What is the difference between the DNS server on Fedora7 and earlier versions?

Source: Internet
Author: User
Tags nameserver
The difference between the DNS server on Fedora7 and earlier versions-Linux Enterprise Application-Linux server application information. The following is a detailed description. Many of my friends refer to documents on the platform before RHEL4 or Fedora core5. On Fedora 7, many things have changed. This article briefly introduces the corresponding methods.

Software List
Bind-libs-9.4.0-6.fc7
Bind-chroot-9.4.0-6.fc7
Bind-utils-9.4.0-6.fc7
Bind-9.4.0-6.fc7
Caching-nameserver-9.4.0-6.fc7

If you have upgraded the system, the software version will be slightly different. Bind-chroot can increase the security of the DNS server and work without installation.

The bind software on Fedora 7 is different from the original structure, without the previous/etc/named. conf and/var/named/chroot/etc/named. conf (the former is the symbolic link of the latter), so many friends do not know how to configure the DNS server at the moment. After a simple research, I ended the configuration method of the DNS server.

Run the command in/var/named/chroot/etc.
Cat named. caching-nameserver.conf named. rfc1912.zones> named. conf
Rm named. caching-nameserver.conf named. rfc1912.zones> named. conf
[Root @ maluyao ~] Ln-s/var/named/chroot/etc/named. conf/etc/named. conf

The above step is to merge named. caching-nameserver.conf named. rfc1912.zones into a file (/var/named/chrrot/etc/named. conf) and then delete it. In actual operation, it is best not to delete the files, but to move the two files to another location for backup. For convenience, a symbolic link is made under/etc.

Modify the named. conf file
View localhost_resolver {
Match-clients {localhost ;};
Match-destinations {localhost ;};
Recursion yes;
};

And
Include "/etc/named. rfc1912.zones ";

Comment or delete rows.

In Fedora 7, port 53 is opened only on the loopback address 127.0.0.1 and: 1 (the loopback address of IPV6) by default. If you want to enable port 53 on all the addresses, modify the named. conf

Listen-on port 53 {127.0.0.1 ;};
Listen-on-v6 port 53 {: 1 ;};

Is
Listen-on port 53 {any ;};
Listen-on-v6 port 53 {any ;};

By default, the DNS server in Fedora 7 only allows the 127.0.0.1 client (that is, the Local Machine) to initiate a query. Generally, we need to allow query by all users. In this case, modify the name. conf file:

Allow-query {localhost ;};

Is
Allow-query {any ;};

After restarting BIND, run the following command:
[Root @ maluyao ~] # Netstat-nlu | grep 53
[Root @ maluyao ~] # Netstat-A inet6 | grep 53

You can see that port 53 has been listened on all the addresses. The DNS Server opens tcp and udp ports 53 at the same time. The preceding command only displays udp. If you do not need to listen to port 53 on an ipv6 address, you can annotate the listen-on-v6 line.

Now, the bind service configuration method is similar to RHEL4 or Fedora Core 5.

The default settings in Fedora 7 have their own principles. We want readers to know the meanings of the comments or deletions. However, this article does not introduce it.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.