Scribd Logo
Upload

Welcome to Scribd!

  • Bind Mini How-To

    Uploaded by

    Angel Fulton
    19 views12 pages
    BIND Mini How-To (In Hebrew)

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    BIND Mini How-To (In Hebrew)

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    19 views12 pages

    Bind Mini How-To

    Uploaded by

    Angel Fulton
    BIND Mini How-To (In Hebrew)

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008

    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux


    )BIND Mini How-To (In Hebrew

    )BIND Mini How-To (In Hebrew


    :
    Mini How-To DNS BIND
    Red Hat Enterprise Linux .5.1

    .DNS .DNS
    ,DNS DNS.
    , ,
    "" DNS BIND . ,
    ,
    . ,DNS ,BIND .

    :
    -

    .root
    SELinux
    File Contexts Booleans.
    ) Chrooted Environment
    ( , :
    . /var/named/chroot/

    :
    Hostname: dns.example.com
    OS: Red Hat Enterprise Linux 5.1
    IP Address: 192.168.1.200
    Subnet Mask: 255.255.255.0
    Default Gateway: 192.168.1.1
    Network: 192.168.1.0/255.255.255.0
    BIND Version: 9.3.3-10.el5

    1 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew

    :
    dns.example.com Authoritative Name Server -
    ).example.com (domain name
    :
    BIND Forward Lookup Zone
    .Reverse Lookup Zone
    Forward Lookup Zone"example.com" :
    Reverse Lookup Zone"1.168.192.in-addr.arpa" :
    ' , ? .(-: DNS

    :
    , \ :
    -

    FQDN " .hostname


    . DNS
    , .Static IP Address ,
    PEERDNS=no IP
    ,DHCP /etc/resolv.conf " dhclient
    DNS .DHCP
    ,DNS Resolving
    /etc/resolv.conf .
    search example.com ,
    .FQDN

    2 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    , DNS . :

    :
    bind BIND.
    bind-chroot BIND Chrooted
    .Environment .
    bind-utils DNS
    ) host, dig : .(nslookup
    BIND caching-nameserver
    . .
    , " " ,
    Templates ) , Caching Name
    .(Server
    caching-nameserver
    /var/named/chroot/etc/named.caching-nameserver.conf
    , , named.conf
    . cp a
    ) Owner, Group .(Permissions
    , , Symbolic Link
    /etc/named.conf ,
    .

    3 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    ) (/etc/named.conf
    , :

    ;} ;acl "internal_network" { 192.168.1.0/24


    acl internal_network .
    acl .
    , acl .
    , .acl
    "" acl .
    ;} ;forwarders { 194.90.1.5; 212.143.212.143
    ,
    Cache , ,
    ) DNS .
    , DNS .(Netvision
    ;forward first
    BIND
    Forwarders ,
    .
    ' .view
    view BIND 9.x .
    , DNS Split DNS
    Zone . ,

    4 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    example.com LAN
    .WAN
    BIND RHEL5.1 .view
    , view ,
    .
    view options
    , .view , view
    ) (.
    view:
    ;} match-clients { address_match_element; ...
    Clients view Source IP
    Address ) (.
    ;} match-destinations { address_match_element; ...
    Clients view
    Destination IP Address . , ' '
    , "" Client view
    DNS .
    , :
    ;} ;allow-query { localhost; internal_network
    "" )(Iterative Queries
    view . " ""
    .options
    , .acls
    localhost built-in acl IPv4/IPv6
    , .
    internal_network acl
    DNS .
    ;} ;match-clients { localhost; internal_network
    Source IP Addresses view . ,
    acls .
    192.168.1.0/24 view.

    5 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew

    .
    , Zones DNS
    ).(Authoritative
    , :Zones
    -

    Forward Lookup Zone .IP


    Reverse Lookup Zone IP .

    Zone . Forward
    Lookup Zone .example.com
    type master Primary Name Server
    Master Copy Zone Data Zone
    Authoritative Answers .Zone
    file Zone Data File
    .Zone , " "
    .Zone ,
    .
    . :
    /var/named/chroot/var/named/ .Chrooted Environment
    Zone , Reverse Lookup
    .Zone , Zone.
    1.168.192.in-addr.arpa
    ? (-: .
    192.168.1.0 ,

    6 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    .in-addr.arpa
    , Data Zones
    Zones . Data Zones
    Zones.
    Data Zones
    . /var/named/chroot/var/named/
    :TIP ,
    caching-nameserver Template Data Zones -
    .

    Template Zone.
    ' :
    -

    Data Zone
    Zone . /etc/named.conf
    , cp a
    . . named
    .Zone
    /var/named/chroot/var/named/example.com.zone :

    7 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    :

    :
    -

    $TTL 86400 TTL Zone


    TTL . , ,
    TTL .
    @ .Zone
    $ORIGIN @ - Zone
    /etc/named.conf .example.com :
    : @ . example.com.
    Start Of Authority :SOA
    Zone Zone
    .example.com
    NS Name Server -
    .example.com
    MX ) Mail Exchanger (
    .example.com' 10 . ' ,
    ' )' (.
    , A IP .
    ,CNAME .Aliases,
    ftp.example.com
    .server1.example.com

    , .Reverse Lookup Zone ,


    .Template Reverse Lookup
    Zone /var/named/chroot/var/named/1.168.192.zone :

    8 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew

    .Forward Lookup Zone


    ,Reverse Lookup Zone ) PTR (Pointer
    .A PTR IP .
    , @ :Reverse Lookup Zone
    1.168.192.in-addr.arpa
    /etc/named.conf .
    : .Zones domain
    , . domain ,
    Zone .
    , ,FQDN
    , BIND
    . , ,
    , , ,
    .Zone .
    service named configtest :
    . , named-checkconf :
    ) named-checkzone - , man(.
    , ,
    .
    : " service named start
    ,OK /var/log/messages - "" .
    , ! DNS
    !BIND

    9 12

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    .
    .
    ) nslookup
    .(Linux/Unix
    :SOA

    :NS

    10 12

    2008 ' - (RHCE, RHCI, MCP, MCDST, A+) "


    John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux)
    BIND Mini How-To (In Hebrew)
    :MX

    :A

    12 11

    " ) - (RHCE, RHCI, MCP, MCDST, A+' 2008


    )John Bryce Linux Forum: http://forums.johnbryce.co.il (Linux
    )BIND Mini How-To (In Hebrew
    :CNAME

    :PTR

    " DNS -
    .Data Zones ? .(-:
    ,-- ,
    , ..(-: ?Anyone ,
    \ , Linux
    ' " http://forums.johnbryce.co.il :

    12 12

    You might also like