4、配置DNS:
4.1、进入/var/named/chroot/etc目录中
[root@rac01 chroot]# cd /var/named/chroot/etc
查看当前目录下的文件,将named.caching-nameserver.conf拷贝一份为named.conf
[root@rac01 etc]# ls
localtime named.caching-nameserver.conf named.rfc1912.zones rndc.key
[root@rac01 etc]# cp –p named.caching-nameserver.confnamed.conf
[root@rac01 etc]# ls
localtime named.caching-nameserver.conf named.conf named.rfc1912.zones rndc.key
创建快捷方式到/etc/目录下
[root@localhost etc]# ln -s/var/named/chroot/etc/named.conf /etc/named.conf
4.2编辑named.conf文件,并进进行修改,阴影部分为修改部分:
[root@grid01 ~]# ll /etc/named.conf
lrwxrwxrwx 1 root root 32 Dec 2422:12 /etc/named.conf -> /var/named/chroot/etc/named.conf
[root@rac01etc]# vi /etc/name.conf
options{
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file"/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
// Those options should be usedcarefully because they disable port
// randomization
// query-source port 53;
// query-source-v6 port 53;
allow-query { any;};
allow-query-cache {any; };
};
logging{
channel default_debug {
file"data/named.run";
severity dynamic;
};
};
viewlocalhost_resolver {
match-clients { any; };
match-destinations { any; };
recursion yes;
include "/etc/named.rfc1912.zones";
};
4.3 编辑/etc/named.rfc1912.zones添加如下内容
zone"prudentwoo.com" IN {
type master;
file "prudentwoo.com.zone";
allow-update { none; };
};
zone"9.168.172.in-addr.arpa" IN {
type master;
file "172.168.9.zone";
allow-update { none; };
allow-transfer {
172.168.9.17;
172.168.9.18;
172.168.9.19;
172.168.9.20;
};
};
4.4 编辑正向解析文件:
[root@grid01named]# cd /var/named/chroot/var/named
[root@rac01 named]#cp–p localdomain.zone prudentwoo.com.zone
[root@grid01named]# cp –p named.local 172.168.9.zone
[root@node1named]# vi prudentwoo.zone
$TTL 86400
@ IN SOA prudentwoo.com. root.prudentwoo.com. (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D) ; minimum
IN NS prudentwoo.com
scan IN A 172.168.9.17
scan IN A 172.168.9.18
scan IN A 172.168.9.19
scan IN A 172.168.9.20
4.5编辑反向解析文件:
[root@node1 named]# more 172.168.10.zone
$TTL 86400
@ IN SOA 9.168.172.in-addr.arpa. root.prudentwoo.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400) ; Minimum
@ IN NS prudentwoo.com.
17 IN PTR scan.prudentwoo.com.
18 IN PTR scan.prudentwoo.com.
19 IN PTR scan.prudentwoo.com.
20 IN PTR scan.prudentwoo.com.
4.6 添加DNS服务器地址,两个节点都要配置,节点二nameserver 反过来配置
[root@rac01 ~]# vi /etc/resolv.conf
#search localdomain
search prudentwoo.com
nameserver 172.168.9.15
nameserver 172.168.9.16
4.7 创建连接文件
[root@grid01 named]# ln -s/var/named/chroot/var/named/172.168.9.zone /var/named/172.168.9.zone
[root@grid01 named]# ln -s/var/named/chroot/var/named/prudentwoo.comn.zone /var/named/prudentwoo.comn.zone
[root@grid01 named]# ll /var/named/
total 16
lrwxrwxrwx 1 root root 42 Dec 24 21:19172.168.9.zone -> /var/named/chroot/var/named/172.168.9.zone
drwxr-x--- 6 root named 4096 Dec 24 19:38 chroot
drwxrwx--- 2 named named 4096 Dec 2 2011data
lrwxrwxrwx 1 root named 44 Dec 24 19:19localdomain.zone -> /var/named/chroot/var/named/localdomain.zone
lrwxrwxrwx 1 root named 42 Dec 24 19:19localhost.zone -> /var/named/chroot/var/named/localhost.zone
lrwxrwxrwx 1 root named 43 Dec 24 19:19named.broadcast -> /var/named/chroot/var/named/named.broadcast
