#cd /usr/ports/dns/bind98
#make install clean
bind 실행 그룹과 유저 생성
#pw groupadd -n named
#pw useradd -n named -g named -d /home/named -m -s /sbin/nologin
rc.conf 추가 사항
named_enable="YES"
named_program="/usr/local/sbin/named"
named_flags="-u named"
named_pidfile="/var/run/named/pid"
rndc key 생성 : rndc-configen 으로 생성, stop typing 이 나올때까지 아무키나 입력
#/usr/local/sbin/rndc-confgen -r keyboard
start typing:
...............................
...........................
...........................
...........................
...........................
...........................
...........................
...........................
stop typing.
stop typing 이 후 출력되는 값을 각각(rndc.conf 와 named.conf) 저장한다.
#ee /etc/namedb/rndc.conf
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "NS1pLVnS57wXVjzIhA2thQ==";
};
options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
# End of rndc.conf
/etc/namedb/named.conf 마지막에 추가
key "rndc-key" {
algorithm hmac-md5;
secret "NS1pLVnS57wXVjzIhA2thQ==";
};
#
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
설정 확인은 named-checkconf
이후 zone 파일 생성. 끝.
댓글 없음:
댓글 쓰기