搭建DNS主從服務器實驗
dns主服務器端
1.安裝所需的軟件(rhel5.5)
[root@rhel5 ~]# yum install bind* caching* -y [root@rhel5 ~]# rpm -qa |grep bind
2.修改主配置文件named.conf
[root@rhel5 ~]# cd /var/named/chroot/etc/ [root@rhel5 etc]# vim named.conf [root@rhel5 etc]# cat named.conf
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
// recursion yes; #默認遞歸查詢
};
include "/etc/named.rfc1912.zones";
zone "sw.com" IN { #正向解析
type master;
file "sw.com.zone";
};
zone "1.0.10.in-addr.arpa" IN { #反向解析
type master;
file "10.0.1.zone";
};
3.創建zone配置文件
[root@rhel5 ~]# cd /var/named/chroot/var/named/ [root@rhel5 named]# vim sw.com.zone [root@rhel5 named]# cat sw.com.zone
$TTL 86400
@ IN SOA rhel5.sw.com. root (
2013080601 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
@ IN NS rhel5.sw.com.
@ IN NS sb.sw.com.
sb IN A 10.0.1.18
@ IN A 10.0.1.8
rhel5 IN A 10.0.1.8
www IN A 10.0.1.8
rhel6 IN A 10.0.1.88
[root@rhel5 named]# vim 10.0.1.zone [root@rhel5 named]# cat 10.0.1.zone
$TTL 86400
@ IN SOA rhel5.sw.com. root (
2013080601 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
@ IN NS rhel5.sw.com.
@ IN NS sb.sw.com.
8 IN PTR rhel5.sw.com.
18 IN PTR sb.sw.com.
88 IN PTR rhel6.sw.com.
4.修改默認dns服務器地址
[root@rhel5 ~]# vim /etc/resolv.conf [root@rhel5 ~]# cat /etc/resolv.conf nameserver 10.0.1.8
#查看本機時間
[root@rhel5 ~]# date
2013年 08月 04日 星期日 15:21:45 CST
5.重啓服務
[root@rhel5 ~]# service named restart 停止 named: [確定] 啓動 named: [確定]
#開機自啓動
[root@rhel5 ~]# chkconfig named on
DNS從服務器
1.安裝所需軟件
[root@sb ~]# yum install bind* -y [root@sb ~]# yum install "wireshark*" -y
2.修改主配置文件
[root@sb ~]# cd /var/named/slaves/ [root@sb slaves]# vim /etc/named.conf [root@sb slaves]# cat /etc/named.conf
options {
directory "/var/named";
};
zone "sw.com" IN {
type slave;
file "slaves/sw.com.zone";
masters {10.0.1.8;};
};
zone "1.0.10.in-addr.arpa" IN {
type slave;
file "slaves/10.0.1.zone";
masters {10.0.1.8;};
3.主從同步時間
[root@sb ~]# yum install xinetd -y [root@sb ~]# chkconfig time-stream on [root@sb ~]# rdate -s 10.0.1.8 [root@sb ~]# date 2013年 08月 04日 星期日 15:23:19 CST
4.重啓服務
[root@sb slaves]# service named restart Stopping named: [ OK ] Starting named: [ OK ]
#從主服務器同步兩個zone文件
#以後主服務器做修改並且改大Serial,主服務器刷新服務,從服務器就會同步
[root@sb slaves]# ls 10.0.1.zone sw.com.zone [root@sb slaves]# pwd /var/named/slaves
5.主從同步
下圖爲本次我用wireshark抓包同步的過程
dns客戶端
修改默認dns服務器地址
[root@localhost ~]# vim /etc/resolv.conf [root@localhost ~]# cat /etc/resolv.conf nameserver 10.0.1.8
測試
#正向解析
[root@rhel6 ~]# nslookup www.sw.com Server: 10.0.1.8 Address: 10.0.1.8#53 Name: www.sw.com Address: 10.0.1.8
#逆向解析
[root@rhel6 ~]# nslookup 10.0.1.18 Server: 10.0.1.8 Address: 10.0.1.8#53 18.1.0.10.in-addr.arpa name = sb.sw.com.
#使用dns從服務器正向解析
[root@rhel6 ~]# nslookup rhel6.sw.com 10.0.1.18 Server: 10.0.1.18 Address: 10.0.1.18#53 Name: rhel6.sw.com Address: 10.0.1.8
#解析網絡域名
[root@localhost ~]# nslookup www.baidu.com Server: 10.0.1.8 Address: 10.0.1.8#53 Non-authoritative answer: www.baidu.com canonical name = www.a.shifen.com. Name: www.a.shifen.com Address: 115.239.210.27 Name: www.a.shifen.com Address: 115.239.210.26