This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
финальная_настройка_dns_сервера [2013/05/22 13:50] 127.0.0.1 внешнее изменение |
финальная_настройка_dns_сервера [2021/01/12 10:03] val |
||
---|---|---|---|
Line 2: | Line 2: | ||
===== Настройка сервиса ===== | ===== Настройка сервиса ===== | ||
- | ==== Ubuntu ==== | + | |
+ | ==== Debian/Ubuntu ==== | ||
<code> | <code> | ||
- | root@server:~# apt-get install bind9 | + | root@server:~# apt install bind9 |
root@server:~# cat /etc/bind/named.conf | root@server:~# cat /etc/bind/named.conf | ||
Line 16: | Line 17: | ||
172.16.1.254; | 172.16.1.254; | ||
}; | }; | ||
+ | empty-zones-enable no; | ||
}; | }; | ||
Line 26: | Line 28: | ||
zone "corpX.un" { | zone "corpX.un" { | ||
type master; | type master; | ||
- | file "/var/cache/bind/corpX.un"; | + | file "/etc/bind/corpX.un"; |
- | }; | + | |
- | + | ||
- | zone "X.168.192.IN-ADDR.ARPA" { | + | |
- | type master; | + | |
- | file "/var/cache/bind/corpX.rev"; | + | |
}; | }; | ||
}; | }; | ||
Line 38: | Line 35: | ||
zone "corpX.un" { | zone "corpX.un" { | ||
type master; | type master; | ||
- | file "/var/cache/bind/corpX.un.out"; | + | file "/etc/bind/corpX.un.out"; |
}; | }; | ||
}; | }; | ||
- | </code><code> | ||
- | root@server:~# cd /var/cache/bind/ | ||
- | </code> | ||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | [server:~] # cat /etc/namedb/named.conf | ||
- | </code><code> | ||
- | options { | ||
- | directory "/etc/namedb"; | ||
- | pid-file "/var/run/named/pid"; | ||
- | |||
- | allow-recursion { any; }; | ||
- | | ||
- | forwarders { | ||
- | 172.16.1.254; | ||
- | }; | ||
- | }; | ||
- | |||
- | view "inside" { | ||
- | match-clients { | ||
- | // 192.168.X/24; | ||
- | // 127/8; | ||
- | 0/0; | ||
- | }; | ||
- | zone "corpX.un" { | ||
- | type master; | ||
- | file "master/corpX.un"; | ||
- | }; | ||
- | |||
- | zone "X.168.192.IN-ADDR.ARPA" { | ||
- | type master; | ||
- | file "master/corpX.rev"; | ||
- | }; | ||
- | }; | ||
- | view "outside" { | ||
- | zone "corpX.un" { | ||
- | type master; | ||
- | file "master/corpX.un.out"; | ||
- | }; | ||
- | }; | ||
- | </code><code> | ||
- | [server:~] # cd /etc/namedb/master/ | ||
</code> | </code> | ||
- | ==== FreeBSD/Ubuntu ==== | + | ==== Настройка зоны corpX.un ==== |
<code> | <code> | ||
- | server# cat corpX.un | + | server# cat /etc/bind/corpX.un |
</code><code> | </code><code> | ||
$TTL 3h | $TTL 3h | ||
Line 96: | Line 51: | ||
;gate A 192.168.X.1 | ;gate A 192.168.X.1 | ||
;server A 192.168.X.10 | ;server A 192.168.X.10 | ||
- | ;lan A 192.168.100+X.10 | ||
;ftp CNAME server | ;ftp CNAME server | ||
Line 113: | Line 67: | ||
;gate A 192.168.X.254 | ;gate A 192.168.X.254 | ||
- | ;_sip._udp SRV 00 00 5060 server | + | ;_sip._udp SRV 0 0 5060 server |
+ | |||
+ | ;_xmpp-client._tcp SRV 0 0 5222 server | ||
;_kerberos._udp SRV 01 00 88 server | ;_kerberos._udp SRV 01 00 88 server | ||
;_kerberos._tcp SRV 01 00 88 server | ;_kerberos._tcp SRV 01 00 88 server | ||
;_kerberos TXT CORPX.UN | ;_kerberos TXT CORPX.UN | ||
- | </code><code> | ||
- | server# cat corpX.rev | ||
- | </code><code> | ||
- | $TTL 3h | ||
- | @ SOA ns.corpX.un. root.ns.corpX.un. 1 1d 12h 1w 3h | ||
- | NS ns.corpX.un. | ||
- | |||
- | |||
- | ;10 PTR server.corpX.un. | ||
- | ;1 PTR gate.corpX.un. | ||
- | |||
- | ;1 PTR router.corpX.un. | ||
- | ;3 PTR switch.corpX.un. | ||
