zoukankan      html  css  js  c++  java

  • CentOS 7安装chroot Named

    一 安装相关软件

    yum install bind-chroot bind -y

    二 复制生成文件

    cp -R /usr/share/doc/bind-*/sample/var/named/* /var/named/chroot/var/named/

    touch /var/named/chroot/var/named/data/cache_dump.db

    touch /var/named/chroot/var/named/data/named_stats.txt

    touch /var/named/chroot/var/named/data/named_mem_stats.txt

    touch /var/named/chroot/var/named/data/named.run

    mkdir /var/named/chroot/var/named/dynamic

    touch /var/named/chroot/var/named/dynamic/managed-keys.bind

    chmod -R 777 /var/named/chroot/var/named/data

    chmod -R 777 /var/named/chroot/var/named/dynamic

    cp -p /etc/named.conf /var/named/chroot/etc/named.conf

    三配置named.conf

    vim /var/named/chroot/etc/named.conf 

    options {
        listen-on port 53 { any; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
#       recursing-file  "/var/named/data/named.recursing";
#       secroots-file   "/var/named/data/named.secroots";
        allow-query     { any; };
        recursion yes;
        dnssec-enable yes;
        dnssec-validation yes;

        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";

        managed-keys-directory "/var/named/dynamic";

        pid-file "/run/named/named.pid";
        session-keyfile "/run/named/session.key";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type hint;
        file "named.ca";
};

zone "weiheng.ink" {
    type master;
    file "weiheng.local.zone";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

    四 配置解析文件 

    vim /var/named/chroot/var/named/weiheng.local.zone

     

    $TTL 86400
    @ IN SOA weiheng.local. hostmaster.weiheng.local. (
      2       ; Serial
      604800     ; Refresh
      86400     ; Retry
      2419200    ; Expire
      604800 )   ; Minimum
    ;         Define the nameservers and the mail servers
    @ IN NS ns1.weiheng.local.
    @ IN A 127.0.0.1

    

vm1              IN      A       10.1.1.2
vm2              IN      A       10.1.1.3
vm3              IN      A       10.1.1.4
vm4              IN      A       10.1.1.5
vm5              IN      A       10.1.1.6
ns1              IN      A       10.1.1.6
ns2              IN      A       10.1.1.5

    五 启动服务

    iptables -F

    /usr/libexec/setup-named-chroot.sh /var/named/chroot on

    systemctl start named-chroot

    systemctl enable named-chroot

    systemctl status named-chroot
  • 相关阅读:
    使用自制事务进行异常信息的记录:Autonomous transactionslog
    backup methodsexp and imp
    一个 SQL 同时验证帐号是否存在、密码是否正确
    使用存储过程进行分页:page by Procedure
    推荐一款类似于editplus的文本编辑工具:note++
    myeclipse8.5反编译插件的安装使用jdgui插件
    [转]JavaMail的使用之邮件发送 详解
    Thinking in java中内部类的例子。
    [转]tomcat6.0下的log4j日志文件配置过程
    127.X.X.X開頭的網路都是特殊用途的嗎!?
  • 原文地址:https://www.cnblogs.com/hengwei/p/10122120.html
Copyright © 2011-2022 走看看