BIND : Configure for Internal Network

 Install BIND to Configure DNS (Domain Name System) Server to provide Name or Address Resolution service for Clients.

[1]. Install BIND.

[root@dlp ~]# dnf -y install bind bind-utils

[2]. On this example, Configure BIND for Internal Network.

The example follows is for the case that Local network is [10.0.0.0/24], Domain name is [srv.world], Replace them to your own environment.

[root@dlp ~]# vi /etc/named.conf

.....

.....

# add : set ACL entry for local network

acl internal-network {

        10.0.0.0/24;

};

options {

        # change ( listen all )

        listen-on port 53 { any; };

        # change if need ( if not listen IPv6, set [none] )

        listen-on-v6 { any; };

        directory       "/var/named";

        dump-file       "/var/named/data/cache_dump.db";

        statistics-file "/var/named/data/named_stats.txt";

        memstatistics-file "/var/named/data/named_mem_stats.txt";

        secroots-file   "/var/named/data/named.secroots";

        recursing-file  "/var/named/data/named.recursing";

        # add local network set on [acl] section above

        # network range you allow to recive queries from hosts

        allow-query     { localhost; internal-network; };

        # network range you allow to transfer zone files to clients

        # add secondary DNS servers if it exist

        allow-transfer  { localhost; };


        .....

        .....


        recursion yes;


        dnssec-enable yes;

        dnssec-validation yes;


        managed-keys-directory "/var/named/dynamic";


        pid-file "/run/named/named.pid";

        session-keyfile "/run/named/session.key";


        /* https://fedoraproject.org/wiki/Changes/CryptoPolicy */

        include "/etc/crypto-policies/back-ends/bind.config";

};

logging {

        channel default_debug {

                file "data/named.run";

                severity dynamic;

        };

};


zone "." IN {

        type hint;

        file "named.ca";

};

include "/etc/named.rfc1912.zones";

include "/etc/named.root.key";

# add zones for your network and domain name

zone "srv.world" IN {

        type master;

        file "srv.world.lan";

        allow-update { none; };

};

zone "0.0.10.in-addr.arpa" IN {

        type master;

        file "0.0.10.db";

        allow-update { none; };

};

# if you don't use IPv6 and also suppress logs for IPv6 related, possible to change

# set BIND to use only IPv4

[root@dlp ~]# vi /etc/sysconfig/named

# add to the end

OPTIONS="-4"

# For how to write the section [*.*.*.*.in-addr.arpa], write your network address reversely like follows

# case of 10.0.0.0/24

# network address        ⇒ 10.0.0.0

# network range          ⇒ 10.0.0.0 - 10.0.0.255

# how to write           ⇒ 0.0.10.in-addr.arpa

# case of 192.168.1.0/24

# network address        ⇒ 192.168.1.0

# network range          ⇒ 192.168.1.0 - 192.168.1.255

# how to write           ⇒ 1.168.192.in-addr.arpa

[3].  Next, Configure Zone Files for each Zone you set in [named.conf] above.

To Configure Zone Files, refer to here.

Comments

Post a Comment

Popular posts from this blog

Java : Variables Declaring

[1]. Java Variables Variables are containers for storing data values. In Java, there are different types of variables, for example: String - stores text, such as "Hello". String values are surrounded by double quotes int - stores integers (whole numbers), without decimals, such as 123 or -123 float - stores floating point numbers, with decimals, such as 19.99 or -19.99 char - stores single characters, such as 'a' or 'B'. Char values are surrounded by single quotes boolean - stores values with two states: true or false [2]. Declaring (Creating) Variables To create a variable, you must specify the type and assign it a value: Syntax type variable = value ; Where type is one of Java's types (such as int or String), and variable is the name of the variable (such as x or name). The equal sign is used to assign values to the variable. To create a variable that should store text, look at the following example: Example Create a variable called  name  of type  Stri...
Read more

Install DNF in RHEL/CentOS 7

  Install DNF in RHEL/CentOS 7 DNF stands for Dandified yum. DNF is a software package manager for RPM-based Linux distributions such as Fedora, RHEL and CentOS. It is the next upcoming major version of Yum. DNF is first introduced in Fedora and has replaced to become the default package manager of the Fedora distributions. DNF is same as Yum that installs, updates and removes packages on RPM bas4ed Linux systems. DNF is introduced for improving the bottlenecks of Yum such as performance, Memory usages, Dependency resolution, speed, and some other factors. The latest stable release of DNF is 1.0 and it is written in Python.   Installation of DNF in RHEL/CentOS 7 1) To install DNF on RHEL/CentOS 7 systems, you need to set up and enable epel YUM REPO before installing DNF. # yum install epel-release 2) Install DNF # yum install DNF 3) You can now start to run commands using DNF. To view the man page you can use the following command: # dnf –help
Read more

SQL Self JOIN

SQL Self JOIN A self JOIN is a regular join, but the table is joined with itself. Self JOIN Syntax SELECT column_name(s) FROM table1 T1, table1 T2 WHERE condition; T1 and T2 are different table aliases for the same table.
Read more