配置DNS正反向解析
一、正向解析:
服务端IP地址:192.168.190.140
客户端IP地址:192.168.190.141
网址:www.openlab.com
首先用yum安装bind软件:
yum install bind -y
服务器端配置静态IP:
[root@server ~]# nmcli c modify ens32 ipv4.method manual ipv4.addresses 192.168.190.140/24 ipv4.gateway 192.168.190.2 ipv4.dns 114.114.114.114
[root@server ~]# nmcli c reload
[root@server ~]# nmcli c up ens32
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/2)
客户端配置静态IP:
[root@node ~]# nmcli c modify ens32 ipv4.method manual ipv4.addresses 192.168.190.141/24 ipv4.gateway 192.168.190.2 ipv4.dns 114.114.114.114
[root@node ~]# nmcli c reload
[root@node ~]# nmcli c up ens32
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/2)
然后接下来配置DNS:
服务端中,编辑bind主配置文件
vim /etc/named.conf 修改两行,允许所有主机
服务端操作,编辑区域配置文件,可以局部修改,也可以全部清空写入数据。
[root@server ~]# vim /etc/named.rfc1912.zones
zone "openlab.com" IN {
type master;
file "openlab.com.zone";
allow-update { none;};
};
[root@server ~]# cd /var/named
[root@server named]# cp -a named.localhost openlab.com.zone$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
openlab.com. IN NS ns.openlab.com.
ns IN A 192.168.190.140
www.openlab.com. IN A 192.168.190.140
ftp IN A 192.168.190.140
bbs IN A 192.168.190.140
systemctl restart named 重启服务
测试:
定位客户端操作, 将客户端的dns修改为服务端的IP地址
[root@node ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens32
DNS1=192.168.190.140 将DNS改为服务端的IP地址
[root@node ~]# nmcli c reload
[root@node ~]# nmcli c up ens32
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/3)测试:
[root@node ~]# nslookup www.openlab.com
Server: 192.168.190.140
Address: 192.168.190.140#53Name: www.openlab.com
Address: 192.168.190.140[root@node ~]# dig www.openlab.com
; <<>> DiG 9.16.23 <<>> www.openlab.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8412
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 4f34e5c6f6fa36850100000065b0efda5af5d6f3aee11d39 (good)
;; QUESTION SECTION:
;www.openlab.com. IN A;; ANSWER SECTION:
www.openlab.com. 86400 IN A 192.168.190.140;; Query time: 1 msec
;; SERVER: 192.168.190.140#53(192.168.190.140)
;; WHEN: Wed Jan 31 15:47:59 CST 2024
;; MSG SIZE rcvd: 88
[root@node ~]# nslookup www1.openlab.com
Server: 192.168.190.140
Address: 192.168.190.140#53www1.openlab.com canonical name = www.openlab.com.
Name: www.openlab.com
Address: 192.168.190.140
二、反向解析
yum install bind -y
服务端配置静态IP:
[root@server ~]# nmcli c modify ens32 ipv4.method manual ipv4.addresses 192.168.190.140/24 ipv4.gateway 192.168.190.2 ipv4.dns 114.114.114.114
[root@server ~]# nmcli c reload
[root@server ~]# nmcli c up ens32
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/2)
客户端配置静态IP:
[root@node ~]# nmcli c modify ens32 ipv4.method manual ipv4.addresses 192.168.190.141/24 ipv4.gateway 192.168.190.2 ipv4.dns 192.168.190.140
[root@node ~]# nmcli c reload
[root@node ~]# nmcli c up ens32
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/2)
配置DNS:
服务端操作,编辑主配置文件
[root@server ~]# vim /etc/named.conf
服务端操作,编辑配置文件,添加反向解析记录,区域名称中IP地址方向书写,只需要书写网段
[root@server ~]# vim /etc/named.rfc1912.zones
zone "190.168.192.in-addr.arpa" IN {
type master;
file "192.168.190.arpa";
allow-update {none;};
};
服务端操作,编辑配置文件,复制一份反向解析模板,复制时需要添加-a参数
[root@server ~]# cd /var/named
[root@server named]# cp -a named.localhost 192.168.190.arpa
[root@server named]# vim 192.168.190.arpa
[root@server named]# vim 192.168.190.arpa
[root@server named]# systemctl restart named
测试:
客户端测试:
[root@node ~]# nslookup 192.168.190.140