Upload File

bondbond

Download Bondbond

If you can't read please download the document

Upload: suddais

Post on 21-Dec-2015

15 views

Category:

Documents


5 download

Report

DESCRIPTION

bond

TRANSCRIPT

server: verbosity: 1 statistics-interval: 120 statistics-cumulative: yes num-threads: 1 interface: 0.0.0.0 outgoing-range: 512 num-queries-per-thread: 1024 msg-cache-size: 64m rrset-cache-size: 32m msg-cache-slabs: 4 rrset-cache-slabs: 4 cache-max-ttl: 86400 infra-host-ttl: 60 infra-lame-ttl: 120 infra-cache-numhosts: 10000 infra-cache-lame-size: 10k do-ip4: yes do-ip6: no do-udp: yes do-tcp: yes do-daemonize: yes #access-control: 0.0.0.0/0 allow access-control: 192.168.0.0/16 allow access-control: 172.16.0.0/12 allow access-control: 10.0.0.0/8 allow access-control: 127.0.0.0/8 allow access-control: 0.0.0.0/0 refuse chroot: "/etc/unbound" username: "unbound" directory: "/etc/unbound" #logfile: "/etc/unbound/unbound.log" #use-syslog: yes logfile: "" use-syslog: no pidfile: "/etc/unbound/unbound.pid" root-hints: "/etc/unbound/named.cache" identity: "DNS" version: "1.4" hide-identity: yes hide-version: yes harden-glue: yes do-not-query-address: 127.0.0.1/8 do-not-query-localhost: yes module-config: "iterator" #zone localhost local-zone: "localhost." static local-data: "localhost. 10800 IN NS localhost." local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800" local-data: "localhost. 10800 IN A 127.0.0.1" local-zone: "127.in-addr.arpa." static local-data: "127.in-addr.arpa. 10800 IN NS localhost." local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800" local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost." #zone bcnetwork.co.cc local-zone: "bcnetwork.co.cc." static local-data: "bcnetwork.co.cc. 86400 IN NS ns1.bcnetwork.co.cc." local-data: "bcnetwork.co.cc. 86400 IN SOA bcnetwork.co.cc. hostmaster.bcnetwork.co.cc. 3 3600 1200 604800 86400" local-data: "bcnetwork.co.cc. 86400 IN A 192.168.0.1" local-data: "www.bcnetwork.co.cc. 86400 IN A 192.168.0.1" local-data: "ns1.bcnetwork.co.cc. 86400 IN A 192.168.0.1" #local-data: "mail.zoky.net. 86400 IN A 192.168.2.2" #local-data: "zoky.net. 86400 IN MX 10 mail.zoky.net." #local-data: "zoky.net. 86400 IN TXT v=spf1 a mx ~all" local-zone: "0.168.192.in-addr.arpa." static local-data: "0.168.192.in-addr.arpa. 10800 IN NS bcnetwork.co.cc." local-data: "0.168.192.in-addr.arpa. 10800 IN SOA bcnetwork.co.cc. hostmaster.bcnetwork.co.cc. 4 3600 1200 604800 864000" local-data: "1.0.168.192.in-addr.arpa. 10800 IN PTR bcnetwork.co.cc."forward-zone: name: "." forward-addr: 202.134.0.155 forward-addr: 202.134.0.61 forward-addr: 203.130.193.74 forward-addr: 203.130.196.155 forward-addr: 202.134.1.5 forward-addr: 203.130.196.155 forward-addr: 203.130.208.18 forward-addr: 208.67.222.222 forward-addr: 208.67.220.220 forward-addr: 8.8.8.8 forward-addr: 8.8.4.4 remote-control: control-enable: yes control-interface: 127.0.0.1 control-port: 953 server-key-file: "/etc/unbound/unbound_server.key" server-cert-file: "/etc/unbound/unbound_server.pem" control-key-file: "/etc/unbound/unbound_control.key" control-cert-file: "/etc/unbound/unbound_control.pem"---------------------------------cd /usr/ports/dns/unboundmake config (centang Libevent & Thread)make install cleancd /usr/local/etc/unboundfetch ftp://FTP.INTERNIC.NET/domain/named.cacheunbound-control-setupchown unbound:wheel unbound_*chmod 440 unbound_*mkdir /usr/local/etc/unbound/devecho "devfs /usr/local/etc/unbound/dev