On Tue, Feb 9, 2010 at 8:54 AM, rasyid <wilan...@gmail.com> wrote: > Saya setup zimbra di centos 5.4 yang juga digunakan sebagai internet sharing > dengan speedy. Internet sharing sudah berjalan normal.cuma dns nya > sepertinya bermasalah > saya mengikuti tutorial dns chroot dari sini : > http://wiki.ngadimin.org/Instalasi_Chroot_DNS_Server_Menggunakan_Bind_di_CentOS_5.masalhnya > <http://wiki.ngadimin.org/Instalasi_Chroot_DNS_Server_Menggunakan_Bind_di_CentOS_5.masalhnya> > jika di dig terhadapa domain larinya masih ke ip public.apakah saya salah > set di zonenya. > > berikut konfig named.conf saya : > > *di /var/named/chroot/etc/named.conf* > > key "rndckey" { > algorithm hmac-md5; > secret "V8nwCoxrFOxbB2nGTvkmb+ iXQIArPiOa2NTkhHBcaA8="; > }; > > controls { > inet 127.0.0.1 port 953 > allow { 127.0.0.1; } keys { "rndckey"; }; > }; > options { > > directory "/var/named"; > pid-file "/var/run/named/named.pid"; > > recursion yes; > > allow-recursion { > 127.0.0.1; > 192.168.1.0/24 <http://192.168.1.0/24>; //network anda > }; > > listen-on { > 127.0.0.1; > 192.168.1.1; //ip server yang menjalankan bind ini > }; > > query-source address * port 53; > > // sembunyikan versi bind anda > version none; > > allow-query { > 127.0.0.1; > 192.168.1.0/24 <http://192.168.1.0/24>; //network anda > }; > }; > zone "." IN { > type hint; > file "named.ca <http://named.ca/>"; > }; > > // contoh, buat zone baru. ngadimin.org <http://ngadimin.org/> > zone "expertabroker.com <http://expertabroker.com/>" IN { > type master; > file "data/expertabroker.com.zone"; > allow-update { none; }; > }; > > dan konfig zone saya > *di /var/named/chroot/var/named/data/expertabroker.com.zone* > > $ORIGIN . > $TTL 86400 ; 1 day > expertabroker.com <http://expertabroker.com/> IN SOA > ns.expertabroker.com <http://ns.expertabroker.com/>. > hostmaster.expertabroker.com <http://hostmaster.expertabroker.com/>. ( > 2008042200 ; serial > 7200 ; refresh (2 hours) > 7200 ; retry (2 hours) > 1209600 ; expire (2 weeks) > 86400 ; minimum (1 day) > ) > NS zimbra.expertabroker.com > <http://zimbra.expertabroker.com/>. > A 192.168.1.1 > > $ORIGIN expertabroker.com <http://expertabroker.com/>. > > zimbra A 192.168.1.1 > > kalo saya dig expertabroker.com <http://expertabroker.com/> > hasilnya : > > ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> expertabroker.com > <http://expertabroker.com/> > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14867 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 > > ;; QUESTION SECTION: > ;expertabroker.com <http://expertabroker.com/>. IN A > > ;; ANSWER SECTION: > expertabroker.com <http://expertabroker.com/>. 340 IN A > 216.180.241.61 > > ;; AUTHORITY SECTION: > expertabroker.com <http://expertabroker.com/>. 340 IN NS > ns2.hostanda.com <http://ns2.hostanda.com/>. > expertabroker.com <http://expertabroker.com/>. 340 IN NS > ns1.hostanda.com <http://ns1.hostanda.com/>. > > ;; ADDITIONAL SECTION: > ns1.hostanda.com <http://ns1.hostanda.com/>. 3020 IN A > 216.180.241.59 > ns2.hostanda.com <http://ns2.hostanda.com/>. 3021 IN A > 216.180.241.60 > > ;; Query time: 33 msec > ;; SERVER: 192.168.0.1#53(192.168.0.1) > ;; WHEN: Mon Feb 8 17:03:57 2010 > ;; MSG SIZE rcvd: 128 > > > di /etc/resolv.conf : > > #nameserver 192.168.1.1 > nameserver 192.168.0.1 > nameserver 202.134.0.61 > > > bagaimana supaya ketika di dig bisa mengarah ke ip lokal server sebelum ke > ip public. > jika saya tambahakan di /etc/resolf.conf ip server 192.168.1.1 maka internet > dari user jadi mati mohon share reakan2??
IP si DNS Server (si Zimbra) itu berapa ? Kalau IP-nya 192.168.1.1, kenapa resolv-nya 192.168.0.1 ? Resolv harus merujuk ke DNS Server yang dimaksud. Soal Internet yang mati, berarti DNS-nya tidak punya forwarder list. Biasanya kalau resolv ada beberapa DNS address, lookup address akan mengikuti prioritas yang diset. Mestinya tidak problem, karena kalau gagal di 192.168.1.1, resolv akan ditest ke 202.134.0.61 -- Best Regards, Masim "Vavai" Sugianto /************************************************************/ Blog (ID) : http://www.vavai.com Blog (EN) : http://www.vavai.net Training Zimbra : http://bit.ly/d0yvE5 /************************************************************/ -- FAQ milis di http://wiki.linux.or.id/FAQ_milis_tanya-jawab Unsubscribe: kirim email ke tanya-jawab-unsubscr...@linux.or.id Arsip dan info milis selengkapnya di http://linux.or.id/milis
