dns反相解析問題
各位大俠好,我剛配置了一台dns,正向解析可以,反相解析就是不可以。不知道為什麼,請大家幫忙分析下。
在線等待。
# host dns.test.com
dns.test.com has address 10.88.125.167
# host 10.88.125.167
Host 167.125.88.10.in-addr.arpa not found: 3(NXDOMAIN)
# more /etc/named.conf
options { directory "/var/named";
};
#zone "." {
# type hint;
# file "named.root";
#};
zone "test.com" {
type master;
file "test.com";
};
zone "testtwo.com" {
type master;
file "testtwo.com";
};
zone "125.88.10.in-addr.arpa" {
type master;
file "named.125.88.10";
};
# more /var/named/named.125.88.10
$TTL 86400
@ IN SOA 125.88.10.in-addr.arpa. root (
1997022700 ; Serial
2880 ; Refresh
1440 ; Retry
360000 ; Expire
8640 ) ; Minimum
IN NS dns.test.com.
167.125.88.10 IN PTR dns.test.com.
33.125.88.10 IN PTR www.test.com.
# more /var/named/test.com
$ORIGIN test.com.
$TTL 86400
@ IN SOA dns.test.com. root (
20070808 ;serial
1H ;refresh
15M ;retry
1W ;expiry
1D ) ;minimum
test.com. IN NS dns.test.com.
dns.test.com. IN A 10.88.125.167
# more /etc/resolv.conf
#search localdomain
search test.com
# nameserver 127.0.0.1
nameserver 10.88.125.167
# more /etc/host
/etc/host: 娌℃湁閭d釜鏂囦歡鎴栫洰褰?
# more /etc/host
host.conf hosts hosts.allow hosts.deny
# more /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 czj2.localdomain czj2
255.255.255.255 czj2
# named -g
17-Mar-2009 22:24:36.955 starting BIND 9.3.3rc2 -g
17-Mar-2009 22:24:36.957 found 1 CPU, using 1 worker thread
17-Mar-2009 22:24:36.964 loading configuration from '/etc/named.conf'
17-Mar-2009 22:24:36.967 listening on IPv4 interface lo, 127.0.0.1#53
17-Mar-2009 22:24:36.973 binding TCP socket: address in use
17-Mar-2009 22:24:36.975 listening on IPv4 interface eth0, 10.88.125.167#53
17-Mar-2009 22:24:36.975 binding TCP socket: address in use
17-Mar-2009 22:24:36.985 couldn't add command channel 127.0.0.1#953: address in use
17-Mar-2009 22:24:36.986 couldn't add command channel ::1#953: address in use
17-Mar-2009 22:24:36.987 ignoring config file logging statement due to -g option
17-Mar-2009 22:24:36.988 couldn't open pid file '/var/run/named/named.pid': Permission denied
17-Mar-2009 22:24:36.988 exiting (due to early fatal error)
# tai -30 /var/log/messages
-bash: tai: command not found
# tail -n 30 /var/log/messages
Mar 17 22:05:42 czj2 avahi-daemon: Server startup complete. Host name is czj2.local. Local service cookie is 3824733805.
Mar 17 22:05:43 czj2 avahi-daemon: Service "SFTP File Transfer on czj2" (/services/sftp-ssh.service) successfully established.
Mar 17 22:05:45 czj2 smartd: smartd version 5.36 Copyright (C) 2002-6 Bruce Allen
Mar 17 22:05:45 czj2 smartd: Home page is http://smartmontools.sourceforge.net/
Mar 17 22:05:45 czj2 smartd: Opened configuration file /etc/smartd.conf
Mar 17 22:05:45 czj2 smartd: Configuration file /etc/smartd.conf parsed.
Mar 17 22:05:45 czj2 smartd: Device: /dev/sda, opened
Mar 17 22:05:45 czj2 smartd: Device: /dev/sda, IE (SMART) not enabled, skip device Try 'smartctl -s on /dev/sda' to turn on SMART features
Mar 17 22:05:45 czj2 smartd: Unable to register SCSI device /dev/sda at line 32 of file /etc/smartd.conf
Mar 17 22:05:45 czj2 smartd: Device /dev/sda not available
Mar 17 22:05:45 czj2 smartd: Device: /dev/sdb, opened
Mar 17 22:05:45 czj2 smartd: Device: /dev/sdb, IE (SMART) not enabled, skip device Try 'smartctl -s on /dev/sdb' to turn on SMART features
Mar 17 22:05:45 czj2 smartd: Unable to register SCSI device /dev/sdb at line 33 of file /etc/smartd.conf
Mar 17 22:05:45 czj2 smartd: Device /dev/sdb not available
Mar 17 22:05:45 czj2 smartd: Monitoring 0 ATA and 0 SCSI devices
Mar 17 22:05:45 czj2 smartd: smartd has fork()ed into background mode. New PID=2628.
