// named.conf
options {
listen-on port 53 { 127.0.0.1; 192.168.1.108; }; //定义DNS监听在哪个IP的特定端口上
listen-on-v6 port 53 { ::1; }; //针对IPv6的DNS监听定义格式
directory "/var/named"; //指定DNS区域文件存放目录
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; 192.168.1.100; }; //定义允许哪些主机可以查询本地的DNS服务
recursion yes; //定义是否允许DNS服务器做递归查询
notify yes; //DNS服务器采用主从模式时,定义是否当主服务器区域文件发生改变,通知从服务器更新
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN { //根域的区域文件属性配置
type hint; //定义此区域文件的类型[master|slave|hint|forward]
file "named.ca"; //相对directory "/var/named/"目录的文件,为根域的区域文件
};
include "/etc/named.rfc1912.zones"; //为保持主配置文件简洁,将部分配置信息存放于别处,在主配置文件中调用
include "/etc/named.root.key";
include "/etc/named/luochuanhai.cn"; //此为博主私有域的配置文件