我在 CentOS 5.5 上设置了相当简单的 BIND(在 chrooted 环境中),用于处理两个域的 DNS。我刚刚添加了第三个域,但它不起作用。它必须是简单的。
以下是我的 named.conf 的摘录:
acl "trusted" {
192.168.100.0/24;
localhost;
};
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named.stats";
zone-statistics yes;
notify no;
transfer-format many-answers;
max-transfer-time-in 60;
interface-interval 0;
version "Not Available";
forwarders {
8.8.8.8;
8.8.4.4;
};
allow-query {
trusted;
};
};
zone "." {
type hint;
file "named.root";
};
zone "localdomain." IN {
type master;
file "localdomain.zone";
};
zone "localhost" {
type master;
file "localhost.zone";
};
zone "example.corp" {
type master;
file "example.corp.zone";
};
zone "tudy.it" {
type master;
notify no;
file "tudy.it.zone";
};
这是我的 tudy.it 区域文件:
$TTL 3600
$ORIGIN tudy.it.
@ 3600 SOA dns1.example.corp. sean.example.corp. (
2011030306 ; serial YYYYMMDDnn
24h ; Refresh (24 hours)
2h ; Retry (2 hours)
1000h ; Expire (1000 hours)
2d ) ; Minimum (2 days)
IN NS dns1.example.corp.
@ IN A 192.168.100.40
s IN A 192.168.100.40
当我查询 DNS 服务器时,没有得到答复:
$ dig @192.168.100.10 s.tudy.it ANY
; <<>> DiG 9.7.1-P2 <<>> @192.168.100.10 s.tudy.it ANY
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 64075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;s.tudy.it. IN ANY
;; Query time: 0 msec
;; SERVER: 192.168.100.10#53(192.168.100.10)
;; WHEN: Thu Mar 3 15:16:32 2011
;; MSG SIZE rcvd: 27
我肯定我遗漏了一些显而易见的东西。有什么建议吗?
答案1
您是否查看过/var/log/messagesnamed 中的任何警告/错误?您可以在前台启动 named 并使用以下命令增加调试级别
/usr/sbin/named -f -d 3 -t /path/to/chroot
它会将消息输出到标准输出。