Jump to content

Debian: Konfigurasi Debian 10 bind9

From Wiki

Update repository 

sudo apt update

Install package bind9 

sudo apt install bind9 bind9utils bind9-doc bind9-host dnsutils

Lihat status bind9 

systemctl status bind9

Keterangan jika sudah berjalan 

 bind9.service - BIND Domain Name Server
  Loaded: loaded (/lib/systemd/system/bind9.service; enabled; vendor preset: en
  Active: active (running) since Sun 2019-07-14 10:27:56 UTC; 4min 6s ago
    Docs: man:named(8)
Main PID: 1481 (named)
   Tasks: 4 (limit: 1149)
  Memory: 13.7M
  CGroup: /system.slice/bind9.service
          └─1481 /usr/sbin/named -u bind


Jika belum berjalan, masukkan perintah berikut 

sudo systemctl start bind9


Aktifkan otomatis saat booting 

sudo systemctl enable bind9


Edit file named.conf.option untuk mengizinkan menjadi DNS server 

vim /etc/bind/named.conf.options


Tambahkan perintah ini 

options {
       directory "/var/cache/bind";
       // If there is a firewall between you and nameservers you want
       // to talk to, you may need to fix the firewall to allow multiple
       // ports to talk.  See http://www.kb.cert.org/vuls/id/800113
       // If your ISP provided one or more IP addresses for stable
       // nameservers, you probably want to use them as forwarders.
       // Uncomment the following block, and insert the addresses replacing
       // the all-0's placeholder.
       // forwarders {
       //      0.0.0.0;
       // };
       //========================================================================
       // If BIND logs error messages about the root key being expired,
       // you will need to update your keys.  See https://www.isc.org/bind-keys
       //========================================================================
       dnssec-validation auto;
       listen-on-v6 { any; };

       version "not currently available";
       recursion no;
       querylog yes;
       allow-transfer { none; };

};

sudo named-checkconf

sudo systemctl restart bind9

nano /etc/bind/named.conf.local

//
// Do any local configuration here
//
// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";

zone "example.com" {
     type master;
     file "/etc/bind/db.example.com";
     allow-query { any; };
     allow-transfer { 192.168.100.60; };

};

cp /etc/bind/db.empty /etc/bind/db.example.com

nano /etc/bind/db.example.com

;
; BIND data file for local loopback interface
;
$TTL    604800
@       IN      SOA     ns1.example.com. hostmaster.example.com. (
                              2         ; Serial
                         604800         ; Refresh
                          86400         ; Retry
                        2419200         ; Expire
                         604800 )       ; Negative Cache TTL
;
          IN      NS      ns1.example.com.
          IN      NS      ns2.example.com.
ns1       IN      NS      192.168.100.60
ns2       IN      NS      192.168.100.60
@         IN      A       192.168.100.60

named-checkconf

named-checkzone example.com /etc/bind/db.example.com

zone example.com/IN: loaded serial 2019011503
OK

systemctl restart bind9
Retrieved from "https://kangtain.com/wiki/index.php?title=Debian:_Konfigurasi_Debian_10_bind9&oldid=8555"