Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
PTR (Pointer) - PTR maps IP addresses to a hostname. Used for reverse DNS resolu
tion.
NS (name server) Records - NS record maps a domain name to a DNS name server whi
ch is authoritative for its DNS zone.
SOA (Start of authority) Records - Provide information about how a DNS zone work
s.
MX (Mail Exchange) - MX records maps a domain name to mail exchange which will a
ccept email for that name.
INSTALL UNBOUND:-
[root@cdns ~]# yum install unbound -y
CONFIGURE UNBOUND.CONF:-
[root@cdns ~]# vim /etc/unbound/unbound.conf
interface: 192.168.110.22
By default only listen on the localhost. To change to insten on all interfaces 0
.0.0.0 . Specify the network interfaces to listen on.
access-control: 192.168.110.0/24 allow
Specify which clients are allowed to make recursive aueries.
forward-zone:
name: "."
forward-addr: 192.168.110.21
By specifying . for the name we are saying to forward all queries, this can be cha
nged to a specific domain name to only forward queries for that specific domain
to the address set.
Specifies which DNS servers to forward queries to. Forward all queries by specif
ying a foreward-zone of "."
DNSSEC - Perform DNSSEC added security for validate to verify all DNS queries.
domain-insecure: "main.com"
Bypass DNSSEC validation for select unsigned zones.
VALIDATING CONFIGURATIONS:-
[root@Srv1 /]# unbound-checkconf
unbound-checkconf: no errors in /etc/unbound/unbound.conf
FIREWALL CONFIGURATION:-
[root@cdns ~]# firewall-cmd --permanent --add-service=dns
[root@cdns ~]# firewall-cmd --reload
[root@cdns ~]# systemctl enable unbound.service
[root@cdns ~]# systemctl start unbound.service
TROUBLESHOOTING:-
[root@cdns ~]# unbound-anchor -a /etc/unbound/unbound_server.key
[root@cdns ~]# chown unbound /etc/unbound/unbound_server.key
[root@cdns ~]# unbound-checkconf
unbound-checkconf: no errors in /etc/unbound/unbound.conf