一、什么是子域授权
DNS是一颗倒扣的树,每一个下级区域(子域)都是上一级(父域)授权而来的节点
例如:
一个公司申请了一个jeffery.com.的域名,它有两个子公司,两个子域分别为manpower.jeffery.com.和fin.jeffery.com.框架如图所示:
父域主机ip:192.168.220.100
子域主机ip:192.168.220.101
二、子域授权的配置
①父域授权配置:/etc/named.conf
options { directory "/var/named/"; }; zone "." IN { type hint; file "named.ca"; }; zone "localhost" IN { type master; file "named.localhost"; }; zone "0.0.127.in-addr.arpa" IN { type master; file "named.loopback"; }; zone "jeffery.org" IN { ## 父域的区域文件定义 type master; ## file "jeffery.org.zone"; ##父域区域文件名+位置 };
②父域区域文件定义/var/named/jeffery.org.zone
$TTL 1D @ IN SOA ns.jeffery.org. admin.jeffery.com. ( 200 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum IN NS ns.jeffery.org. ns IN A 192.168.220.100 fin.jeffery.org. IN NS ns.fin.jeffery.org. ##指定子域的DNS位置 ns.fin.jeffery.org. IN A 192.168.220.101 ##指定子域的DNS的A记录 www IN A 1.1.1.1 ftp IN A 2.2.2.2
①子域主配置文件/etc/named.conf
options { directory "/var/named/"; }; zone "." IN { type hint; file "named.ca"; }; zone "localhost" IN { type master; file "named.localhost"; }; zone "0.0.127.in-addr.arpa" IN { type master; file "named.loopback"; }; zone "fin.jeffery.org" IN { ##子域区域文件定义 type master; ## file "fin.jeffery.org.zone"; ##子域区域文件名+位置 };
②子域区域文件的配置/var/named/fin.jeffery.org.zone
$TTL 1D @ IN SOA ns.fin.jeffery.org. admin.fin.jeffery.com. ( 200 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum IN NS ns.fin.jeffery.org. ns IN A 192.168.220.101 www IN A 3.3.3.3 ftp IN A 4.4.4.4 ##正常的区域解析配置
测试:
测试成功~~
转载于:https://blog.51cto.com/jefferyyu/1314054