DNS(named.conf)
介绍一下DNS的解析的核心文件。
bind 安装后需要手动创建named.conf,一般创建在/etc下
还需要手动创建的有域名解析文件:
例如文本中的:oralife.com.hosts
IP地址逆向解析文件
named.conf:
设置指向该服务器使用的域数据库信息的源,可以是本地文件或远程服务器
事例:
options {
directory “/etc/namedb”; 定义named从/etc/named目录下获取DNS数据文件,此目录用户可以自己创建和指定, 指定后所有的DNS数据文件都将放在此目录下
pid-file “/var/run/named/pid”;
dump-file “/var/dump/named_dump.db”;
statistics-file “/var/stats/named.stats”;
};
key “rndc-key” {
algorithm hmac-md5;
secret “”;
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { “rndc-key”; };
};
zone “.” {
type hint;
file “named.root”; 这一段指定named从named.cn文件中获取Internet的顶层‘’根‘’服务器地址
};
zone “oralife.com” {
type master;
file “master/oralife.com.hosts”;
notify yes;
allow-transfer { 172.16.10.8; };
also-notify { 172.16.10.8; };
};
这一段指定oralife.com的DNS数据文件存放在master/oralife.com.hosts文件中
可以看下oralife.com.hosts文件信息
$TTL 300
@ IN SOA ns1.oralife.com. webmaster.oralife.com. (
2007120401 ; serial
600 ; refresh
900 ; retry
432000 ; expire
300 ; default_ttl
)
IN NS ns1.oralife.com. NS是域名 服务器的意思
IN NS ns2.oralife.com.
IN MX 10 mx01.263xmail.com. 加入邮件服务器MX记录
IN A 172.16.10.10
ns1 IN A 172.16.10.7
ns2 IN A 172.16.10.8
www IN A 172.16.10.10 定义将www.oralife.com解析到172.16.10.10
image IN A 172.16.10.11 定义将image.oralife.com解析到172.16.10.11
bbs IN A 172.16.10.197 定义将bbs.oralife.com解析到172.16.10.197
named.root事例文件:
named.root
;
; $FreeBSD: src/etc/namedb/named.root,v 1.12 2004/06/06 11:46:29 schweikh Exp $
;
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the “cache . <file>”
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.root
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: Jan 29, 2004
; related version of root zone: 2004012900
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; operated by VeriSign, Inc.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
;
; operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; operated by ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
; End of File
