Differences

This shows you the differences between two versions of the page.

--- informatica:linux:bind [2011/01/16 19:27] – 127.0.0.1
+++ informatica:linux:bind [2015/01/22 13:33] – [Recargar configuración sin reiniciar] javi
@@ Line 2: / Line 2: @@
 bind, dns, dig, lookup
 ===== Instalación =====
-  sudo aptitude update && sudo aptitude install bind9
+  sudo aptitude update; sudo aptitude install bind9
+===== Configuración =====
+**/etc/bind/named.conf**
+<code>
+sudo mv /etc/bind/named.conf /etc/bind/named.conf.old
+sudo vim /etc/bind/named.conf
+</code>
+<code>
+//
+// Do any local configuration here
+//
-===== Configuración =====
+// Consider adding the 1918 zones here, if they are not used in your
+// organization
+//include "/etc/bind/zones.rfc1918";
-**/etc/bind/named.conf.options**
-<code>
+zone "example.com" {
-sudo mv /etc/bind/named.conf.options.old
+     type master;
+     file "/etc/bind/db.example.com";
+};
-sudo vim /etc/bind/named.conf.options
+zone "1.168.192.in-addr.arpa" {
+        type master;
+        notify no;
+        file "/etc/bind/db.192";
+};
 options {
@@ Line 38: / Line 56: @@
         forwarders {
         # Replace the address below with the address of your provider's DNS server
-.216.1.65;
+.8.8.8;
         };
@@ Line 44: / Line 62: @@
         listen-on-v6 { any; };
 };
 </code>
-**/etc/bind/named.conf**
-<code>
-sudo mv /etc/bind/named.conf.old
-sudo vim /etc/bind/named.conf
-//
-// Do any local configuration here
-//
-// Consider adding the 1918 zones here, if they are not used in your
-// organization
-//include "/etc/bind/zones.rfc1918";
-zone "example.com" {
-     type master;
-     file "/etc/bind/db.example.com";
-};
-zone "1.168.192.in-addr.arpa" {
-        type master;
-        notify no;
-        file "/etc/bind/db.192";
-};
-</code>
 **/etc/bind/db.example.com**
@@ Line 81: / Line 68: @@
 <code>
 sudo vim /etc/bind/db.example.com
+</code>
+<code>
 $TTL    604800
-@       IN      SOA     dns.example.com. dns.example.com. (
+@       IN      SOA     dns.example.com. root.example.com. (
          ; Serial
          ; Refresh
@@ Line 93: / Line 82: @@
 dns      IN      A       192.168.1.16
 www     IN      A       192.168.1.14
+alias     IN      CNAME       www
 </code>
@@ Line 100: / Line 89: @@
 <code>
 sudo vim /etc/bind/db.192
+</code>
+<code>
 ;
 ; BIND reverse data file for local loopback interface
 ;
 $TTL    604800
-@       IN      SOA     ns.example.com. root.example.com. (
+@       IN      SOA     dns.example.com. root.example.com. (
          ; Serial
          ; Refresh
@@ Line 112: / Line 103: @@
 )       ; Negative Cache TTL
 ;
-@       IN      NS      ns.
+@       IN      NS      dns.
       IN      PTR     dns.example.com.
       IN      PTR     www.example.com.
 </code>
 ===== Probarlo =====
@@ Line 122: / Line 112: @@
 . Editar siguiente archivo:
-  sudo cp /etc/resolv.con /etc/resolv.conf.bak
+  sudo cp /etc/resolv.conf /etc/resolv.conf.bak
   sudo vim /etc/resolv.conf
@@ Line 135: / Line 125: @@
 . (Opcional) Instalar paquetes:
-  sudo aptitude update && sudo aptitude instal dnsutils
+  sudo aptitude update; sudo aptitude install dnsutils
 . Probar:
@@ Line 173: / Line 163: @@
   sudo rndc reload
+==== Errores ====
+=== Errores ===
+  nslookup jamgo.es
+<code>
+Server:		127.0.0.1
+Address:	127.0.0.1#53
+** server can't find jamgo.es: REFUSED
+</code>
+Logs:
+  /var/log/syslog
+  Jan 22 14:28:55 dns-1 named[1082]: client 10.7.13.144#34533 (jamgo.es): query (cache) 'jamgo.es/A/IN' denied
+**Solucion**
+  sudo vim /etc/bind/named.conf
+Anyadir el rango de IPs que toquen:
+<code>
+# ANYADIDO 22/012015
+acl "trusted" {
+.7.13.0/24;
+};
+</code>
+Y editar dentro de el bloque options esto:
+<code>
+options {
+        # ADD
+        allow-query { trusted; };
+        allow-recursion { trusted; };
+        allow-query-cache { trusted; };
+};
+</code>
+Recargar config:
+  sudo /etc/init.d/bind9 reload