######DNS集群######
1.主DNS[root@localhost ~]# vim /etc/named.conf
[root@localhost ~]# vim /etc/named.rfc1912.zones
zone "westos.com" IN {
type master; ##类型主服务器
file "westos.com.zone";
allow-update { none; };
also-notify { 172.25.254.233; }; ##每次修改都要提示从服务器同步
};
[root@localhost named]# cp -p named.localhost westos.com.zone
[root@localhost named]# vim westos.com.zone
[root@localhost named]# systemctl restart named
[root@localhost named]# scp -p westos.com.zone root@172.25.254.233:/var/named/
[root@localhost named]# vim /etc/resolv.conf
nameserver 172.25.254.133
[root@localhost named]# vim westos.com.zone ##修改时间和ip
[root@localhost named]# systemctl restart named ##重启服务,从DNS会自动修改
2.从DNS
[root@localhost ~]# vim /etc/named.conf
[root@localhost ~]# vim /etc/named.rfc1912.zones
zone "westos.com" IN {
type slave; ##类型从服务器
masters { 172.25.254.133; }; ##对应主服务器ip
file "slaves/westos.com.zone"; ##解析文件位置,是加密文件
allow-update { none; };
};
[root@localhost named]# chgrp named westos.com.zone
[root@localhost named]# vim /etc/resolv.conf
nameserver 172.25.254.233
[root@localhost named]# systemctl restart named
##########文件传送#####
1.firewalld火墙2.某些服务受到xinetd或tcpwrap的限制
2.service服务本身
3.selinux
4.rwx文件本身的读写权限
[root@localhost named]# which sshd ##查看位置
/usr/sbin/sshd
[root@localhost named]# ldd /usr/sbin/sshd ##查看是否有该模块
libwrap.so.0 => /lib64/libwrap.so.0 (0x00007ff6099a0000)
[root@localhost named]# vim /etc/hosts. ##文件类型
hosts.allow hosts.deny
[root@localhost named]# vim /etc/hosts.allow ##编辑配置文件
ALL:ALL ##所有服务:所有客户
[root@localhost named]# vim /etc/hosts.allow ##编辑配置文件
sshd:ALL:spawn echo `date` from %c to %s >> /var/log/messages ##监控sshd服务,并将结果输入到日志中
sshd:ALL:spawn echo `date` from %c to %s |mail -s warning root ##监控sshd服务,并将结果发送邮件
[root@localhost named]# >/var/log/messages
[root@localhost named]# cat /var/log/messages ##查看sshd服务
Fri Jun 23 19:24:31 EDT 2017 from 172.25.254.133 to sshd@172.25.254.233
Jun 23 19:24:32 localhost avahi-daemon[475]: Withdrawing address record for fe80::5054:ff:fe00:210b on eth0.
Jun 23 19:24:32 localhost avahi-daemon[475]: Host name conflict, retrying with linux-32
Jun 23 19:24:32 localhost avahi-daemon[475]: Registering new address record for fe80::5054:ff:fe00:210b on eth0.*.
Jun 23 19:24:32 localhost avahi-daemon[475]: Registering new address record for 172.25.254.233 on eth0.IPv4.
Jun 23 19:24:32 localhost avahi-daemon[475]: Registering HINFO record with values 'X86_64'/'LINUX'.
Jun 23 19:24:35 localhost systemd: Starting Session 13 of user root.
Jun 23 19:24:35 localhost systemd: Started Session 13 of user root.
Jun 23 19:24:35 localhost systemd-logind: New session 13 of user root.
[root@localhost named]#