- 论坛徽章:
- 0
|
网络结构:
ADSL Route LAN IP 192.168.0.1
Linux Bind 服务器IP:
I P: 192.168.0.200/255.255.255.0
Gateway: 192.168.0.1
DNS 空:
PC
IP: 192.168.0.68/255.255.255.0
Gateway: 192.168.0.1
DNS: 192.168.0.200
故障现像:
1. PC 机能解析Bind服务器配置的本地域名
2. PC 机能解析Internet 上的域名, 能打开网站----> 我正想禁止, 不允许解析Internet 的域名.
配置文件如下:
[root@AS4U8 ~]# cat /etc/named.conf
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
};
include "/etc/rndc.key";
zone "gao.org" {
type master;
file "/var/named/gao.org.hosts";
};
zone "0.168.192.in-addr.arpa" {
type master;
file "/var/named/192.168.0.rev";
};
[root@AS4U8 ~]# cat /var/named/chroot/var/named/gao.org.hosts
$ttl 38400
gao.org. IN SOA AS4U8. gao.gao.com. (
1261189619
10800
3600
604800
38400 )
gao.org. IN NS AS4U8.
mail.gao.org. IN MX 5 192.168.0.100
dns.gao.org. IN A 192.168.0.200
www.gao.org. IN A 192.168.0.10
bbs.gao.org. IN A 192.168.0.100
[root@AS4U8 ~]# cat /var/named/chroot/var/named/192.168.0.rev
$ttl 38400
0.168.192.in-addr.arpa. IN SOA AS4U8. gao.gao.com. (
1261189627
10800
3600
604800
38400 )
0.168.192.in-addr.arpa. IN NS AS4U8.
200.0.168.192.in-addr.arpa. IN PTR dns.gao.org.
10.0.168.192.in-addr.arpa. IN PTR www.gao.org.
100.0.168.192.in-addr.arpa. IN PTR bbs.gao.org.
要如何配置, 才能只允许, 解析Linux DNS服务器的域名.
[ 本帖最后由 铁钉 于 2009-12-24 15:00 编辑 ] |
|
免费注册
发表于 2009-12-23 11:52
发表于 2009-12-23 13:01