slaine
21-07-2009, 10:39
привет всем!
имеется bind-9.2.4-16.EL4, dhcp-3.0.1-58.EL4,
работает всё в связке, сеть /24.
подскажите как настроить dns с сетью например /27.
настройки в сетевой поменял, в dhcp, named тоже, но записи в прямой и reverse зоне не появляются
как настроить прямую и обратную зону для работы с такими сетями?
прямая
$ORIGIN .
$TTL 86400 ; 1 day
samba.linux IN SOA server.samba.linux. root.samba.linux. (
21524 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS server.samba.linux.
$ORIGIN samba.linux.
$TTL 10800 ; 3 hours
computerr A 192.168.11.52
TXT "3145ec994f614886c5328c42a60ab8bcbe"
latitude120l A 192.168.13.99
TXT "316b6fb2acaca4bd925b1dc4c287930e86"
$TTL 86400 ; 1 day
server A 192.168.11.254
A 192.168.12.254
A 192.168.13.254
$TTL 10800 ; 3 hours
ws002 A 192.168.13.104
TXT "319beac242c4f7af33d8a4f6b1af98cf64"
ws003 A 192.168.11.35
TXT "3132ecb08e768d7875481ce1d95c6425dd"
ws004 A 192.168.13.120
...
reverse zone
$ORIGIN .
$TTL 86400 ; 1 day
13.168.192.in-addr.arpa IN SOA server.samba.linux. root.samba.linux. (
12357 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS server.samba.linux.
$ORIGIN 13.168.192.in-addr.arpa.
$TTL 10800 ; 3 hours
104 PTR ws002.samba.linux.
...
named.conf
//
// named.conf for Red Hat caching-nameserver
//
acl "trusted" {
127.0.0.1;
localhost;
192.168.11.0/24;
192.168.12.0/24;
192.168.13.0/24;
};
#key "rndckey" {
# algorithm hmac-md5;
# secret "9ZH8r+JLkNEaeoI6nqVi2w==";
#};
key "rndckey" {
algorithm hmac-md5;
secret "6zRG6qMj3LROX895cUrnJZ6yY2AJIDj4j8qU6Ynv3DF4iQb3hufGPF7DrKm9";
};
#key DHCP_UPDATER {
# algorithm HMAC-MD5.SIG-ALG.REG.INT;
# secret f521tjw29aLiP90B0PV1XA==;
#};
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
zone-statistics yes;
listen-on { 127.0.0.1; 192.168.11.254; 192.168.12.254; 192.168.13.254; };
allow-transfer { none; };
allow-query { trusted; };
allow-recursion { trusted; };
};
//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN {
type master;
file "named.ip6.local";
allow-update { none; };
};
zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
zone "samba.linux" IN {
type master;
file "/var/named/samba";
allow-update { key rndckey; };
notify no;
};
zone "11.168.192.in-addr.arpa" IN {
type master;
file "/var/named/11.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
zone "12.168.192.in-addr.arpa" IN {
type master;
file "/var/named/12.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
zone "13.168.192.in-addr.arpa" IN {
type master;
file "/var/named/13.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
#include "/etc/rndc.key";
dhcp.conf
authoritative;
ddns-update-style interim;
#ignore client-updates;
allow client-updates;
ddns-domainname "samba.linux";
#dns-updates on;
use-host-decl-names on;
key "rndckey" {
algorithm hmac-md5;
secret "6zRG6qMj3LROX895cUrnJZ6yY2AJIDj4j8qU6Ynv3DF4iQb3hufGPF7DrKm9";
};
#key DHCP_UPDATER {
# algorithm HMAC-MD5.SIG-ALG.REG.INT;
# secret f521tjw29aLiP90B0PV1XA==;
#}
zone samba.linux. {
primary 127.0.0.1;
key rndckey;
}
zone 11.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 12.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 13.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 14.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
subnet 192.168.11.0 netmask 255.255.255.0 {
# --- default gateway
option routers 192.168.11.254;
option subnet-mask 255.255.255.0;
#option nis-domain "domain.org";
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000; # Eastern Standard Time
# option ntp-servers 192.168.1.1;
# option netbios-name-servers 192.168.1.1;
# --- Selects point-to-point node (default is hybrid). Don't change this unless
# -- you understand Netbios very well
# option netbios-node-type 2;
range dynamic-bootp 192.168.11.30 192.168.11.70;
default-lease-time 21600;
max-lease-time 43200;
# we want the nameserver to appear at a fixed address
host ns {
next-server marvin.redhat.com;
hardware ethernet 12:34:56:78:AB:CD;
fixed-address 207.175.42.254;
}
}
subnet 192.168.12.0 netmask 255.255.255.0 {
option routers 192.168.12.254;
option subnet-mask 255.255.255.0;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.12.100 192.168.12.110;
default-lease-time 21600;
max-lease-time 43200;
}
subnet 192.168.13.0 netmask 255.255.255.0 {
option routers 192.168.13.254;
option subnet-mask 255.255.255.0;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.13.97 192.168.13.125;
default-lease-time 21600;
max-lease-time 43200;
}
subnet 192.168.14.184 netmask 255.255.255.248 {
option routers 192.168.14.191;
option subnet-mask 255.255.255.248;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.14.185 192.168.14.189;
default-lease-time 21600;
max-lease-time 43200;
}
имеется bind-9.2.4-16.EL4, dhcp-3.0.1-58.EL4,
работает всё в связке, сеть /24.
