.zdj.com.Panax Notoginseng PTR ns2.zdj.com.123 PTR www.zdj.com.124 PTR www.zdj.com.122 PTR www.zdj.com.4.[[email protected] named]# cat/etc/resolv.conf---------set up the DNS server for yourself, test with; Generated By/sbin/dhclient-script#nameserver 8.8.8.8NameServer 172.17.0.1425.[Email protected] named]# service named RestaRtFrom the domain name server: ip:172.17.0.371.[[email protected] slaves] #vim/var/named/chroot/etc/named.confOptions {Listen-on Port 53 {172.17.0.37;};Listen-on-v6 Port 5
) Windows filtering Platform (WFP) is an API set introduced in Vista. In Windows 7, developers can embed Windows Firewall into the software they develop through this set of API sets. This situation allows third-party programs to turn off some of the Windows Firewall settings at the appropriate time. 8, PowerShell v2 Windows 7 is a PowerShell v2 that enables administrators to manage multiple settings, including Group Policy Security, from the command line. Administrators can also combine
server, you need to enable recursion. - If your recursive DNS server has a public IP address, you MUST enable access control to limit queries to your legitimate users. Failing to do so will cause your server to become part of large scale DNS amplification attacks. Implementing BCP38 within your network would greatly reduce such attack surface */ recursion yes;//是否允许递归查询 dnssec-enable no; //
This evening, the vast majority of Google international websites, including Google.com, such as Google.com, Gmail, Google Reader, Google Docs, have been inaccessible in some provinces and cities in China.According to my analysis, the way to block Google is not new, is the use of Domain name hijacking (DNS hijacking) method, through technical means, Google's various types of foreign domain names resolved to a wrong address, making google.com inaccessible. Some time ago, CCTV had accused Google in
";Memstatistics-file "/var/named/data/named_mem_stats.txt ";# Query range (set internal server and so on)Allow-query {localhost; 10.0.0.0/24 ;};# Transfer range (set it if you have secondary DNS)Allow-transfer {localhost; 10.0.0.0/24 ;};Recursion yes; DNSSEC-enable yes;DNSSEC-validation yes;DNSSEC-lookaside auto;/* path to isc dlv key */Bindkeys-file "/etc/named
/data/named_stats.txt ";Memstatistics-file "/var/named/data/named_mem_stats.txt ";Allow-query {any ;};
/*-If you are building an authoritative dns server, do NOT enable recursion.-If you are building a RECURSIVE (caching) DNS server, you need to enableRecursion.-If your recursive DNS server has a public IP address, you MUST enable accessControl to limit queries to your legitimate users. Failing to do so willCause your server to become part of large scale DNS amplificationAttacks. Implementing BC
named [OK][Root @ localhost ~] #When bind-chroot is installed, the configuration file is saved in the/var/named/chroot/etc/directory.[Root @ localhost ~] # Cd/var/named/chroot/etc/[Root @ localhost etc] # vi named. confThe configuration file of named. conf is as follows://
// Named. conf
//
// Provided by Red Hat bind package to configure the isc bind named (8) DNS
// Server as a caching only nameserver (as a localhost DNS resolver only ).
//
// See/usr/share/doc/bind */sample/for example named
/www2.err and the access log is/var/log/httpd/www2.access;
(CEN creates its own main page file index.html for two virtual machines, with the corresponding host name respectively;
(D) Output httpdwork status information through www1.stu31.com/server-status, and only allow access using the account number password (status: status );
1. Configure the DNS server to provide the domain name resolution service for the client.
Configuration of the main configuration file:
[Root @ www ~] # Cat/etc/named.
Centos6.4 install the bind dns server, centos6.4bind
I. Introduction
1) Centos6.4 64bit minimal
2) bind-9.8.2-0.30.rc1.el6_6.3.x86_64
Ii. Installation
$ yum install -y bind bind-utils
Iii. Configuration
A) bind main configuration file
$ vi /etc/named.conf//// named.conf//// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS// server as a caching only nameserver (as a localhost DNS resolver only).//// See /usr/share/doc/bind*/sample/ for example named configuration fil
canonical name, which is used to represent a domain name. A domain name with a canonical name is usually called an alias. Some FTP servers use it to provide an easy-to-remember alias to other systems.
HINFO: indicates the host information, including two strings indicating the host CPU and operating system.
MX: mail exchange record. Function: If a message is sent to the use@foo.com, it is sent to relay1.uu.net.
PTR: A pointer record is used for pointer queries, and an IP address is considered a
First install Yum and use Yum to install bind
Yum install bind *
Different operating systems may have different RPM packages.Bind-9.8.2-0.17.rc1.el6.x86_64Bind-utils-9.8.2-0.17.rc1.el6.x86_64Bind-chroot-9.8.2-0.17.rc1.el6.x86_64Bind-dyndb-ldap-2.3-2.el6.x86_64Bind-libs-9.8.2-0.17.rc1.el6.x86_64
Edit named. conf after installing several RPM packages
Vim/etc/named. conf
Options {Listen-on port 53 {127.0.0.1 ;};Listen-on-v6 port 53 {: 1 ;};Directory "/var/named ";Dump-file "/var/named/d
RHEL 6.4 install DNS (bind-9.8)
RHEL 6.4 install DNS (bind-9.8)
First install yum and use yum to install bind
Yum install bind *
Different operating systems may have different rpm packages.Bind-9.8.2-0.17.rc1.el6.x86_64Bind-utils-9.8.2-0.17.rc1.el6.x86_64Bind-chroot-9.8.2-0.17.rc1.el6.x86_64Bind-dyndb-ldap-2.3-2.el6.x86_64Bind-libs-9.8.2-0.17.rc1.el6.x86_64
Edit named. conf after installing several rpm packages
Vim/etc/named. conf
Options {Listen-on port 53 {127.0.0.1 ;};Listen-on-v6 port 53 {:
1. Master Configuration named.conf Configure the DNS server, it is important to note that the named.conf file permissions and the owner of the named user aclinside{ 172.16.0.0/16;192.168.0.0/16; 127.0.0.0/8;};/ /acl must be at the top of the options{listen-onport53{ any;};//do not write this as Any,acl has made a strategy, here do not limit the directory "/var/named"; //space-related configuration directory, if Chroot is used, you need to specify to the relevant directory//the following three f
/named.conf is made up of 3 paragraphs, see illustration.650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M00/6B/81/wKioL1UvdS3AQhT3AAUmLHDAkuo895.jpg "title=" 2015-04-08_090553.png "alt=" Wkiol1uvds3aqht3aaumlhdakuo895.jpg "/>To configure it as a DNS server for others to serve, you also need to modify the profile/etc/named.conf (Help document Man named.conf). The required configurations are:① Listening Address: Configuration can communicate with the external address, can also be commented
(alias record)Domain domains are used to register for zone-based implementationsAuthoritative DNS server: A server that holds all host name resolution in a domain, requires an alternateBind (Package): Bekerley Internet Name DomainProcess script:/etc/rc.d/init.d/namedConf:/etc/named.conf,/etc/named.rfc1912.zonesZone Parse library file:/var/named/zone_name.zoneNote: To run as a system user in order to secure the process, run under the chroot modelInstall bind[email protected] ~]# Yum install bind
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.