tag:blogger.com,1999:blog-31186190466315873592011-11-27T16:42:44.842-08:00All about open source DNSJeffnoreply@blogger.comBlogger21100tag:blogger.com,1999:blog-3118619046631587359.post-37210009680111401632008-01-09T00:21:00.000-08:002008-01-09T00:36:18.278-08:00<span style="font-size:100%;">1.Install necessary software</span><br /><pre style="border: medium none ; padding: 0in;">#<i><i>apt-get install wget bzip2 rdate fetchmail<br />libdb3++-dev unzip zip ncftp xlispstat libarchive-zip-perl<br />zlib1g-dev libpopt-dev nmap openssl lynx fileutils g++</i></i></pre>2. <span style="">Remove unnecessary software<br /></span><pre style="border: medium none ; padding: 0in;"><i><i>#apt-get remove lpr nfs-common portmap pidentd pcmcia-cs<br />pppoe pppoeconf ppp pppconfig<br /><br />3.Create the following directories:<br />mkdir /usr/local/djb<br />mkdir /usr/local/djb/build<br />mkdir /usr/local/djb/patches<br /><br />4.Get the patches:<br />#cd /usr/local/djb/patches<br /><br />#wget http://www.thedjbway.org/patches/djb_errno_patches.tgz<br /><br />#tar -xzvf djb*.tgz<br /><br />5.Change directories and download the main packages:<br />#cd /usr/local/djb/build<br />#wget http://cr.yp.to/ucspi-tcp/ucspi-tcp-0.88.tar.gz<br />#wget http://cr.yp.to/daemontools/daemontools-0.76.tar.gz<br />#wget http://cr.yp.to/djbdns/djbdns-1.05.tar.gz<br /><br />6.Extract and patch each of the three packages:<br /><br />Extract and Patch ucspi:<br />Code:<br />///usr/local/djb/build/<br />#gunzip ucspi-tcp-0.88.tar<br />#tar -xf ucspi-tcp-0.88.tar<br />#cd ucspi-tcp-0.88<br /><br />#patch -p1 < ../../patches/ucspi-tcp-0.88.errno.patch //[output from patch...] patching file error.h #patch -p1 < ../../patches/ucspi-tcp-0.88.a_record.patch //[output from patch...] patching file rblsmtpd.c #patch -p1 < ../../patches/ucspi-tcp-0.88.nobase.patch //[output from patch...] patching file rblsmtpd.c Hunk #2 succeeded at 228 (offset 38 lines). #make setup check #./install #./instcheck 7.Extract and Patch daemontools: // /usr/local/djb/build #gunzip daemontools-0.76.tar #tar -xpf daemontools-0.76.tar #rm daemontools-0.76.tar #cd admin/daemontools-0.76 #patch -p1 < ../../../patches/daemontools-0.76.errno.patch //[output from patch...] patching file src/error.h package/install <br /><br />7. Extract and Patch djbdns:<br /><br />///usr/local/djb/build<br />#gunzip djbdns-1.05.tar<br />#tar -xf djbdns-1.05.tar<br />#cd djbdns-1.05<br />#patch -p1 < ../../patches/djbdns-1.05.errno.patch<br />//[output from patch...]<br />patching file error.h<br /><br />#make<br />#make setup check<br />#./install<br />#./instcheck<br /><br />8.Next, you'll add the necessary user accounts<br />//create the group and users -- modify if needed<br />groupadd -g 91 dns<br />useradd -g 91 -u 91 -d /nonexistent -c "tinydns" -s /sbin/nologin Gtinydns<br />useradd -g 91 -u 92 -d /nonexistent -c "tinydns" -s /sbin/nologin Gdnslog<br />useradd -g 91 -u 93 -d /nonexistent -c "tinydns" -s /sbin/nologin Gdnscache<br /><br /><br /><br /></i></i></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/3118619046631587359-3721000968011140163?l=linuxdns.blogspot.com' alt='' /></div>Jeffnoreply@blogger.com0tag:blogger.com,1999:blog-3118619046631587359.post-55639772733925091582007-12-19T17:22:00.001-08:002007-12-19T17:22:53.540-08:00Primary Nameserver for jepoy.com domain<br />IP Address:xxx.189.10.130<br /><br /><br />1.Install Bind<br /><br />[root@mail etc]# yum install bind bind-devel bind-utils caching-nameserver<br />Setting up Install Process<br />Setting up repositories<br />Reading repository metadata in from local files<br />Reducing Dag-RHEL-Yum to included packages only<br />Finished<br />Excluding Packages from Postgrey Repository<br />Finished<br />Reducing Postgrey Repository to included packages only<br />Finished<br />Parsing package install arguments<br />Resolving Dependencies<br />--> Populating transaction set with selected packages. Please wait.<br />---> Package caching-nameserver.noarch 0:7.3-3 set to be updated<br />---> Package bind.i386 20:9.2.4-2 set to be updated<br />---> Package bind-devel.i386 20:9.2.4-2 set to be updated<br />--> Running transaction check<br /><br />Dependencies Resolved<br /><br />=============================================================================<br /> Package Arch Version Repository Size<br />=============================================================================<br />Installing:<br /> bind i386 20:9.2.4-2 base 462 k<br /> bind-devel i386 20:9.2.4-2 base 2.2 M<br /> caching-nameserver noarch 7.3-3 base 22 k<br /><br />Transaction Summary<br />=============================================================================<br />Install 3 Package(s) <br />Update 0 Package(s) <br />Remove 0 Package(s) <br />Total download size: 2.6 M<br />Is this ok [y/N]: y<br />Downloading Packages:<br />(1/3): caching-nameserver 100% |=========================| 22 kB 00:01 <br />(2/3): bind-9.2.4-2.i386. 100% |=========================| 462 kB 00:25 <br />(3/3): bind-devel-9.2.4-2 100% |=========================| 2.2 MB 02:24 <br />Running Transaction Test<br />Finished Transaction Test<br />Transaction Test Succeeded<br />Running Transaction<br /> Installing: bind ######################### [1/3]<br /> Installing: caching-nameserver ######################### [2/3]<br /> Installing: bind-devel ######################### [3/3]<br /><br />Installed: bind.i386 20:9.2.4-2 bind-devel.i386 20:9.2.4-2 caching-nameserver.noarch 0:7.3-3<br />Complete!<br /><br />2. Check out the files needed<br />/etc/named.conf<br />/var/named<br />[root@mail named]# ls<br />data localdomain.zone localhost.zone named.broadcast named.ca named.ip6.local named.local named.zero slaves<br /><br />3. Check your network configuration files<br /><br />/etc/hosts -->> hostname and ip address<br />[root@mail etc]# more hosts<br /># Do not remove the following line, or various programs<br /># that require network functionality will fail.<br />127.0.0.1 localhost.localdomain localhost<br />xxx.189.10.130 ns1.jepoy.com ns1<br /><br /><br />/etc/sysconfig/network -->> gateway and hostname<br />[root@mail sysconfig]# more network<br />NETWORKING=yes<br />HOSTNAME=mail.jepoy.com<br />GATEWAY=xxx.189.10.129<br /><br /><br />/etc/resolv.conf<br />nameserver xxx.189.10.130<br /><br />4. Edit Your named.conf file<br /><br />/etc/named.conf<br /><br />[root@ns1 etc]# more named.conf<br />//<br />// named.conf for Red Hat caching-nameserver<br />//<br /><br />options {<br /> directory "/var/named";<br /> dump-file "/var/named/data/cache_dump.db";<br /> statistics-file "/var/named/data/named_stats.txt";<br /> /*<br /> * If there is a firewall between you and nameservers you want<br /> * to talk to, you might need to uncomment the query-source<br /> * directive below. Previous versions of BIND always asked<br /> * questions using port 53, but BIND 8.1 uses an unprivileged<br /> * port by default.