подскажите как настроить dns с сетью например /27.
настройки в сетевой поменял, в dhcp, named тоже, но записи в прямой и reverse зоне не появляются
как настроить прямую и обратную зону для работы с такими сетями?
прямая
$ORIGIN .
$TTL 86400 ; 1 day
samba.linux IN SOA server.samba.linux. root.samba.linux. (
21524 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS server.samba.linux.
$ORIGIN samba.linux.
$TTL 10800 ; 3 hours
computerr A 192.168.11.52
TXT "3145ec994f614886c5328c42a60ab8bcbe"
latitude120l A 192.168.13.99
TXT "316b6fb2acaca4bd925b1dc4c287930e86"
$TTL 86400 ; 1 day
server A 192.168.11.254
A 192.168.12.254
A 192.168.13.254
$TTL 10800 ; 3 hours
ws002 A 192.168.13.104
TXT "319beac242c4f7af33d8a4f6b1af98cf64"
ws003 A 192.168.11.35
TXT "3132ecb08e768d7875481ce1d95c6425dd"
ws004 A 192.168.13.120
...
reverse zone
$ORIGIN .
$TTL 86400 ; 1 day
13.168.192.in-addr.arpa IN SOA server.samba.linux. root.samba.linux. (
12357 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS server.samba.linux.
$ORIGIN 13.168.192.in-addr.arpa.
$TTL 10800 ; 3 hours
104 PTR ws002.samba.linux.
...
named.conf
//
// named.conf for Red Hat caching-nameserver
//
acl "trusted" {
127.0.0.1;
localhost;
192.168.11.0/24;
192.168.12.0/24;
192.168.13.0/24;
};
#key "rndckey" {
# algorithm hmac-md5;
# secret "9ZH8r+JLkNEaeoI6nqVi2w==";
#};
key "rndckey" {
algorithm hmac-md5;
secret "6zRG6qMj3LROX895cUrnJZ6yY2AJIDj4j8qU6Ynv3DF4iQb3hufGPF7DrKm9";
};
#key DHCP_UPDATER {
# algorithm HMAC-MD5.SIG-ALG.REG.INT;
# secret f521tjw29aLiP90B0PV1XA==;
#};
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
zone-statistics yes;
listen-on { 127.0.0.1; 192.168.11.254; 192.168.12.254; 192.168.13.254; };
allow-transfer { none; };
allow-query { trusted; };
allow-recursion { trusted; };
};
//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN {
type master;
file "named.ip6.local";
allow-update { none; };
};
zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
zone "samba.linux" IN {
type master;
file "/var/named/samba";
allow-update { key rndckey; };
notify no;
};
zone "11.168.192.in-addr.arpa" IN {
type master;
file "/var/named/11.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
zone "12.168.192.in-addr.arpa" IN {
type master;
file "/var/named/12.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
zone "13.168.192.in-addr.arpa" IN {
type master;
file "/var/named/13.168.192.in-addr.arpa";
allow-update { key rndckey; };
notify no;
};
#include "/etc/rndc.key";
dhcp.conf
authoritative;
ddns-update-style interim;
#ignore client-updates;
allow client-updates;
ddns-domainname "samba.linux";
#dns-updates on;
use-host-decl-names on;
key "rndckey" {
algorithm hmac-md5;
secret "6zRG6qMj3LROX895cUrnJZ6yY2AJIDj4j8qU6Ynv3DF4iQb3hufGPF7DrKm9";
};
#key DHCP_UPDATER {
# algorithm HMAC-MD5.SIG-ALG.REG.INT;
# secret f521tjw29aLiP90B0PV1XA==;
#}
zone samba.linux. {
primary 127.0.0.1;
key rndckey;
}
zone 11.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 12.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 13.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
zone 14.168.192.IN-ADDR.ARPA. {
primary 127.0.0.1;
key rndckey;
}
subnet 192.168.11.0 netmask 255.255.255.0 {
# --- default gateway
option routers 192.168.11.254;
option subnet-mask 255.255.255.0;
#option nis-domain "domain.org";
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000; # Eastern Standard Time
# option ntp-servers 192.168.1.1;
# option netbios-name-servers 192.168.1.1;
# --- Selects point-to-point node (default is hybrid). Don't change this unless
# -- you understand Netbios very well
# option netbios-node-type 2;
range dynamic-bootp 192.168.11.30 192.168.11.70;
default-lease-time 21600;
max-lease-time 43200;
# we want the nameserver to appear at a fixed address
host ns {
next-server marvin.redhat.com;
hardware ethernet 12:34:56:78:AB:CD;
fixed-address 207.175.42.254;
}
}
subnet 192.168.12.0 netmask 255.255.255.0 {
option routers 192.168.12.254;
option subnet-mask 255.255.255.0;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.12.100 192.168.12.110;
default-lease-time 21600;
max-lease-time 43200;
}
subnet 192.168.13.0 netmask 255.255.255.0 {
option routers 192.168.13.254;
option subnet-mask 255.255.255.0;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.13.97 192.168.13.125;
default-lease-time 21600;
max-lease-time 43200;
}
subnet 192.168.14.184 netmask 255.255.255.248 {
option routers 192.168.14.191;
option subnet-mask 255.255.255.248;
option domain-name "samba.linux";
option domain-name-servers server;
option time-offset -18000;
range dynamic-bootp 192.168.14.185 192.168.14.189;
default-lease-time 21600;
max-lease-time 43200;
}