部署DNS主服務器
1.安裝bind服務程序
[root@linux1 ~]# yum -y install bind-chroot2.修改bind的主配置文件
[root@linux1 ~]# vim /etc/named.conf
options {
listen-on port 53 { any; }; //改爲any;在所有網卡上監聽dns請求
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; }; //改爲any;允許所有主機進行dns請求3.修改bind的區域配置文件
[root@linux1 ~]# vim /etc/named.rfc1912.zones
zone "kangvcar.com" IN {
type master;
file "kangvcar.com.zone";
allow-update { none;};
};
zone "100.168.192.in-addr.arpa" IN {
type master;
file "192.168.100.arpa";
allow-update { none;};
};4.修改bind的數據文件
在/var/named 目錄下有正反向解析的模版文件
使用cp -a 複製(連同權限和所有者一起復制)模版即可
[root@linux1 ~]# cp -a /var/named/named.localhost /var/named/kangvcar.com.zone --->正向解析文件
[root@linux1 ~]# cp -a /var/named/named.loopback /var/named/192.168.100.arpa --->反向解析文件
[root@linux1 ~]# vim /var/named/kangvcar.com.zone --->正向解析文件
$TTL 1D
@ IN SOA kangvcar.com. root.kangvcar.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS ns.kangvcar.com.
ns IN A 192.168.100.10
www IN A 192.168.100.10
bbs IN A 192.168.100.20
tech IN A 192.168.100.30
[root@linux1 ~]# vim /var/named/192.168.100.arpa --->反向解析文件
$TTL 1D
@ IN SOA kangvcar.com. root.kangvcar.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS ns.kangvcar.com.
ns IN A 192.168.100.10
10 IN PTR www.kangvcar.com.
20 IN PTR bbs.kangvcar.com.
30 IN PTR tech.kangvcar.com.5.重新啓動namd服務即可
[root@linux1 ~]# systemctl restart named
[root@linux1 ~]# systemctl enable named6.驗證
//修改網卡配置文件,加入DNS服務器的IP
[root@linux1 ~]# vim /etc/sysconfig/network-scripts/ifcfg-eno16777728
DNS1=192.168.100.10
//在/etc/resolv.conf文件中加入nameserver
[root@linux1 ~]# cat /etc/resolv.conf
nameserver 192.168.100.10
//用nslookup 進行驗證
[root@linux1 named]# nslookup
> www.kangvcar.com
Server: 192.168.100.10
Address: 192.168.100.10#53
Name: www.kangvcar.com
Address: 192.168.100.10
> 192.168.10030
Server: 192.168.100.10
Address: 192.168.100.10#53
** server can't find 192.168.10030: SERVFAIL
> 192.168.100.30
Server: 192.168.100.10
Address: 192.168.100.10#53
30.100.168.192.in-addr.arpa name = tech.kangvcar.com.部署DNS從服務器
(在已部署DNS主服務器的基礎上)
1.修改DNS主服務器的區域配置文件
[root@linux1 ~]# vim /etc/named.rfc1912.zones
zone "kangvcar.com" IN {
type master;
file "kangvcar.com.zone";
allow-update { 192.168.100.11;}; //把none改爲DNS從服務器的IP地址
};
zone "100.168.192.in-addr.arpa" IN {
type master;
file "192.168.100.arpa";
allow-update { 192.168.100.11;}; //把none改爲DNS從服務器的IP地址
};
[root@linux1 ~]# systemctl restart named //重新啓動named服務2.在DNS從服務器上安裝bind服務程序
[root@linux2 ~]# yum -y install bind-chroot3.修改DNS從服務器的主配置文件
[root@linux2 ~]# cat /etc/named.conf
options {
listen-on port 53 { any; }; //改爲any;在所有網卡上監聽dns請求
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; }; //改爲any;允許所有主機進行dns請求4.修改DNS從服務器的區域配置文件
[root@linux2 ~]# cat /etc/named.rfc1912.zones
zone "kangvcar.com" IN {
type slave; //類型爲slave
masters { 192.168.100.10;}; //指定DNS主服務器的IP
file "slaves/kangvcar.com.zone"; //指定同步後的文件保存位置
};
zone "100.168.192.in-addr.arpa" IN {
type slave; //類型爲slave
masters { 192.168.100.10;}; //指定DNS主服務器的IP
file "slaves/192.168.100.arpa"; //指定同步後的文件保存位置
};5.重新啓動named服務即可
[root@linux2 ~]# systemctl restart named6.驗證
//修改網卡配置文件,加入DNS服務器的IP
[root@linux2 ~]# vim /etc/sysconfig/network-scripts/ifcfg-eno16777728
DNS1=192.168.100.11
//在/etc/resolv.conf文件中加入nameserver
[root@linux2 ~]# cat /etc/resolv.conf
nameserver 192.168.100.11
//用nslookup 進行驗證
[root@linux2 named]# nslookup
> www.kangvcar.com
Server: 192.168.100.11
Address: 192.168.100.11#53
Name: www.kangvcar.com
Address: 192.168.100.10
> 192.168.100.12
Server: 192.168.100.11
Address: 192.168.100.11#53
12.100.168.192.in-addr.arpa name = tech.kangvcar.com.