实验:配置缓存DNS服务器
关闭防火墙
####DNS服务器####
yum install bind
[root@localhost ~]# rpm -ql bind |grep service
/usr/lib/systemd/system/named.service
systemctl start named
cat /etc/named.conf #修改配置
options {
listen-on port 53 {
localhost; }; #localhost 本机所有ip
listen-on-v6 port 53 {
::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
recursing-file "/var/named/data/named.recursing";
secroots-file "/var/named/data/named.secroots";
allow-query {
any; }; #any 所有地址段,也可以直接写IP段
实验:基于域的主DNS服务器
[root@localhost ~]# cd /var/named/
[root@localhost /var/named]# ls
data dynamic named.ca named.empty named.localhost named.loopback slaves
[root@localhost /var/named]# cp -p named.localhost magedu.com.zone #根据模板创建域
[root@localhost /var/named]# cat magedu.com.zone #域配置
$TTL 1D
@ IN SOA master.magedu.com. admin.magedu.com. ( #admin.实际为admin@用.代替
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 127.0.0.1
AAAA ::1
master A 192.168.10.100 #主服务器
ftp A 192.168.10.90
db A 192.168.10.99
www CNAME websrv #别名
websrv A 192.168.10.98
websrv A 192.168.10.97
[root@localhost /var/named]# vim /etc/named.rfc1912.zones #域声明
zone "magedu.com" {
type master;
file "magedu.com.zone";
};
[root@localhost /var/named]# rndc reload #重读配置文件,相当于重启服务
[root@localhost /var/named]# named-checkconf #检测配置文件
[root@localhost /var/named]# named-checkzone magedu.com /var/named/magedu.com.zone #检测域配置
###添加邮件服务器
[root@localhost /var/named]# cat magedu.com.zone
master A 192.168.10.100
@ MX 10 mailsrv #增加内容,其余不变
mailsrv A 192.168.10.96
ftp A 192.168.10.90
[root@localhost /var/named]# dig -t mx magedu.com 查看解析地址
实验:反向解析
#DNS服务器
[root@CentOS7 ~]# vim /etc/named.conf
// listen-on port 53 {
127.0.0.1; };
// allow-query {
localhost; };
dnssec-enable no;
dnssec-validation no;
[root@CentOS7 ~]# vim /etc/named.rfc1912.zones
zone "8.168.192.in-addr.arpa" {
type master;
file "192.168.8.zone";
};
[root@CentOS7 ~]# vim /var/named/192.168.8.zone
$TTL 1D
@ IN SOA ns1.magedu.com admin (1 1D 1H 1W 2D)
NS ns1
ns1 A 192.168.8.7
6 PTR websrv.magedu.com
7 PTR ns1.magedu.com
17 PTR test.magedu.com
#客户机
[root@CentOS7 ~