*****************DNS安装*******************
[root@yan ~]# mount /dev/cdrom /media/ --加在光盘
mount: block device /dev/cdrom is write-protected, mounting read-only
mount: block device /dev/cdrom is write-protected, mounting read-only
[root@yan Server]# rpm -ivh bind-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-libs-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-libbind-devel-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-utils-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-devel-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh caching-nameserver-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-sdb-9.3.3-10.el5.i386.rpm
[root@yan Server]# rpm -ivh bind-chroot-9.3.3-10.el5.i386.rpm
*****************DNS配置*******************
指定本机DNS解析服务器为自己
[root@yan named]# vi /etc/resolv.conf
nameserver 192.168.10.100
[root@yan named]# vi /etc/resolv.conf
nameserver 192.168.10.100
修改主配置文件
[root@yan /]# vi /var/named/chroot/etc/named.caching-nameserver.conf
options {
listen-on port 53 { any; }; //改为any
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
query-source-v6 port 53;
allow-query { any; }; //改为any
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view localhost_resolver {
match-clients { any; }; //改为any
match-destinations { any; }; //改为any
recursion yes;
include "/etc/named.rfc1912.zones";
}
[root@yan /]# vi /var/named/chroot/etc/named.caching-nameserver.conf
options {
listen-on port 53 { any; }; //改为any
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
query-source-v6 port 53;
allow-query { any; }; //改为any
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view localhost_resolver {
match-clients { any; }; //改为any
match-destinations { any; }; //改为any
recursion yes;
include "/etc/named.rfc1912.zones";
}
修改域配置文件
[root@yan /]# vi /var/named/chroot/etc/named.rfc1912.zones--加入两条记录
zone "yan.com" IN { //正向记录
type master;
file "yan.com";
allow-update { none;};
};
zone "yan.com" IN { //正向记录
type master;
file "yan.com";
allow-update { none;};
};
zone "10.168.192.in-addr.arpa" IN { //反向记录
type master;
file "yan.com1";
allow-update { none;};
};
type master;
file "yan.com1";
allow-update { none;};
};
创建正反向域配置文件
[root@yan /]# cd /var/named/chroot/var/named/
[root@yan named]# cp localhost.zone yan.com
[root@yan named]# cp named.local yan.com1
[root@yan /]# cd /var/named/chroot/var/named/
[root@yan named]# cp localhost.zone yan.com
[root@yan named]# cp named.local yan.com1
[root@yan named]# vi yan.com
$TTL 86400
@ IN SOA @ root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
$TTL 86400
@ IN SOA @ root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
[root@yan named]# vi yan.com1
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
修改权限
[root@yan named]# chown named yan.com*
[root@yan named]# chgrp named yan.com*
测试
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
[root@yan named]# chown named yan.com*
[root@yan named]# chgrp named yan.com*
测试
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
Name:
www.yan.com
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
101.10.168.192.in-addr.arpa name =
www.yan.com.
[root@yan named]# vi /var/named/chroot/etc/named.rfc1912.zones
zone "yan.com" IN {
type master;
file "yan.com";
allow-update { none;};
};
zone "zhu.com" IN { //再添加一个正向记录
type master;
file "zhu.com";
allow-update { none;};
};
zone "yan.com" IN {
type master;
file "yan.com";
allow-update { none;};
};
zone "zhu.com" IN { //再添加一个正向记录
type master;
file "zhu.com";
allow-update { none;};
};
zone "10.168.192.in-addr.arpa" IN {
type master;
file "yan.com1";
allow-update { none;};
};
type master;
file "yan.com1";
allow-update { none;};
};
[root@yan named]# vi yan.com1
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
101 IN PTR www.zhu.com.
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
101 IN PTR www.zhu.com.
修改权限
[root@yan named]# chgrp named zhu.com
[root@yan named]# chown named zhu.com
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
[root@yan named]# chgrp named zhu.com
[root@yan named]# chown named zhu.com
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
Name:
www.yan.com
Address: 192.168.10.101
> www.zhu.com
Server: 192.168.10.100
Address: 192.168.10.100#53
Address: 192.168.10.101
> www.zhu.com
Server: 192.168.10.100
Address: 192.168.10.100#53
Name:
www.zhu.com
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
@@@@@@@@@@@@@@@@@一个域对应多个ip@@@@@@@@
www.yan.com对应192.168.10.101和192.168.10.102
[root@yan named]# vi /var/named/chroot/etc/named.rfc1912.zones
zone "yan.com" IN {
type master;
file "yan.com";
allow-update { none;};
};
//删除原来添加的正向记录
zone "10.168.192.in-addr.arpa" IN {
type master;
file "yan.com1";
allow-update { none;};
};
[root@yan named]# vi yan.com
$TTL 86400
@ IN SOA @ root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
$TTL 86400
@ IN SOA @ root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
[root@yan named]# vi yan.com1
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
102 IN PTR www.yan.com. //增加一个记录
$TTL 86400
@ IN SOA www.yan.com. root.www.yan.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.yan.com.
101 IN PTR www.yan.com.
102 IN PTR www.yan.com. //增加一个记录
测试
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
[root@yan named]# service named restart
[root@yan named]# nslookup
> www.yan.com
Server: 192.168.10.100
Address: 192.168.10.100#53
Name:
www.yan.com
Address: 192.168.10.102
Name: www.yan.com
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
Address: 192.168.10.102
Name: www.yan.com
Address: 192.168.10.101
> 192.168.10.101
Server: 192.168.10.100
Address: 192.168.10.100#53
101.10.168.192.in-addr.arpa name =
www.yan.com.
> 192.168.10.102
Server: 192.168.10.100
Address: 192.168.10.100#53
> 192.168.10.102
Server: 192.168.10.100
Address: 192.168.10.100#53
102.10.168.192.in-addr.arpa name =
www.yan.com.
转载于:https://blog.51cto.com/mervin/189324