(6)主服务器:
主服务器是给定域的所有信息的授权来源。它所装载的域信息来自于由域管理员所创建<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
并在本地维护的磁盘文件。
我们用"test.com"作为例子,我们需要五个基本配置文件:
/etc/named.conf
/var/named/named.ca
/var/named/named.local
/var/named/named.test.com
/var/named/named.172.16.0
(6.1)创建或修改/etc/named.conf:
// generated by named-bootconf.pl
options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
//
// a PM nameserver config
北京蓝色先锋软件有限公司版权所有违者必究
地址:北京市北京站东街甲10 号华安商务楼6 层
网址: www.bluepioneer.com.cn 邮编:100005 第8 页共14 页
电话:( 010 ) 65594026 传真:( 010 ) 65594064
//
zone '.' {
type hint;
file "named.ca";
};
zone '0.0.127.in-addr.arpa' {
type master;
file "named.local";
};
//there are our primary zone files
zone "test.com" {
type master;
file "named.test.com";
};
zone '0.16.172.in-addr.arpa' {
type master;
file 'named.172.16.0';
};
文件中的zone 'test.com'段是声明这是用于test.com 域的主服务器,用于该域的数据
从/var/named/named.test.com 文件中装载。
文件中的zone '0.16.172.in-addr.arpa'段是指向映射IP 地址172.16.0.* 到主机名的
文件。用于该域的数据从/var/named/named.172.16.0 文件中装载。
(6.2)创建或修改/var/named/named.local
@ IN SOA ns.test.com. root.ns.test.com. (
2000051500 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns.test.com.
1 IN PTR localhost.
注意:在修改named.*文件时每次存盘时要注意增加Serial 值,如使用绝对域名时千万别忘了后面带的'.'。
资源记录中的@字符转变为当前的域test.com,IN 表示资源记录使用TCP/IP 地址,SOA 表示管辖开始记录.ns.test.com. 是这个域的主DNS 服务器的标准名称,在之后是联系的
EMAIL 地址,其中@字符必须用'.'代替。
(6.3)创建或修改/var/named/named.test.com
@ IN SOA ns.test.com. root.ns.test.com. (
2000051500 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns.test.com.
ns A 172.16.0.1
ns2 A 172.16.0.11
www A 172.16.0.2
ftp CNAME www.test.com.
mail A 172.16.0.3
MX 10 mail.test.com.
(6.4)创建或修改/var/named/named.172.16.0
@ IN SOA ns.test.com. root.ns.test.com. (
2000051500 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns.test.com.
1 IN PTR ns.test.com.
11 IN PTR ns1.test.com.
2 IN PTR www.test.com.
3 IN PTR mail.test.com.
(7)辅服务器
辅服务器从主服务器上获取域信息的完整拷贝.也能以授权方式回答有关域的查询。我们用'test.com'作为例子,我们需要五个基本配置文件:
/etc/named.conf
/var/named/named.ca
/var/named/named.local
(7.1)创建或修改/etc/named.conf:
// generated by named-bootconf.pl
options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
//
// a SM nameserver config
//
zone '.' {
type hint;
file "named.ca";
};
zone '0.0.127.in-addr.arpa' {
type master;
file "named.local";
};
//there are our slave zone files
zone "test.com" {
type slave;
file "named.test.com";
masters {172.16.0.1;};
};
zone '0.16.172.in-addr.arpa' {
type slave;
file 'named.172.16.0';
masters {172.16.0.1;};
};
在文件中'masters {172.16.0.1;};'其中的IP 地址是你网络中主服务器的IP 地址。从主服务器上拷贝/var/named/named.ca 和/var/named/named.local 这两个文件。实际运行的服务器可以是以上其中一种配置,也能同时包含多种配置,但所有的系统都应该运行解析器。
