雖然配置好主服務器後,但是一直在從服務器上不能獲取到已配置的區域。
單獨使用dig -t A x.x.x.x @主服務器IP 時提示主服務器不可達。
再確認主服務的named.conf的配置的遞歸、查詢等沒有做限制,同時也關閉了主服務器的SELinux(setenforce 0),還是不能正常運行。
最終發現是主服務的iptables可能有默認定義的chain,使用iptables -X後可以正常的進行區域傳送並解析自己定義的域名。
iptables -F,--flush [chain]
Flush the selected chain (all the chains in the table if none is given). This is equivalent to deleting all the rules one by one.
iptables -X,--delete-chain [chain]
Delete the optional user-defined chain specified. There must be no references to the chain. If there are, you must delete or replace the referring rules before the chain can be deleted. If no argument is given , it will attempt to delete every nonbuiltin chain in the table.