论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2007-04-25 11:43 |只看该作者 |倒序浏览

我的dns在ubuntu6.10 server上，bind9.2.0,现在因为需要上 AD,我想用现成的dns来支持ad,找了找资料，配了一下,可是不知道对不对,哪位做过的兄弟看一下?

acl "adserver" {10.0.0.1;};          //定义adserver
//定义从adserver动态更新的域
zone "0.0.10.in-addr.arpa" {
  type master;
  file "reverse/10.10.10.db";
  allow-update {ADservers;};
  };

  zone "domain.com" {
  type master;
  file "etc/domain.com.db";
  check-names ignore;
  allow-update {ADservers;};
  };

  zone "_msdcs.domain.com" {
  type master;
  file "etc/_msdcs.domain.com.db";
  check-names ignore;
  allow-update {ADservers;};
  };

  zone "_sites.domain.com" {
  type master;
  file "etc/_sites.domain.com.db";
  check-names ignore;
  allow-update {ADservers;};
  };

  zone "_tcp.domain.com" {
  type master;
  file "etc/_tcp.domain.com.db";
  check-names ignore;
  allow-update {ADservers;};
  };

  zone "_udp.domain.com" {
  type master;
  file "etc/_udp.domain.com.db";
  check-names ignore;
  allow-update {ADservers;};
  };
//定义soa,类似下面
  $ORIGIN .
  $TTL 86400 ; 1 day
  _tcp.domain.com    IN SOA hostname.domain.com. hostmaster.domain.com. (
2002010101 ; Todays serial
28800 ; refresh (8 hours)
7200 ; retry (2 hours)
2419200 ; expire (4 weeks)
86400 ; minimum (1 day)
)
NS ns.domain.com.
  $ORIGIN _tcp.domain.com.

方法是从google找来的,我照做后检查log发现有错误,soa记录验证错误:
ad/_msdcs.example.com.db:10: ignoring out-of-zone data (.)
zone _msdcs.example.com/IN/internal: has no NS records
ad/_sites.example.com.db:10: ignoring out-of-zone data (.)
zone _sites.example.com/IN/internal: has no NS records
ad/_tcp.example.com.db:10: ignoring out-of-zone data (.)
zone _tcp.example.com/IN/internal: has no NS records
ad/_udp.example.com.db:10: ignoring out-of-zone data (.)
zone _udp.example.com/IN/internal: has no NS records
这里这个"."我很疑惑,不知道代表什么.
大家来看一下,怎样才能用bind支持ad?