Webfan
02.06.01, 20:26
Hallo, ich habe bei mir mit Bind8 einen eigenen DNS aufgesetzt und würde mich freuen, wenn mal einer meine config checken könnte.
Also, das ding sollte die dns-anfragen chachen und die anfragen direkt an die "root"-dns (heißt doch so, oder) stellen!
/etc/named.conf
/* sample configuration file for BIND 8.1 or later
* should be installed as /etc/named.conf
*
* Author: Florian La Roche
*/
#
# overall options of the server
#
options {
directory "/var/named";
# the default is to fail, if the master file is not correct
check-names master warn;
pid-file "/var/run/named.pid";
statistics-interval 0;
cleaning-interval 720;
datasize default;
stacksize default;
coresize default;
files unlimited;
recursion yes;
multiple-cnames yes; // if yes, then a name my have more
// than one CNAME RR. This use
// is non-standard and is not
// recommended, but it is available
// because previous releases supported
// it and it was used by large sites
// for load balancing.
# the default is to ask the forwarders and if they fail
# try to find the answer yourself, this will only ask the forwarders
#forward only;
# list of DNS servers to ask
#forwarders {
# 192.168.0.10;
# 192.168.0.20;
# 192.168.0.30;
#};
# the default is to listen on port 53 on all available interfaces
# you can also give a detailed list:
#listen-on { 5.6.7.8; };
#listen-on port 1234 { !1.2.3.4; 1.2/16; };
dump-file "/var/named/dns";
};
#
# do not be verbose about these problems...
#
logging {
# category default { null; };
category lame-servers { null; };
category cname { null; };
};
#
# predefined access control lists (acl):
# "any" allows all hosts
# "none" denies all hosts
# "localhost" allows the IP adresses of all interfaces of the system
# "localnets" allows any host on a network of the local interfaces
#
# defining an additional ACL:
#acl can_download { 192.168.0.17; 192.168.0.18; };
#
# The server statement defines the characteristics to be associated with
# a remote name server.
#
# Marking a server as bogus will prevent queries to that server.
#server 192.168.0.128 { bogus yes; }
# If the other name server has also BIND 8.1 or newer installed, you
# can allow compacter zone transfers with this statement.
#server 192.168.0.128 { transfer-format many-answers; }
zone "." IN {
type hint;
file "root.hint";
};
#
# a master zone
#
#zone "isc.org" IN {
# type master;
# file "isc.org";
# # by default, any host can receive zone transfers
# #allow-transfer { any; };
# notify yes;
#};
#
# a slave zone
#
#zone "isc.org" IN {
# type slave;
# file "slave/db.isc.org";
# masters { 192.168.0.128; };
#};
zone "home.lan" {
type master;
file "/var/named/home.lan-dns";
};
zone "1.0.0.127.in-addr.arpa" {
type master;
file "/var/named/127.0.0.1.rev";
};
/var/named/home.lan-dns
$ttl 38400
home.lan. IN SOA ns.home.lan. admin.mrochen.de. (
2001060103
6H
3600
432000
38400 )
home.lan. IN NS ns.home.lan.
ns.home.lan. IN A 192.168.0.1
proxy.home.lan. IN A 192.168.0.1
server.home.lan. IN A 192.168.0.1
mail.home.lan. IN A 192.168.0.1
/var/named/127.0.0.1.rev
$ttl 38400
1.0.0.127.in-addr.arpa. IN SOA localhost. admin.mrochen.de. (
2001060105
10800
3600
432000
38400 )
1.0.0.127.in-addr.arpa. IN NS localhost.
1.0.0.127.in-addr.arpa. IN PTR server.home.lan.
DANKE!
Also, das ding sollte die dns-anfragen chachen und die anfragen direkt an die "root"-dns (heißt doch so, oder) stellen!
/etc/named.conf
/* sample configuration file for BIND 8.1 or later
* should be installed as /etc/named.conf
*
* Author: Florian La Roche
*/
#
# overall options of the server
#
options {
directory "/var/named";
# the default is to fail, if the master file is not correct
check-names master warn;
pid-file "/var/run/named.pid";
statistics-interval 0;
cleaning-interval 720;
datasize default;
stacksize default;
coresize default;
files unlimited;
recursion yes;
multiple-cnames yes; // if yes, then a name my have more
// than one CNAME RR. This use
// is non-standard and is not
// recommended, but it is available
// because previous releases supported
// it and it was used by large sites
// for load balancing.
# the default is to ask the forwarders and if they fail
# try to find the answer yourself, this will only ask the forwarders
#forward only;
# list of DNS servers to ask
#forwarders {
# 192.168.0.10;
# 192.168.0.20;
# 192.168.0.30;
#};
# the default is to listen on port 53 on all available interfaces
# you can also give a detailed list:
#listen-on { 5.6.7.8; };
#listen-on port 1234 { !1.2.3.4; 1.2/16; };
dump-file "/var/named/dns";
};
#
# do not be verbose about these problems...
#
logging {
# category default { null; };
category lame-servers { null; };
category cname { null; };
};
#
# predefined access control lists (acl):
# "any" allows all hosts
# "none" denies all hosts
# "localhost" allows the IP adresses of all interfaces of the system
# "localnets" allows any host on a network of the local interfaces
#
# defining an additional ACL:
#acl can_download { 192.168.0.17; 192.168.0.18; };
#
# The server statement defines the characteristics to be associated with
# a remote name server.
#
# Marking a server as bogus will prevent queries to that server.
#server 192.168.0.128 { bogus yes; }
# If the other name server has also BIND 8.1 or newer installed, you
# can allow compacter zone transfers with this statement.
#server 192.168.0.128 { transfer-format many-answers; }
zone "." IN {
type hint;
file "root.hint";
};
#
# a master zone
#
#zone "isc.org" IN {
# type master;
# file "isc.org";
# # by default, any host can receive zone transfers
# #allow-transfer { any; };
# notify yes;
#};
#
# a slave zone
#
#zone "isc.org" IN {
# type slave;
# file "slave/db.isc.org";
# masters { 192.168.0.128; };
#};
zone "home.lan" {
type master;
file "/var/named/home.lan-dns";
};
zone "1.0.0.127.in-addr.arpa" {
type master;
file "/var/named/127.0.0.1.rev";
};
/var/named/home.lan-dns
$ttl 38400
home.lan. IN SOA ns.home.lan. admin.mrochen.de. (
2001060103
6H
3600
432000
38400 )
home.lan. IN NS ns.home.lan.
ns.home.lan. IN A 192.168.0.1
proxy.home.lan. IN A 192.168.0.1
server.home.lan. IN A 192.168.0.1
mail.home.lan. IN A 192.168.0.1
/var/named/127.0.0.1.rev
$ttl 38400
1.0.0.127.in-addr.arpa. IN SOA localhost. admin.mrochen.de. (
2001060105
10800
3600
432000
38400 )
1.0.0.127.in-addr.arpa. IN NS localhost.
1.0.0.127.in-addr.arpa. IN PTR server.home.lan.
DANKE!