网络技能大赛-云平台部分-CentOS部分05-[DNS]
2022年全国职业技能大赛网络系统管理赛项相较2021年再次做出改动,Linux部分从之前的Debian又换回了CentOS,不过相应增加了UOS国产操作系统。
再怎么变比赛的东西也就那么多,希望大家都能勇于动手尝试,多多摸索,愿大家都能取得一个理想的成绩!
交流共享资料群号:926132419
DNS
样题内容
2019年A卷
- 配置DNS服务
- 监听当前主机的所有地址
- 允许所有主机进行查询
- 区域定义均配置在/etc/named.conf文件中
- rj.com的区域数据文件名为rj.com.zone
- 为www.rj.com添加A记录解析,解析至serverA的公网IP。
- 为ftp.rj.com添加A记录解析,解析至serverB的公网IP。
- 配置反向域数据文件名为172.16.0.zone
- 为serverA、serverB的公网IP添加www、ftp的PTR解析记录
#修改 /etc/named.conf文件
vim /etc/named.conf
#修改下面两行为any
listen-on port 53 { any; };
allow-query { any; };
#在最后面添加
zone "rj.com" IN {
type master;
file "rj.com.zone";
allow-update { none; };
};
zone "0.16.172.in-addr.arpa" IN {
type master;
file "172.16.0.zone";
allow-update { none; };
};
#复制正反向区域配置文件
cd /var/named
#不加-p选项的话要自己配置属组
#配置属组使用chgrp命令
cp -p named.localhost rj.com.zone
cp -p named.loopback 172.16.0.zone
#查看属组
[root@serverA named]# ll
总用量 24
-rw-r----- 1 root named 568 9月 5 03:03 172.16.0.zone
drwxrwx--- 2 named named 22 9月 5 01:22 data
drwxrwx--- 2 named named 30 9月 5 03:25 dynamic
-rw-r----- 1 root named 2281 5月 22 2017 named.ca
-rw-r----- 1 root named 152 12月 15 2009 named.empty
-rw-r----- 1 root named 152 6月 21 2007 named.localhost
-rw-r----- 1 root named 168 12月 15 2009 named.loopback
-rw-r----- 1 root named 543 9月 5 03:04 rj.com.zone
drwxrwx--- 2 named named 6 10月 31 2018 slaves
#*** 注意 DNS配置文件中的注释是";"而不是"#" ***#
#正向区域文件
[root@serverA named]# cat rj.com.zone
$TTL 1D
@ IN SOA rj.com. rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 127.0.0.1
AAAA ::1
NS ns.rj.com.
ns IN A 172.16.0.132
;ns IN A 172.16.110.22
www IN A 172.16.0.132
ftp IN A 172.16.0.133
#反向区域文件
[root@serverA named]# cat 172.16.0.zone
$TTL 1D
@ IN SOA rj.com. rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 127.0.0.1
AAAA ::1
PTR localhost.
NS ns.rj.com.
ns A 172.16.0.132
;ns A 172.16.110.22
132 PTR www.rj.com.
133 PTR ftp.rj.com.
#给网卡添加DNS并重启网卡重启DNS服务
[root@serverA named]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether fa:16:3e:1c:83:d7 brd ff:ff:ff:ff:ff:ff
inet 172.16.110.22/24 brd 172.16.110.255 scope global dynamic eth0
valid_lft 84453sec preferred_lft 84453sec
inet6 fe80::f816:3eff:fe1c:83d7/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether fa:16:3e:2f:73:73 brd ff:ff:ff:ff:ff:ff
inet 192.168.110.22/24 brd 192.168.110.255 scope global dynamic eth1
valid_lft 84453sec preferred_lft 84453sec
inet6 fe80::f816:3eff:fe2f:7373/64 scope link
valid_lft forever preferred_lft forever
[root@serverA named]# cat /etc/sysconfig/network-scripts/ifcfg-eth0
TYPE=Ethernet
BOOTPROTO=dhcp
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=yes
IPV6_AUTOCONF=yes
IPV6_DEFROUTE=yes
IPV6_FAILURE_FATAL=no
NAME=eth0
DEVICE=eth0
ONBOOT=yes
PEERDNS=yes
PEERROUTES=yes
IPV6_PEERDNS=yes
IPV6_PEERROUTES=yes
IPV6_PRIVACY=no
DNS1=172.16.110.22
[root@serverA named]# systemctl restart network
[root@serverA named]# systemctl restart named
[root@serverA named]# cat /etc/resolv.conf
; generated by /usr/sbin/dhclient-script
search openstacklocal
nameserver 114.114.114.114
nameserver 172.16.110.22
#使用nslookup验证
[root@serverA network-scripts]# nslookup
> www.rj.com
Server: 172.16.110.22
Address: 172.16.110.22#53
Name: www.rj.com
Address: 172.16.0.132
> 172.16.0.133
Server: 172.16.110.22
Address: 172.16.110.22#53
133.0.16.172.in-addr.arpa name = ftp.rj.com.
> ftp.rj.com
Server: 172.16.110.22
Address: 172.16.110.22#53
Name: ftp.rj.com
Address: 172.16.0.133
> 172.16.0.132
Server: 172.16.110.22
Address: 172.16.110.22#53
132.0.16.172.in-addr.arpa name = www.rj.com.
1862
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
