一、挂载本地yum
二、关闭防火墙
systemctl stop firewalld
setenforce 0
三、安装bind
yum install -y bind
vi /etc/named.conf
将listen-on port 53 { 127.0.0.1; };改为listen-on port 53 { any; };
将allow-query { localhost; };改为 allow-query { localnet; };//记得修改,不然其他客户端没办法查询
将末行include "/etc/named.rfc1912.zones";修改为include "/etc/named.zones";
cp -p /etc/named.rfc1912.zones /etc/named.zones
ls -al /etc/named*
可以看到rw-r-----. 1 root named 931 Jun 21 2007 /etc/named.zones这个文件
vi /etc/named.zones
把最前面两个
改为:
cd /var/named
[root@localhost named]# ls -al
total 20
drwxrwx--T. 5 root named 127 Apr 17 02:09 .
drwxr-xr-x. 22 root root 4096 Apr 17 02:09 ..
drwxrwx---. 2 named named 6 Oct 30 2018 data
drwxrwx---. 2 named named 6 Oct 30 2018 dynamic
-rw-r-----. 1 root named 2281 May 22 2017 named.ca
-rw-r-----. 1 root named 152 Dec 15 2009 named.empty
-rw-r-----. 1 root named 152 Jun 21 2007 named.localhost
-rw-r-----. 1 root named 168 Dec 15 2009 named.loopback //创建正想解析和反向解析区域文件
drwxrwx---. 2 named named 6 Oct 30 2018 slaves
[root@localhost named]# cp -p named.localhost zone.k3lap.com
[root@localhost named]# cp -p named.loopback zone.10.0.150.33
[root@localhost named]# vi zone.k3lap.com
esc模式下:set nu
然后删除-10行:8,10d
变成:
vi zone.10.0.150.33
改为:
systemctl restart named
firewall -cmd -- permanent --add- service=dns
firewall -cmd -- reload
fierwall -cmd -- list -all
nslookup
>www.k3lap.com
>10.0.150.120
exit
dig -t A web.k3lap.com
host ftp.k3lap.com