实验要求
(1)建立DNS服务器,负责解析的域为openedu.com;
(2)要求将MX记录指向mail.openedu.com,且对应A记录为本机IP;
(3)要求将NS记录指向ns1.openedu.com,且对应A记录为本机IP;
(4)建立www的A记录指向本机IP;
建立ftp对应A记录为x.x.x.123;
为mail主机建立别名记录pop3和smtp;
(5)为所有A记录建立PTR记录;
(6)openedu.com区域仅允许本网段中的主机x.x.x.200(NS为ns2.openedu.com)做区域传送;
对应的反向区域不允许任何主机做区域传送;
(7)客户端测试;
步骤:
1.安装bind软件
[root@bogon ~]# yum install bind -y
2.修改named.conf主配置文件
[root@bogon ~]# vim /etc/named.conf
options {
listen-on port 53 { 192.168.119.128; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
secroots-file "/var/named/data/named.secroots";
recursing-file "/var/named/data/named.recursing";
#allow-query { localhost; };
allow-query { any; };
3.修改区域文件named.rfc1912.zones
[root@bogon ~]# vim /etc/named.rfc1912.zones
zone "openedu.com" IN {
type master;
file "openedu.com.zone";
};
zone "119.168.192.in-addr.arpa" IN {
type master;
file "192.168.119.zone";
};
4.解析文件
[root@bogon ~]# vim /var/named/named.openedu.com
$TTL 1D
@ IN SOA dns1.openedu.com. admin.openedu.com. (
2023041701 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns1.openedu.com.
MX 5 mail.openedu.com.
dns1 A 192.168.119.128
mail A 192.168.119.128
www A 192.168.119.128
ftp A 192.168.119.129
pop3 CNAME mail
smtp CNAME mail
5.重启服务
[root@localhost ~]# systemctl restart named
[root@localhost ~]# systemctl disable firewalld --now