devfs rw 0 0" >> /etc/fstabecho 'unbound_enable="YES"' >> /etc/rc.confecho 'devfs_set_rulesets="/usr/local/etc/unbound/dev=unbound_ruleset"' >> /etc/rc.confconfignya :verbosity: 5statistics-interval: 120num-threads: 2interface: 0.0.0.0outgoing-range: 512num-queries-per-thread: 1024msg-cache-size: 16mrrset-cache-size: 32mmsg-cache-slabs: 4rrset-cache-slabs: 4cache-max-ttl: 86400infra-host-ttl: 60infra-lame-ttl: 120infra-cache-numhosts: 10000infra-cache-lame-size: 10kdo-ip4: yesdo-ip6: nodo-udp: yesdo-tcp: yesdo-daemonize: yesaccess-control: 0.0.0.0/0 allowaccess-control: 127.0.0.0/8 allowchroot: "/usr/local/etc/unbound"username: "unbound"directory: "/usr/local/etc/unbound"#logfile: "/usr/local/etc/unbound/unbound.log"#use-syslog: yeslogfile: ""use-syslog: nopidfile: "/usr/local/etc/unbound/unbound.pid"root-hints: "/usr/local/etc/unbound/named.cache"identity: "DNS"version: "1.0"hide-identity: yeshide-version: yesharden-glue: yesdo-not-query-address: 127.0.0.1/8do-not-query-localhost: yesmodule-config: "iterator"local-zone: "localhost." staticlocal-data: "localhost. 10800 IN NS localhost."local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"local-data: "localhost. 10800 IN A 127.0.0.1"local-zone: "127.in-addr.arpa." staticlocal-data: "127.in-addr.arpa. 10800 IN NS localhost."local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."local-zone: "xxxxx.net." staticlocal-data: "xxxxx.net. 86400 IN NS ns1.xxxxx.net."local-data: "xxxxx.net. 86400 IN NS ns2.xxxxx.net."local-data: "xxxxx.net. 86400 IN SOA xxxxx.net. hostmaster.xxxxx.net.net. 3 3600 1200 604800 86400"local-data: "xxxxx.net. 86400 IN A 172.16.17.2"local-data: "www.xxxxx.net. 86400 IN A 172.16.17.2"local-data: "ns1.xxxxx.net. 86400 IN A 172.16.17.2"local-data: "ns1.xxxxx.net. 86400 IN A 172.16.17.20"local-data: "mail.x.x.x.net. 86400 IN A 192.168.70.1"local-data: "xxxxx.net. 86400 IN MX 10 mail.xxxxx.net."local-data: "xxxxx.net. 86400 IN TXT v=spf1 a mx ~all"local-zone: "17.16.172.in-addr.arpa." staticlocal-data: "17.16.172.in-addr.arpa. 10800 IN NS xxxxx.net."local-data: "17.16.172.in-addr.arpa. 10800 IN SOA xxxxx.net. hostmaster.xxxxx.net. 4 3600 1200 604800 864000"local-data: "2.17.16.172.in-addr.arpa. 10800 IN PTR xxxxx.net."local-data: "3.17.16.172.in-addr.arpa. 10800 IN PTR nms.xxxxx.net."local-data: "4.17.16.172.in-addr.arpa. 10800 IN PTR sadewa.xxxxx.net."forward-zone:name: "."forward-addr: 202.155.x.xforward-addr: 202.155.x.xremote-control:control-enable: yescontrol-interface: 127.0.0.1control-port: 953server-key-file: "/usr/local/etc/unbound/unbound_server.key"server-cert-file: "/usr/local/etc/unbound/unbound_server.pem"control-key-file: "/usr/local/etc/unbound/unbound_control.key"control-cert-file: "/usr/local/etc/unbound/unbound_control.pem"----------------------------------------apt-get install unboundklo udah silahkan lakukan konfigurasi file dibawah ini : cd /etc/unbound wget ftp://FTP.INTERNIC.NET/domain/named.cache unbound-control-setup chown unbound:root unbound_* chmod 440 unbound_*eksekusi perintah diatas dalam mode super user (dah tau khan perintahnya :D )sesuaikan config /etc/unbound/unbound.conf, dan servis dns lainnya (bind/dnsmasq dll) harus di stop agar tidak bentrok)sekarang qta konfigurasi isi unboundnyasilahkan disesuaikan bagi yang mencobanyasudo gedit /etc/unbound/unbound.confserver:verbosity: 1statistics-interval: 120num-threads: 1interface: 0.0.0.0outgoing-range: 512num-queries-per-thread: 