djbdns's tinydns server is one of the second most popular DNS server with security in mind. How do I install DJBDNS server under FreeBSD operating systems?
DJBDNS is a collection of Domain Name System tools. It includes several components:
- The tinydns program is a fast, UDP-only DNS server.
- The axfrdns program is a fast, TCP-only DNS server. This is useful for transferring zones to secondary name server or bind server.
- The dnscache program is a local DNS cache. It accepts recursive DNS queries from local clients such as web browsers. It collects responses from remote DNS servers.
Sample Configuration Setup
ns1.nixcraft.in - 202.54.1.1 ns2.nixcraft.in - 203.51.2.1
Install DJBDNS on ns1.nixcraft.in
Type the following command:
# portsnap fetch update
# cd /usr/ports/dns/djbdns
# make install clean && rehash
Make sure you select IPv6 patch if you need to provide AAAA dns address for your domain.
Fig.01: FreeBSD Install djbdns Software via Ports
This port will also install the following two required software:
- daemontools: Service monitoring and logging utilities by djbdns (and qmail) server
- ucspi-tcp2 : Command-line tools for building TCP client-server application
DJBDNS Files and Directories
- tinydns: a database-driven dns server - It will open UDP port 53
- axfrdns: a zone-transfer server - It will open TCP port 53
- /var/service: The directory containing the various service directories to be monitored. The author ( Daniel J. Bernstein) recommends /service, but the FreeBSD port has a default of /var/service instead, which is consistent with the FreeBSD filesystem hierarchy.
- /var/ns1.nixcraft.in : Your zone configuration directory. It will be symlinked to /var/service
- rsync or scp : Update your zone files on ns2.nixcraft.in server.
- tinydns-conf : sets up a DNS publication service (master name server)
- axfrdns-conf : sets up a DNS zone-transfer service
- /usr/local/etc/rc.d/svscan.sh : daemontools rc.d start / stop / restart script. Use this to start or stop djbdns server.
You should follow me on twitter here or grab rss feed to keep track of new changes.
Featured Articles:
- 30 Handy Bash Shell Aliases For Linux / Unix / Mac OS X
- Top 30 Nmap Command Examples For Sys/Network Admins
- 25 PHP Security Best Practices For Sys Admins
- 20 Linux System Monitoring Tools Every SysAdmin Should Know
- 20 Linux Server Hardening Security Tips
- Linux: 20 Iptables Examples For New SysAdmins
- Top 20 OpenSSH Server Best Security Practices
- Top 20 Nginx WebServer Best Security Practices
- 20 Examples: Make Sure Unix / Linux Configuration Files Are Free From Syntax Errors
- 15 Greatest Open Source Terminal Applications Of 2012
- My 10 UNIX Command Line Mistakes
- Top 10 Open Source Web-Based Project Management Software
- Top 5 Email Client For Linux, Mac OS X, and Windows Users
- The Novice Guide To Buying A Linux Laptop
{ 1 comment… read it below or add one }
Cool article and all. I just though to mention that you can’t have more than one second anything. If it comes before it’s first – after and it’s third. ;)