Linux DNS and BIND Server
Setting up a caching server for client local machines will reduce the load on the site's
primary server. A caching only name server will find the answer to name queries and
remember the answer the next time we need it. This will shorten the waiting time the next
time significantly. For security reasons, it is very important that DNS doesn't exist between
hosts on the corporate network and external hosts; it is far safer to simply use IP addresses
to connect to external machines from the corporate network and vice-versa.
In our configuration and installation we'll run BIND/DNS as non root-user and in a
chrooted environment. We also provide you three different configurations;
•
one for a simple caching name server only client
•
one for a slave secondary server
•
one for a master name server primary server.
The simple caching name server configuration will be used for your servers that don't
act as a master or slave name server, and the slave and master configurations will be used
for your servers that act as a master name server and slave name server. Usually one of
your servers acts as master, another one acts as slave and the rest act as simple caching
client name server.
This is a graphical representation of the DNS configuration we use in this book. We try
to show you different settings
•
Caching Only DNS
•
Master DNS
•
Slave DNS
on different servers. A lot of possibilities exist, and depend on your needs, and network
architecture.
These installation instructions assume
•
Commands are Unix-compatible.
•
The source path is /var/tmp. other paths are possible.
•
Installations were tested on Red Hat Linux 6.1 and 6.2.
•
All steps in the installation will happen in super-user account root.
•
ISC BIND version number is 8.2.2-patchlevel5
评论0