1024msg-cache-size: 16mrrset-cache-size: 32mmsg-cache-slabs: 4rrset-cache-slabs: 4cache-max-ttl: 86400infra-host-ttl: 60infra-lame-ttl: 120infra-cache-numhosts: 10000infra-cache-lame-size: 10kdo-ip4: yesdo-ip6: nodo-udp: yesdo-tcp: yesdo-daemonize: yes#access-control: 0.0.0.0/0 allowaccess-control: 192.168.100.0/27 allow#access-control: 172.16.0.0/12 allow#access-control: 10.0.0.0/8 allowaccess-control: 127.0.0.0/8 allowaccess-control: 0.0.0.0/0 refusechroot: "/etc/unbound"username: "unbound"directory: "/etc/unbound"#logfile: "/etc/unbound/unbound.log"#use-syslog: yeslogfile: ""use-syslog: nopidfile: "/etc/unbound/unbound.pid"root-hints: "/etc/unbound/named.cache"identity: "DNS"version: "1.4"hide-identity: yeshide-version: yesharden-glue: yesdo-not-query-address: 127.0.0.1/8do-not-query-localhost: yesmodule-config: "iterator"#zone localhostlocal-zone: "localhost." staticlocal-data: "localhost. 10800 IN NS localhost."local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"local-data: "localhost. 10800 IN A 127.0.0.1"local-zone: "127.in-addr.arpa." staticlocal-data: "127.in-addr.arpa. 10800 IN NS localhost."local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."#zone dns.xxx.org#local-zone: "dns.xxx.org." static#local-data: "dns.xxx.org. 86400 IN NS ns1.dns.itvps.org."#local-data: "dns.xxx.org. 86400 IN SOA dns.xxx.org. hostmaster.dns.xxx.org. 3 3600 1200 604800 86400"#local-data: "dns.xxx.org. 86400 IN A 192.168.x.x"#local-data: "www.dns.xxx.org. 86400 IN A 192.168.x.x"#local-data: "ns1.dns.xxx.org. 86400 IN A 192.168.x.x"#local-data: "mail.dns.xxx.org. 86400 IN A 192.168.x.x"#local-data: "dns.xxx.org. 86400 IN MX 10 mail.dns.xxx.org."#local-data: "dns.xxx.org. 86400 IN TXT v=spf1 a mx ~all"#local-zone: "x.x.192.in-addr.arpa." static#local-data: "x.x.168.192.in-addr.arpa. 10800 IN NS dns.xxx.org."#local-data: "x.x.192.in-addr.arpa. 10800 IN SOA dns.xxx.org. hostmaster.dns.xxx.org. 4 3600 1200 604800 864000"#local-data: "x.x.168.192.in-addr.arpa. 10800 IN PTR dns.xxx.org."forward-zone:name: "."forward-addr: 180.131.144.144forward-addr: 180.131.145.145forward-addr: 202.134.0.155forward-addr: 203.130.196.155forward-addr: 125.160.4.82forward-addr: 202.134.0.61forward-addr: 203.130.196.5forward-addr: 222.124.198.150forward-addr: 222.124.249.115forward-addr: 8.8.8.8forward-addr: 8.8.4.4remote-control:control-enable: yescontrol-interface: 127.0.0.1control-port: 953server-key-file: "/etc/unbound/unbound_server.key"server-cert-file: "/etc/unbound/unbound_server.pem"control-key-file: "/etc/unbound/unbound_control.key"control-cert-file: "/etc/unbound/unbound_control.pem"klo udah silahkan cek filenya dl siapa tau ada yang error dengan perintahunbound-checkconf /etc/unbound/unbound.confNote: Untuk yang diberi BOLD itu hanya bisa digunakan untuk pengguna IP Static (Ex: Speedy) kalo pengguna modem kayak saya engga bisa dipake jadi dikasih tanda pagar didepannya.klo udah silahkan restart unboundnya/etc/init.d/unbound restartsekarang tes (asumsi dah jalan)root@BLITZ:~# nslookup 192.168.xx.xxServer: 127.0.0.1Address: 127.0.0.1#53x.xx.168.192.in-addr.arpa name = dns.xxx.org.root@BLITZ:~# nslookup dns.xxx.orgServer: 127.0.0.1Address: 127.0.0.1#53Name: dns.xxx.orgAddress: 192.168.xx.xxklo udah silahkan tambahkan dns localhost di squid.conf nyadns_nameservers 127.0.0.1-------------------------------------------------------apt-get install unboundLalu masuk pada directory /etc/unbound dengan perintah :cd /etc/unboundlalu ambil