Mar 17 22:12:05 czj2 named: starting BIND 9.3.3rc2 -u named
Mar 17 22:12:05 czj2 named: found 1 CPU, using 1 worker thread
Mar 17 22:12:05 czj2 named: loading configuration from '/etc/named.conf'
Mar 17 22:12:05 czj2 named: listening on IPv4 interface lo, 127.0.0.1#53
Mar 17 22:12:05 czj2 named: listening on IPv4 interface eth0, 10.88.125.167#53
Mar 17 22:12:05 czj2 named: command channel listening on 127.0.0.1#953
Mar 17 22:12:05 czj2 named: command channel listening on ::1#953
Mar 17 22:12:05 czj2 named: zone 125.88.10.in-addr.arpa/IN: loaded serial 1997022700
Mar 17 22:12:05 czj2 named: zone test.com/IN: loaded serial 20070808
Mar 17 22:12:05 czj2 named: zone testtwo.com/IN: loaded serial 20090066
Mar 17 22:12:05 czj2 named: running
Mar 17 22:12:05 czj2 named: zone testtwo.com/IN: sending notifies (serial 20090066)
Mar 17 22:12:05 czj2 named: zone 125.88.10.in-addr.arpa/IN: sending notifies (serial 1997022700)
Mar 17 22:12:05 czj2 named: client 10.88.125.167#32771: received notify for zone '125.88.10.in-addr.arpa'
# named-
named-bootconf named-checkconf named-checkzone
# named-checkconf /etc/named.conf
# named-checkzone /var/named/named.125.88.10
usage: named-checkzone [-djqvD] [-c class] [-o output] [-t directory] [-w directory] [-k (ignore|warn|fail)] [-n (ignore|warn|fail)] zonename filename
# named-checkzone named.125.88.10 /var/named/named.125.88.10
zone named.125.88.10/IN: loaded serial 1997022700
OK
#
《解決方案》
# more /var/named/named.125.88.10
$TTL 86400
@ IN SOA 125.88.10.in-addr.arpa. root (
1997022700 ; Serial
2880 ; Refresh
1440 ; Retry
360000 ; Expire
8640 ) ; Minimum
IN NS dns.test.com.
167 IN PTR dns.test.com.
33 IN PTR www.test.com.
不要加.125.88.10
《解決方案》
使用nslookup或者dig測試。
《解決方案》
回復 #3 marsaber 的帖子
# host 10.88.125.167
Host 167.125.88.10.in-addr.arpa not found: 3(NXDOMAIN)
# nslookup
> 10.88.125.167
Server: 10.88.125.167
Address: 10.88.125.167#53
** server can't find 167.125.88.10.in-addr.arpa: NXDOMAIN
> dns.test.com
Server: 10.88.125.167
Address: 10.88.125.167#53
Name: dns.test.com
Address: 10.88.125.167
>
還是不行
《解決方案》
http://bbs2.chinaunix.net/thread-1105349-1-1.html
先看看這裡的演示吧,興許對你有幫助。
《解決方案》
回復 #2 marsaber 的帖子
# more /var/named/named.125.88.10
$TTL 86400
@ IN SOA in-addr.arpa. root.localhost. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS dns.test.com.
167.125.88.10 IN PTR dns.test.com.
33.125.88.10 IN PTR www.test.com.
# host 10.88.125.167
Host 167.125.88.10.in-addr.arpa not found: 3(NXDOMAIN)
#
也不行,起始授權機構應該是主域名伺服器:fqdn,沒錯吧
《解決方案》
回復 #1 qiyuan21999 的帖子
使用私有地址做配置測試,是不需要授權的問題的
《解決方案》
回復 #7 kns1024wh 的帖子
問題還是沒有解決,我仔細看了,感覺配置寫的沒錯,就是不知道為什麼解析不了。
《解決方案》
還是沒解決掉
《解決方案》
問題已經解決,要把反相區域文件寫到/var/named/chroot/var/named/下,可能和redhat5的安全有關係,至於為什麼在/var/named下可以,還是不知道。