//name.conf
acl "trust" {127.0.0.1; 172.20.0.0/16; };
options {
directory "/etc/namedb";
pid-file "/var/run/named/pid";
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";
allow-recursion { trust; };
forwarders {
168.95.1.1; // to HiNet DNS
};
query-source address * port 53;
};
key "rndc-key" {
algorithm hmac-md5;
secret "secretNumberGenerateByRndc-confgen";
};
controls {
inet * allow {any;} keys { "rndc-key";};
};
zone "." {
type hint;
file "named.root";
};
zone "0.0.127.IN-ADDR.ARPA" {
type master;
file "master/localhost.rev";
};
zone "your.domain" {
type master;
file "master/cmsh.fwd";
};
zone "1.168.192.in-addr.arpa" {
type master;
file "master/192.168.1.rev";
};
zone 2.168.192.in-addr.arpa" {
type master;
file "master/192.168.2.rev";
};
//rndc.key generate by
rndc-confgen > rndc.key
//rndc.conf
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "secretNumberGenerateByRndc-confgen";
};
options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
# End of rndc.conf
最後
rndc reload
ok 就好了
沒有留言:
張貼留言