How to Install & Configure DNS on Ubuntu 20.04 & 22.04

-

 https://www.SET_your_domain_name.com/install-configure-bind-9-dns-server-ubuntu-debian/

 sudo apt install -y bind9 bind9utils bind9-doc dnsutils
sudo nano /etc/bind/named.conf.options

acl internal-network {
192.168.0.0/23;
};

options {
        directory "/var/cache/bind";
        allow-query { localhost; internal-network; 192.168.0.0/23; localnets; };
        allow-transfer { localhost; };
        forwarders { 1.1.1.1; 8.8.4.4; };
        recursion yes;
        dnssec-validation auto;
        listen-on-v6 { any; };
};



sudo vi named.conf.local

zone "SET_your_domain_name.local" IN {
        type master;
        file "/etc/bind/forward.SET_your_domain_name.local";
        allow-update { none; };
};
zone "0.166.103.in-addr.arpa" IN {
        type master;
        file "/etc/bind/reverse.SET_your_domain_name.local";
        allow-update { none; };
};


sudo cp db.local forward.SET_your_domain_name.local

$TTL 604800
@ IN SOA primary.SET_your_domain_name.local. root.primary.SET_your_domain_name.local. (
         2022072651 ; Serial
         3600 ; Refresh
         1800 ; Retry
         604800 ; Expire
         604600 ) ; Negative Cache TTL
;Name Server Information
@ IN NS primary.SET_your_domain_name.local.

;IP address of Your Domain Name Server(DNS)
primary IN A 192.168.0.9

;Mail Server MX (Mail exchanger) Record
SET_your_domain_name.local. IN MX 10 mail.SET_your_domain_name.local.

;A Record for Host names
www IN A 192.168.0.50
mail IN A 192.168.0.60

;CNAME Record
ftp IN CNAME www.SET_your_domain_name.local.



$ sudo cp db.127 reverse.SET_your_domain_name.local
$ sudo vi /etc/bind/reverse.SET_your_domain_name.local

$TTL 86400
@ IN SOA SET_your_domain_name.local. root.SET_your_domain_name.local. (
         2022072752 ;Serial
         3600 ;Refresh
         1800 ;Retry
         604800 ;Expire
         86400 ;Minimum TTL
)
;Your Name Server Info
@ IN NS primary.SET_your_domain_name.local.
primary IN A 192.168.0.9
;Reverse Lookup for Your DNS Server
40 IN PTR primary.SET_your_domain_name.local.
;PTR Record IP address to HostName
50 IN PTR www.SET_your_domain_name.local.
60 IN PTR mail.SET_your_domain_name.local.



Update the following parameter in ‘/etc/default/named ‘ file, so that dns service starts listening on IPv4

OPTIONS="-u bind -4"

Now all we have to do is to start and enable the BIND service to implement the changes made,

$ sudo systemctl start named
$ sudo systemctl enable named
View the bind service status, run

$ sudo systemctl status named

Note : In case OS firewall is running on your bind server then execute the below command to allow 53 port

$ sudo ufw allow 53
Rule added
Rule added (v6)
$


$ sudo named-checkconf /etc/bind/named.conf.local

If there is no syntax error in your bind configuration file, then it should return to shell without showing any errors.

To cross verify the syntax your forward and reverse lookup zone files , use the command “named-checkzone”, example is shown below:

$ sudo named-checkzone npcn.local /etc/bind/forward.npcn.local

zone SET_your_domain_name.local/IN: loaded serial 2022072651
OK
$
$ sudo named-checkzone npcn.local /etc/bind/reverse.npcn.local
zone SET_your_domain_name.local/IN: loaded serial 2022072752
OK
$
Step 4) Test DNS server with dig & nslookup
To test out our BIND 9 DNS server, we will use another Ubuntu machine & will change its DNS to point out our DNS server. To change the DNS server, open ‘/etc/resol.conf’ & make the following DNS entry,

