将DNS服务创建为脚本
[root@server1 ~]# vim dns.sh
#!/bin/bash
#DNS服务
named=/etc/named.conf
zones=/etc/named.rfc1912.zones
com=aa.com
na=/var/named
systemctl stop firewalld
setenforce 0
cat>>/etc/resolv.conf<<EOF
nameserver 192.168.111.10
EOF
rpm -ivh /mnt/Packages/bind*
sed -i 's/127.0.0.1/192.168.111.10/g' $named
sed -i '/allow-query/s/localhost/any/g' $named
cat>>$zones<<EOF
zone "$com" IN {
type master;
file "$com.zone";
allow-update { none; };
};
EOF
cd $na
cp -p named.localhost ${com}.local
cp -p named.loopback ${com}.zone
cat>/var/named/${com}.local<<EOF
\$TTL 1D
@ IN SOA $com. rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS $com.
A 192.168.111.10
119 IN PTR www.$com
120 IN PTR ftp.$com
EOF
cat>/var/named/${com}.zone<<EOF
\$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 192.168.111.10
www IN A 192.168.111.10
ftp IN A 192.168.111.10
mail IN CNAME www
EOF
systemctl start named.service
nslookup www.aa.com
提权及验证
[root@server1 ~]# chmod +x dns.sh
[root@server1 ~]# ./dns.sh
警告:/mnt/Packages/bind-9.9.4-50.el7.x86_64.rpm: 头V3 RSA/SHA256 Signature, 密钥 ID f4a80eb5: NOKEY
准备中... ################################# [100%]
软件包 bind-license-32:9.9.4-50.el7.noarch 已经安装
软件包 bind-libs-32:9.9.4-50.el7.x86_64 已经安装
软件包 bind-32:9.9.4-50.el7.x86_64 已经安装
软件包 bind-utils-32:9.9.4-50.el7.x86_64 已经安装
软件包 bind-libs-lite-32:9.9.4-50.el7.x86_64 已经安装
Server: 192.168.111.10
Address: 192.168.111.10#53
Name: www.aa.com
Address: 192.168.111.10