DNS 域名解析服务器 递归查询 迭代查询
以前使用bind 红帽7支持两种 bind 和 unbound
1.服务的安装
开着防火墙和SELinux,安装服务yum install unbound -y 启动服务 防火墙添加nds服务
netstat -antulp |grep unbound
2.修改配置文件 /etc/unbound/unbound.conf (改三处)
开启 interface:0.0.0.0 #监听所有的端口
修改 access-control:0.0.0.0/0 allow
修改 username:"" #让大家都可以调用
重启服务
netstat -antulp | grep unbound
3.编写配置文件( local-zone local-data local-data-ptr)
vim /etc/unbound/local.d/qin.com.conf
local-zone:"qin.com." static 定义一个域名
local-data:"qin.com. 86400 IN SOA ns.qin.com. root.qin.com. 120000 86400 3600 10800 86400"
老大 给谁发邮件 更新号 辅助dns时间 如果没有回应每隔3600再次询问 如果一直没有回应,最大到10800,认为老大挂了 缓存时间
local-data:"qin.com. IN NS ns.qin.com." # 正向解析
local-data:"qin.com. IN MX 10 mail.qin.com."
local-data:"qin.com. IN MX 20 smtp.qin.com."
local-data:"qin.com. IN A 192.168.100.1"
local-data:"ns.qin.com. IN A 192.168.100.1"
local-data:"mail.qin.com. IN A 192.168.100.1"
local-data:"smtp.qin.com. IN A 192.168.100.1"
local-data:"ftp.qin.com. IN A 192.168.100.1"
local-data:"www.qin.com. IN A 192.168.100.1"
local-data:"qin1.qin.com. IN A 192.168.100.1"
local-data"qin2.qin.com. IN A 192.168.100.2"
local-data:"qin7.qin.com. IN A 192.168.100.7"
local-data-ptr:"192.168.100.1 ns.qin.com." #反向解析
local-data-ptr:"192.168.100.1 mail.qin.com."
local-data-ptr:"192.168.100.1 smtp.qin.com."
local-data-ptr:"192.168.100.1 ftp.qin.com."
local-data-ptr:"192.168.100.1 www.qin.com."
local-data-ptr:"192.168.100.1 qin1.qin.com."
local-data-ptr:"192.168.100.2 qin2.qin.com."
local-data-ptr:"192.168.100.7 qin7.qin.com."
检测是否有错误 unbound-checkconf
无错误则重启服务
nslookup
4.各个计算机的dns指向dns服务器
5.配置缓存dns(辅助dns)
在另个服务器上安装unbound 编辑配置文件(同上),
vim /etc/unbound/local.d/qin.com.conf
forward-zone:
name:"."
forward-addr:"192.168.100.1"