DNS基础配置与其区域传送
因为要实现主从服务器的区域传送我们要先关闭防火墙和seliunx
#systemctl stop firewalld
#setenfoce 0
(主服务器IP: 192.168.35.132 从服务器IP:192.168.35.135)
一、配置DNS服务器
1.在服务端主机安装服务包
#yum install bind -y //这里注意以往安装的包大多和服务名相差不大
2.更改配置自定义解析域
主配置文件 /etc/named.conf
options {
listen-on port 53 { 192.168.35.132; };
directory "/var/named"; //正反向解析的区域文件路径
all-query { any; };
}
zone "qq.com" IN {
type master;
file "named.qq.com";
};
~
2.自定义解析文件如下
vim /var/named/named.qq.com
$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.qq.com.
dns IN A 192.168.35.9
www IN A 192.168.35.11
aaa IN A 192.168.35.111
bbb IN A 192.168.35.222
wwww IN CNAME www
3.重启DNS服务,测试:
# systemctl restart named
测试—>客户端:
1.关闭防火墙,seliunx.
# systemctl stop firewalld
# setenforce 0
2.更改DNS地址
[root@localhost ~]# vim /etc/resolv.conf
nameserver 192.168.35.132 // 这里是从主服务器解析
3.交互式查看是否解析成功
[root@localhost ~]# nslookup www.qq.com
Server: 192.168.35.132
Address: 192.168.35.132#53
Name: www.qq.com
Address: 192.168.35.11
[root@localhost slaves]# nslookup aaa.qq.com
Server: 192.168.35.132
Address: 192.168.35.132#53
Name: aaa.qq.com
Address: 192.168.35.111
二、区域传送
1.主DNS服务器修改
在主配置文件options模块追加 allow-transfer { 192.168.35.135; };
注意:辅助dns服务器ip
[root@haha named]#cd /var/named
[root@haha named]# chmod o+r named.qq.com //给予name.qq.com文件查看权限方便进行区域传送查看
2.配置从服务器
(1)修改配置文件
#vim /etc/named.conf
options {
listen-on port 53 { 192.168.35.135; };
directory "/var/named/slaves";
};
zone "baidu.com" IN {
type slave;
file "named.baidu";
masters { 192.168.35.132; }; 注意:主服务的ip
};
(2)重启服务
#systemctl restart named
#watch ls //查看区域传送文件