BIND 9 主控未回复附加部分

tag-icon tag-icon domain-name-system bind
BIND 9 主控未回复附加部分

我们在 NAT 后面的 Windows Server 2008 R2 上运行 ISC BIND 9.14.3 64 位。它是主服务器。有三个外包的从属服务器(不知道运行的是什么 DNS 软件)。从属服务器甚至为区域外的记录返回额外的部分,但 BIND 主服务器没有。

named.conf 中的选项包括:

options {
  directory "c:\named";
  listen-on port 5353 { 192.168.4.12; };
  listen-on-v6 { none; };
  allow-query { any; };
  pid-file "etc\named.pid";
  recursion no;
  masterfile-format text;
  rrset-order { class IN type ANY name "*" order cyclic; };
  minimal-responses no;
  additional-from-auth yes;
  additional-from-cache yes;
};

使用dig查询主服务器不会返回附加部分:

[glm] c:\users\glm>dig mx gmeana.com @ns1.gmeana.net +additional

; <<>> DiG 9.14.3 <<>> mx gmeana.com @ns1.gmeana.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54714
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 4, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: 094570b8eaebb8d9a7872bc35d1f1326e46b01808d9290db (good)
;; QUESTION SECTION:
;gmeana.com.                    IN      MX

;; ANSWER SECTION:
gmeana.com.             21600   IN      MX      30 mail2.gmeana.net.
gmeana.com.             21600   IN      MX      10 mail1.gmeana.net.
gmeana.com.             21600   IN      MX      20 mail3.gmeana.net.

;; AUTHORITY SECTION:
gmeana.com.             21600   IN      NS      ns3.gmeana.net.
gmeana.com.             21600   IN      NS      ns4.gmeana.net.
gmeana.com.             21600   IN      NS      ns1.gmeana.net.
gmeana.com.             21600   IN      NS      ns2.gmeana.net.

;; Query time: 3 msec
;; SERVER: 212.89.28.113#53(212.89.28.113)
;; WHEN: Fri Jul 05 11:06:46 Romance Daylight Time 2019
;; MSG SIZE  rcvd: 215

使用dig查询任何辅助确实会返回额外的部分:

[glm] c:\users\glm>dig mx gmeana.com @ns2.gmeana.net +additional

; <<>> DiG 9.14.3 <<>> mx gmeana.com @ns2.gmeana.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34712
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 4, ADDITIONAL: 7
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;gmeana.com.                    IN      MX

;; ANSWER SECTION:
gmeana.com.             21600   IN      MX      10 mail1.gmeana.net.
gmeana.com.             21600   IN      MX      20 mail3.gmeana.net.
gmeana.com.             21600   IN      MX      30 mail2.gmeana.net.

;; AUTHORITY SECTION:
gmeana.com.             21600   IN      NS      ns1.gmeana.net.
gmeana.com.             21600   IN      NS      ns2.gmeana.net.
gmeana.com.             21600   IN      NS      ns3.gmeana.net.
gmeana.com.             21600   IN      NS      ns4.gmeana.net.

;; ADDITIONAL SECTION:
mail1.gmeana.net.       21600   IN      A       212.89.1.216
mail3.gmeana.net.       21600   IN      A       212.89.28.113
mail2.gmeana.net.       21600   IN      A       212.89.1.216
ns1.gmeana.net.         21600   IN      A       212.89.28.113
ns2.gmeana.net.         21600   IN      A       116.203.6.3
ns3.gmeana.net.         21600   IN      A       185.34.136.178
ns4.gmeana.net.         21600   IN      A       107.191.99.111

;; Query time: 51 msec
;; SERVER: 116.203.6.3#53(116.203.6.3)
;; WHEN: Fri Jul 05 11:07:56 Romance Daylight Time 2019
;; MSG SIZE  rcvd: 288

named.conf我不知道为了获得带有附加部分的响应,必须在 BIND 中做哪些其他配置。

相关内容