安裝轉體
- 至 https://www.isc.org/bind/ 下載最新版 BIND (BIND9.14.6.x64.zip)
- 將 BIND9.x.y.x64.zip 解壓縮 (BIND9.x.y.x64)
- 以系統管理員身分執行BINDinstall.exe
- 輸入 named 要使用的密碼,點選 install 後,系統將安裝至 /Program Files/BIND 9/bin
安裝設定檔
- 將 named.conf, named.root, master.localhost, localhost.rev 等安裝至 /Program Files/ISC BIND 9/etc
- 將要管理的 zone file (mydns.zone) 安裝至 /Program Files/ISC BIND 9/etc
- 以系統管理員身分執行 cmd
- cd /Program Files/ISC BIND 9/bin
- rndc-confgen -a
- 用 named-checkconf 檢查 named.conf 設定檔
- 用 named-checkzone zonename ../etc/zonefile 檢查 zone 設定檔
修改目錄權限
- 開啟檔案管理員,移動目錄至 /Program Files/ISC BIND 9/
- 按右鍵點選 etc,點選 內容
- 點選 安全性 頁籤
- 點選編輯,新增 named 使用者具備 完全控制 的權限,完成後點選確定
啟動服務
- 執行 services.msc ,找到 ISC BIND,點選啟動服務。
大功告成!
=== named.conf ===
options {
directory "C:\Program Files\ISC BIND 9\etc";
recursion no;
allow-transfer {"none";};
allow-recursion {"none";};
};
logging {
channel default_log {
file "C:\Program Files\ISC BIND 9\etc\named.log" versions 3 size 5m;
severity warning;
print-time yes;
print-severity yes;
print-category yes;
};
channel query_log {
file "C:\Program Files\ISC BIND 9\etc\query.log" versions 3 size 5m;
severity warning;
print-time yes;
print-severity yes;
print-category yes;
};
category default {
default_log;
};
category queries {
query_log;
};
};
view "local" in {
match-clients {
127.0.0.1/32;
::1;
};
recursion yes;
allow-transfer {any;};
allow-recursion {any;};
zone "." in {
type hint;
file "named.root";
};
zone "localhost" in {
type master;
file "master.localhost";
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "localhost.rev";
};
zone "myzone.top" in {
type master;
file "myzone.top.zone";
};
};
view "external" {
match-clients {
any;
};
zone "myzone.top" in {
type master;
file "myzone.top.zone";
};
};
=== master.local ===
$TTL 86400 ; 24 hours could have been written as 24h or 1D
$ORIGIN localhost.
; line below expands to: localhost 1D IN SOA localhost root.localhost
@ 1D IN SOA @ root (
2002022401 ; serial
3H ; refresh
15 ; retry
1w ; expire
3h ; minimum
)
@ 1D IN NS @
1D IN A 127.0.0.1
=== localhost.rev ===
$TTL 86400 ;
; could use $ORIGIN 0.0.127.IN-ADDR.ARPA.
@ IN SOA localhost. root.localhost. (
1997022700 ; Serial
3h ; Refresh
15 ; Retry
1w ; Expire
3h ) ; Minimum
IN NS localhost.
1 IN PTR localhost.
=== named.root ===
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.cache
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: May 23, 2019
; related version of root zone: 2019052300
;
; FORMERLY NS.INTERNIC.NET
;
. 3600000 NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
A.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:ba3e::2:30
;
; FORMERLY NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 199.9.14.201
B.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:200::b
;
; FORMERLY C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
C.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2::c
;
; FORMERLY TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 199.7.91.13
D.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2d::d
;
; FORMERLY NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
E.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:a8::e
;
; FORMERLY NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
F.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:2f::f
;
; FORMERLY NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
G.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:12::d0d
;
; FORMERLY AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 198.97.190.53
H.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:1::53
;
; FORMERLY NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
I.ROOT-SERVERS.NET. 3600000 AAAA 2001:7fe::53
;
; OPERATED BY VERISIGN, INC.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
J.ROOT-SERVERS.NET. 3600000 AAAA 2001:503:c27::2:30
;
; OPERATED BY RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
K.ROOT-SERVERS.NET. 3600000 AAAA 2001:7fd::1
;
; OPERATED BY ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 199.7.83.42
L.ROOT-SERVERS.NET. 3600000 AAAA 2001:500:9f::42
;
; OPERATED BY WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
M.ROOT-SERVERS.NET. 3600000 AAAA 2001:dc3::35
; End of file
沒有留言:
張貼留言