Difference between revisions of "DNS"

From Christoph's Personal Wiki
Jump to: navigation, search
(New page: ==Caching-only DNS servers== This section will only cover using BIND to configure a caching-only DNS server. $ yum install -y bind $ cat /etc/named.conf listen-on port 53 { any; }; li...)
 
(Caching-only DNS servers)
 
(One intermediate revision by the same user not shown)
Line 8: Line 8:
 
  allow-query    { 192.168.0.0/24; };
 
  allow-query    { 192.168.0.0/24; };
 
  forwarders      { 192.168.0.254; };
 
  forwarders      { 192.168.0.254; };
 +
dnssec-validation no; # if on a private network
 
  $ service named start
 
  $ service named start
 
  $ chkconfig named on # make it persistent
 
  $ chkconfig named on # make it persistent
 +
 +
*Update your <code>`[[iptables]]`</code> rules:
 +
-A INPUT -p tcp -m state --state NEW -m tcp --dport 53 -j ACCEPT
 +
-A INPUT -p udp -m state --state NEW -m udp --dport 53 -j ACCEPT
 +
 
  $ ls /var/named/
 
  $ ls /var/named/
 
  $ ls /usr/share/doc/bind-9.8.2/arm/
 
  $ ls /usr/share/doc/bind-9.8.2/arm/
  
 
[[Category:Linux Command Line Tools]]
 
[[Category:Linux Command Line Tools]]

Latest revision as of 20:39, 7 May 2014

Caching-only DNS servers

This section will only cover using BIND to configure a caching-only DNS server.

$ yum install -y bind
$ cat /etc/named.conf
listen-on port 53 { any; };
listen-on-v6 port 53 { any; };
allow-query     { 192.168.0.0/24; };
forwarders      { 192.168.0.254; };
dnssec-validation no; # if on a private network
$ service named start
$ chkconfig named on # make it persistent
-A INPUT -p tcp -m state --state NEW -m tcp --dport 53 -j ACCEPT 
-A INPUT -p udp -m state --state NEW -m udp --dport 53 -j ACCEPT
$ ls /var/named/
$ ls /usr/share/doc/bind-9.8.2/arm/