一、安装
yum -y install bind
yum -y install bind-chroot
二、生成key
/usr/sbin/dnssec-keygen -a hmac-md5 -b 128 -n user rndc
cat Krndc.+157+13538.*
将生成串更新/etc/rndc.key中secret的值。
三、配制
#/var/named/chroot/etc/named.conf
// Default named.conf generated by install of bind-9.2.4-28.el4
options {
directory "/var/named";
pid-file "/var/run/named/named.pid";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
Allow-transfer {tran;};
};
acl tran {192.168.0.174;};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone"hk.hn"{
type master;
file "hk.hn";
allow-transfer {192.168.100.174;};
};
include "/etc/rndc.key";
#cd /etc
#ln -s /var/named/chroot/etc/named.conf named.conf
yum -y install bind
yum -y install bind-chroot
二、生成key
/usr/sbin/dnssec-keygen -a hmac-md5 -b 128 -n user rndc
cat Krndc.+157+13538.*
将生成串更新/etc/rndc.key中secret的值。
三、配制
#/var/named/chroot/etc/named.conf
引用
// Default named.conf generated by install of bind-9.2.4-28.el4
options {
directory "/var/named";
pid-file "/var/run/named/named.pid";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
Allow-transfer {tran;};
};
acl tran {192.168.0.174;};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone"hk.hn"{
type master;
file "hk.hn";
allow-transfer {192.168.100.174;};
};
include "/etc/rndc.key";
#cd /etc
#ln -s /var/named/chroot/etc/named.conf named.conf












