DNS的第二个域名无法解析
在部门新搭建了一个DNS 服务器,服务器里有两个域名,一个www.syvecertificate.net,一个www.mutliIP.net。第一个域名工作正常,我尝试添加了第二个域名www.mutliIP.net后,第一个工作是正常的,但是新加的www.mutliIP.net这个域名。
用nslookup命令查看第二个域名时,老是报no servers could be reached
# nslookup www.mutliIP.net
;; Got SERVFAIL reply from 127.0.0.1, trying next server
;; connection timed out; no servers could be reached
第二个域名反向IP到域名的解析输出如下:
# nslookup 10.68.143.154
;; Got SERVFAIL reply from 127.0.0.1, trying next server
;; Got SERVFAIL reply from 127.0.0.1, trying next server
Server: ::1
Address: ::1#53
** server can't find 154.143.68.10.in-addr.arpa: SERVFAIL
第二个域名正向域名到IP的解析输出如下:
# nslookup www.mutliIP.net
;; Got SERVFAIL reply from 127.0.0.1, trying next server
;; connection timed out; no servers could be reached
第一个域名的nslookup输出如下:
# nslookup 10.68.179.154
Server: 127.0.0.1
Address: 127.0.0.1#53
154.179.68.10.in-addr.arpa name = www.syvecertificate.net.
# nslookup www.syvecertificate.net
Server: 127.0.0.1
Address: 127.0.0.1#53
Name: www.syvecertificate.net
Address: 10.68.179.154
Name: www.syvecertificate.net
Address: 10.68.179.15
麻烦各位大侠帮忙查看下什么原因。具体的配置文件列出如下
name.conf文件的配置如下//
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
// Those options should be used carefully because they disable port
// randomization
// query-source port 53;
// query-source-v6 port 53;
allow-query { any; };
allow-query-cache { any; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view localhost_resolver {
match-clients { any; };
match-destinations { any; };
recursion yes;
include "/etc/named.rfc1912.zones";
};
named.rfc1912.zones 文件的配置如下:
zone "." IN {
type hint;
file "named.ca";
};
zone "syvecertificate.net" IN {
type master;
file "syvecertificate.net.zone";
allow-update { none; };
};
zone "179.68.10.in-addr.arpa" IN {
type master;
file "179.68.10.in-addr.local";
allow-update { none; };
};
zone "mutliIP.net" IN {
type master;
file "mutliIP.net.zone";
allow-update { none; };
};
zone "143.68.10.in-addr.arpa" IN {
type master;
file "143.68.10.in-addr.local";
allow-update { none; };
};
syvecertificate.net.zone 配置文件如下:
$TTL 86400
@ IN SOAlocalhost root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS syvecertificate.net
www IN A 10.68.179.154
www IN A 10.68.179.15
179.68.10.in-addr.local 的配置文件如下:
$TTL 86400
@ IN SOA localhost. root.localhost.(
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS syvecertificate.net.
154 IN PTR www.syvecertificate.net.
mutliIP.net.zone的配置文件如下:
$TTL 86400
@ IN SOAlocalhost root (
43 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS mutliIP.net.
www IN A 10.68.143.154
www IN A 10.68.143.156
143.68.10.in-addr.local 的配置文件如下:
$TTL 86400
@ IN SOA localhost. root.localhost.(
2013022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS mutliIP.net.
144 IN PTR www.mutliIP.net.
有没有大侠帮忙看下,对这块也是新手,不是很清楚哪里配置有问题 你的配置里面没有域的ns记录的A记录,修改下配置,将mutliIP.net.解析下 回复 3# chenyx
谢谢版主回复,后面我加了DNS 的log打印以后,找到原因了。
配置没有问题,就是文件的操作权限有问题。
第二个域的文件操作权限都是root/root,所以DNS 进程访问不了
谢谢楼上分享哦,dns确实接触得很少
页:
[1]