DNS域名解析配置
一 架设DNS缓存域名服务器
DNS高速缓存服务器,通过向其它域名服务器查询获得域名IP地址记录
,将域名查询结果缓存到本地,提高重复查询时速度
1.1 关闭并禁用防火墙
systemctl stop firewalld
systemctl disable firewalld
1.2 关闭核心防护
vi /etc/selinux/config
SELINUX=disabled
1.3 安装与bind相关的软件包
查询是否安装
rpm -qa | grep ''bind"
yum -y install bind bind-chroot bind-utils bind-libs
1.4 修改主配置文件
vi /etc/named.conf
options {
listen-on port 53 { 20.0.0.11; };
forwarders { 8.8.8.8;114.114.114.114; };
………………
allow-query { 20.0.0.0/24; };
1.5 加载主配置文件中对应的区域数据库文件
named-checkconf -z /etc/named.conf
systemctl start named
netstat -anutp | grep named
1.6 客户机配置
vi /etc/resolv.conf
nameserver 20.0.0.11
二 搭建DNS主从服务实验
DNS主服务器(20.0.0.11)
2.1 关闭防火墙
systemctl stop firewalld
systemctl disable firewalld
2.2 关闭核心防护
vi /etc/selinux/config
SELINUX=disabled
2.3 安装与bind相关的软件包
查询是否安装
rpm -qa | grep ''bind"
yum -y install bind bind-chroot bind-utils bind-libs
2.4 修改主配置文件(/etc/named.conf)
vi /etc/named.conf
options {
listen-on port 53 { 20.0.0.11; };
………………
allow-query { any; };
2.5 新增正反配置文件 (/etc/named.rfc1912.zones)
vi /etc/named.rfc1912.zones
zone "cenjeal.com" IN {
type master;
file "cenjeal.com.zone";
allow-transfer { 20.0.0.12; };
also-notify { 20.0.0.12; };
};
zone "0.0.20.in-addr.arpa" IN {
type master;
file "20.0.0.arpa";
allow-transfer { 20.0.0.12; };
also-notify { 20.0.0.12; };
};
2.6 dns正向解析文件(/var/named/cenjeal.com.zone)
vi /var/named/cenjeal.com.zone
$TTL 1D
@ IN SOA cenjeal.com. admin.cenjeal.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 192.168.11.119
www IN A 192.168.11.119
ftp IN A 192.168.11.118
mail IN CNAME www
修改属主
chown named:named /var/named/bdqn.com.zone
2.7 dns反向解析文件(/var/named/20.0.0.arpa)
$TTL 1D
@ IN SOA cenjeal.com. admin.cenjeal.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 192.168.11.119
119 IN PTR www.bdqn.com.
120 IN PTR ftp.bdqn.com.
121 IN PTR bbs.bdqn.com.
修改属主
chown named:named /var/named/bdqn.com.zone
systemctl restart named
DNS从服务器(20.0.0.12)
关闭防火墙
systemctl stop firewalld
systemctl disable firewalld
关闭核心防护
vi /etc/selinux/config
SELINUX=disabled
yum -y install bind install bind-chroot bind-utils bind-libs
vi /etc/named.conf
options {
listen-on port 53 { 20.0.0.12; };
………………
allow-query { any; };
新增正反配置文件
vi /etc/named.rfc1912.zones
zone "cenjeal.com" IN {
type slave;
masters { 20.0.0.11; };
allow-notify { 20.0.0.11; };
file "slaves/cenjeal.com.zone";
};
zone "0.0.20.in-addr.arpa" IN {
type slave;
masters { 20.0.0.11; };
allow-notify { 20.0.0.11; };
file "slaves/20.0.0.arpa";
};
:wq
systemctl start named
客户机(20.0.0.13)
vi /etc/resolv.conf
#主DNS服务器
nameserver 20.0.0.11
#从DNS服务器
#nameserver 20.0.0.12
测试
yum -y install bind-utils
nslookup www.cenjeal.com
nslookup 20.0.0.119