Scribd Logo
Upload

Welcome to Scribd!

  • Instalando Un Servidor DNS Con Bind9 en CentOS 7

    Uploaded by

    Eduardo miranda
    18 views2 pages
    The document provides instructions for configuring BIND as a DNS server on a Linux system. It includes configuring named.conf to listen on port 53, define forwarders and allowed query addresses, and configure zones for the cubanet.cu domain and associated reverse lookup zone. It also covers starting and enabling the named service, configuring the firewall to allow DNS traffic, setting SELinux contexts, and validating the DNS configuration.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document provides instructions for configuring BIND as a DNS server on a Linux system. It includes configuring named.conf to listen on port 53, define forwarders and allowed query addresses, and configure zones for the cubanet.cu domain and associated reverse lookup zone. It also covers starting and enabling the named service, configuring the firewall to allow DNS traffic, setting SELinux contexts, and validating the DNS configuration.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    18 views2 pages

    Instalando Un Servidor DNS Con Bind9 en CentOS 7

    Uploaded by

    Eduardo miranda
    The document provides instructions for configuring BIND as a DNS server on a Linux system. It includes configuring named.conf to listen on port 53, define forwarders and allowed query addresses, and configure zones for the cubanet.cu domain and associated reverse lookup zone. It also covers starting and enabling the named service, configuring the firewall to allow DNS traffic, setting SELinux contexts, and validating the DNS configuration.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    of 2

    yum install bind bind-utils

    - listen-on port 53 { 127.0.0.1; 10.10.30.15;}; ### Master DNS IP ###

    - forwarders { 200.55.128.3; 200.55.128.4; }; ### Servidores DNS ###

    - allow-query { localhost; 10.10.30.0/24; 192.168.1.0/24}; ### Rangos de IP de


    mi red ###

    - recursion no; ### Si estamos ante un servidor DNS real lo dejamos en no, para un
    servidor local en yes.

    zone "cubanet.cu" IN {
    type master;
    file "forward.cubanet";
    allow-update { none; };
    };
    zone "30.10.10.in-addr.arpa" IN {
    type master;
    file "reverse.cubanet";
    allow-update { none; };
    };

    include "/etc/named.rfc1912.zones";
    include "/etc/named.root.key";

    - nano /var/named/forward.cubanet

    $TTL 86400
    @ IN SOA ns.cubanet.cu. root.cubanet.cu. (
    2011071001 ;Serial
    3600 ;Refresh
    1800 ;Retry
    604800 ;Expire
    86400 ;Minimum TTL
    )
    @ IN NS ns.cubanet.cu.
    @ IN A 10.10.30.15
    ns IN A 10.10.30.15
    www IN A 10.10.30.5
    webmail IN A 192.168.1.7

    Crear archivo de zona inversa:

    - nano /var/named/reverse.cubanet

    $TTL 86400
    @ IN SOA ns.cubanet.cu. root.cubanet.cu. (
    2011071001 ;Serial
    3600 ;Refresh
    1800 ;Retry
    604800 ;Expire
    86400 ;Minimum TTL
    )
    @ IN NS ns.cubanet.cu.
    @ IN PTR cubanet.cu.
    ns IN A 10.10.30.15
    2 IN PTR ns.cubanet.cu.
    3 IN PTR www.cubanet.cu.
    4 IN PTR webmail.cubanet.cu.

    - systemctl enable named


    - systemctl start named

    Firewall:

    - firewall-cmd --permanent --add-port=53/tcp

    - firewall-cmd --permanent --add-port=53/udp

    - firewall-cmd --reload

    Permisos y SELinux:

    - chgrp named -R /var/named


    - chown -v root:named /etc/named.conf
    - restorecon -rv /var/named
    - restorecon /etc/named.conf

    named-checkconf /etc/named.conf

    named-checkzone cubanet.cu /var/named/forward.cubanet


    named-checkzone cubanet.cu /var/named/reverse.cubanet

    - dig ns.cubanet.cu
    - nslookup cubanet.cu

    You might also like