ubuntu bind9 設定

 ref: https://www.linuxbabe.com/ubuntu/set-up-local-dns-resolver-ubuntu-20-04-bind9

 

這篇說明的還滿好的，簡單、明瞭，直接實作、除錯、檢測。 

sudo journalctl -eu named

這個指令，抓到我的設定檔的問題。 

ubuntu 24.04 install LAMP

 

sudo apt update
sudo apt upgrade

sudo apt install apache2 mariadb-server php8.3-fpm php8.3 libapache2-mod-php8.3 php8.3-common php8.3-mysql php8.3-xml php8.3-xmlrpc php8.3-curl php8.3-gd php8.3-imagick php8.3-cli php8.3-imap php8.3-mbstring php8.3-opcache php8.3-soap php8.3-zip php8.3-intl php8.3-bcmath unzip phpmyadmin python3-certbot-apache

sudo systemctl enable apache2
apache2 -v

sudo systemctl enable mariadb
sudo mysql_secure_installation
mariadb --version
sudo mysql -uroot -p
grant all on *.* to root@localhost identified by '123456';

sudo gedit /etc/php/8.1/apache2/php.ini
  upload_max_filesize = 2000M
  max_file_uploads = 2000
  post_max_size = 2000M
  max_execution_time = 600
  max_input_time = 1000
  max_input_vars = 3000
  memory_limit = 1024M
  session.gc_maxlifetime = 86400

iptables 設定拒絕所有連線，只允許 80, 443 連線

# 清除現有規則  
sudo iptables -F  

# 設置預設策略為拒絕  
sudo iptables -P INPUT DROP  
sudo iptables -P FORWARD DROP  
sudo iptables -P OUTPUT ACCEPT  

# 允許回環接口  
sudo iptables -A INPUT -i lo -j ACCEPT  

# 允許已建立的連接  
sudo iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT  

# 允許HTTP和HTTPS流量  
sudo iptables -A INPUT -p tcp -m multiport --dports 80,443 -j ACCEPT

# 保存以上的設定
service iptables save