dns(bind9)注意事項
設定reverse_zone並使用private_ip(例如192、172)時會遇到的問題:
http://phorum.study-area.org/index.php/topic,72463.0.html
用dnssec-keygen產生key時如果卡很久,可改用dnssec-keygen -r /dev/urandom。
By default, dnssec-keygen uses /dev/random - the generation is slow, so much more in less busy systems. Other alternative is using /dev/urandom,/dev/urandom is a pseudo-random generator.
正反解的zone_forward設定範例:
zone "intranet-twcc.ai" IN {
type forward;
forwarders { 172.17.79.173; };
};
zone "16.172.in-addr.arpa" IN {
type forward;
forwarders { 172.17.79.173; };
forward only;
};
http://phorum.study-area.org/index.php/topic,72463.0.html
用dnssec-keygen產生key時如果卡很久,可改用dnssec-keygen -r /dev/urandom。
By default, dnssec-keygen uses /dev/random - the generation is slow, so much more in less busy systems. Other alternative is using /dev/urandom,/dev/urandom is a pseudo-random generator.
正反解的zone_forward設定範例:
zone "intranet-twcc.ai" IN {
type forward;
forwarders { 172.17.79.173; };
};
zone "16.172.in-addr.arpa" IN {
type forward;
forwarders { 172.17.79.173; };
forward only;
};
留言
張貼留言