G1BS.0N

Tech Memo

Bind + OpenLDAP

| Comments

BindのバックエンドDBをOpenLDAPにしてみる

OSはCentOS6.3

  • bind-sdbをインストールする
1
# sudo yum install bind-sdb
  • DNSzoneスキーマを組み込む

/etc/openldap/slapd.conf に追加

1
include /etc/openldap/schema/dnszone.schema
  • 構成はこんな感じ
1
2
3
4
5
6
root - Hosts --- example.com ------------- @(SOA NS)
              |                         |- server1(A)
              |                         |- www(CNAME)
              |
              |- 1.168.192.in-addr.arpa -- @(SOA NS)
                                        |- 1(PTR)

LDIF

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
dn: ou=Hosts,dc=example,dc=com
objectclass: organizationalUnit
objectclass: top
ou: Hosts

# 正引き
dn: ou=example.com,ou=Hosts,dc=example,dc=com
objectclass: organizationalUnit
objectclass: top
ou: example.com

dn: relativeDomainName=@,ou=example.com,ou=Hosts,dc=example,dc=com
dnsclass: IN
dnsttl: 86400
nsrecord: ns.example.com.
objectclass: dNSZone
objectclass: top
relativedomainname: @
soarecord: ns.example.com. root.example.com. 2012110303 28800 14400 3600000 
 86400
zonename: example.com

dn: relativeDomainName=server1,ou=example.com,ou=Hosts,dc=example,dc=com
arecord: 192.168.1.1
dnsclass: IN
dnsttl: 3600
objectclass: dNSZone
objectclass: top
relativedomainname: server1
zonename: example.com

dn: relativeDomainName=www,ou=example.com,ou=Hosts,dc=example,dc=com
cnamerecord: server1
dnsclass: IN
dnsttl: 3600
objectclass: dNSZone
objectclass: top
relativedomainname: www
zonename: example.com

#逆引き
dn: ou=1.168.192.in-addr.arpa,ou=Hosts,dc=example,dc=com
objectclass: organizationalUnit
objectclass: top
ou: 1.168.192.in-addr.arpa

dn: relativeDomainName=@,ou=1.168.192.in-addr.arpa,ou=Hosts,dc=example,dc=com
arecord: 255.255.255.0
dnsclass: IN
dnsttl: 86400
nsrecord: ns.example.com.
objectclass: dNSZone
objectclass: top
ptrrecord: example.com.
relativedomainname: @
soarecord: ns.example.com. root.example.com. 2012110302 28800 14400 3600000 
 86400
zonename: 1.168.192.in-addr.arpa

dn: relativeDomainName=1,ou=1.168.192.in-addr.arpa,ou=Hosts,dc=example,dc=com
dnsclass: IN
dnsttl: 3600
objectclass: dNSZone
objectclass: top
ptrrecord: server1.example.com.
relativedomainname: 1
zonename: 1.168.192.in-addr.arpa

Comments