jak nastavit DNS server

Servery a sítě
1

hledam nekoho ,kdo by mi poradil , mam fedoru statickou adresu ,je nainstalovan Bind ,sluzba named je ON a bezi ,
jak bych mel provest nastaveni named.conf aby dns server pri dotazu na JAKOUKOLIV DOMENU
odpovedel vzdy STEJNOU IP ADRESOU,na ktere bezi httpd na mem pocitaci.jedna se o uzavrenou sit bez komunikace ven.Jinak receno jde mi o to jak udelat to ze kdokoliv na siti otevre firefox ,a napise jakykoliv text obdrzel vzdy stejnou IP adresu daneho apache serveru,

//////////////////////////////////////////////////////////////////////////////////////////////////
22:07:43.855471 IP 192.168.168.102.ardt > 192.168.168.2.domain: 20961+ A? www.pokus.com. (31)
22:07:43.855522 IP 192.168.168.2 > 192.168.168.102: ICMP host 192.168.168.2 unreachable - admin prohibited, length 67
//////////////////////////////////////////////////////////////////////////////////////////////////

2

Podle me je jednoduzsi v tomto pripade pouzit pravidlo iptables, od boku:
iptables -t nat -A PREROUTING -p tcp -i eth0 -j DNAT --to-destination :80

3

díky to je opravdu moc pěkné vypadá to že to funguje

4

Ale neřeší to problém chybně nakonfigurovaného bindu s root keší a bez root serverů.

5

…ve firefoxu zadana IPadresa .dotaz je z IP adresy… …
///////////////////////////////////////////////////////////////////
00:32:17.890673 IP 192.168.168.101.50115 > 192.168.168.2.http: . ack 1 win 183 <nop,nop,timestamp 9089527 10860919>
00:32:17.896118 IP 192.168.168.101.50115 > 192.168.168.2.http: P 1:506(505) ack 1 win 183 <nop,nop,timestamp 9089528 10860919>
00:32:17.896175 IP 192.168.168.2.http > 192.168.168.101.50115: . ack 506 win 108 <nop,nop,timestamp 10860928 9089528>
00:32:17.896869 IP 192.168.168.2.http > 192.168.168.101.50115: P 1:152(151) ack 506 win 108 <nop,nop,timestamp 10860929 9089528>
00:32:17.897051 IP 192.168.168.2.http > 192.168.168.101.50115: F 152:152(0) ack 506 win 108 <nop,nop,timestamp 10860929 9089528>
00:32:17.900599 IP 192 .168.168.101.50115 > 192.168.168.2.http: . ack 152 win 216 <nop,nop,timestamp 9089537 10860929>
00:32:17.901926 IP 192.168.168.101.50115 > 192.168.168.2.http: F 506:506(0) ack 153 win 216 <nop,nop,timestamp 9089538 10860929>
00:32:17.901976 IP 192.168.168.2.http > 192.168.168.101.50115: . ack 507 win 108 <nop,nop,timestamp 10860934 9089538>
/////////////////////////////////////////////////////////////////////////////////
ve firefoxu je zadan text napr www.google.com dotaz je textovy
00:34:23.263723 IP 192.168.168.101.42018 > 192.168.168.2.domain: 59196+ A? www.google.com. (32)
00:34:23.265190 IP 192.168.168.2 > 192.168.168.101: ICMP host 192.168.168.2 unreachable - admin prohibited, length 68
00:34:23.264884 IP 192.168.168.101.42018 > 192.168.168.2.domain: 31619+ AAAA? www.google.com. (32)
00:34:23.264921 IP 192.168.168.2 > 192.168.168.101: ICMP host 192.168.168.2 unreachable - admin prohibited, length 68
00:34:23.267942 IP 192.168.168.101.35339 > 192.168.168.2.domain: 59196+ A? www.google.com. (32)
00:34:23.267981 IP 192.168.168.2 > 192.168.168.101: ICMP host 192.168.168.2 unreachable - admin prohibited, length 68
00:34:23.269100 IP 192.168.168.101.35339 > 192.168.168.2.domain: 31619+ AAAA? www.google.com. (32)
00:34:23.269137 IP 192.168.168.2 > 192.168.168.101: ICMP host 192.168.168.2 unreachable - admin prohibited, length 68
00:34:23.272762 IP 192.168.168.101.49385 > 192.168.168.2.domain: 7177+ A? www.google.com.local. (38)
00:34:23.272797 IP 192.168.168.2 > 192.168.168.101: ICMP host 192.168.168.2 unreachable - admin prohibited, length 74
00:34:23.274174 IP 192.168.168.101.49385 > 192.168.168.2.domain: 26018+ AAAA? www.google.com.local. (38)
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
jeste bude asi nekde nejake nastaveni ?

6

Tomas12345 napsal(a):

unreachable - admin prohibited, length 68

Nemáš DNS povolen ve firewallu.