bindサーバを内向きで構築する.

まずは, bindのインストール

# yum -y install bind

次は, /etc/named.confの設定

options {
    //listen-on port 53 { 127.0.0.1; };
    listen-on port 53 { any; };
    //listen-on-v6 port 53 { ::1; };
    directory       "/var/named";
    dump-file       "/var/named/data/cache_dump.db";
    statistics-file "/var/named/data/named_stats.txt";
    memstatistics-file "/var/named/data/named_mem_stats.txt";
    //allow-query     { localhost; };
    allow-query { localhost; localnets; };
    recursion yes;

    dnssec-enable yes;
    dnssec-validation yes;
    dnssec-lookaside auto;

    /* Path to ISC DLV key */
    bindkeys-file "/etc/named.iscdlv.key";
    managed-keys-directory "/var/named/dynamic";
    forwarders {
        192.168.1.1;
    };
};

logging {
    channel default_debug {
        file "data/named.run";
        severity dynamic;
    };
};

view "internal" {
    match-clients { localhost; localnets; };
    zone "." IN {
        type hint;
        file named.ca;
    }
    zone "my-home" {
        type master;
        file "db.my-home";
        allow-update { none; };
    };
    zone "1.168.192.in-addr.arpa" {
        type master;
        file "db.192.168.1";
        allow-update { none; };
    };
    zone "unix-like.dyndns-web.com" {
        type master;
        file "db.unix-like.dyndns-web.com";
        allow-update { none; };
    };
    include "/etc/named.rfc1912.zones";
    include "/etc/named.root.key";
};

ゾーンファイルは, Macの時のファイルを再利用するので, ここでは書かない.

(多少の変更は必要)

最後に, 自動起動するようにして完了

# chkconfig named on

[ad#ad-1]