- | |||
- | ;1 PTR node1.corpX.un. | ||
- | ;2 PTR node2.corpX.un. | ||
- | ;254 PTR gate.corpX.un. | ||
</code><code> | </code><code> | ||
server# cat corpX.un.out | server# cat corpX.un.out | ||
Line 151: | Line 90: | ||
;mail CNAME server | ;mail CNAME server | ||
- | ;_sip._udp SRV 00 00 5006 server | + | ;_sip._udp SRV 00 00 6050 server |
- | </code><code> | + | </code> |
+ | |||
+ | ===== Тестирование сервиса ===== | ||
+ | |||
+ | <code> | ||
server# named-checkconf -z | server# named-checkconf -z | ||
</code> | </code> | ||
Line 166: | Line 109: | ||
</code> | </code> | ||
<code> | <code> | ||
- | [server:~] # /etc/rc.d/named start | + | [server:~] # service named start |
</code> | </code> | ||
- | ==== Ubuntu ==== | + | ==== Debian/Ubuntu ==== |
<code> | <code> | ||
- | root@server:~# /etc/init.d/bind9 restart | + | root@server:~# service bind9 restart |
</code> | </code> | ||
===== Настройки DNS клиентов ===== | ===== Настройки DNS клиентов ===== | ||
<code> | <code> | ||
- | server# cat /etc/resolv.conf | + | # cat /etc/resolv.conf |
</code><code> | </code><code> | ||
- | domain corpX.un | + | search corpX.un |
- | nameserver 127.0.0.1 | + | |
- | </code><code> | + | |
- | gate# cat /etc/resolv.conf | + | |
- | </code><code> | + | |
- | domain corpX.un | + | |
- | nameserver 192.168.X.10 | + | |
- | </code><code> | + | |
- | lan# cat /etc/resolv.conf | + | |
- | </code><code> | + | |
- | domain corpX.un | + | |
nameserver 192.168.X.10 | nameserver 192.168.X.10 | ||
</code> | </code> | ||
- | ===== Проверки (на gate и server) ===== | + | ===== Проверки на ВСЕХ системах ===== |
<code> | <code> | ||
+ | # host ns | ||
+ | |||
# host ya.ru | # host ya.ru | ||
- | # host gate.corpX.un | ||
- | # host server.corpX.un | ||
- | # host 192.168.X.10 | ||
- | # host 192.168.X.1 | ||
</code> | </code> | ||
Line 205: | Line 136: | ||
==== Настройки DNS сервера домена un ==== | ==== Настройки DNS сервера домена un ==== | ||
<code> | <code> | ||
- | gate.isp.un# cat named.conf | + | ns.isp.un# cat named.conf |
</code><code> | </code><code> | ||
... | ... | ||
Line 213: | Line 144: | ||
}; | }; | ||
... | ... | ||
- | zone "corp1.un" IN {type forward;forwarders {192.1681.10;};}; | + | zone "corp1.un" IN {type forward;forwarders {192.168.1.10;};}; |
... | ... | ||
zone "corp12.un" IN {type forward;forwarders {192.168.12.10;};}; | zone "corp12.un" IN {type forward;forwarders {192.168.12.10;};}; | ||
Line 237: | Line 168: | ||
corp12 NS ns12 | corp12 NS ns12 | ||
... | ... | ||
+ | </code> | ||
+ | |||
+ | ==== FreeBSD ==== | ||
+ | <code> | ||
+ | [server:~] # pkg install bind99 | ||
+ | |||
+ | [server:~] # cat /usr/local/etc/namedb/named.conf | ||
+ | </code><code> | ||
+ | options { | ||
+ | directory "/usr/local/etc/namedb/working"; | ||
+ | pid-file "/var/run/named/pid"; | ||
+ | |||
+ | allow-recursion { any; }; | ||
+ | | ||
+ | forwarders { | ||
+ | 172.16.1.254; | ||
+ | }; | ||
+ | }; | ||
+ | |||
+ | view "inside" { | ||
+ | match-clients { | ||
+ | // 192.168.X/24; | ||
+ | // 127/8; | ||
+ | 0/0; | ||
+ | }; | ||
+ | zone "corpX.un" { | ||
+ | type master; | ||
+ | file "/usr/local/etc/namedb/master/corpX.un"; | ||
+ | }; | ||
+ | }; | ||
+ | |||
+ | view "outside" { | ||
+ | zone "corpX.un" { | ||
+ | type master; | ||
+ | file "/usr/local/etc/namedb/master/corpX.un.out"; | ||
+ | }; | ||
+ | }; | ||
</code> | </code> |