项目环境:
linux操作系统,centos7.9, bind*
目的:搭建一个主域名服务器
1.首先关闭服务器的防火墙和selinux
[root@localhost /]# systemctl stop firewalld
[root@localhost /]# systemctl disable firewalld
[root@localhost /]# setenforce 0
2.下载关于DNS搭建的插件
[root@localhost /]# yum install -y bind*
3.编辑DNS的主配置文件
[root@localhost /]# vim /etc/named.conf
options {
listen-on port 53 { any; }; ===》这里开放的地址改为any,开放所有的ip地址
listen-on-v6 port 53 { any; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
recursing-file "/var/named/data/named.recursing";
secroots-file "/var/named/data/named.secroots";
allow-query { any; }; ===》这里开放的地址改为any,允许所有人访问
4.次要配置文件的修改
增加一块对于sc.com域名的配置
[root@localhost /]# vim /etc/named.rfc1912.zones
zone "sc.com" IN {
type master; ======》主域名服务器
file "sc.com.zone"; ====》域名配置文件的名称
allow-update { none; };
};
5.手动复制一个域名配置文件
[root@localhost /]# cd /var/named/
[root@localhost named]# cp -a named.localhost sc.com.zone //-a 保留文件的权限
6.编辑对应域名的配置文件
[root@localhost named]# vim sc.com.zone
$TTL 1D
@ IN SOA sc.com. sc.com. ( ====》改为域名
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS sc.com ;域名服务器记录
A 192.168.2.101
www IN A 192.168.2.2 ;集群记录
www IN A 192.168.2.1 =》添加对应域名解析记录 当访问www.sc.com 即访问192.168.2.1
ftp IN A 192.168.2.3
web IN CNAME www ;别名
* IN A 192.168.2.80 ;泛域名解析记录
@ IN A 192.168.2.4 ;只是sc.com的域名解析
7.检测语法错误
[root@localhost named]# named-checkzone sc.com /var/named/sc.com.zone
zone sc.com/IN: loaded serial 0
OK
8.重新刷新服务
[root@localhost named]# systemctl restart named
9.将本机的DNS地址改为本机地ip地址
[root@localhost named]# vim /etc/resolv.conf
; generated by /usr/sbin/dhclient-script
nameserver 192.168.2.101
10.使用host进行检测,是否解析出对应的ip地址
[root@localhost named]# host www.sc.com
www.sc.com has address 192.168.2.10
www.sc.com has address 192.168.2.11