CentOS+bind 9.3.x 네임서버 설정(2차네임서버)

1. 설치 방법 
yum install bind bind-utils caching-nameserver

2. 환경 설정 * 주의 : 환경설정파일의 소유자는 root, 소유그룹이 named이여야 함
* 소유권변경방법: chown root:named 파일명

1) vi /etc/named.caching-nameserver.conf 편집 

options { listen-on port 53 { 112.171.147.41; }; (--------1차 네임서버 ip) // listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; // Those options should be used carefully because they disable port // randomization //query-source port 53; 주석해제  // query-source-v6 port 53; allow-query { any; }; allow-query-cache { localhost; }; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; view localhost_resolver { match-clients { localhost; }; match-destinations { localhost; }; recursion yes; include "/etc/named.rfc1912.zones"; };

2) vi /etc/named.rfc1912.zones 편집

zone "." IN { type hint; file "named.ca"; }; zone "localdomain" IN { type master; file "localdomain.zone"; allow-update { none; }; }; zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; }; }; zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; }; }; zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN { type master; file "named.ip6.local"; allow-update { none; }; }; zone "255.in-addr.arpa" IN { type master; file "named.broadcast"; allow-update { none; }; }; zone "0.in-addr.arpa" IN { type master; file "named.zero"; allow-update { none; }; }; zone "paeksang.com" IN {     type slave;     file "paeksang.com.zone";     masters { 112.171.147.40; }; };

rndc reload 도메인으로 리로드후 /var/named/chroot/var/named 도메인 존파일 생성확인

 

/var/log/message 확인해서 reroad되는지 확인

네임서버 설정확인  /var/named/chroot/var/ 의 권한을 named.named 로 변경해줘야함(퍼미션에러시)

more /etc/rndc.key 확인해서 키파일을 2차네임서버와 동일하게 설정해줘야함

(2차네임서버에서 vi /etc/rndc.key로 수정)