Q:域名泛解析,反向代理失败
[root@jiangshan /]# nslookup 172.16.17.100
Server: 172.16.17.1
Address: 172.16.17.1#53
** server can't find 100.17.16.172.in-addr.arpa: SERVFAIL
S:服务配置过程如下:
1.主配置文件和区配置文件
#vim /etc/named.conf
zone "tt.com" IN {
type master;file "tt.com.zone";
};
zone "17.16.172.in-addr.arpa" IN {
type master;
file "tt.com.arpa";
};
# vim /var/named/tt.com.zone
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
@ A 172.16.17.1
$GENERATE 100-200 stu$ A 172.16.17.$
# vim /var/named/tt.com.arpa
$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
@ A 172.16.17.1
$GENERATE 100-200 $ PTR stu$.tt.com.
2.启动服务
#service named restart
-----启动成功
3.测试:
[root@jiangshan /]# nslookup stu100.tt.com
Server: 172.16.17.1
Address: 172.16.17.1#53
Name: stu100.tt.com
Address: 172.16.17.100
[root@jiangshan /]# nslookup 172.16.17.100
Server: 172.16.17.1
Address: 172.16.17.1#53
** server can't find 100.17.16.172.in-addr.arpa: SERVFAIL
查看/var/log/messages
#vim /var/log/messages
Oct 11 10:45:50 jiangshan named[8977]: zone 17.16.172.in-addr.arpa/IN: loading from master file tt.com.arpa failed: permission denied
Oct 11 10:45:50 jiangshan named[8977]: zone 17.16.172.in-addr.arpa/IN: not loaded due to errors.
是因为权限不够
给目录加777权限,文件加665权限
[root@jiangshan /]# chmod 777 /var/named
[root@jiangshan /]# service named restart
Stopping named: . [ OK ]
Starting named: [ OK ]
Server: 172.16.17.1
Address: 172.16.17.1#53
100.17.16.172.in-addr.arpa name = stu100.tt.com.
~