ane coba share sedikit tutor dari sebelah,,, mungkin ada koreksi dari member lain,,,, hehehehe
Langkah pertama menginstall paket unbound dengan mengetik perintah
Code:
sudo apt-get install unbound
Tunggu hingga proses selesai lalu ketikkan lagi
Code:
cd /etc/unbound
Kita telah berada dalam folder /etc/unbound, selanjutnya download named.cache dengan mengetikkan
Code:
wget ftp://FTP.INTERNIC.NET/domain/named.cache
tunggu hingga proses download selesai dan selanjutnya setup unbound dengan mengetikkan
Code:
unbound-control-setup
chown unbound:root unbound_*
chmod 440 unbound_*
Lalu backup unbound.conf yang asli dengan mengetikkan perintah
Code:
sudo mv unbound.conf /etc/unbound/unbound.conf.backup
sekarang kita buat unbound.conf yang baru
Code:
sudo nano unbound.conf
lalu pastekan configurasi berikut:
Code:
server:
verbosity: 1
statistics-interval: 120
statistics-cumulative: yes
num-threads: 1
interface: 0.0.0.0
outgoing-range: 512
num-queries-per-thread: 1024
msg-cache-size: 64m
rrset-cache-size: 32m
msg-cache-slabs: 4
rrset-cache-slabs: 4
cache-max-ttl: 86400
infra-host-ttl: 60
infra-lame-ttl: 120
infra-cache-numhosts: 10000
infra-cache-lame-size: 10k
do-ip4: yes
do-ip6: no
do-udp: yes
do-tcp: yes
do-daemonize: yes
#access-control: 0.0.0.0/0 allow
access-control: 192.168.0.0/16 allow
access-control: 172.16.0.0/12 allow
access-control: 10.0.0.0/8 allow
access-control: 127.0.0.0/8 allow
access-control: 0.0.0.0/0 refuse
chroot: "/etc/unbound"
username: "unbound"
directory: "/etc/unbound"
#logfile: "/etc/unbound/unbound.log"
#use-syslog: yes
logfile: ""
use-syslog: no
pidfile: "/etc/unbound/unbound.pid"
root-hints: "/etc/unbound/named.cache"
identity: "DNS"
version: "1.4"
hide-identity: yes
hide-version: yes
harden-glue: yes
do-not-query-address: 127.0.0.1/8
do-not-query-localhost: yes
module-config: "iterator"
#zone localhost
local-zone: "localhost." static
local-data: "localhost. 10800 IN NS localhost."
local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"
local-data: "localhost. 10800 IN A 127.0.0.1"
local-zone: "127.in-addr.arpa." static
local-data: "127.in-addr.arpa. 10800 IN NS localhost."
local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"
local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."
#ampenannet.net
local-zone: "ampenannet.net." static
local-data: "ampenannet.net. 86400 IN NS ns1.ampenannet.net."
local-data: "ampenannet.net. 86400 IN SOA ampenannet.net. hostmaster.ampenannet.net. 3 3600 1200 604800 86400"
local-data: "ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "www.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "ns1.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "mail.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "ampenannet.net. 86400 IN MX 10 mail.ampenannet.net."
local-data: "ampenannet.net. 86400 IN TXT v=spf1 a mx ~all"
local-zone: "8.168.192.in-addr.arpa." static
local-data: "8.168.192.in-addr.arpa. 10800 IN NS ampenannet.net."
local-data: "8.168.192.in-addr.arpa. 10800 IN SOA ampenannet.net. hostmaster.ampenannet.net. 4 3600 1200 604800 864000"
local-data: "2.8.168.192.in-addr.arpa. 10800 IN PTR ampenannet.net."
forward-zone:
name: "."
forward-addr: 202.134.0.155
forward-addr: 202.134.0.61
forward-addr: 203.130.193.74
forward-addr: 203.130.196.155
remote-control:
control-enable: yes
control-interface: 127.0.0.1
control-port: 953
server-key-file: "/etc/unbound/unbound_server.key"
server-cert-file: "/etc/unbound/unbound_server.pem"
control-key-file: "/etc/unbound/unbound_control.key"
control-cert-file: "/etc/unbound/unbound_control.pem"
sesuaikan local-zone sesuai ip mesin ubuntu anda dan forward-zone sesuai dns dari ISP anda. Setelah selesai tekan CTRL + O untuk menyimpan dan CTRL + X untuk keluar dari editor. Langkah selanjutnya adalah mengconfigurasi file resolv.conf dengan mengetikkan perintah
Code:
sudo nano /etc/resolv.conf
lalu ganti isinya dengan nameserver 127.0.0.1
Kemudian remove bind9 dnsmaq agar DNS Server tidak bentrok
Code:
apt-get purge bind9
Reboot mesin ubuntu anda...
