论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2009-02-06 00:50 |只看该作者 |倒序浏览

我安装的是企业版4的,想在上面安装bind-9.5.1-P1,实验了好多次都不成功,人快要崩溃了,求各位高手帮忙
.我的安装过程如下:
1.将源文件bind-9.5.1-P1.tar.gz置于/usr/local/目录下。
2.解压缩源文件bind-9.5.1-P1.tar.gz
  # tar -xzvf bind-9.5.1-P1.tar.gz
3.进入安装目录
  # cd bind-9.5.1-P1
4.配置、编译
  # ../configure --disable-ipv6
可能会出现以下提示：
Your OpenSSL crypto library may be vulnerable to
one or more of the the following known security
It is recommended that you upgrade to OpenSSL
      version 0.9.8d/0.9.7l (or greater).
      You can disable this warning by specifying:
--disable-openssl-version-check
按照提示中说的，使用以下的命令就行了：
./configure  –disable-openssl-version-check ----------------默认的安装是不是在/usr/local/sbin里??
然后运行以下命令：
make
make install

  # make

5.创建rndc.conf配置文件。
  # /usr/local/sbin/rndc-confgen > /etc/rndc.conf
  # cat /etc/rndc.conf

输出为：
   # Start of rndc.conf
   key "rndc-key" {
            algorithm hmac-md5;
            secret "y9xvvfQjdWv9f/Fo7wquBg==";
   };

   options {
            default-key "rndc-key";
            default-server 127.0.0.1;
            default-port 953;
   };
   # End of rndc.conf

   # Use with the following in named.conf, adjusting the allow list as needed:
   # key "rndc-key" {
   #    algorithm hmac-md5;
   #    secret "y9xvvfQjdWv9f/Fo7wquBg==";
   # };
   #
   # controls {
   #    inet 127.0.0.1 port 953
   #             allow { 127.0.0.1; } keys { "rndc-key"; };
   # };
   # End of named.conf

6.创建rndc.key文件。将rndc.conf文件中注释部分拷贝生成如下文件：
# vi /etc/rndc.key
   key "rndc-key" {
         algorithm hmac-md5;
         secret "y9xvvfQjdWv9f/Fo7wquBg==";
   };

   controls {
         inet 127.0.0.1 port 953
                  allow { 127.0.0.1; } keys { "rndc-key"; };
   };

7.创建named.conf配置文件。
# vi /etc/named.conf
   // generated by named-bootconf.pl

   options {
   directory "/var/named";
   /*
   * If there is a firewall between you and nameservers you want
   * to talk to, you might need to uncomment the query-source
   * directive below.  Previous versions of BIND always asked
   * questions using port 53, but BIND 8.1 uses an unprivileged
   * port by default.
   */
   // query-source address * port 53;
   };

   //
   // a caching only nameserver config
   //
   zone "." IN {
   type hint;
   file "named.root";
   };

   zone "localhost" IN {
   type master;
            file "localhost.zone";
            allow-update { none; };
   };

   zone "0.0.127.in-addr.arpa" IN {
            type master;
            file "named.local";
            allow-update { none; };
   };

   zone "ycmail.net" IN {
            type master;
            file "ycmail.net.zone";
            allow-update { none; };
   };

   zone "252.177.61.in-addr.arpa" IN {
            type master;
            file "named.61.177.252";
            allow-update { none; };
   };

   include "/etc/rndc.key";
创建named.conf配置文件。
# vi /etc/named.conf
   // generated by named-bootconf.pl

   options {
   directory "/var/named";
   /*
   * If there is a firewall between you and nameservers you want
   * to talk to, you might need to uncomment the query-source
   * directive below.  Previous versions of BIND always asked
   * questions using port 53, but BIND 8.1 uses an unprivileged
   * port by default.
   */
   // query-source address * port 53;
   };

   //
   // a caching only nameserver config
   //
   zone "." IN {
   type hint;
   file "named.root";
   };

   zone "localhost" IN {
   type master;
            file "localhost.zone";
            allow-update { none; };
   };

   zone "0.0.127.in-addr.arpa" IN {
            type master;
            file "named.local";
            allow-update { none; };
   };

   zone "ycmail.net" IN {
            type master;
            file "ycmail.net.zone";
            allow-update { none; };
   };

   zone "252.177.61.in-addr.arpa" IN {
            type master;
            file "named.61.177.252";
            allow-update { none; };
   };

   include "/etc/rndc.key";
创建/var/named目录
# mkdir /var/named
# cd /var/named
匿名登录到ftp站点FTP.RS.INTERNIC.NET，获取/domain目录下的named.root文件，将该文件置于/var/named目录下。
14.创建localhost文件
# vi localhost
   $TTL86400
   $ORIGIN localhost.
   @1D IN SOA@ root (
   42; serial (d. adams)
   3H; refresh
   15M; retry
   1W; expiry
   1D ); minimum

   1D IN NS@
   1D IN A127.0.0.1

创建named.local文件
# vi named.local
   $TTL86400
   @    IN    SOA    localhost. root.localhost.  (
                                          1997022700 ; Serial
                                          28800    ; Refresh
                                          14400    ; Retry
                                          3600000 ; Expire
                                          86400 ) ; Minimum
                  IN    NS    localhost.

   1    IN    PTR    localhost.

创建ycmail.net.zone文件
# vi ycmail.net.zone
   $TTL 86400
   @    IN    SOA    mail.ycmail.net. postmaster.ycmail.net.  (
                                       2003061800 ; Serial
                                       28800    ; Refresh
                                       14400    ; Retry
                                       3600000 ; Expire
                                       86400 ) ; Minimum
               IN    NS    mail.ycmail.net.

   mail       IN    A    61.177.252.34

   www          IN    CNAME mail

创建named.61.177.252文件
# vi named.61.177.252
   $TTL 86400
   @    IN    SOA    mail.ycmail.net. postmaster.ycmail.net.  (
                                       2003061800 ; Serial
                                       28800    ; Refresh
                                       14400    ; Retry
                                       3600000 ; Expire
                                       86400 ) ; Minimum
               IN    NS    mail.ycmail.net.

   34          IN    PTR    mail.ycmail.net.

最后:启动bind9
启动BIND了

/usr/local/sbin/named -c /etc/named.conf

出现如下错误: /usr/local/sbin/named -c /etc/named.conf &
[1] 17906--------根本不知道为什么
服务都没有起动
请问各位专家我是漏了那个环节?帮帮我
谢谢