bind9配置转发服务

修改bind主配置文件

$ vi /etc/named.conf
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
options {
    listen-on port 53 { 172.31.100.82; };
    #listen-on-v6 port 53 { ::1; };   //注释掉支持IPv6
    directory    "/var/named";
    dump-file    "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
    allow-query    { 172.31.100.0/24; };
    recursion yes;
    forward only;    //设置转发类型only/first
    forwarders { 114.114.114.114;1.2.4.8; };

    dnssec-enable no;    //将DNS安全关闭
    dnssec-validation no;
    // dnssec-lookaside auto;

    /* Path to ISC DLV key */
    bindkeys-file "/etc/named.iscdlv.key";

    managed-keys-directory "/var/named/dynamic";
};