named.cache dari url berikut ftp://FTP.INTERNIC.NET/domain/named.cachedengan perintah pada console ubuntu dilakukan perintah:wget ftp://FTP.INTERNIC.NET/domain/named.cacheSetelah wget unbound selesai, lakukan 3 langkah dibawah ini :unbound-control-setupchown unbound:root unbound_*chmod 440 unbound_*Ini configurasi unbound untuk cache dns. Silahkaan di copy dan di letakkan pada /etc/unbound/unbound.confSesudah unbound.conf di letakkan pada /etc/unbound/unbound.conf, kemudian ubah isi /etc/reslov.conf jadi seperti di bawah ini:nameserver 127.0.0.1Ubah juga /etc/network/interfaces pada ubuntu serverbagian Dns-nameservers jadi seperti ini:dns-nameservers 127.0.0.1Check configurasi sudah benar atau masih ada yang salah:unbound-checkconf /etc/unbound/unbound.confKetikkan perintah berikut bila configurasi telah di buat dan benar :/etc/init.d/unbound restartTest hasilnya dengan melakukan nslookupnslookup 127.0.0.1Dibawah ini unbound.conf atau bisa juga di download dari sini Unbound.confserver:verbosity: 1statistics-interval: 120statistics-cumulative: yesnum-threads: 1interface: 0.0.0.0outgoing-range: 512num-queries-per-thread: 1024msg-cache-size: 16mrrset-cache-size: 32mmsg-cache-slabs: 4rrset-cache-slabs: 4cache-max-ttl: 86400infra-host-ttl: 60infra-lame-ttl: 120infra-cache-numhosts: 10000infra-cache-lame-size: 10kdo-ip4: yesdo-ip6: nodo-udp: yesdo-tcp: yesdo-daemonize: yes#access-control: 0.0.0.0/0 allowaccess-control: 192.168.0.0/16 allowaccess-control: 192.168.88.0/24 allowaccess-control: 192.168.1.0/24 allowaccess-control: 172.16.0.0/12 allowaccess-control: 10.0.0.0/8 allowaccess-control: 127.0.0.0/8 allowaccess-control: 0.0.0.0/0 refusechroot: "/etc/unbound"username: "unbound"directory: "/etc/unbound"#logfile: "/etc/unbound/unbound.log"#use-syslog: yeslogfile: ""use-syslog: nopidfile: "/etc/unbound/unbound.pid"root-hints: "/etc/unbound/named.cache"identity: "DNS"version: "1.4"hide-identity: yeshide-version: yesharden-glue: yesdo-not-query-address: 127.0.0.1/8do-not-query-localhost: yesmodule-config: "iterator"#zone localhostlocal-zone: "localhost." staticlocal-data: "localhost. 10800 IN NS localhost."local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"local-data: "localhost. 10800 IN A 127.0.0.1"local-zone: "127.in-addr.arpa." staticlocal-data: "127.in-addr.arpa. 10800 IN NS localhost."local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."#zone mandailingnatal.comlocal-zone: "mandailingnatal.com." staticlocal-data: "mandailingnatal.com. 86400 IN NS ns1.mandailingnatal.com."local-data: "mandailingnatal.com. 86400 IN SOA mandailingnatal.com. hostmaster.mandailingnatal.com. 3 3600 1200 604800 86400"local-data: "mandailingnatal.com. 86400 IN A 192.168.88.1"local-data: "www.mandailingnatal.com. 86400 IN A 192.168.88.1"local-data: "ns1.mandailingnatal.com. 86400 IN A 192.168.88.1"local-data: "mail.mandailingnatal.com. 86400 IN A 192.168.88.1"local-data: "mandailingnatal.com. 86400 IN MX 10 mail.mandailingnatal.com."local-data: "mandailingnatal.com. 86400 IN TXT v=spf1 a mx ~all"local-zone: "88.168.192.in-addr.arpa." staticlocal-data: "88.168.192.in-addr.arpa. 10800 IN NS mandailingnatal.com."local-data: "88.168.192.in-addr.arpa. 10800 IN SOA mandailingnatal.com. hostmaster.mandailingnatal.com. 4 3600 1200 604800 864000"local-data: "1.88.168.192.in-addr.arpa. 10800 IN PTR mandailingnatal.com."forward-zone:name: "."forward-addr: 192.168.88.1#forward-addr: 116.254.99.254forward-addr: 202.134.0.155forward-addr: 