- 論壇徽章:
- 0
|
|
前天,因為我在solaris中打補(bǔ)丁�����,導(dǎo)致了sendmail無法發(fā)郵件到外網(wǎng)���,我以為是dns出問題了���,原來只有一個主dns,所以重新配置了一下��。\r\nBind\r\n# /usr/sbin/in.named -v\r\nin.named BIND 8.2.2-P5 Mon Apr 12 05:38:46 PDT 2004\r\n Generic Patch-5.8-April 2004\r\n主dns配置文件如下\r\nNamed.conf\r\n# more named.conf\r\noptions {\r\ndirectory \"/var/named\";\r\n};\r\n\r\nzone \"0.0.127.in-addr.arpa\" in {\r\ntype master;\r\nfile \"db.local\";\r\n};\r\n\r\nzone \".\" in {\r\ntype hint;\r\nfile \"db.cache\";\r\n};\r\n\r\nzone \"mnu.edu.cn\" in {\r\ntype master;\r\nfile \"db.mnu.edu.cn\";\r\n};\r\n\r\nzone \"152.41.210.in-addr.arpa\" in {\r\ntype master;\r\nfile \"db.152.41.210\";\r\n};\r\n\r\nzone \"94.139.61.in-addr.arpa\" in {\r\ntype master;\r\nfile \"db.94.139.61\";\r\n};\r\n\r\nZone文件配置(db.mnu.edu.cn)只寫一個���,其它的類似\r\n# more db.mnu.edu.cn\r\n; Created Wed Apr 7 20:15:00 CST 2004 by services/ns-admin\r\n; from setup@10.10.0.34\r\n;\r\n@ IN SOA pridns.mnu.edu.cn. root.mnu.edu.cn. (\r\n 3992954999 ; serial\r\n 10800 ; refresh\r\n 3600 ; retry\r\n 604800 ; expire\r\n 86400 ) ; min ttl\r\n\r\nmnu.edu.cn. IN NS pridns ;primary\r\nmnu.edu.cn. IN MX 10 second\r\nmnu.edu.cn. IN NS second ;secondary 1\r\n\r\nmnu.edu.cn. IN A 210.41.152.10\r\nmnu.edu.cn. IN A 210.41.152.5\r\nwww IN A 61.139.94.206\r\njwc IN A 61.139.94.205\r\nlib IN A 61.139.94.204\r\nsecond IN A 210.41.152.5\r\npridns IN A 210.41.152.10\r\nmail IN CNAME second\r\n\r\n輔dns配置\r\nNamed.conf\r\n\r\n# more named.conf\r\noptions {\r\ndirectory \"/var/named\";\r\n};\r\n\r\nzone \"0.0.127.in-addr.arpa\" in {\r\ntype master;\r\nfile \"db.local\";\r\n};\r\n\r\nzone \".\" in {\r\ntype hint;\r\nfile \"db.cache\";\r\n};\r\n\r\nzone \"mnu.edu.cn\" in {\r\ntype slave;\r\nfile \"mnu.edu.cn.backup\";\r\nmasters {\r\n 210.41.152.10;\r\n };\r\n};\r\n\r\nzone \"152.41.210.in-addr.arpa\" in {\r\ntype slave;\r\nfile \"152.41.210.backup\";\r\nmasters {\r\n 210.41.152.10;\r\n };\r\n};\r\n\r\nzone \"94.139.61.in-addr.arpa\" in {\r\ntype slave;\r\nfile \"94.139.61.backup\";\r\nmasters {\r\n 210.41.152.10;\r\n };\r\n};\r\n\r\n配置時要注意以下幾點\r\n首選要保證主dns在啟動時沒有錯誤發(fā)生�。可看/var/adm/messages文件的記錄信息�。\r\n1.輔dns配置時,需要從主dns傳送的zone���,type類型為slave,注意下面zone \"94.139.61.in-addr.arpa\" in {\r\ntype slave;\r\nfile \"94.139.61.backup\";\r\nmasters {\r\n 210.41.152.10;\r\n };\r\n};\r\n\r\n表示輔dns中 94.139.61.in-addr.arpa 的zone是從主dns傳送過來,文件名為94.139.61.backupy主dns的地址是210.41.152.10�����。這里是masters不是master不然輔dns啟動會報錯如下:.\r\n\r\nJul 23 11:27:37 second named[178]: [ID 295310 daemon.error] no \'masters\' stateme\r\nnt for non-master zone \'152.41.210.in-addr.arpa\'\r\n\r\n我就在這里出問題了���,找了很久沒有找到錯誤����。\r\n2.不需要從主dns傳送的�����,type類型為master����。Zone文件需要自己手工建立�����。\r\n3.主dns的zone文件內(nèi)一定要有輔dns的ns記錄及A記錄,這點非常重要�����,我有找這個問題是花了不少時間的���。\r\n主dns會報錯:\r\nJul 23 11:32:28 pridns named[174]: [ID 295310 daemon.warning] master zone \"mnu.e\r\ndu.cn\" (IN) rejected due to errors (serial 2992953982)\r\n輔dns會報錯如下:\r\nJul 23 11:27:37 second named-xfer[481]: [ID 364785 daemon.notice] [210.41.152.10\r\n] not authoritative for mnu.edu.cn, SOA query got rcode 0, aa 0, ancount 1, auco\r\nunt 0\r\n\r\n4.在主反向zone文件內(nèi)一定要有@ IN NS pridns.mnu.edu.cn\r\n不然主dns的zone文件會傳送不到輔dns中去,且會在主dns日志文件內(nèi)出現(xiàn)在如下信息����,.\r\n\r\nJul 20 10:33:52 pridns named[181]: [ID 295310 daemon.warning] Zone \"94.139.61.in\r\n-addr.arpa\" (file db.94.139.61): no NS RRs found at zone top\r\nJul 20 10:33:52 pridns named[181]: [ID 295310 daemon.warning] master zone \"94.13\r\n9.61.in-addr.arpa\" (IN) rejected due to errors (serial 2081340100)\r\n\r\n輔dns中日志文件內(nèi)出現(xiàn)在如下信息,\r\n\r\nJul 23 14:51:23 second named-xfer[340]: [ID 364785 daemon.notice] [210.41.152.10\r\n] not authoritative for 94.139.61.in-addr.arpa, SOA query got rcode 0, aa 0, anc\r\nount 1, aucount 0\r\nJul 23 15:01:23 second named-xfer[371]: [ID 364785 daemon.notice] [210.41.152.10\r\n] not authoritative for 94.139.61.in-addr.arpa, SOA query got rcode 0, aa 0, anc\r\nount 1, aucount 0\r\n\r\n如果要求輔dns立即和主dns同步���,在輔dns上刪除需要傳送的文件���,重新啟動in.named即可 |
|
免費注冊
發(fā)表于 2004-07-26 12:56
