1.配置2台服务器要求如下:
a)服务器1:
主机名:dns-master.timinglee.org
ip地址: 172.25.254.100
配置好软件仓库
b)服务器2:
主机名:dns-slave.timinglee.org
ip地址:172.25.254.200
配置好软件仓库
2.dns-master是一台权威dns,次dns要具备一下功能
a)可以解析timinglee.org域中的主机,此域中的主机列表为
172.25.254.100 bbs.timinglee.org
172.25.254.200 login.timinglee.org
b)可以为timinglee.org这个域提供邮件解析记录,邮件服务器的地址为172.25.254.10
c)可以为172.25.254.0/24网段提供反向解析记录,反向解析记录为:
172.25.254.100 bbs.timinglee.org
172.25.254.200 login.timinglee.org
3.dns-slave主机是dns-master主机的辅助dns,当master主机中的数据发生变化后其内容自动发生改变
4.此项目报告可以直接通过小鹅通提交,也可以写成文档后把文档截图提交到小鹅通中,请勿提交项目报告网址
服务器1:dns-master.timinglee.org
[root@server100 ~]# hostnamectl hostname dns-master.timinglee.org
[root@dns-master ~]# ifconfig eth0 172.25.254.100/24
[root@dns-master ~]# ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 172.25.254.100 netmask 255.255.255.0 broadcast 172.25.254.255
[root@dns-master ~]# mount /dev/cdrom /rhel9/
mount: /rhel9: WARNING: source write-protected, mounted read-only.
[root@dns-master ~]# cd /etc/yum.repos.d/
[root@dns-master yum.repos.d]# vim cd.repo
[AppStream]
name=AppStream
baseurl=file:///rhel9/AppStream
gpgcheck=0
[BaseOS]
name=BaseOS
baseurl=file:///rhel9/BaseOS
gpgcheck=0
~
[root@dns-master yum.repos.d]# yum makecache
正在更新 Subscription Management 软件仓库。
无法读取客户身份
本系统尚未在权利服务器中注册。可使用 subscription-manager 进行注册。
AppStream 3.1 MB/s | 3.2 kB 00:00
BaseOS 2.7 MB/s | 2.7 kB 00:00
[root@dns-master yum.repos.d]# yum install bind -y
已安装:
bind-32:9.16.23-14.el9_3.x86_64 bind-dnssec-doc-32:9.16.23-14.el9_3.noarch
bind-dnssec-utils-32:9.16.23-14.el9_3.x86_64 python3-bind-32:9.16.23-14.el9_3.noarch
python3-ply-3.11-14.el9.noarch
完毕!
[root@dns-master ~]# systemctl disable --now firewalld.service
Removed "/etc/systemd/system/multi-user.target.wants/firewalld.service".
Removed "/etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service".
[root@dns-master ~]# vim /etc/named.conf
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
secroots-file "/var/named/data/named.secroots";
recursing-file "/var/named/data/named.recursing";
allow-query { any; };
forwarders { 114.114.114.114; };
[root@dns-master ~]# vim /etc/named.rfc1912.zones
zone "timinglee.org" IN {
type master;
file "timinglee.org.zone";
allow-update { none; };
also-notify { 172.25.254.200; };
};
zone "254.25.172.in-addr.arpa" IN {
type master;
file "172.25.254.ptr";
allow-update { none; };
};
[root@dns-master named]# cp -p named.loopback 172.25.254.ptr
[root@dns-master named]# vim /var/named/172.25.254.ptr
$TTL 1D
@ IN SOA dns.timinglee.org. admin.timinglee.org. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.timinglee.org.
dns A 172.25.254.100
dns A 172.25.254.200
100 PTR bbs.timinglee.org.
200 PTR login.timinglee.org.
[root@dns-master named]# cp -p named.localhost timinglee.org.zone
[root@dns-master named]# vim timinglee.org.zone
$TTL 1D
@ IN SOA dns.timinglee.org. admin.timinglee.org. (
2024050801 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.timinglee.org.
dns A 172.25.254.100
www CNAME bbs.timinglee.org.
bbs A 172.25.254.100
login A 172.25.254.200
timinglee.org. MX 3 172.25.254.10.
[root@dns-master ~]# vim /etc/resolv.conf
# Generated by NetworkManager
search timinglee.org
nameserver 172.25.254.100
[root@dns-master ~]# systemctl restart named
服务器2:dns-slave.timinglee.org
[root@server200 ~]# hostnamectl hostname dns-slave.timinglee.org
[root@dns-slave ~]# ifconfig eth0 172.25.254.200
[root@dns-slave ~]# ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 172.25.254.200 netmask 255.255.255.0 broadcast 172.25.254.255
[root@dns-slave ~]# mount /dev/cdrom /rhel9/
mount: /rhel9: WARNING: source write-protected, mounted read-only.
