配置环境
已关闭防火墙、selinux 所用系统为:RedHat-7.0-x86_64 所用IP如下表:
IP地址 角色 安装内容 192.168.91.129/24 DNS服务器 bind包 192.168.91.134/24 客户端 bind-utils
配置步骤
服务端(192.168.91.129)
[root@localhost ~]# curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
[root@localhost ~]# sed -i 's/$releasever/7/g' /etc/yum.repos.d/CentOS-Base.repo
[root@localhost ~]# yum -y install bind
修改DNS主配置文件/etc/named.conf
[root@localhost ~]# cp -a /etc/named.conf{,.bak}
[root@localhost ~]# vim /etc/named.conf
options {
listen-on port 53 { 192.168.91.129; }; ##修改监听地址为本机IP地址或者any
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; }; ##允许所有人请求
......
配置/etc/named.rfc1912.zones文件,修改正反向解析文件存放的位置
[root@localhost ~]# vim /etc/named.rfc1912.zones
.....
zone "linux.com" IN { ##正向解析域名
type master; ##配置为主DNS服务器
file "linux.localhost"; ##这里指定的文件名需要与/var/named/目录下的文件名对应
allow-update { none; };
};
zone "91.168.192.in-addr.arpa" IN { ##反向解析域名
type master;
file "linux.empty";
allow-update { none; };
};
[root@localhost named]# cp -p named.localhost linux.localhost
[root@localhost named]# cp -p named.empty linux.empty
配置正向解析,修改/var/named/linux.localhost配置文件
[root@localhost named]# vim linux.localhost
$TTL 1D ##表示缓存可以保存一天
@ IN SOA linux.com. rname.invalid. (
0 ; serial
1D ; refresh ##表示一天后重新刷新
1H ; retry ##若获取失败,一小时后再次获取
1W ; expire
3H ) ; minimum
NS dns.linux.com.
dns A 192.168.91.129
www A 192.168.91.134
A 127.0.0.1
AAAA ::1
配置反向解析,修改/var/named/linux.empty配置文件
[root@localhost named]# vim linux.empty
$TTL 3H
@ IN SOA linux.com. rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.linux.com.
129 PTR dns.linux.com.
134 PTR www.linux.com.
A 127.0.0.1
AAAA ::1
[root@localhost ~]# systemctl start named
[root@localhost ~]# ss -ntlp
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 127.0.0.1:953 *:* users:(("named",11886,22))
LISTEN 0 10 192.168.91.129:53 *:* users:(("named",11886,21))
客户端(192.168.91.134)
修改/etc/sysconfig/network-scripts/ifcfg-eth0配置文件
[root@localhost ~]# vim /etc/sysconfig/network-scripts/ifcfg-eth0
NAME="eth0"
HWADDR="00:50:56:33:75:20"
ONBOOT=yes
NETBOOT=yes
UUID="eaf994fe-e7ea-4206-afe0-454b5111aab2"
IPV6INIT=yes
BOOTPROTO=static
NAME=eth0
DEVICE=eth0
IPADDR=192.168.91.134
PREFIX=24
GATEWAY=192.168.91.2 ##
DNS1=192.168.91.129 ##DNS指向DNS服务器
TYPE=Ethernet
安装bind-utils命令,并利用nslookup命令进行正反向解析
[root@localhost ~]# yum -y install bind-utils
[root@localhost ~]# nslookup
> 192.168.91.134 ##客户端IP地址
Server: 192.168.91.129
Address: 192.168.91.129#53
134.91.168.192.in-addr.arpa name = www.linux.com. ##解析为www.linux.com
> 192.168.91.129 ##服务端地址
Server: 192.168.91.129
Address: 192.168.91.129#53
129.91.168.192.in-addr.arpa name = dns.linux.com. ##解析为dns.linux.com
注:以上为反向解析
> www.linux.com
Server: 192.168.91.129
Address: 192.168.91.129#53
Name: www.linux.com
Address: 192.168.91.134
Name: www.linux.com
Address: 127.0.0.1
> dns.linux.com
Server: 192.168.91.129
Address: 192.168.91.129#53
Name: dns.linux.com
Address: 192.168.91.129
>
注:以上为正向解析