Difference between revisions of "Raspbian: Konfigurasi DNS Server"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
| Line 21: | Line 21: | ||
sudo vi /etc/bind/named.conf.local | sudo vi /etc/bind/named.conf.local | ||
| − | Di file ini kita bisa tambahkan forward dan revese zone (asumsi subnet | + | Di file ini kita bisa tambahkan forward dan revese zone (asumsi subnet 192.168.1.0/24) dari sebuah domain, contoh |
| − | zone " | + | zone "darmajaya.ac.id" { |
type master; | type master; | ||
| − | file "/etc/bind/zones/db. | + | file "/etc/bind/zones/db.darmajaya.ac.id"; # zone file path |
| − | allow-transfer { 10.128.20.12; }; | + | allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary |
}; | }; | ||
| − | zone " | + | zone "1.168.192.in-addr.arpa" { |
type master; | type master; | ||
| − | file "/etc/bind/zones/db. | + | file "/etc/bind/zones/db.192.168.1"; # 192.168.1.0/24 subnet |
| − | allow-transfer { 10.128.20.12; }; | + | allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary |
}; | }; | ||
| Line 41: | Line 41: | ||
sudo mkdir /etc/bind/zones | sudo mkdir /etc/bind/zones | ||
cd /etc/bind/zones | cd /etc/bind/zones | ||
| − | sudo cp ../db.local ./db. | + | sudo cp ../db.local ./db. |
| − | sudo vi /etc/bind/zones/db. | + | sudo vi /etc/bind/zones/db.darmajaya.ac.id |
Isi awalnya kira-kira | Isi awalnya kira-kira | ||
| Line 61: | Line 61: | ||
$TTL 604800 | $TTL 604800 | ||
| − | @ IN SOA ns1. | + | @ IN SOA ns1.darmajaya.ac.id. admin.darmajaya.ac.id. ( |
| − | 3 | + | 3 ; Serial |
604800 ; Refresh | 604800 ; Refresh | ||
86400 ; Retry | 86400 ; Retry | ||
| Line 69: | Line 69: | ||
; | ; | ||
; name servers - NS records | ; name servers - NS records | ||
| − | IN NS ns1. | + | IN NS ns1.darmajaya.ac.id. |
| − | IN NS ns2. | + | IN NS ns2.darmajaya.ac.id. |
; name servers - A records | ; name servers - A records | ||
| − | ns1. | + | ns1.darmajaya.ac.id. IN A 192.168.1.11 |
| − | ns2. | + | ns2.darmajaya.ac.id. IN A 192.168.1.12 |
| − | ; | + | ; 192.168.1.0/16 - A records |
| − | + | www.darmajaya.ac.id. IN A 192.168.1.10 | |
| − | + | darmajaya.ac.id. IN A 192.168.1.10 | |
==Buat Reverse Zone File== | ==Buat Reverse Zone File== | ||
| Line 85: | Line 85: | ||
cd /etc/bind/zones | cd /etc/bind/zones | ||
| − | sudo cp ../db.127 ./db. | + | sudo cp ../db.127 ./db.192.168.1 |
| − | sudo vi /etc/bind/zones/db. | + | sudo vi /etc/bind/zones/db.192.168.1 |
Awalnya akan berisi kira-kira | Awalnya akan berisi kira-kira | ||
| Line 104: | Line 104: | ||
$TTL 604800 | $TTL 604800 | ||
| − | @ IN SOA | + | @ IN SOA darmajaya.ac.id. admin.darmajaya.ac.id. ( |
3 ; Serial | 3 ; Serial | ||
604800 ; Refresh | 604800 ; Refresh | ||
| Line 111: | Line 111: | ||
604800 ) ; Negative Cache TTL | 604800 ) ; Negative Cache TTL | ||
; name servers | ; name servers | ||
| − | IN NS ns1. | + | IN NS ns1.darmajaya.ac.id. |
| − | IN NS ns2. | + | IN NS ns2.darmajaya.ac.id. |