<br /> */<br /> // query-source address * port 53;<br />};<br /><br />//<br />// a caching only nameserver config<br />//<br />controls {<br /> inet 127.0.0.1 allow { localhost; } keys { rndckey; };<br />};<br /><br />zone "." IN {<br /> type hint;<br /> file "named.ca";<br />};<br /><br />zone "jepoy.com" IN {<br /> type master;<br /> file "jepoy.com.zone";<br /> allow-update { none; };<br />};<br /><br />zone "10.189.xxx.in-addr.arpa" IN {<br /> type master;<br /> file "jepoy.com.rev";<br /> allow-update { none; };<br />};<br />zone "localhost" IN {<br /> type master;<br /> file "localhost.zone";<br /> allow-update { none; };<br />};<br /><br />zone "0.0.127.in-addr.arpa" IN {<br /> type master;<br /> file "named.local";<br /> allow-update { none; };<br />};<br /><br />zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN {<br /> type master;<br /> file "named.ip6.local";<br /> allow-update { none; };<br />};<br /><br />zone "255.in-addr.arpa" IN {<br /> type master;<br /> file "named.broadcast";<br /> allow-update { none; };<br />};<br /><br />zone "0.in-addr.arpa" IN {<br /> type master;<br /> file "named.zero";<br /> allow-update { none; };<br />};<br /><br />include "/etc/rndc.key";<br /><br /><br />5. Edit your zone files<br /><br />/var/named/<br /><br />Copy one zone file to recreate your own zone file.<br /><br />[root@ns1 named]# cp localdomain.zone jepoy.com.zone<br />[root@ns1 named]# ls<br />data localhost.zone named.broadcast named.ip6.local named.zero<br />localdomain.zone jepoy.com.zone named.ca named.local slaves<br />[root@ns1 named]#<br /><br /><br />Edit jepoy.com.zone<br />[root@ns1 named]# vi jepoy.com.zone<br /><br />$TTL 86400<br />@ IN SOA ns1.jepoy.com. jcb.jepoy.com. (<br /> 2006072701 ; serial YYYYMMDDXX<br /> 1200 ; refresh 20 mins<br /> 120 ; retr 2 mins<br /> 1209600 ; expiry 2 weeks<br /> 43200 ) ; minimum 12 hours<br /> <br /> IN NS ns1.jepoy.com.<br /> IN NS ns2.jepoy.com.<br /> IN MX 10 mail.jepoy.com.<br /><br /><br />localhost IN A 127.0.0.1<br />ns1 IN A xxx.189.10.130<br />ns2 IN A xxx.189.10.131<br />mail IN CNAME ns1<br /><br />Copy one reverse zone file<br />[root@ns1 named]# cp named.local jepoy.com.rev<br />[root@ns1 named]# ls<br />data localhost.zone jepoy.com.zone named.ca named.local slaves<br />localdomain.zone jepoy.com.rev named.broadcast named.ip6.local named.zero<br />[root@ns1 named]#<br /><br /><br />Edit jepoy.com.rev<br />[root@ns1 named]# vi jepoy.com.rev<br />$TTL 86400<br />@ IN SOA localhost. root.localhost. (<br /> 1997022700 ; Serial<br /> 28800 ; Refresh<br /> 14400 ; Retry<br /> 3600000 ; Expire<br /> 86400 ) ; Minimum<br /> IN NS localhost.<br />$TTL 86400<br />@ IN SOA ns1.jepoy.com. jcb.jepoy.com. (<br /> 2006072701 ; serial YYYYMMDDXX<br /> 1200 ; refresh 20 mins<br /> 120 ; retr 2 mins<br /> 1209600 ; expiry 2 weeks<br /> 43200 ) ; minimum 12 hours<br /> <br /> IN NS ns1.jepoy.com.<br /> IN NS ns2.jepoy.com.<br /><br />130.10.189.xxx.in-addr.arpa. IN PTR ns1.jepoy.com.<br />131.10.189.xxx.in-addr.arpa. IN PTR ns2.jepoy.com.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/3118619046631587359-5563977273392509158?l=linuxdns.blogspot.com' alt='' /></div>Jeffnoreply@blogger.com0