第4章 配置反向解析区域
4.1 定义区域
在主配置文件中或主配置文件辅助配置文件中实现;
[root@CentOS7 named]# vim /etc/named.rfc1912.zones
zone "4.168.192.in-addr.arpa" IN {
type master;
file "4.168.192.zone";
};
4.2 定义区域解析库文件(主要记录为PTR)
区域名称为100.16.172.in-addr.arpa;
[root@CentOS7 named]# vim 4.168.192.zone
$TTL 3600
$ORIGIN 4.168.192.in-addr.arpa.
@ IN SOA ns1.zhucke.com. nsadmin.zhucke.co.(
2018042501
1H
10M
3D
12H )
IN NS ns1.zhucke.com.
81 IN PTR ns1.zhucke.com.
80 IN PTR mx1.zhucke.com.
79 IN PTR mx2.zhucke.com.
81 IN PTR www.zhucke.com.
82 IN PTR bbs.zhucke.com.
4.3 权限及属组修改
[root@CentOS7 named]# chgrp named 4.168.192.zone
[root@CentOS7 named]# chmod o= 4.168.192.zone
[root@CentOS7 named]# ll
total 24
-rw-r-----. 1 root named 278 Apr 24 22:11 4.168.192.zone
4.5 检查语法错误
[root@CentOS7 named]# named-checkconf
[root@CentOS7 named]# named-checkzone 4.168.192.in-addr.arpa /var/named/4.168.192.zone
zone 4.168.192.in-addr.arpa/IN: loaded serial 2018042501
OK
4.6 让服务器重载配置文件和区域数据文件
# rndc reload 或
# systemctl reload named.service
4.7 测试
[root@CentOS7 named]# dig -x 192.168.4.81
; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> -x 192.168.4.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 2
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.4.168.192.in-addr.arpa. IN PTR
;; ANSWER SECTION:
81.4.168.192.in-addr.arpa. 3600 IN PTR ns1.zhucke.com.
81.4.168.192.in-addr.arpa. 3600 IN PTR www.zhucke.com.
;; AUTHORITY SECTION:
4.168.192.in-addr.arpa. 3600 IN NS ns1.zhucke.com.
;; ADDITIONAL SECTION:
ns1.zhucke.com. 3600 IN A 192.168.4.81
;; Query time: 0 msec
;; SERVER: 192.168.4.81#53(192.168.4.81)
;; WHEN: Tue Apr 24 22:12:39 EDT 2018
;; MSG SIZE rcvd: 130
浙公网安备 33010602011771号