; PTR Records | ; PTR Records | ||
| − | 11.10 IN PTR ns1. | + | 11.10 IN PTR ns1.darmajaya.ac.id. ; 10.128.10.11 |
| − | 12.20 IN PTR ns2. | + | 12.20 IN PTR ns2.darmajaya.ac.id. ; 10.128.20.12 |
| − | 101.100 IN PTR | + | 101.100 IN PTR www.darmajaya.ac.id. ; 10.128.100.101 |
| − | 102.200 IN PTR | + | 102.200 IN PTR darmajaya.ac.id. ; 10.128.200.102 |
==Cek Syntax Konfigurasi BIND== | ==Cek Syntax Konfigurasi BIND== | ||
Revision as of 15:32, 10 October 2018
Install BIND
install BIND
sudo su apt update apt install bind9 bind9utils bind9-doc
Setup hanya untuk IPv4 (-4) jika dibutuhkan
vi /etc/default/bind9
Tambahkan (-4)
OPTIONS="-4 -u bind"
Konfigurasi Local File
Edit
sudo vi /etc/bind/named.conf.local
Di file ini kita bisa tambahkan forward dan revese zone (asumsi subnet 192.168.1.0/24) dari sebuah domain, contoh
zone "darmajaya.ac.id" {
type master;
file "/etc/bind/zones/db.darmajaya.ac.id"; # zone file path
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary
};
zone "1.168.192.in-addr.arpa" {
type master;
file "/etc/bind/zones/db.192.168.1"; # 192.168.1.0/24 subnet
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary
};
Buat Forward Zone File
Buat dan edit
sudo mkdir /etc/bind/zones cd /etc/bind/zones sudo cp ../db.local ./db. sudo vi /etc/bind/zones/db.darmajaya.ac.id
Isi awalnya kira-kira
$TTL 604800
@ IN SOA localhost. root.localhost. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost. ; delete this line
@ IN A 127.0.0.1 ; delete this line
@ IN AAAA ::1 ; delete this line
Dapat kita ubah menjadi, misalnya,
$TTL 604800
@ IN SOA ns1.darmajaya.ac.id. admin.darmajaya.ac.id. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
; name servers - NS records
IN NS ns1.darmajaya.ac.id.
IN NS ns2.darmajaya.ac.id.
; name servers - A records
ns1.darmajaya.ac.id. IN A 192.168.1.11
ns2.darmajaya.ac.id. IN A 192.168.1.12
; 192.168.1.0/16 - A records
www.darmajaya.ac.id. IN A 192.168.1.10
darmajaya.ac.id. IN A 192.168.1.10
Buat Reverse Zone File
Buat dan edit
cd /etc/bind/zones sudo cp ../db.127 ./db.192.168.1 sudo vi /etc/bind/zones/db.192.168.1
Awalnya akan berisi kira-kira
$TTL 604800
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost. ; delete this line
1.0.0 IN PTR localhost. ; delete this line
Ubah menjadi kira-kira,
$TTL 604800
@ IN SOA darmajaya.ac.id. admin.darmajaya.ac.id. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
; name servers
IN NS ns1.darmajaya.ac.id.
IN NS ns2.darmajaya.ac.id.
; PTR Records
11.10 IN PTR ns1.darmajaya.ac.id. ; 10.128.10.11
12.20 IN PTR ns2.darmajaya.ac.id. ; 10.128.20.12
101.100 IN PTR www.darmajaya.ac.id. ; 10.128.100.101
102.200 IN PTR darmajaya.ac.id. ; 10.128.200.102
Cek Syntax Konfigurasi BIND
Jalankan perintah
sudo named-checkconf
Cek zone tertentu
sudo named-checkzone nyc3.example.com db.nyc3.example.com sudo named-checkzone 128.10.in-addr.arpa /etc/bind/zones/db.10.128
Pastikan tidak ada error
Restart BIND
Restart
sudo service bind9 restart