DNS-Server (Bind9) kurz und knapp
Zur Navigation springen
Zur Suche springen
Installation und Grundkonfiguration von BIND9
- apt install bind9 -y
- systemctl enable --now bind9
- systemctl status bind9 --no-pager
Lokale Zonendefinitionen
- nano /etc/bind/named.conf.local
zone "lab.local" {
type master;
file "/var/cache/bind/lab.local";
};
zone "10.20.10.in-addr.arpa" {
type master;
file "/var/cache/bind/10.20.10.in-addr.arpa";
};
Forward-Zone (lab.local)
- nano /var/cache/bind/lab.local
$TTL 604800
@ IN SOA debian-srv.lab.local. root.lab.local. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
@ IN NS debian-srv.lab.local.
debian-srv IN A 10.20.10.11
rocky-srv IN A 10.20.10.12
debian-client IN A 10.20.10.51
Reverse-Zone (10.20.10.in-addr.arpa)
- nano /var/cache/bind/10.20.10.in-addr.arpa
$TTL 604800
@ IN SOA debian-srv.lab.local. root.lab.local. (
2 604800 86400 2419200 604800 )
@ IN NS debian-srv.lab.local.
11 IN PTR debian-srv.lab.local.
12 IN PTR rocky-srv.lab.local.
51 IN PTR debian-client.lab.local.
Konfiguration prüfen
- named-checkconf
- named-checkzone lab.local /var/cache/bind/lab.local
- named-checkzone 10.20.10.in-addr.arpa /var/cache/bind/10.20.10.in-addr.arpa
Dienst starten und Log prüfen
- systemctl restart bind9
- journalctl -u bind9 -n 20 --no-pager
Funktionstest
- dig debian-srv.lab.local @10.20.10.11
- dig -x 10.20.10.11 @10.20.10.11