Welcome to the Free PDF Ebooks Download.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.
Member Login:
| Video Training Online Video Training, video training software, video editing training, total training video, microsoft training video, corporate training videos, ... |
 |
09-12-2009, 07:15 PM
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
BIND DNS Server Installation and Configuration on CentOS 5.3
 Background: BIND, stands for Berkeley Internet Name Domain, is the most commonly used Domain Name System (DNS) server (or simply name server) on the Internet. On UNIX-Like systems it is the de facto standard. BIND was originally created by four graduate students at the Computer Systems Research Group (CSRG) at University of California, Berkeley, and was first released with 4.3BSD. Paul Vixie started maintaining it in 1988 while working for DEC. Today, BIND is maintained by the ISC (Internet Systems Consortium). BIND is by far the most widely used DNS server software on the Internet. It provides a robust and stable platform on top of which organizations can build distributed computing systems with the knowledge that those systems are fully compliant with published DNS standards. Getting Started: In this tutorial I will demonstrate how to setup BIND DNS Server on CentOS 5.3. Use your favorite editor to edit configuration files. I use nano. We start off by installing required packages. Following is the list of packages associated with DNS: Code:
Bind bind-chroot bind-devel bind-libbind-devel bind-libs bind-sdb bind-utils caching-nameserver system-config-bind Code:
[root@cybertron Knight]# yum clean all Loaded plugins: fastestmirror, priorities Cleaning up Everything Cleaning up list of fastest mirrors [root@cybertron Knight]# yum install bind-chroot bind-libs bind-sdb bind-utils caching-nameserver Loaded plugins: fastestmirror, priorities Determining fastest mirrors * epel: ftp.yz.yamagata-u.ac.jp * contrib: mirror.nus.edu.sg * epel-source: ftp.yz.yamagata-u.ac.jp * rpmforge: apt.sw.be * base: mirror.nus.edu.sg * updates: mirror.averse.net * extras: mirror.nus.edu.sg * centosplus: mirror.averse.net * addons: mirror.nus.edu.sg . . . A Caching-Only Name Server will find the answer to name queries and remember the answer the next time you need it. This will shorten the waiting time the next time significantly, especially if you're on a slow connection. To configure a caching-only name server, all you need to do is to copy the file /var/named/chroot/etc/named.caching-nameserver.conf to /var/named/chroot/etc/named.conf and make changes according to your network. My server�s IP address is 192.168.15.2, so my server�s named.conf, after copying and modifying, will look as follows: Code:
options {
listen-on port 53 { 127.0.0.1; 192.168.15.2; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
allow-query { 127.0.0.1; 192.168.15.0/24; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic; };
};
include "/etc/named.rfc1912.zones";
include "/etc/rndc.key";
Code:
[root@cybertron Knight]# /sbin/service named start Code:
Saad@kakarot ~ $ dig centos.org ; <<>> DiG 9.6.0 <<>> centos.org ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 24245 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3 ;; QUESTION SECTION: ;centos.org. IN A ;; ANSWER SECTION: centos.org. 106 IN A 72.232.194.162 ;; AUTHORITY SECTION: centos.org. 14159 IN NS ns3.centos.org. centos.org. 14159 IN NS ns1.centos.org. centos.org. 14159 IN NS ns2.centos.org. ;; ADDITIONAL SECTION: ns1.centos.org. 359 IN A 72.232.223.58 ns2.centos.org. 359 IN A 131.211.85.43 ns3.centos.org. 359 IN A 88.208.217.170 ;; Query time: 0 msec ;; SERVER: 192.168.15.2#53(192.168.15.2) ;; WHEN: Fri Aug 14 18:24:28 2009 ;; MSG SIZE rcvd: 146 Forwarding-Only Name Server: You can configure a name sever in forward-only mode. A name server in forward-only mode is a variation on a name server that uses forwarders. It still answers queries from its authoritative data and cached data. However, it relies completely on its forwarders; it doesn't try to contact other name servers to find information if the forwarders don't give it an answer. Here is an example of what the configuration file of a name server in forward-only mode would contain in our case: Code:
options {
directory "/var/named";
forward only;
forwarders { 192.168.15.1; 208.67.222.222; 208.67.220.220; };
};
