[root@mail named]# more /var/named/chroot/etc/named.conf
//
// named.caching-nameserver.conf
//
// Provided by Red Hat caching-nameserver package to configure the
// ISC BIND named( DNS server as a caching only nameserver
// (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
// DO NOT EDIT THIS FILE - use system-config-bind or an editor
// to create named.conf - edits to this file will be lost on
// caching-nameserver package upgrade.
//
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
// Those options should be used carefully because they disable port
// randomization
// query-source port 53;
// query-source-v6 port 53;
allow-query { any; };
allow-query-cache { localhost; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view localhost_resolver {
match-clients { any; };
match-destinations { any; };
recursion yes;
include "/etc/named.rfc1912.zones";
};
[root@mail named]#
[root@mail named]# more /etc/named.rfc1912.zones
// named.rfc1912.zones:
//
// Provided by Red Hat caching-nameserver package
//
// ISC BIND named zone configuration for zones recommended by
// RFC 1912 section 4.1 : localhost TLDs and address zones
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
zone "." IN {
type hint;
file "named.ca";
};
zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN {
type master;
file "named.ip6.local";
allow-update { none; };
};
zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
zone "azioncorp.cn" IN {
type master;
file "azioncorp.cn.zone";
allow-update { none;};
};
[root@mail named]# more /var/named/chroot/var/named/azioncorp.cn.zone
$TTL 86400
@ IN SOA dns.azioncorp.cn. postmaster.azioncorp.cn. (
42 ; serial (d. adams)
2H ; refresh
15M ; retry
1W ; expiry
1H ) ; minimum
azioncorp.cn. IN NS dns.azioncorp.cn.
azioncorp.cn. IN NS dns26.hichina.com.
dns IN A 211.148.7.45
azioncorp.cn. IN MX 10 mail.azioncorp.cn.
mail IN A 211.148.7.45
ftp IN A 211.148.7.45
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ftp.azioncorp.cn +trace
;; global options: printcmd
. 221789 IN NS e.root-servers.net.
. 221789 IN NS f.root-servers.net.
. 221789 IN NS g.root-servers.net.
. 221789 IN NS h.root-servers.net.
. 221789 IN NS i.root-servers.net.
. 221789 IN NS j.root-servers.net.
. 221789 IN NS k.root-servers.net.
. 221789 IN NS l.root-servers.net.
. 221789 IN NS m.root-servers.net.
. 221789 IN NS a.root-servers.net.
. 221789 IN NS b.root-servers.net.
. 221789 IN NS c.root-servers.net.
. 221789 IN NS d.root-servers.net.
;; Received 416 bytes from 211.148.7.45#53(211.148.7.45) in 15 ms
cn. 172800 IN NS b.dns.cn.
cn. 172800 IN NS c.dns.cn.
cn. 172800 IN NS e.dns.cn.
cn. 172800 IN NS ns.cernet.net.
cn. 172800 IN NS d.dns.cn.
cn. 172800 IN NS a.dns.cn.
;; Received 297 bytes from 192.203.230.10#53(e.root-servers.net) in 425 ms
azioncorp.cn. 21600 IN NS dns.azioncorp.cn.
azioncorp.cn. 21600 IN NS dns26.hichina.com.
;; Received 99 bytes from 203.119.26.1#53(b.dns.cn) in 236 ms
cn. 129286 IN NS e.dns.cn.
cn. 129286 IN NS ns.cernet.net.
cn. 129286 IN NS a.dns.cn.
cn. 129286 IN NS b.dns.cn.
cn. 129286 IN NS c.dns.cn.
cn. 129286 IN NS d.dns.cn.
;; Received 209 bytes from 211.148.7.45#53(dns.azioncorp.cn) in 8 ms
azioncorp.cn. 21600 IN NS dns26.hichina.com.
azioncorp.cn. 21600 IN NS dns.azioncorp.cn.
;; Received 99 bytes from 203.119.29.1#53(e.dns.cn) in 36 ms
azioncorp.cn. 3600 IN SOA dns.azioncorp.cn. hostmaster.hic hina.com. 2010081502 10800 2000 691200 50000
;; Received 96 bytes from 218.30.103.177#53(dns26.hichina.com) in 27 ms作者: llzqq 时间: 2010-08-16 08:49
先看看log,确定named启动时没遇到错误。然后dig @your-dns your-domain 进行测试。最后公网dig your-domain作者: 楚国布衣 时间: 2010-08-16 16:32
[root@mail ~]# rndc status
number of zones: 7
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is OFF
recursive clients: 0/1000
tcp clients: 0/100
server is up and running
还没开启,我开启了再看看。作者: 楚国布衣 时间: 2010-08-17 21:48
[root@mail ~]# named -gc /var/named/chroot/etc/named.conf
29-Jan-2010 05:44:09.888 starting BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 -gc /var/named/chroot/etc/named.conf
29-Jan-2010 05:44:09.890 adjusted limit on open files from 1024 to 1048576
29-Jan-2010 05:44:09.890 found 1 CPU, using 1 worker thread
29-Jan-2010 05:44:09.896 using up to 4096 sockets
29-Jan-2010 05:44:09.933 loading configuration from '/var/named/chroot/etc/named.conf'
29-Jan-2010 05:44:09.941 using default UDP/IPv4 port range: [1024, 65535]
29-Jan-2010 05:44:09.945 using default UDP/IPv6 port range: [1024, 65535]
29-Jan-2010 05:44:09.955 listening on IPv6 interface lo, ::1#53
29-Jan-2010 05:44:09.960 binding TCP socket: address in use
29-Jan-2010 05:44:09.961 listening on IPv4 interface lo, 127.0.0.1#53
29-Jan-2010 05:44:09.963 binding TCP socket: address in use
29-Jan-2010 05:44:09.965 listening on IPv4 interface eth0, 192.168.0.244#53
29-Jan-2010 05:44:09.966 binding TCP socket: address in use
29-Jan-2010 05:44:09.980 couldn't add command channel 127.0.0.1#953: address in use
29-Jan-2010 05:44:09.983 couldn't add command channel ::1#953: address in use
29-Jan-2010 05:44:09.984 ignoring config file logging statement due to -g option
29-Jan-2010 05:44:09.985 couldn't open pid file '/var/run/named/named.pid': Permission denied
29-Jan-2010 05:44:09.986 exiting (due to early fatal error)作者: ruochen 时间: 2010-08-21 14:28
couldn't open pid file '/var/run/named/named.pid': Permission denied
DNS server as a caching only nameserver