我已经创build了一个简单的绑定DNS服务器来承载testing实验室中的3个区域。
我想要正向和反向分辨率,但我无法validation相反的configuration。
我在这里错过了一些关键概念,还是仅仅是一个错字?
提前谢谢了!
我使用以下作为我的/etc/named.conf
// // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { listen-on port 53 { 127.0.0.1; 192.168.99.2; 192.168.100.2; 192.168.101.2; }; ### Master DNS IP ### listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { localhost; 192.168.99.0/24; 192.168.100.0/24; 192.168.101.0/24; }; ### IP Range ### recursion yes; dnssec-enable no; dnssec-validation no; // dnssec-lookaside auto; /* Path to ISC DLV key */ bindkeys-file "/etc/named.iscdlv.key"; managed-keys-directory "/var/named/dynamic"; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "dhcp.local" IN { type master; file "forward.dhcp.local"; allow-update { none; }; }; zone "bath.local" IN { type master; file "forward.bath.local"; allow-update { none; }; }; zone "munich.local" IN { type master; file "forward.munich.local"; allow-update { none; }; }; zone"99.168.192.in-addr.arpa" IN { type master; file "reverse.dhcp.local"; allow-update { none; }; }; zone"100.168.192.in-addr.arpa" IN { type master; file "reverse.bath.local"; allow-update { none; }; }; zone"101.168.192.in-addr.arpa" IN { type master; file "reverse.munich.local"; allow-update { none; }; }; include "/etc/named.rfc1912.zones"; include "/etc/named.root.key";
这依赖于/var/named/[forward.*|reverse.*] 3个正向和3个反向文件
/var/named ├── data ├── dynamic ├── forward.bath.local ├── forward.dhcp.local ├── forward.munich.local ├── named.ca ├── named.empty ├── named.localhost ├── named.loopback ├── reverse.bath.local ├── reverse.dhcp.local ├── reverse.munich.local └── slaves
挑一个(bath.local),正向configuration是
[root@dhcp named]# cat forward.bath.local $TTL 86400 @ IN SOA dns.bath.local root.bath.local. ( 2011071001 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) @ IN NS dns.bath.local. @ IN A 192.168.100.2 dns IN A 192.168.100.2 router IN A 192.168.100.1
反向configuration是[root @ dhcp named]#cat reverse.bath.local
$TTL 86400 @ IN SOA dns.bath.local. root.bath.local. ( 2011071001 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) 100.168.192.in-addr.arpa. IN NS dns.bath.local. 2 IN PTR dns.bath.local.
当我validation转发configuration一切正常
[root@dhcp named]# named-checkzone tsvtest /var/named/forward.bath.local zone tsvtest/IN: loaded serial 2011071001 OK
但相反失败
[root@dhcp named]# named-checkzone tsvtest /var/named/reverse.bath.local /var/named/reverse.bath.local:9: ignoring out-of-zone data (100.168.192.in-addr.arpa) zone tsvtest/IN: has no NS records zone tsvtest/IN: not loaded due to errors.
有任何想法吗 ?
1)(通用)Fwd区域,第2行dns.bath.local需要在dns.bath.local之后的一个句点。
2)删除第9行
======反向区域1)BIND希望反向文件被命名为100.168.192.in-addr.arpa BINDD反向文件中指定的域是IP子网的名称而不是正向域的名称。 你的启示文件已经注意到了bath.local,以及与192.168.100.x有关的一切
2)第9行 – 从行首开始删除100.168.192.in-addr.arpa。
3)请张贴您的/etc/named.conf,以便我们可以检查那是什么。