看了N多的DNS配置，我的还是不对。

由 longdas 在 07-07-2003 21:51 发表:

看了N多的DNS配置，我的还是不对。

dns 问题。

/etc/named.conf

========================

options {

directory "/var/named/";

};

zone "." IN {

type hint;

file "named.ca";

};

zone "localhost" IN {

type master;

file "localhost.zone";

};

zone "0.0.127.in-addr.arpa" IN {

type master;

file "named.local";

};

zone "whedu.net" IN {

type master;

file "db.example1";

};

zone "0.168.192.in-addr.arpa" IN {

type master;

file "db.192.168.0";

};

/var/named/db.example1

========================

$TTL 86400

@ IN SOA dns.whedu.net. Root.dns.whedu.net. (

2003070401 1H 1M 1W 1D )

IN NS dns.whedu.net.

IN A 211.45.90.254

server1 IN A 211.45.90.254

station1 IN A 211.45.90.1

www IN A 211.45.90.254

ftp IN A 211.45.90.254

pop IN A 211.45.90.254

www1 IN CNAME dns.whedu.net.

ftp1 IN CNAME dns.whedu.net.

@ IN MX 10 dns.whedu.net.

dns.whedu.net IN MX 10 dns.whedu.net.

db.192.168.0

========================

$TTL 86400

@ IN SOA dns.whedu.net. root.dns.whedu.net. (2003070401 1H 1M 1W 1D )

IN NS dns.whedu.net.

63.90.45.211.in-addr.arpa IN PTR dns.whedu.net.

63.90.45.211.in-addr.arpa IN PTR dns1.whedu.net.

=================================================

可惜，用不起来。

[root@localhost root]# service named restart

停运 named：

启动 named： [ 确定 ]

[root@localhost root]# tail -n 20 /var/log/messages

Jul 7 21:56:45 localhost named[13000]: shutting down: flushing changes

Jul 7 21:56:45 localhost named[13000]: stopping command channel on 127.0.0.1#953

Jul 7 21:56:45 localhost named[13000]: no longer listening on 127.0.0.1#53

Jul 7 21:56:45 localhost named[13000]: no longer listening on 211.45.90.63#53

Jul 7 21:56:45 localhost named[12994]: exiting

Jul 7 21:56:45 localhost named[13023]: starting BIND 9.2.1 -u named

Jul 7 21:56:45 localhost named[13023]: using 4 CPUs

Jul 7 21:56:45 localhost named[13029]: loading configuration from '/etc/named.conf'

Jul 7 21:56:45 localhost named[13029]: no IPv6 interfaces found

Jul 7 21:56:45 localhost named[13029]: listening on IPv4 interface lo, 127.0.0.1#53

Jul 7 21:56:45 localhost named[13029]: listening on IPv4 interface eth2, 211.45.90.63#53

Jul 7 21:56:45 localhost named[13029]: command channel listening on 127.0.0.1#953

Jul 7 21:56:45 localhost named[13029]: zone 0.0.127.in-addr.arpa/IN: has no NS records

Jul 7 21:56:45 localhost named[13029]: db.192.168.0:5: file does not end with newline

Jul 7 21:56:45 localhost named[13029]: zone 0.168.192.in-addr.arpa/IN: has no NS records

Jul 7 21:56:45 localhost named[13029]: zone localhost/IN: loaded serial 42

Jul 7 21:56:45 localhost named[13029]: db.example1:14: file does not end with newline

Jul 7 21:56:45 localhost named[13029]: zone whedu.net/IN: has no NS records

Jul 7 21:56:45 localhost named[13029]: running

Jul 7 21:56:45 localhost 7月 7 21:56:45 named: named 启动 succeeded

redhat 7.3/8.0/9/0

HP lh 6000 server

Dell 2650 Server

由 7dehao 在 07-07-2003 22:27 发表:

你的db.192.168.0有问题，

“Jul 7 21:56:45 localhost named[13029]: zone 0.0.127.in-addr.arpa/IN: has no NS records”

改成

$TTL 86400

@ IN SOA dns.whedu.net. root.dns.whedu.net. (2003070401 1H 1M 1W 1D )

IN NS dns.whedu.net.