SET_your_domain_name@IPCORE:~$ sudo vi /etc/resolv.conf
search SET_your_domain_name.local
nameserver 192.168.0.40

save the file & exit. We now have our client ready with DNS pointing to our server. We will now use a CLI tool called ‘dig‘ command , which is used to get find out DNS & its related information. Execute the following command from terminal,

SET_your_domain_name@IPCORE:~$ dig primary.npcn.local

nano /etc/hosts
add
103.166.150.9 mcsol.local

SET_your_domain_name@IPCORE:~$ dig -x 192.168.0.9


Also we can run ‘nslookup‘ command against our DNS server to confirm the output of dig command,

SET_your_domain_name@IPCORE:~$ nslookup primary.npcn.local

SET_your_domain_name@IPCORE:~$ sudo apt install dnsutils -y

Comments

Post a Comment

Popular posts from this blog

Installing NFSEN & NFDUMP on Ubuntu and Next integrate with LibreNMS

-
  librenms@librenms:~$ lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description:     Ubuntu 20.04.2 LTS Release:         20.04 Codename:        focal Project Link: http://nfsen.sourceforge.net/ http://nfdump.sourceforge.net/ https://github.com/phaag/nfdump https://www.first.org/resources/papers/conference2006/haag-peter-papers.pdf sudo add-apt-repository universe    FOR OLD ubuntu versions 16,18 Installation Use the sudo user sudo -i Update ubuntu: apt-get update apt autoremove   Create and navidate to a new folder: mkdir ~/nfsen && cd ~/nfsen   or   mkdir /var/nfsen && cd / var /nfsen   Download the required files: wget https://bit.ly/2NpMHqV      >>> NfSend wget https://github.com/phaag/nfdump/archive/v1.6.17.tar.gz     >>>NfDump Extract the files: tar zxfv 2NpMHqV tar xzfv v1.6.17.tar.gz Install Dependencies apt install make gcc flex rrdtool librrd-dev libpcap
Read more

IP Core Networks | Your Education, Your Choice

-
Image
    Our Youtube Channel Name : IP Core Networks  Channel link: https://www.youtube.com/channel/UCbkH41NcPM3od4Xkij0M7zw Email address:cciepearl@gmail.com WhatsApp:+92-345-7770727 Channel Description:  IP CORE NETWORKS is a Premium Cisco Consulting provider of Cisco Products, Solutions, Included MikroTik, MicroSoft Server,Firewalls Training, and Professional Services/Supports for small, medium, and large-sized businesses. We are a Cisco Premier Certified Partner founded by a Cisco CCIE architect and consultant with over 8 years of production experience in a wide range of network environments. Our Company consists of CCNA, CCNP, and CCIE consultants with real-world experience. AND our channel provides you all Cisco Training videos for CCNA, CCNP, CCIE,MikroTik and others Cisco Certifications as well as Networking-related troubleshooting videos. WhatsApp: +92-345-7770727 Elastic Systems Pvt Ltd.  http://www.elastic-home.com  
Read more

How to Install & Integrate Oxidized Into LibreNMS

-
  How to Install & Integrate Oxidized Into LibreNMS Project Links: https://docs.librenms.org/Extensions/Oxidized/ https://github.com/ytti/oxidized https://www.rubydoc.info/gems/oxidized/0.7.2 https://github.com/net-ssh/net-ssh Oxidized is a great tool for automating backups of device configs like ASA Firewalls, IOS routers, and all types of switches! I chose Oxidized because it very easy integrates into Librenms. The instructions for how to integrate oxidized into LibreNMS are below: sudo -i login as root user   to check Ubuntu OS version   lsb_release -a Must be Update your ubuntu/LibreNMS apt update && apt autoremove su - librenms git pull ./daily.sh ./validate.php     Installation : go to the working directory login as a root user Debian and Ubuntu On Ubuntu, begin by enabling the universe repository (required for libssh2-1-dev): add-apt-repository universe   I nstall the dependencies: apt-get install ruby ruby-dev
Read more