Sekarang cek apakah unbound sudah berjalan apa tidak
Code:
nslookup 192.168.8.2
jika telah berjalan maka hasilnya akan seperti ini
Code:
Server: 127.0.0.1
Address: 127.0.0.1#53
2.8.168.192.in-addr.arpa name = ampenannet.net
Code:
nslookup ampenannet.net
Server: 127.0.0.1
Address: 127.0.0.1#53
Name: ampenannet.net
Address: 192.168.8.2
Silahkan dicoba, kurang lebihnya mohon dimaafkan dan silahkan bagi yang ingin menambahkan tapi kalu betnyo dak pacak ane jawab maafkan saya,,, hahahaha,,,,
dapet tutor dari tempat lain juga,,hehehe
Langkah pertama menginstall paket unbound dengan mengetik perintah
Code:
sudo apt-get install unbound
Tunggu hingga proses selesai lalu ketikkan lagi
Code:
cd /etc/unbound
Kita telah berada dalam folder /etc/unbound, selanjutnya download named.cache dengan mengetikkan
Code:
wget ftp://FTP.INTERNIC.NET/domain/named.cache
tunggu hingga proses download selesai dan selanjutnya setup unbound dengan mengetikkan
Code:
unbound-control-setup
chown unbound:root unbound_*
chmod 440 unbound_*
Lalu backup unbound.conf yang asli dengan mengetikkan perintah
Code:
sudo mv unbound.conf /etc/unbound/unbound.conf.backup
sekarang kita buat unbound.conf yang baru
Code:
sudo nano unbound.conf
lalu pastekan configurasi berikut:
Code:
server:
verbosity: 1
statistics-interval: 120
statistics-cumulative: yes
num-threads: 1
interface: 0.0.0.0
outgoing-range: 512
num-queries-per-thread: 1024
msg-cache-size: 64m
rrset-cache-size: 32m
msg-cache-slabs: 4
rrset-cache-slabs: 4
cache-max-ttl: 86400
infra-host-ttl: 60
infra-lame-ttl: 120
infra-cache-numhosts: 10000
infra-cache-lame-size: 10k
do-ip4: yes
do-ip6: no
do-udp: yes
do-tcp: yes
do-daemonize: yes
#access-control: 0.0.0.0/0 allow
access-control: 192.168.0.0/16 allow
access-control: 172.16.0.0/12 allow
access-control: 10.0.0.0/8 allow
access-control: 127.0.0.0/8 allow
access-control: 0.0.0.0/0 refuse
chroot: "/etc/unbound"
username: "unbound"
directory: "/etc/unbound"
#logfile: "/etc/unbound/unbound.log"
#use-syslog: yes
logfile: ""
use-syslog: no
pidfile: "/etc/unbound/unbound.pid"
root-hints: "/etc/unbound/named.cache"
identity: "DNS"
version: "1.4"
hide-identity: yes
hide-version: yes
harden-glue: yes
do-not-query-address: 127.0.0.1/8
do-not-query-localhost: yes
module-config: "iterator"
#zone localhost
local-zone: "localhost." static
local-data: "localhost. 10800 IN NS localhost."
local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"
local-data: "localhost. 10800 IN A 127.0.0.1"
local-zone: "127.in-addr.arpa." static
local-data: "127.in-addr.arpa. 10800 IN NS localhost."
local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"
local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."
#ampenannet.net
local-zone: "ampenannet.net." static
local-data: "ampenannet.net. 86400 IN NS ns1.ampenannet.net."
local-data: "ampenannet.net. 86400 IN SOA ampenannet.net. hostmaster.ampenannet.net. 3 3600 1200 604800 86400"
local-data: "ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "www.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "ns1.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "mail.ampenannet.net. 86400 IN A 192.168.8.2"
local-data: "ampenannet.net. 86400 IN MX 10 mail.ampenannet.net."
local-data: "ampenannet.net. 86400 IN TXT v=spf1 a mx ~all"
local-zone: "8.168.192.in-addr.arpa." static
local-data: "8.168.192.in-addr.arpa. 10800 IN NS ampenannet.net."
local-data: "8.168.192.in-addr.arpa. 10800 IN SOA ampenannet.net. hostmaster.ampenannet.net. 4 3600 1200 604800 864000"
local-data: "2.8.168.192.in-addr.arpa. 10800 IN PTR ampenannet.net."
forward-zone:
name: "."
forward-addr: 202.134.0.155
forward-addr: 202.134.0.61
forward-addr: 203.130.193.74
forward-addr: 203.130.196.155
remote-control:
control-enable: yes
control-interface: 127.0.0.1
control-port: 953
server-key-file: "/etc/unbound/unbound_server.key"
server-cert-file: "/etc/unbound/unbound_server.pem"
control-key-file: "/etc/unbound/unbound_control.key"
control-cert-file: "/etc/unbound/unbound_control.pem"
sesuaikan local-zone sesuai ip mesin ubuntu anda dan forward-zone sesuai dns dari ISP anda. Setelah selesai tekan CTRL + O untuk menyimpan dan CTRL + X untuk keluar dari editor. Langkah selanjutnya adalah mengconfigurasi file resolv.conf dengan mengetikkan perintah
Code:
sudo nano /etc/resolv.conf
lalu ganti isinya dengan nameserver 127.0.0.1
Kemudian remove bind9 dnsmaq agar DNS Server tidak bentrok
Code:
apt-get purge bind9
Reboot mesin ubuntu anda...
Sekarang cek apakah unbound sudah berjalan apa tidak
Code:
nslookup 192.168.8.2
jika telah berjalan maka hasilnya akan seperti ini
Code:
Server: 127.0.0.1
Address: 127.0.0.1#53
2.8.168.192.in-addr.arpa name = ampenannet.net
Code:
nslookup ampenannet.net
Server: 127.0.0.1
Address: 127.0.0.1#53
Name: ampenannet.net
Address: 192.168.8.2
Silahkan dicoba, kurang lebihnya mohon dimaafkan dan silahkan bagi yang ingin menambahkan tapi kalu betnyo dak pacak ane jawab maafkan saya,,, hahahaha,,,,
dapet tutor dari tempat lain juga,,hehehe
No comments:
Post a Comment