Difference between revisions of "Raspbian: Konfigurasi DNS Server"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) (Created page with "==Install BIND== install BIND sudo su apt update apt install bind9 bind9utils bind9-doc Setup hanya untuk IPv4 (-4) jika dibutuhkan vi /etc/default/bind9 Tambahkan (-...") |
Onnowpurbo (talk | contribs) |
||
| Line 21: | Line 21: | ||
sudo vi /etc/bind/named.conf.local | sudo vi /etc/bind/named.conf.local | ||
| − | Di file ini kita bisa tambahkan forward dan revese zone dari sebuah domain, contoh | + | Di file ini kita bisa tambahkan forward dan revese zone (asumsi subnet 10.128.0.0/16) dari sebuah domain, contoh |
zone "nyc3.example.com" { | zone "nyc3.example.com" { | ||
| Line 28: | Line 28: | ||
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary | allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary | ||
}; | }; | ||
| − | |||
| − | |||
zone "128.10.in-addr.arpa" { | zone "128.10.in-addr.arpa" { | ||
| Line 36: | Line 34: | ||
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary | allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary | ||
}; | }; | ||
| − | |||
==Buat Forward Zone File== | ==Buat Forward Zone File== | ||
Revision as of 13:57, 10 October 2018
Install BIND
install BIND
sudo su apt update apt install bind9 bind9utils bind9-doc
Setup hanya untuk IPv4 (-4) jika dibutuhkan
vi /etc/default/bind9
Tambahkan (-4)
OPTIONS="-4 -u bind"
Konfigurasi Local File
Edit
sudo vi /etc/bind/named.conf.local
Di file ini kita bisa tambahkan forward dan revese zone (asumsi subnet 10.128.0.0/16) dari sebuah domain, contoh
zone "nyc3.example.com" {
type master;
file "/etc/bind/zones/db.nyc3.example.com"; # zone file path
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary
};
zone "128.10.in-addr.arpa" {
type master;
file "/etc/bind/zones/db.10.128"; # 10.128.0.0/16 subnet
allow-transfer { 10.128.20.12; }; # ns2 private IP address - secondary
};
Buat Forward Zone File
Buat dan edit
sudo mkdir /etc/bind/zones cd /etc/bind/zones sudo cp ../db.local ./db.nyc3.example.com sudo vi /etc/bind/zones/db.nyc3.example.com
Isi awalnya kira-kira
$TTL 604800
@ IN SOA localhost. root.localhost. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost. ; delete this line
@ IN A 127.0.0.1 ; delete this line
@ IN AAAA ::1 ; delete this line
Dapat kita ubah menjadi, misalnya,
$TTL 604800
@ IN SOA ns1.nyc3.example.com. admin.nyc3.example.com. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
; name servers - NS records
IN NS ns1.nyc3.example.com.
IN NS ns2.nyc3.example.com.
; name servers - A records
ns1.nyc3.example.com. IN A 10.128.10.11
ns2.nyc3.example.com. IN A 10.128.20.12
; 10.128.0.0/16 - A records
host1.nyc3.example.com. IN A 10.128.100.101
host2.nyc3.example.com. IN A 10.128.200.102
Buat Reverse Zone File
Buat dan edit
cd /etc/bind/zones sudo cp ../db.127 ./db.10.128 sudo vi /etc/bind/zones/db.10.128
Awalnya akan berisi kira-kira
$TTL 604800
@ IN SOA localhost. root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost. ; delete this line
1.0.0 IN PTR localhost. ; delete this line
Ubah menjadi kira-kira,
$TTL 604800
@ IN SOA nyc3.example.com. admin.nyc3.example.com. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
; name servers
IN NS ns1.nyc3.example.com.
IN NS ns2.nyc3.example.com.
; PTR Records
11.10 IN PTR ns1.nyc3.example.com. ; 10.128.10.11
12.20 IN PTR ns2.nyc3.example.com. ; 10.128.20.12
101.100 IN PTR host1.nyc3.example.com. ; 10.128.100.101
102.200 IN PTR host2.nyc3.example.com. ; 10.128.200.102
Cek Syntax Konfigurasi BIND
Jalankan perintah
sudo named-checkconf
Cek zone tertentu
sudo named-checkzone nyc3.example.com db.nyc3.example.com sudo named-checkzone 128.10.in-addr.arpa /etc/bind/zones/db.10.128
Pastikan tidak ada error
Restart BIND
Restart
sudo service bind9 restart