1 IN PTR localhost.

提问时，请你附上相关硬件的型号或牌子，linux发行版、软件的名称和版本。

提问前，如果有可能的话，你最需要做的就是把出错信息和相关的日志信息贴上来。

当然，我们十分期望你能浏览一下置顶贴里的内容。

由 wangjunhai 在 07-07-2003 23:44 发表:

我看，你在配db.example1与db.192.168.0的时候写的不够完整，能不能跟我这个一样参考配一下：

http://www.linuxsir.com/bbs/showthr...;threadid=50689

我那个只在file "1.168.192.conf"后漏了个“；”

书山有路勤为径，

学海无涯苦作舟。

宝剑锋从磨砺出，

梅花香自苦寒来。

路漫漫其修远兮，

吾将上下而求索。

由 longdas 在 07-08-2003 09:06 发表:

试过了，不行。

可能bind9.2与bind8配置不一样吧。。我再找找帮助。

redhat 7.3/8.0/9/0

HP lh 6000 server

Dell 2650 Server

由 longdas 在 07-08-2003 09:07 发表:

http://www.bind.com/bind/conf.html

看看这个。

redhat 7.3/8.0/9/0

HP lh 6000 server

Dell 2650 Server

由 longdas 在 07-08-2003 10:05 发表:

终于又找到一个不错的named.conf 例子。大家参考！

我已经测试通过了。

7. A real domain example

Where we list some real zone files

Users have suggested that I include a real example of a working domain as well as the tutorial example.

I use this example with permission from David Bullock of LAND-5. These files were current 24th of September 1996, and were then edited to fit BIND 8 restrictions and use extensions by me. So, what you see here differs a bit from what you find if you query LAND-5's name servers now.

7.1 /etc/named.conf (or /var/named/named.conf)

Here we find master zone sections for the two reverse zones needed: the 127.0.0 net, as well as LAND-5's 206.6.177 subnet, and a primary line for land-5's forward zone land-5.com. Also note that instead of stuffing the files in a directory called pz, as I do in this HOWTO, he puts them in a directory called zone.

// Boot file for LAND-5 name server

options {

directory "/var/named";

};

controls {

inet 127.0.0.1 allow { localhost; } keys { rndc_key; };

};

key "rndc_key" {

algorithm hmac-md5;

secret "c3Ryb25nIGVub3VnaCBmb3IgYSBtYW4gYnV0IG1hZGUgZm9yIGEgd29tYW4K";

};

zone "." {

type hint;

file "root.hints";

};

zone "0.0.127.in-addr.arpa" {

type master;

file "zone/127.0.0";

};

zone "land-5.com" {

type master;

file "zone/land-5.com";

};

zone "177.6.206.in-addr.arpa" {

type master;

file "zone/206.6.177";

};

If you put this in your named.conf file to play with PLEASE put ``notify no;'' in the zone sections for the two land-5 zones so as to avoid accidents.

7.2 /var/named/root.hints

Keep in mind that this file is dynamic, and the one listed here is old. You're better off using a new one as explained earlier.

; <<>> DiG 8.1 <<>> @A.ROOT-SERVERS.NET.

; (1 server found)

;; res options: init recurs defnam dnsrch

;; got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10

;; flags: qr aa rd; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 13

;; QUERY SECTION:

;; ., type = NS, class = IN

;; ANSWER SECTION:

. 6D IN NS G.ROOT-SERVERS.NET.

. 6D IN NS J.ROOT-SERVERS.NET.

. 6D IN NS K.ROOT-SERVERS.NET.

. 6D IN NS L.ROOT-SERVERS.NET.

. 6D IN NS M.ROOT-SERVERS.NET.

. 6D IN NS A.ROOT-SERVERS.NET.

. 6D IN NS H.ROOT-SERVERS.NET.

