Bonjour à tous,
J’ai mis en place un proxy (squid +dansguardian) + iptable sur mon serveur.
Je voulait rajouter bind9 pour faire du cache dns, celui-ci est installé mais impossible de le lancer.
FW-PROXY:~# /etc/init.d/bind9 restart
Stopping domain name service...: bind9rndc: connect failed: 127.0.0.1#953: connection refused
.
Starting domain name service...: bind9 failed!
FW-PROXY:~# tail -f /var/log/syslog
Jul 17 09:42:57 FW-PROXY named[2620]: using up to 4096 sockets
Jul 17 09:42:57 FW-PROXY named[2620]: loading configuration from '/etc/bind/named.conf'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:12: unknown option 'zone'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:20: unknown option 'zone'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:25: unknown option 'zone'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:30: unknown option 'zone'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:35: unknown option 'zone'
Jul 17 09:42:57 FW-PROXY named[2620]: /etc/bind/named.conf:42: '}' expected near end of file
Jul 17 09:42:57 FW-PROXY named[2620]: loading configuration: unexpected token
Jul 17 09:42:57 FW-PROXY named[2620]: exiting (due to fatal error)
named.conf:
FW-PROXY:~# cat /etc/bind/named.conf
// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
// structure of BIND configuration files in Debian, *BEFORE* you customize
// this configuration file.
//
// If you are just adding zones, please do that in /etc/bind/named.conf.local
include "/etc/bind/named.conf.options";
// prime the server with knowledge of the root servers
zone "." {
type hint;
file "/etc/bind/db.root";
};
// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912
zone "localhost" {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};
include "/etc/bind/named.conf.local";
aucune regle iptables:
FW-PROXY:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Quel est le problème? Faut-il paramétrer un fichier pour faire du cache dns?
Merci
guigui69