lrwxrwxrwx 1 root named 36 Dec 24 19:19 named.ca-> /var/named/chroot/var/named/named.ca
-rw-r----- 1 root root 1206 Dec 24 20:55 named.conf
lrwxrwxrwx 1 root named 43 Dec 24 19:19named.ip6.local -> /var/named/chroot/var/named/named.ip6.local
lrwxrwxrwx 1 root named 39 Dec 24 19:19named.local -> /var/named/chroot/var/named/named.local
lrwxrwxrwx 1 root named 38 Dec 24 19:19 named.zero-> /var/named/chroot/var/named/named.zero
lrwxrwxrwx1 root root 47 Dec 24 21:20 prudentwoo.com.zone ->/var/named/chroot/var/named/prudentwoo.com.zone
drwxrwx---2 named named 4096 Dec 2 2011 slaves
-----4.8重启DNS服务
1、DNS出现如下信息无法起来,检查message日志:
[root@rac01 log]# service named restart
Stopping named: [ OK ]
Starting named: [FAILED]
[root@rac01 log]# cd /var/log
[root@rac01 log]# pwd
/var/log
[root@rac01 log]# tail -f messages
Nov 100:46:01 localhost named[29489]: loading configuration: permission denied
Nov 100:46:01 localhost named[29489]: exiting (due to fatal error)
Nov 100:48:58 localhost named[29564]: starting BIND 9.3.6-P1-RedHat-9.3.6-20.P1.el5-u named -t /var/named/chroot
Nov 100:48:58 localhost named[29564]: adjusted limit on open files from 1024 to1048576
Nov 1 00:48:58localhost named[29564]: found 1 CPU, using 1 worker thread
Nov 100:48:58 localhost named[29564]: using up to 4096 sockets
Nov 100:48:58 localhost named[29564]: loading configuration from '/etc/named.conf'
Nov 100:48:58 localhost named[29564]: none:0: open: /etc/named.conf: permissiondenied
Nov 100:48:58 localhost named[29564]: loading configuration: permission denied
Nov 100:48:58 localhost named[29564]: exiting (due to fatal error)
修改named.conf权限,然后再重启:
[root@rac01 log]# ls -al/var/named/chroot/etc/named.conf
-rw-r----- 1 root root 1206 Nov 1 00:07 /var/named/chroot/etc/named.conf
[root@rac01 log]# chown root:named/var/named/chroot/etc/named.c
named.caching-nameserver.conf named.conf
[root@rac01 log]# chown root:named/var/named/chroot/etc/named.conf
4.8重启:
[root@rac01 log]# service named restart
Stopping named: [ OK ]
Starting named: [ OK ]
[root@rac01 log]#
4.9 验证DNS,至此发现DNS出现轮询就OK了。
[root@rac01 named]# nslookupnode-scan.prudentwoo.com
Server: 172.168.9.15
Address: 172.168.9.15#53
Name: node-scan.prudentwoo.com
Address: 172.168.9.21
Name: node-scan.prudentwoo.com
Address: 172.168.9.22
Name: node-scan.prudentwoo.com
Address: 172.168.9.23
Name: node-scan.prudentwoo.com
Address: 172.168.9.24
Name: node-scan.prudentwoo.com
Address: 172.168.9.20
4.10 反向解析验证DNS:
[root@grid01 named]# nslookup 172.168.9.15
Server: 172.168.9.15
Address: 172.168.9.15#53
** server can't find 15.9.168.172.in-addr.arpa.:NXDOMAIN
You have new mail in /var/spool/mail/root
[root@grid01 named]# nslookup 172.168.9.16
Server: 172.168.9.15
Address: 172.168.9.15#53
** server can't find 16.9.168.172.in-addr.arpa.:NXDOMAIN
[root@grid01 named]# nslookup 172.168.9.17
Server: 172.168.9.15
Address: 172.168.9.15#53
17.9.168.172.in-addr.arpa name = scan.prudentwoo.com.
[root@grid01 named]# nslookup 172.168.9.18
Server: 172.168.9.15
Address: 172.168.9.15#53
18.9.168.172.in-addr.arpa name = scan.prudentwoo.com.
[root@grid01 named]# nslookup 172.168.9.19
Server: 172.168.9.15
Address: 172.168.9.15#53
19.9.168.172.in-addr.arpa name = scan.prudentwoo.com.
[root@grid01 named]# nslookup 172.168.9.20