准备工作
安装国内yum源(直接阿里云官网扒的)
- 备份
mv /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.backup
- 下载新的 CentOS-Base.repo 到 /etc/yum.repos.d/
CentOS 6
wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-6.repo
或者
curl -o /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-6.repo
CentOS 7
wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repo
或者
curl -o /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repo
CentOS 8
wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-8.repo
或者
curl -o /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-8.repo
- 生成缓存
yum makecache
开搞
红色为改动部分
机器 | 地址 |
---|---|
DNS服务器(CentOS 7) | 192.168.0.104 |
客户机(WIndows10专业版) | 192.168.0.101 |
客户机(CentOS 7 装有 nginx) | 192.168.0.103 |
- 安装bind服务
yum -y install bind
- 配置dns主配置文件
vim /etc/named.conf
- 域配置 文件
cp -p /etc/named.rfc1912.zones /etc/named.my.zones
vim /etc/named.my.zones
- 配置正/反向解析文件
// 切到配置目录
cd /var/named/
// 对应上一步的文件名 named.kalpana.cn named.192.168.0
cp -p named.localhost named.kalpana.cn
cp -p named.loopback named.192.168.0
vim named.kalpana.cn
vim named.192.168.0
- 启动dns服务
systemctl start named
# 查看启动状态
systemctl status named
- 防火墙放行
[root@origin named]# firewall-cmd --permanent --add-service=dns
success
[root@origin named]# firewall-cmd --reload
success
- 修改dns服务器指向
vim /etc/resolv.conf
- 本机测试
[root@origin named]# nslookup
> nginx.kalpana.cn
Server: 192.168.0.104
Address: 192.168.0.104#53
Name: nginx.kalpana.cn
Address: 192.168.0.103
> 192.168.0.103
103.0.168.192.in-addr.arpa name = nginx.kalpana.cn.
> www.kalpana.cn
Server: 192.168.0.104
Address: 192.168.0.104#53
www.kalpana.cn canonical name = nginx.kalpana.cn.
Name: nginx.kalpana.cn
Address: 192.168.0.103
>
[root@origin named]# dig -t A nginx.kalpana.cn
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-26.P2.el7_9.7 <<>> -t A nginx.kalpana.cn
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53638
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;nginx.kalpana.cn. IN A
;; ANSWER SECTION:
nginx.kalpana.cn. 86400 IN A 192.168.0.103
;; AUTHORITY SECTION:
kalpana.cn. 86400 IN NS dns1.kalpana.cn.
;; ADDITIONAL SECTION:
dns1.kalpana.cn. 86400 IN A 192.168.0.104
;; Query time: 0 msec
;; SERVER: 192.168.0.104#53(192.168.0.104)
;; WHEN: Sat Sep 04 19:16:57 CST 2021
;; MSG SIZE rcvd: 96
[root@origin named]# dig -t A www.kalpana.cn
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-26.P2.el7_9.7 <<>> -t A www.kalpana.cn
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46233
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 2
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.kalpana.cn. IN A
;; ANSWER SECTION:
www.kalpana.cn. 86400 IN CNAME nginx.kalpana.cn.
nginx.kalpana.cn. 86400 IN A 192.168.0.103
;; AUTHORITY SECTION:
kalpana.cn. 86400 IN NS dns1.kalpana.cn.
;; ADDITIONAL SECTION:
dns1.kalpana.cn. 86400 IN A 192.168.0.104
;; Query time: 0 msec
;; SERVER: 192.168.0.104#53(192.168.0.104)
;; WHEN: Sat Sep 04 19:17:29 CST 2021
;; MSG SIZE rcvd: 114
-
客户机测试
配置windows 客户机 dns服务器
C:\Users\kalpana>nslookup
默认服务器: dns1.kalpana.cn
Address: 192.168.0.104
> nginx.kalpana.cn
服务器: dns1.kalpana.cn
Address: 192.168.0.104
名称: nginx.kalpana.cn
Address: 192.168.0.103
> www.kalpana.cn
服务器: dns1.kalpana.cn
Address: 192.168.0.104
名称: nginx.kalpana.cn
Address: 192.168.0.103
Aliases: www.kalpana.cn
>
# 若出现连不上可尝试关闭 windows 防火墙或添加相应规则
- 客户机应用测试
# 103上面用docker跑了一个nginx
[root@origin nginx]# docker-compose ps
Name Command State Ports
------------------------------------------------------------------------------------------------------------------------------
nginx-1.20.1 /docker-entrypoint.sh ngin ... Up 0.0.0.0:443->443/tcp,:::443->443/tcp, 0.0.0.0:80->80/tcp,:::80->80/tcp
#103需要防火墙开放80端口
[root@origin nginx]# firewall-cmd --list-all
public (active)
target: default
icmp-block-inversion: no
interfaces: ens33
sources:
services: dhcpv6-client ssh
ports: 80/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
通过域名访问 103上面的nginx
http://nginx.kalpana.cn/
http://www.kalpana.cn/
- 收工