin Webminin avulla tein master zonen ja reserven mielestäni…
Otan mielelläni vastaan jos se on ihan väärin, olisi mukava tietää miten konfiguraatiota olisi hyvä täydentää.

//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//

options {
listen-on port 53 {
192.168.0.190;
};
listen-on-v6 port 53 { ::1; };
directory “/var/named”;
dump-file “/var/named/data/cache_dump.db”;
statistics-file “/var/named/data/named_stats.txt”;
memstatistics-file “/var/named/data/named_mem_stats.txt”;
recursion yes;

dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;

/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";
multiple-cnames yes;
forwarders {
	192.168.0.1;
	};
forward first;

};

logging {
channel default_debug {
file “data/named.run”;
severity dynamic;
};
};

zone “.” IN {
type hint;
file “named.ca”;
};

include “/etc/named.rfc1912.zones”;
include “/etc/named.root.key”;

zone “linux.local” {
type master;
file “/var/named/linux.local.hosts”;
};
server 192.168.0.1 {
};
zone “0.0.168.192.in-addr.arpa” {
type forward;
forwarders {
192.168.0.190;
192.168.0.1;
};
forward first;
};
server 192.168.0.190 {
};[/quote]

Hei,

Kerrotko vielä mihin aiot sitä käyttää? bindiä voi konffia aika moneen tarkoitukseen?

–
Eero