203.130.196.5forward-addr: 8.8.8.8forward-addr: 8.8.4.4forward-addr: 208.67.222.222forward-addr: 208.67.220.220remote-control:control-enable: yescontrol-interface: 127.0.0.1control-port: 953server-key-file: "/etc/unbound/unbound_server.key"server-cert-file: "/etc/unbound/unbound_server.pem"control-key-file: "/etc/unbound/unbound_control.key"control-cert-file: "/etc/unbound/unbound_control.pem"----------------------------------------------------apt-get install unboundcd /etc/unboundwget ftp://FTP.INTERNIC.NET/domain/named.cacheunbound-control-setupchown unbound:root unbound_*chmod 440 unbound_*sesuaikan config /etc/unbound/unbound.conf, dan servis dns lainnya (bind/dnsmasq dll) harus di stop agar tidak bentrok)# nanoserver:verbosity: 1statistics-interval: 120statistics-cumulative: yesnum-threads: 1interface: 0.0.0.0outgoing-range: 512num-queries-per-thread: 1024msg-cache-size: 16mrrset-cache-size: 32mmsg-cache-slabs: 4rrset-cache-slabs: 4cache-max-ttl: 86400infra-host-ttl: 60infra-lame-ttl: 120infra-cache-numhosts: 10000infra-cache-lame-size: 10kdo-ip4: yesdo-ip6: nodo-udp: yesdo-tcp: yesdo-daemonize: yes#access-control: 0.0.0.0/0 allowaccess-control: 192.168.0.0/16 allowaccess-control: 172.16.0.0/12 allowaccess-control: 10.0.0.0/8 allowaccess-control: 127.0.0.0/8 allowaccess-control: 0.0.0.0/0 refusechroot: /etc/unboundusername: unbounddirectory: /etc/unbound#logfile: /etc/unbound/unbound.log#use-syslog: yeslogfile: use-syslog: nopidfile: /etc/unbound/unbound.pidroot-hints: /etc/unbound/named.cacheidentity: DNSversion: 1.4?hide-identity: yeshide-version: yesharden-glue: yesdo-not-query-address: 127.0.0.1/8do-not-query-localhost: yesmodule-config: iterator#zone localhostlocal-zone: localhost. staticlocal-data: localhost. 10800 IN NS localhost.local-data: localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800?local-data: localhost. 10800 IN A 127.0.0.1?local-zone: 127.in-addr.arpa. staticlocal-data: 127.in-addr.arpa. 10800 IN NS localhost.local-data: 127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800?local-data: 1.0.0.127.in-addr.arpa. 10800 IN PTR localhost.#zone zoky.netlocal-zone: zoky.net. staticlocal-data: zoky.net. 86400 IN NS ns1.zoky.net.local-data: zoky.net. 86400 IN SOA zoky.net. hostmaster.zoky.net. 3 3600 1200 604800 86400?local-data: zoky.net. 86400 IN A 192.168.2.2?local-data: www.zoky.net. 86400 IN A 192.168.2.2?local-data: ns1.zoky.net. 86400 IN A 192.168.2.2?local-data: mail.zoky.net. 86400 IN A 192.168.2.2?local-data: zoky.net. 86400 IN MX 10 mail.zoky.net.local-data: zoky.net. 86400 IN TXT v=spf1 a mx ~alllocal-zone: 2.168.192.in-addr.arpa. staticlocal-data: 2.168.192.in-addr.arpa. 10800 IN NS zoky.net.local-data: 2.168.192.in-addr.arpa. 10800 IN SOA zoky.net. hostmaster.zoky.net. 4 3600 1200 604800 864000?local-data: 2.2.168.192.in-addr.arpa. 10800 IN PTR zoky.net.forward-zone:name: .forward-addr: 192.168.2.1forward-addr: 116.254.99.254forward-addr: 202.134.0.155forward-addr: 203.130.196.5forward-addr: 8.8.8.8forward-addr: 8.8.4.4forward-addr: 208.67.222.222forward-addr: 208.67.220.220remote-control:control-enable: yescontrol-interface: 127.0.0.1control-port: 953server-key-file: /etc/unbound/unbound_server.keyserver-cert-file: /etc/unbound/unbound_server.pemcontrol-key-file: /etc/unbound/unbound_control.keycontrol-cert-file: /etc/unbound/unbound_control.pemlalu save di /etc/unbound/unbound.confforward-zone: sesuaikan dengan DNS ISP andacek configure unbound :# unbound-checkconf /etc/unbound/unbound.confedit file di /etc/resolv.conf :# nano /etc/resolv.confnameserver 127.0.0.1edit file /etc/network/interfaces# nano /etc/network/interfacesiface eth0 inet staticaddress 192.168.2.2netmask 255.255.255.0network 122.168.2.0broadcast 192.168.2.255gateway 192.168.2.1# dns-* options are implemented by the resolvconf package, if installeddns-nameservers 127.0.0.1untuk cek apakah d jalan :# /etc/init.d/unbound restart# nslookup 192.168.2.2Server: 127.0.0.1Address: 127.0.0.1#532.2.168.192.in-addr.arpa name = zoky.net# nslookup zoky.netServer: 127.0.0.1Address: 127.0.0.1#53Name: Q.netAddress: 192.168.2.2-------------------------------------------------root@unbound:~# aptitude install unboundmatikan servicenya, karena pengalaman gua, saat kita konfig-konfig dalam keadaan nyala aplikasi ini tidak mau direstart.root@unbound:~# /etc/init.d/unbound stoppindah ke direktory unboundroot@unbound:~# cd /etc/unbounddownload root domainroot@unbound:~# wget ftp://FTP.INTERNIC.NET/domain/named.cachesetup ssl key untuk unboun-controlnyaroot@unbound:~# unbound-control-setupubah kepemilikan dari file yang baru saja kita setuproot@unbound:~# chown unbound:root unbound_*root@unbound:~# chmod 440 unbound_*biasakan simpan konfigurasi yang asil sebelum kita melakukan konfigroot@unbound:~# mv /etc/unbound/unbound.conf /etc/unbound/unbound.conf-aslikonfigurasi file unbound.conf (berikut adalah konfigurasi yang terdapat diserver eksperimen gua)root@unbound:~# pico /etc/unbound/unbound.confserver: verbosity: 1 statistics-interval: 120 num-threads: 1 interface: 0.0.0.0 outgoing-range: 512 num-queries-per-thread: 1024 msg-cache-size: 16m rrset-cache-size: 32m msg-cache-slabs: 4 rrset-cache-slabs: 4 cache-max-ttl: 86400 infra-host-ttl: 60 infra-lame-ttl: 120 infra-cache-numhosts: 10000 infra-cache-lame-size: 10k do-ip4: yes do-ip6: no do-udp: yes do-tcp: yes do-daemonize: yes #access-control: 0.0.0.0/0 allow access-control: 192.168.0.0/16 allow access-control: 172.16.0.0/12 allow access-control: 10.0.0.0/8 allow access-control: 127.0.0.0/8 allow access-control: 0.0.0.0/0 refuse chroot: "/etc/unbound" username: "unbound" directory: "/etc/unbound" #logfile: "/etc/unbound/unbound.log" #use-syslog: yes logfile: "" use-syslog: no pidfile: "/etc/unbound/unbound.pid" root-hints: "/etc/unbound/named.cache" identity: "DNS" version: "1.4" hide-identity: yes hide-version: yes harden-glue: yes do-not-query-address: 127.0.0.1/8 do-not-query-localhost: yes module-config: "iterator" #zone localhost local-zone: "localhost." static local-data: "localhost. 10800 IN NS localhost." local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800" local-data: "localhost. 10800 IN A 127.0.0.1" local-zone: "127.in-addr.arpa." static local-data: "127.in-addr.arpa. 10800 IN NS localhost." local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800" local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost." forward-zone: name: "."forward-addr: 180.131.144.144forward-addr: 180.131.145.145forward-addr: 202.134.0.155forward-addr: 203.130.196.155forward-addr: 125.160.4.82forward-addr: 202.134.0.61forward-addr: 203.130.196.5forward-addr: 208.67.222.222forward-addr: 208.67.220.220forward-addr: 222.124.198.150forward-addr: 222.124.249.115forward-addr: 8.8.8.8forward-addr: 8.8.4.4remote-control: control-enable: yes control-interface: 127.0.0.1 control-port: 953 server-key-file: "/etc/unbound/unbound_server.key" server-cert-file: "/etc/unbound/unbound_server.pem" control-key-file: "/etc/unbound/unbound_control.key" control-cert-file: "/etc/unbound/unbound_control.pem"ubah resolv domain menjadi localhostroot@unbound:~# echo nameserver 127.0.0.1 > /etc/resolv.confjalankan services unbound.root@unbound:~# /etc/init.d/unbound startcek service apakah sudah jalan atau belum service unboundnya..root@lusca:/etc/unbound# ps -aux | grep unboundWarning: bad ps syntax, perhaps a bogus '-'? See http://procps.sf.net/faq.htmlunbound 3804 0.0 0.8 9424 4300 ? Ss 07:01 0:01 /usr/sbin/unbound----------------------------------root@kios:/home/dura# unbound-control statsthread0.num.queries=757thread0.num.cachehits=443thread0.num.cachemiss=314thread0.num.recursivereplies=314thread0.requestlist.avg=0.920382thread0.requestlist.max=6thread0.requestlist.overwritten=0thread0.requestlist.exceeded=0thread0.requestlist.current.all=0thread0.requestlist.current.user=0thread0.recursion.time.avg=0.176611thread0.recursion.time.median=0.0499115total.num.queries=757total.num.cachehits=443total.num.cachemiss=314total.num.recursivereplies=314total.requestlist.avg=0.920382total.requestlist.max=6total.requestlist.overwritten=0total.requestlist.exceeded=0total.requestlist.current.all=0total.requestlist.current.user=0total.recursion.time.avg=0.176611total.recursion.time.median=0.0499115time.now=1285025500.539789time.up=2442.382570time.elapsed=2022.835617-------------------------DNS UnboundBerikut adalah langkah-langkah installasi DNS unbound :# apt-get install unbound# cd /etc/unbound# wget ftp://FTP.INTERNIC.NET/domain/named.cache# unbound-control-setup# chown unbound:root unbound_*# chmod 440 unbound_*Download unbound.conf di http://anjelanet.googlecode.com/files/unbound.confDari WINSCP, copy paste file unbound.conf ke /etc/unbound/Edit file unbound.conf menggunakan WINSCP pada bagian :forward-zone : sesuaikan dengan DNS ISP anda, bila perlu tambahkan DNS Nawala & OpenDNSzone-anjelanet : sesuaikan dengan IP Proxy Server dan nama root andaJika saat installasi OS Ubuntu Server pada pilihan software selection di ceklist semua, maka ikut terinstall Bind & dnsmasq. Matikan service DNS bind, jalankan perintah :# sudo apt-get remove bind# sudo apt-get purge bind# sudo apt-get cleanDNSmasq, biasanya berada di di Directory /root/bin, Delete saja file tersebut.Pada Mikrotik IPMangle, disabled script DNSEdit DNS NameServer Proxy Server dengan perintah :# nano /etc/resolv.confMenjadi :nameserver 127.0.0.1Setelah selesai tekan Ctrl+O, lalu Enter untuk Save dan Ctrl+X untuk exit


How Computer Monitors Work

Basic Buffer Overflows Explained

Tragic Heroes

Star Wars Trivia!

Bhagavad Gita

Disclaimer

Plato - Symposium

The Last Carnival I Ever Saw

Keyboard Shortcuts for the Opera Browser for Mac OS X

I Am a Holocaust Denier and I Am Unafraid

xCDC14a

Venture Capital

Oedipus The King: The Ideal Tragic Play

Rubik's cube solution

One Flew Over the Cuckoo's Nest

Star Wars Original Trilogy Trivia (Episodes IV-VI)

Chapter-01

Compressing And Decompressing Folders

Algorithms

18 Tricks to Teach Your Body

The Dutch Republic In International Trade

How Computer Keyboards Work

Steve Jobs' Commencement Speech at Stanford

Barclays1

Acetone Peroxide

Chapter 23

Fortran

Explore The Levels of Creation

Iron Mills Essay

Daniel Zanella and Alexander Weygers

United States Constitution

Personality Development

Heidegger Kritik

Simple Functions in Haskell

Do you admire Leonardo da Vinci?