Jump to content

Debian 12: Konfigurasi bind9

From Wiki

Update repository 

sudo apt update

Install package bind9

sudo apt install bind9 bind9utils bind9-doc bind9-host dnsutils

Lihat status bind9 

systemctl status bind9

Keterangan jika sudah berjalan 

● bind9.service - BIND Domain Name Server
   Loaded: loaded (/lib/systemd/system/bind9.service; enabled; vendor preset: en
   Active: active (running) since Sun 2019-07-14 10:27:56 UTC; 4min 6s ago
     Docs: man:named(8)
 Main PID: 1481 (named)
    Tasks: 4 (limit: 1149)
   Memory: 13.7M
   CGroup: /system.slice/bind9.service
          └─1481 /usr/sbin/named -u bind


Jika belum berjalan, masukkan perintah berikut 

sudo systemctl start bind9

Aktifkan otomatis saat booting 

sudo systemctl enable bind9

Edit file “named.conf.option” untuk mengizinkan menjadi DNS server 

vim /etc/bind/named.conf.options

Tambahkan perintah ini 

options {
        directory "/var/cache/bind"; 

        // If there is a firewall between you and nameservers you want
        // to talk to, you may need to fix the firewall to allow multiple
        // ports to talk.  See http://www.kb.cert.org/vuls/id/800113
 
        // If your ISP provided one or more IP addresses for stable
        // nameservers, you probably want to use them as forwarders.
        // Uncomment the following block, and insert the addresses replacing
        // the all-0's placeholder.

        // forwarders {
        //      0.0.0.0;
        // };

        //========================================================================
        // If BIND logs error messages about the root key being expired,
        // you will need to update your keys.  See https://www.isc.org/bind-keys
        //========================================================================
        dnssec-validation auto;

        listen-on-v6 { any; };

        version "not currently available";
        recursion no;
        querylog yes;
        allow-transfer { none; };
};

sudo named-checkconf

sudo systemctl restart bind9

nano /etc/bind/named.conf.local

//
// Do any local configuration here
//

// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";

zone "example.com" {
      type master;
      file "/etc/bind/db.example.com";
      allow-query { any; };
      allow-transfer { 192.168.100.60; };
};

cp /etc/bind/db.empty /etc/bind/db.example.com

nano /etc/bind/db.example.com

;
; BIND data file for local loopback interface
;
$TTL    604800
@       IN      SOA     ns1.example.com. hostmaster.example.com. (
                              2         ; Serial
                         604800         ; Refresh
                          86400         ; Retry
                        2419200         ; Expire
                         604800 )       ; Negative Cache TTL
;
          IN      NS      ns1.example.com.
          IN      NS      ns2.example.com.
ns1       IN      NS      192.168.100.60
ns2       IN      NS      192.168.100.60
@         IN      A       192.168.100.60

named-checkconf

named-checkzone example.com /etc/bind/db.example.com

zone example.com/IN: loaded serial 2019011503
OK

systemctl restart bind9
Retrieved from "https://kangtain.com/wiki/index.php?title=Debian_12:_Konfigurasi_bind9&oldid=8569"