Salah satu aplikasi DNS server yang mudah kita pelajari adalah BIND. Tutorial cara installasi pun beragam ada yang sangat lengkap bahkan mungkin sudah level advanced. Tulisan saya kali ini mencoba memberikan installasi dan konfigurasi yang masih sangat dasar sekali agar mudah di ikuti dan di pahami.
Install DNS
Langkah pertama yang dilakukan adalah melakukan installasi paket BIND apabila belum terinstall di CentOS
|
1 |
yum -y install bind bind-utils |
Setup BIND
Setelah installasi selesai, sebelum melakukan konfigurasi, lakukan backup file konfigurasi bind terlebih dahulu:
|
1 |
cp /etc/named.conf /etc/named.conf.default |
Rubah isi file named.conf
|
1 |
vi /etc/named.conf |
Rubah beberapa konfigurasi seperti berikut dan tambahkan konfigurasi domain yang hendak menggunakan DNS server. Disini saya mencontohkan domain linboxs.net
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 |
// // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { # listen-on port 53 { 127.0.0.1; }; # listen-on-v6 port 53 { ::1; }; listen-on-v6 {None;}; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { any; }; recursion yes; dnssec-enable yes; dnssec-validation yes; dnssec-lookaside auto; /* Path to ISC DLV key */ bindkeys-file "/etc/named.iscdlv.key"; managed-keys-directory "/var/named/dynamic"; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "linboxs.net" IN { type master; file "linboxs.net"; allow-update {none;}; }; include "/etc/named.rfc1912.zones"; include "/etc/named.root.key"; |
Ini adalah tambahan konfigurasi untuk domain linboxs.net
|
1 2 3 4 5 |
zone "linboxs.net" IN { type master; file "linboxs.net"; allow-update {none;}; }; |
Setiap domain yang ada di DNS maka harus dibuat file forward zone seperti berikut:
|
1 |
vi /var/named/linboxs.net |
Isi dari file forward zone untuk domain linboxs.net:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
$TTL 86400 @ IN SOA ns1.linboxs.net. root.linboxs.net. ( 2013042201 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) ; Specify our two nameservers IN NS ns1.linboxs.net. ; Resolve nameserver hostnames to IP, replace with your two droplet IP addresses. ns1 IN A 192.168.1.112 ; Define hostname -> IP pairs which you wish to resolve @ IN A 192.168.1.112 @ IN MX 10 mail.linboxs.net. www IN A 192.168.1.112 mail IN A 192.168.1.112 |
Simpan isi file di atas, kemudian start service bind:
|
1 |
/etc/init.d/named start |
Set agar services start otomatis pada saat booting
|
1 |
chkconfig named on |
Agar dapat mengenali domain linboxs.net, maka tambahkan nameserver server DNS di dalam file berikut:
|
1 |
vi /etc/resolv.conf |
Isi resolv.conf:
|
1 |
nameserver 192.168.1.112 |
Lakukan pengecekan menggukan perintah nslookup
|
1 |
nslookup linboxs.net |
|
1 2 3 4 5 |
Server: 192.168.1.112 Address: 192.168.1.112#53 Name: linboxs.net Address: 192.168.1.112 |
Lakukan pengecekan menggunakan perintah dig
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 |
# dig linboxs.net ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> linboxs.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44907 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;linboxs.net. IN A ;; ANSWER SECTION: linboxs.net. 86400 IN A 192.168.1.112 ;; AUTHORITY SECTION: linboxs.net. 86400 IN NS ns1.linboxs.net. ;; ADDITIONAL SECTION: ns1.linboxs.net. 86400 IN A 192.168.1.112 ;; Query time: 1 msec ;; SERVER: 192.168.1.112#53(192.168.1.112) ;; WHEN: Wed Mar 5 10:39:47 2014 ;; MSG SIZE rcvd: 81 |
Lakukan pengecekan menggunakan perintah ping
|
1 2 3 4 5 6 7 8 9 |
# ping linboxs.net PING linboxs.net (192.168.1.112) 56(84) bytes of data. 64 bytes from linboxs.net (192.168.1.112): icmp_seq=1 ttl=64 time=0.045 ms 64 bytes from linboxs.net (192.168.1.112): icmp_seq=2 ttl=64 time=0.058 ms 64 bytes from linboxs.net (192.168.1.112): icmp_seq=3 ttl=64 time=0.078 ms ^C --- linboxs.net ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2557ms rtt min/avg/max/mdev = 0.045/0.060/0.078/0.015 ms |
Jreng jreng… Server nya sudah bisa dimanfaatkan sebagai DNS server 😀
Sekian, semoga bermanfaat.
Salam,
Linboxs
Leave A Comment