其實真的是掌握了,電信或者網通的路由表就是可以做智能DNS
上次已經裝好了,bind 9.6.1
直接開始吧: vi /etc/named.conf
key "rndc-key" {
algorithm hmac-md5;
secret "jDw02/wylWu8aMTIDpN+Wg==";
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
options {
Directory "/usr/local/named/var/named";
Pid-file "named.pid";
listen-on port 53 {any;};
Allow-query {any;};
Dump-file "/usr/local/named/data/cache_dump.db";
Statistics-file "/usr/local/named/data/named_stats.txt";
};
acl "telcom_acl" {
127.0.0.1 ; 116.27.64.128/25 ; 121.12.250.0/24 ;
};
acl "cnc_acl" {
61.142.208.0/24;121.9.244.0/24;
};
view "telcom" {
match-clients {telcom_acl; } ;
recursion yes;
zone "." in {
Type hint;
File "named.root";
};
zone "localhost" in {
Type master;
File "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
Type master;
File "localhost.rev";
};
zone "samly71.com" IN {
type master;
file "samly71.com.zone";
allow-update { none; };
};
zone "128.64.28.116.in-addr.arpa" IN {
type master;
file "116.28.64.128.ip-addr.arpa.zone";
allow-update { none; };
};
};
view "cnc" {
match-clients {cnc_acl;};
recursion no;
zone "." IN {
type hint;
file "named.root";
} ;
zone "samly71.com" {
type master;
file "samly71.com.cnc.zone";
allow-update {none;};
};
} ;
這樣就vi 完named.conf了,
/usr/local/named/sbin/named -gc /usr/local/named/etc/named.conf 驗證下羅,沒有問題。哈哈。
/usr/local/named/sbin/named -gc /usr/local/named/etc/named.conf 啓動named
cd /var/named
ls
你可以看見
116.27.64.128.ip-addr.arpa.zone localhost.rev localhost.zone named.pid named.root samly71.com.cnc.zone samly71.com.zone
這些文件
vi samly71.com.cnc.zone 把這個的A記錄啊,改成你的網通地址
$TTL 3488660
@ IN SOA samly71.com. samly71.com. (
1053891162
3H
15M
1W
1D )
@ IN NS localhost.
IN MX 10 mail.samly71.com.
mail IN A 192.168.100.1
www IN A 192.168.100.1
dns IN A 192.168.100.1
. IN A 192.168.100.2
這樣就OK了
重啓一下named
驗證下吧。