Now, let�s create a master name server. A master name server for a zone reads the data for the zone from a file on its host. This name server is authoritative for that zone. Once you've created the data for your zone and set up a master name server, you don't need to copy that data from host to host to create new name servers for the zone. You simply set up slave name servers that load their data from the master name server for the zone. The slaves you set up will transfer new zone data when necessary. First thing to do is to copy named.rfc1912.zones to named.conf: Code:
[root@cybertron Knight]# cd /var/named/chroot/etc/ [root@cybertron etc]# cp named.rfc1912.zones named.conf Code:
options {
listen-on port 53 { 127.0.0.1; 192.168.15.2; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
allow-query { 127.0.0.1; 192.168.15.0/24; };
};
zone "nix-knight.com" IN {
type master;
file "nix-knight.com.fzone";
};
include "/etc/rndc.key";
Code:
$TTL 86400 @ IN SOA nix-knight.com. nix-knight.com. ( 2009081300 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS nix-knight.com. ns IN A 192.168.15.2 nix-knight.com. IN A 192.168.15.2 www IN CNAME nix-knight.com. Code:
[root@cybertron Knight]# /sbin/service named restart Code:
[root@cybertron named]# /usr/sbin/setsebool -P named_write_master_zones 1 Code:
Saad@kakarot ~ $ dig nix-knight.com ; <<>> DiG 9.6.0 <<>> nix-knight.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51574 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;nix-knight.com. IN A ;; ANSWER SECTION: nix-knight.com. 86400 IN A 192.168.15.2 ;; AUTHORITY SECTION: nix-knight.com. 86400 IN NS ns.nix-knight.com. ;; ADDITIONAL SECTION: ns.nix-knight.com. 86400 IN A 192.168.15.2 ;; Query time: 3 msec ;; SERVER: 192.168.15.2#53(192.168.15.2) ;; WHEN: Sun Aug 16 14:08:09 2009 ;; MSG SIZE rcvd: 80 Code:
zone "15.168.192.in-addr.arpa" IN {
type master;
file "nix-knight.com.rzone";
};
Code:
$TTL 86400 @ IN SOA nix-knight.com. root.nix-knight.com. ( 2009081300 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS ns.nix-knight.com. 2 IN PTR ns. nix-knight.com. 2 IN PTR nix-knight.com. Code:
[root@cybertron Knight]# /sbin/service named restart Code:
Saad@kakarot ~ $ dig -x 192.168.15.2 ; <<>> DiG 9.6.0 <<>> -x 192.168.15.2 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27126 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;2.15.168.192.in-addr.arpa. IN PTR ;; ANSWER SECTION: 2.15.168.192.in-addr.arpa. 86400 IN PTR ns.nix-knight.com. 2.15.168.192.in-addr.arpa. 86400 IN PTR nix-knight.com. ;; AUTHORITY SECTION: 15.168.192.in-addr.arpa. 86400 IN NS ns.nix-knight.com. ;; ADDITIONAL SECTION: ns.nix-knight.com. 86400 IN A 192.168.15.2 ;; Query time: 2 msec ;; SERVER: 192.168.15.2#53(192.168.15.2) ;; WHEN: Sun Aug 16 14:51:41 2009 ;; MSG SIZE rcvd: 117 The final thing you would want to do is to turn on named service at system startup: Code:
[root@cybertron Knight]# /sbin/chkconfig --levels 235 named on So, this is just a basic BIND configuration to get u started on the road to DNS. For in-depth knowledge on DNS and more named configuration options, I would recommend some books: 1.DNS and BIND by Paul Albitz and Cricket Liu 2.Pro DNS and BIND by Ronald G.F. Aitchison 3.DNS in Action by Libor Dost�lek and Alena Kabelov� Finally, at the end of this tutorial, my server�s named.conf is as follows: Code:
options {
listen-on port 53 { 127.0.0.1; 192.168.15.2; };
directory "/var/named";
pid-file "/var/run/named/named.pid";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
version "REFUSED";
query-source port 53;
allow-query { 127.0.0.1; 192.168.15.0/24; };
forwarders { 192.168.15.1; 208.67.222.222; 208.67.220.220; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic; };
};
zone "nix-knight.com" IN {
type master;
file "nix-knight.com.fzone";
};
zone "15.168.192.in-addr.arpa" IN {
type master;
file "nix-knight.com.rzone";
};
include "/etc/named.rfc1912.zones";
include "/etc/rndc.key";
Chaoz....       
|
|||||||||||||||||||||||
|
| Bookmarks |
| Tags |
| 53, bind, centos, configuration, dns, installation, server |
«
Previous Thread
|
Next Thread
»
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| 70-642, Package: Windows Server 2008 Network Infrastructure Configuration | ventran | Technical Book | 0 | 06-20-2009 03:44 AM |
| [Uploading.com] Electrical Installation Calculations Basic 8th Ed | rsapple | Science Book | 1 | 05-17-2009 03:32 PM |
| ISA Server Configuration Guide | thatsanil | Technical Book | 0 | 12-16-2008 06:45 AM |
| Never Re-Activate After Installation | FED | Video Training | 0 | 07-19-2008 07:40 AM |
| The Concise Guide to DNS and BIND | abb | Technical Book | 0 | 05-06-2007 08:45 PM |
All times are GMT. The time now is 03:11 AM.