[root@dns-slave ~]# cd /etc/yum.repos.d/
[root@dns-slave yum.repos.d]# vim cd.repo
[AppStream]
name=AppStream
baseurl=file:///rhel9/AppStream
gpgcheck=0
[BaseOS]
name=BaseOS
baseurl=file:///rhel9/BaseOS
gpgcheck=0
[root@dns-slave yum.repos.d]# yum makecache
正在更新 Subscription Management 软件仓库。
无法读取客户身份
本系统尚未在权利服务器中注册。可使用 subscription-manager 进行注册。
AppStream 3.1 MB/s | 3.2 kB 00:00
BaseOS 2.7 MB/s | 2.7 kB 00:00
[root@dns-slave yum.repos.d]# yum install bind -y
已安装:
bind-32:9.16.23-14.el9_3.x86_64 bind-dnssec-doc-32:9.16.23-14.el9_3.noarch
bind-dnssec-utils-32:9.16.23-14.el9_3.x86_64 python3-bind-32:9.16.23-14.el9_3.noarch
python3-ply-3.11-14.el9.noarch
完毕
[root@dns-slave ~]# vim /etc/resolv.conf
# Generated by NetworkManager
search timinglee.org
nameserver 172.25.254.100
[root@dns-slave ~]# vim /etc/named.conf
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
secroots-file "/var/named/data/named.secroots";
recursing-file "/var/named/data/named.recursing";
allow-query { any; };
[root@dns-slave ~]# vim /etc/named.rfc1912.zones
zone "timinglee.org" IN {
type slave;
masters { 172.25.254.100; };
file "slaves/timinglee.org.zone";
};
测试:
服务器1:dns-master.timinglee.org
高速缓存
[root@dns-master named]# dig -t A www.csdn.net @172.25.254.100
; <<>> DiG 9.16.23-RH <<>> -t A www.csdn.net @172.25.254.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18242
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 64da89599a5a2dc001000000663a5c0834ef063a1e708b2f (good)
;; QUESTION SECTION:
;www.csdn.net. IN A
;; ANSWER SECTION:
www.csdn.net. 27 IN CNAME 55cb88f4.csdn.net.cname.yunduns.com.
55cb88f4.csdn.net.cname.yunduns.com. 124 IN A 220.185.183.15
55cb88f4.csdn.net.cname.yunduns.com. 124 IN A 220.185.183.50
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:02:20 CST 2024
;; MSG SIZE rcvd: 150
[root@dns-master named]# dig -t A login.timinglee.org
; <<>> DiG 9.16.23-RH <<>> -t A login.timinglee.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33797
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 3c7058885013552801000000663a633bf80ce615374ef2ef (good)
;; QUESTION SECTION:
;login.timinglee.org. IN A
;; ANSWER SECTION:
login.timinglee.org. 86400 IN A 172.25.254.200
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:13:03 CST 2024
;; MSG SIZE rcvd: 92
[root@dns-master named]# dig -t A bbs.timinglee.org
; <<>> DiG 9.16.23-RH <<>> -t A bbs.timinglee.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23499
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: d102383b633a9e6b01000000663a6387ec5cc8ffe77ced48 (good)
;; QUESTION SECTION:
;bbs.timinglee.org. IN A
;; ANSWER SECTION:
bbs.timinglee.org. 86400 IN A 172.25.254.100
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:13:19 CST 2024
;; MSG SIZE rcvd: 90
[root@dns-master named]# dig -t A www.timinglee.org
; <<>> DiG 9.16.23-RH <<>> -t A www.timinglee.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30603
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 3ea3536bd2d12be401000000663a63bba09c4f163adf16cb (good)
;; QUESTION SECTION:
;www.timinglee.org. IN A
;; ANSWER SECTION:
www.timinglee.org. 86400 IN CNAME bbs.timinglee.org.
bbs.timinglee.org. 86400 IN A 172.25.254.100
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:14:11 CST 2024
;; MSG SIZE rcvd: 108
邮件解析:
[root@dns-master named]# dig -t MX timinglee.org
; <<>> DiG 9.16.23-RH <<>> -t MX timinglee.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52141
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 2ce904326496b0de01000000663a5b849e3e0c7bf21106ca (good)
;; QUESTION SECTION:
;timinglee.org. IN MX
;; ANSWER SECTION:
timinglee.org. 86400 IN MX 3 172.25.254.10.
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:04:08 CST 2024
;; MSG SIZE rcvd: 99
反向解析:
[root@dns-master named]# dig -x 172.25.254.100
; <<>> DiG 9.16.23-RH <<>> -x 172.25.254.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36436
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 50129b5bc89509c501000000663a5c7ce268d20f1aa03e77 (good)
;; QUESTION SECTION:
;100.254.25.172.in-addr.arpa. IN PTR
;; ANSWER SECTION:
100.254.25.172.in-addr.arpa. 86400 IN PTR bbs.timinglee.org.
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:07:16 CST 2024
;; MSG SIZE rcvd: 115
[root@dns-master named]# dig -x 172.25.254.200
; <<>> DiG 9.16.23-RH <<>> -x 172.25.254.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15709
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 8267489c146d37fa01000000663a5c9d6b80f52f435c6744 (good)
;; QUESTION SECTION:
;200.254.25.172.in-addr.arpa. IN PTR
;; ANSWER SECTION:
200.254.25.172.in-addr.arpa. 86400 IN PTR login.timinglee.org.
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:09:49 CST 2024
;; MSG SIZE rcvd: 117
服务器2:dns-slave.timinglee.org
[root@dns-slave ~]# dig -t A www.csdn.net @172.25.254.100
; <<>> DiG 9.16.23-RH <<>> -t A www.csdn.net @172.25.254.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33846
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 6d85b5ef9fced33a01000000663a5b3d6b2db8f4af8fcb3e (good)
;; QUESTION SECTION:
;www.csdn.net. IN A
;; ANSWER SECTION:
www.csdn.net. 230 IN CNAME 55cb88f4.csdn.net.cname.yunduns.com.
55cb88f4.csdn.net.cname.yunduns.com. 121 IN A 220.185.183.15
55cb88f4.csdn.net.cname.yunduns.com. 121 IN A 220.185.183.50
;; Query time: 0 msec
;; SERVER: 172.25.254.100#53(172.25.254.100)
;; WHEN: Wed May 08 00:03:57 CST 2024
;; MSG SIZE rcvd: 150