我在CentOS 5.5(在一个chrooted环境中)处理DNS的两个域上有相当简单的BIND设置。 我刚刚添加了第三个域,但它不起作用。 它必须是简单的东西。
这里是我的named.conf的摘录:
acl "trusted" { 192.168.100.0/24; localhost; }; options { directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named.stats"; zone-statistics yes; notify no; transfer-format many-answers; max-transfer-time-in 60; interface-interval 0; version "Not Available"; forwarders { 8.8.8.8; 8.8.4.4; }; allow-query { trusted; }; }; zone "." { type hint; file "named.root"; }; zone "localdomain." IN { type master; file "localdomain.zone"; }; zone "localhost" { type master; file "localhost.zone"; }; zone "example.corp" { type master; file "example.corp.zone"; }; zone "tudy.it" { type master; notify no; file "tudy.it.zone"; }; 这是我的tudy.it区域文件:
$TTL 3600 $ORIGIN tudy.it. @ 3600 SOA dns1.example.corp. sean.example.corp. ( 2011030306 ; serial YYYYMMDDnn 24h ; Refresh (24 hours) 2h ; Retry (2 hours) 1000h ; Expire (1000 hours) 2d ) ; Minimum (2 days) IN NS dns1.example.corp. @ IN A 192.168.100.40 s IN A 192.168.100.40
当我查询DNS服务器时,我没有得到答案:
$ dig @192.168.100.10 s.tudy.it ANY ; <<>> DiG 9.7.1-P2 <<>> @192.168.100.10 s.tudy.it ANY ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 64075 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;s.tudy.it. IN ANY ;; Query time: 0 msec ;; SERVER: 192.168.100.10#53(192.168.100.10) ;; WHEN: Thu Mar 3 15:16:32 2011 ;; MSG SIZE rcvd: 27
我确定我错过了一些明显的东西。 有什么build议么?
你是否在/var/log/messages查找了来自named的任何警告/错误? 你可以在前台开始命名,并增加debugging级别
/usr/sbin/named -f -d 3 -t /path/to/chroot
它会输出消息到标准输出。