. 6D IN NS B.ROOT-SERVERS.NET.

. 6D IN NS C.ROOT-SERVERS.NET.

. 6D IN NS D.ROOT-SERVERS.NET.

. 6D IN NS E.ROOT-SERVERS.NET.

. 6D IN NS I.ROOT-SERVERS.NET.

. 6D IN NS F.ROOT-SERVERS.NET.

;; ADDITIONAL SECTION:

G.ROOT-SERVERS.NET. 5w6d16h IN A 192.112.36.4

J.ROOT-SERVERS.NET. 5w6d16h IN A 198.41.0.10

K.ROOT-SERVERS.NET. 5w6d16h IN A 193.0.14.129

L.ROOT-SERVERS.NET. 5w6d16h IN A 198.32.64.12

M.ROOT-SERVERS.NET. 5w6d16h IN A 202.12.27.33

A.ROOT-SERVERS.NET. 5w6d16h IN A 198.41.0.4

H.ROOT-SERVERS.NET. 5w6d16h IN A 128.63.2.53

B.ROOT-SERVERS.NET. 5w6d16h IN A 128.9.0.107

C.ROOT-SERVERS.NET. 5w6d16h IN A 192.33.4.12

D.ROOT-SERVERS.NET. 5w6d16h IN A 128.8.10.90

E.ROOT-SERVERS.NET. 5w6d16h IN A 192.203.230.10

I.ROOT-SERVERS.NET. 5w6d16h IN A 192.36.148.17

F.ROOT-SERVERS.NET. 5w6d16h IN A 192.5.5.241

;; Total query time: 215 msec

;; FROM: roke.uio.no to SERVER: A.ROOT-SERVERS.NET. 198.41.0.4

;; WHEN: Sun Feb 15 01:22:51 1998

;; MSG SIZE sent: 17 rcvd: 436

7.3 /var/named/zone/127.0.0

Just the basics, the obligatory SOA record, and a record that maps 127.0.0.1 to localhost. Both are required. No more should be in this file. It will probably never need to be updated, unless your nameserver or hostmaster address changes.

$TTL 3D

@ IN SOA land-5.com. root.land-5.com. (

199609203 ; Serial

28800 ; Refresh

7200 ; Retry

604800 ; Expire

; Minimum TTL

NS land-5.com.

1 PTR localhost.

If you look at a random BIND installation you will probably find that the $TTL line is missing as it is here. It was not used before, and only version 8.2 of BIND has started to warn about its absence. BIND 9 requires the $TTL.

7.4 /var/named/zone/land-5.com

Here we see the mandatory SOA record, the needed NS records. We can see that he has a secondary name server at ns2.psi.net. This is as it should be, always have a off site secondary server as backup. We can also see that he has a master host called land-5 which takes care of many of the different Internet services, and that he's done it with CNAMEs (a alternative is using A records).

As you see from the SOA record, the zone file originates at land-5.com, the contact person is [email protected] . hostmaster is another oft used address for the contact person. The serial number is in the customary yyyymmdd format with todays serial number appended; this is probably the sixth version of zone file on the 20th of September 1996. Remember that the serial number must increase monotonically, here there is only one digit for todays serial#, so after 9 edits he has to wait until tomorrow before he can edit the file again. Consider using two digits.

$TTL 3D

@ IN SOA land-5.com. root.land-5.com. (

199609206 ; serial, todays date + todays serial #

8H ; refresh, seconds

2H ; retry, seconds

4W ; expire, seconds

1D ) ; minimum, seconds

NS land-5.com.

NS ns2.psi.net.

MX 10 land-5.com. ; Primary Mail Exchanger

TXT "LAND-5 Corporation"

localhost A 127.0.0.1

router A 206.6.177.1

land-5.com. A 206.6.177.2

ns A 206.6.177.3

www A 207.159.141.192

ftp CNAME land-5.com.

mail CNAME land-5.com.

news CNAME land-5.com.

funn A 206.6.177.2

;

; Workstations

;

ws-177200 A 206.6.177.200