|
X/24;
127.0.0.1;
};
allow-transfer {
192.168.X/24
|
| bet | 2/3 | | Sana | 11.12.2023 | | Hajmi | 65,88 Kb. | | #116285 |
Bog'liq 7-amaliy mashg\'ulot8.8.8.8;
};
allow-query {
192.168.X/24;
127.0.0.1;
};
allow-transfer {
192.168.X/24;
127.0.0.1;
};
dnssec-validation auto;
auth-nxdomain no; # conform to RFC1035
};
13. Endi konfiguratsiyani xatolar uchun tekshirishingiz mumkin va agar xatolar bo'lmasa, dns serverini qayta ishga tushiring. Bundan tashqari, agar ressolv.conf faylini o'zgartirmagan bo'lsangiz, uni yaratishingiz mumkin
# named-checkconf
# systemctl restart bind9
14. named.conf.local konfiguratsiya fayliga oldinga va teskari zonalar haqida ma'lumot qo'shing, shundan keyin quyidagilarni yaratamiz.
# vi /etc/bind/named.conf.local
zone "exampleX.com" { type master;
file "/var/lib/bind/db.exampleX.com"; allow-update { key rndc-key; };
};
zone "X.168.192.in-addr.arpa" { type master;
file "/var/lib/bind/db.192.168.X"; allow-update { key rndc-key; };
};
15. Keyingi qadam to'g'ridan -to'g'ri zonani yaratishdir:
# vi /var/lib/bind/db.exampleX.com
$TTL 604800 ; 1 week
@ IN SOA exampleX.com. root.exampleX.com. (
2020052201 ; serial
604800 ; refresh (1 week)
86400 ; retry (1 day)
2419200 ; expire (4 weeks)
604800 ; minimum (1 week)
)
@ IN NS gw.exampleX.com.
@ IN A 192.168.X.1 gw IN A 192.168.X.1 server IN A 192.168.X.2
user IN A 192.168.X.100
16. Teskari zonani yarating
# vi /var/lib/bind/db.192.168.X
$TTL 604800 ; 1 week
@ IN SOA exampleX.com. root.exampleX.com. (
2020052701 ; serial
604800 ; refresh (1 week)
86400 ; retry (1 day)
2419200 ; expire (4 weeks)
604800 ; minimum (1 week)
)
@
|
IN
|
NS
|
gw.exampleX.com.
|
1
|
IN
|
PTR
|
gw.exampleX.com.
|
2
|
IN
|
PTR
|
server.exampleX.com.
|
100
|
IN
|
PTR
|
user.exampleX.com.
|
17. Endi zona fayllarining konfiguratsiyasini xatolarga tekshirishingiz mumkin va agar xatolar bo'lmasa dns serverini qayta ishga tushiring.
# named-checkconf -z
# systemctl restart bind9
18. Dns serverini tekshirish uchun quyidagi buyruqlardan foydalaning:
|
| |
