dns_配置指南
差别
这里会显示出您选择的修订版和当前版本之间的差别。
| 后一修订版 | 前一修订版 | ||
| dns_配置指南 [2011/11/03 18:19] – 创建 ysong | dns_配置指南 [2012/06/24 22:04] (当前版本) – ysong | ||
|---|---|---|---|
| 行 1: | 行 1: | ||
| + | ====== DNS 配置常见问题的解决 ====== | ||
| + | ===== 解析不存在域名造成的解析速度慢,以及反向解析为bogon.的情况 ===== | ||
| + | 添加zone " | ||
| + | |||
| + | ====== DNS 基本概念 ====== | ||
| + | 青岛大学内部的 DNS 服务器一般不使用迭代查询,即不向根服务器查询到何处去找该域名记录,而是向可信外部DNS服务器发起请求。 | ||
| + | |||
| + | 关于迭代查询,dig 实用工具手册中的解释:dig makes iterative queries to resolve the name being looked up. It will follow referrals from the root servers, showing the answer from each server that was used to resolve the lookup. | ||
| + | ====== DNS 服务器的配置 ====== | ||
| + | ===== ISC Berkeley Internet Name Domain (BIND) ===== | ||
| + | ===== Name Server Daemon (NSD) ===== | ||
| + | NSD 是一个高性能的权威 DNS 服务器实现,是 DNSSEC 的实验环境,有一台根服务器使用 NSD。 | ||
| + | |||
| + | 编译参数:< | ||
| + | 一个配置文件的例子,曾用于 OSQDU 美国总部内部评测的 NSD | ||
| + | <file perl nsd.conf> | ||
| + | server: | ||
| + | ip-address: 192.168.29.10 | ||
| + | hide-version: | ||
| + | debug-mode: no | ||
| + | ip4-only: no | ||
| + | ip6-only: no | ||
| + | database: "/ | ||
| + | identity: "OSQDU US Evaluation DNS" | ||
| + | server-count: | ||
| + | tcp-count: 10 | ||
| + | tcp-query-count: | ||
| + | tcp-timeout: | ||
| + | pidfile: "/ | ||
| + | port: 53 | ||
| + | statistics: 3600 | ||
| + | username: 60001.60001 | ||
| + | zonesdir: "/ | ||
| + | |||
| + | # ---- Zone Configuration ---- | ||
| + | zone: | ||
| + | name: " | ||
| + | zonefile: " | ||
| + | provide-xfr: | ||
| + | outgoing-interface: | ||
| + | zone: | ||
| + | name: " | ||
| + | zonefile: " | ||
| + | provide-xfr: | ||
| + | outgoing-interface: | ||
| + | </ | ||
| + | NSD 在 Solaris 10 中配置为 SMF 服务所需的 XML 文件 | ||
| + | <file xml nsd.xml> | ||
| + | <?xml version=" | ||
| + | <!-- | ||
| + | CDDL HEADER START | ||
| + | |||
| + | The contents of this file are subject to the terms of the | ||
| + | Common Development and Distribution License (the " | ||
| + | You may not use this file except in compliance with the License. | ||
| + | |||
| + | You can obtain a copy of the license at usr/ | ||
| + | or http:// | ||
| + | See the License for the specific language governing permissions | ||
| + | and limitations under the License. | ||
| + | |||
| + | When distributing Covered Code, include this CDDL HEADER in each | ||
| + | file and include the License file at usr/ | ||
| + | If applicable, add the following below this CDDL HEADER, with the | ||
| + | fields enclosed by brackets " | ||
| + | information: | ||
| + | |||
| + | CDDL HEADER END | ||
| + | --> | ||
| + | < | ||
| + | < | ||
| + | <service | ||
| + | name=' | ||
| + | type=' | ||
| + | version=' | ||
| + | < | ||
| + | name=' | ||
| + | grouping=' | ||
| + | restart_on=' | ||
| + | type=' | ||
| + | < | ||
| + | </ | ||
| + | < | ||
| + | name=' | ||
| + | grouping=' | ||
| + | restart_on=' | ||
| + | type=' | ||
| + | < | ||
| + | </ | ||
| + | < | ||
| + | name=' | ||
| + | grouping=' | ||
| + | restart_on=' | ||
| + | type=' | ||
| + | < | ||
| + | </ | ||
| + | < | ||
| + | type=' | ||
| + | name=' | ||
| + | exec='/ | ||
| + | timeout_seconds=' | ||
| + | < | ||
| + | < | ||
| + | type=' | ||
| + | name=' | ||
| + | exec='/ | ||
| + | timeout_seconds=' | ||
| + | < | ||
| + | < | ||
| + | user=' | ||
| + | group=' | ||
| + | </ | ||
| + | </ | ||
| + | < | ||
| + | type=' | ||
| + | name=' | ||
| + | exec='/ | ||
| + | timeout_seconds=' | ||
| + | < | ||
| + | < | ||
| + | </ | ||
| + | </ | ||
| + | </ | ||
| + | < | ||
| + | < | ||
| + | < | ||
| + | <loctext xml: | ||
| + | NSD Authoritative-only DNS server | ||
| + | </ | ||
| + | </ | ||
| + | </ | ||
| + | </ | ||
| + | </ | ||
| + | </ | ||
| + | NSD 兼容 BIND 的 Zone 文件格式 | ||