質問編集履歴

4

編集

2020/02/20 10:42

投稿

t.suekiti
t.suekiti

スコア8

test CHANGED
File without changes
test CHANGED
@@ -32,7 +32,9 @@
32
32
 
33
33
 
34
34
 
35
+ コード
36
+
35
- //
37
+ ```//
36
38
 
37
39
  // named.conf
38
40
 

3

設定内容

2020/02/20 10:41

投稿

t.suekiti
t.suekiti

スコア8

test CHANGED
File without changes
test CHANGED
@@ -25,3 +25,155 @@
25
25
  上の結果です
26
26
 
27
27
  ![イメージ説明](6276831b3560cc5c448cbcafa88ceee1.png)
28
+
29
+
30
+
31
+ # vi /etc/named.confの設定がこれです
32
+
33
+
34
+
35
+ //
36
+
37
+ // named.conf
38
+
39
+ //
40
+
41
+ // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
42
+
43
+ // server as a caching only nameserver (as a localhost DNS resolver only).
44
+
45
+ //
46
+
47
+ // See /usr/share/doc/bind*/sample/ for example named configuration files.
48
+
49
+ //
50
+
51
+ // See the BIND Administrator's Reference Manual (ARM) for details about the
52
+
53
+ // configuration located in /usr/share/doc/bind-{version}/Bv9ARM.html
54
+
55
+
56
+
57
+ options {
58
+
59
+ listen-on port 53 { any; };
60
+
61
+ listen-on-v6 port 53 { none; };
62
+
63
+ directory "/var/named";
64
+
65
+ dump-file "/var/named/data/cache_dump.db";
66
+
67
+ statistics-file "/var/named/data/named_stats.txt";
68
+
69
+ memstatistics-file "/var/named/data/named_mem_stats.txt";
70
+
71
+ recursing-file "/var/named/data/named.recursing";
72
+
73
+ secroots-file "/var/named/data/named.secroots";
74
+
75
+ allow-query { localhost; 192.168.50.39/24; };
76
+
77
+ allow-transfer { localhost; 192.168.50.39/24; };
78
+
79
+ /*
80
+
81
+ - If you are building an AUTHORITATIVE DNS server, do NOT enable recursion.
82
+
83
+ - If you are building a RECURSIVE (caching) DNS server, you need to enable
84
+
85
+ recursion.
86
+
87
+ - If your recursive DNS server has a public IP address, you MUST enable access
88
+
89
+ control to limit queries to your legitimate users. Failing to do so will
90
+
91
+ cause your server to become part of large scale DNS amplification
92
+
93
+ attacks. Implementing BCP38 within your network would greatly
94
+
95
+ reduce such attack surface
96
+
97
+ */
98
+
99
+ recursion yes;
100
+
101
+
102
+
103
+ dnssec-enable yes;
104
+
105
+ dnssec-validation yes;
106
+
107
+
108
+
109
+ /* Path to ISC DLV key */
110
+
111
+ bindkeys-file "/etc/named.root.key";
112
+
113
+
114
+
115
+ managed-keys-directory "/var/named/dynamic";
116
+
117
+
118
+
119
+ pid-file "/run/named/named.pid";
120
+
121
+ session-keyfile "/run/named/session.key";
122
+
123
+ };
124
+
125
+
126
+
127
+ logging {
128
+
129
+ channel default_debug {
130
+
131
+ file "data/named.run";
132
+
133
+ severity dynamic;
134
+
135
+ };
136
+
137
+ };
138
+
139
+ view "internal" {
140
+
141
+ match-clients {
142
+
143
+ localhost;
144
+
145
+ 192.168.50.39/24;
146
+
147
+ };
148
+
149
+ zone "." IN {
150
+
151
+ type hint;
152
+
153
+ file "named.ca";
154
+
155
+ };
156
+
157
+ zone "hakubook.keyword-on.net" IN {
158
+
159
+ type master;
160
+
161
+ file "hakubook.keyword-on.net";
162
+
163
+ allow-update { none; };
164
+
165
+ };
166
+
167
+ zone "50.168.192.in-addr.arpa" IN {
168
+
169
+ type master;
170
+
171
+ file "50.168.192.db";
172
+
173
+ allow-update { none; };
174
+
175
+ include "/etc/named.rfc1912.zones";
176
+
177
+ include "/etc/named.root.key";
178
+
179
+ };

2

エラー結果(2)

2020/02/20 10:24

投稿

t.suekiti
t.suekiti

スコア8

test CHANGED
File without changes
test CHANGED
@@ -17,3 +17,11 @@
17
17
  以下の結果がでます
18
18
 
19
19
  ![イメージ説明](68898c0fa0f97348fa6ce07795cd1281.png)
20
+
21
+
22
+
23
+ systemctl status named
24
+
25
+ 上の結果です
26
+
27
+ ![イメージ説明](6276831b3560cc5c448cbcafa88ceee1.png)

1

タイトル間違っていたので変更しました

2020/02/20 09:47

投稿

t.suekiti
t.suekiti

スコア8

test CHANGED
@@ -1 +1 @@
1
- BIND:ゾーンの設定で表示にはないものあるためインサートで入力るかが知りたいです
1
+ BIND:ゾーンの設定でエラー出ま。解決方法が知りたいです
test CHANGED
File without changes