bind9 安裝：部署自建dns系統

#aliyun  yum源
curl -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/CentOS-7.repo
或
wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo

yum install epel-release
yum install wget net-tools telnet tree nmap sysstat lrzsz dos2unix bind-utils -y

nslookup www.qq.com
yum install bind -y
[root@master-0 ~]# rpm -qa bind
bind-9.11.4-16.P2.el7_8.6.x86_64

vim /etc/named.conf  改動如下：
listen-on port 53 { 192.168.116.101; };
//listen-on-v6 port 53 { ::1; }; //註釋掉
allow-query     { any; }; //允許所有局域網內機器訪問
forwarders      { 192.168.116.1; }; //網關地址
recursion yes; //採用遞歸的方式
dnssec-enable no; //關閉
dnssec-validation no;

#檢查配置是否正確，無異常輸出表示正常
[root@master-0 ~]# named-checkconf
[root@master-0 ~]#

#查看網關地址
[root@master-0 ~]# netstat   -rn
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
0.0.0.0         192.168.116.1   0.0.0.0         UG        0 0          0 enp1s0

#區域配置文件
vim /etc/named.rfc1912.zones
 43 zone "host.com" IN {
 44         type master;
 45         file "host.com.zone";
 46         allow-update { 192.168.116.101; };
 47 };
 48
 49 zone "od.com" IN {
 50         type master;
 51         file "od.com.zone";
 52         allow-update { 192.168.116.101; };
 53 };

vim /var/named/host.com.zone
;是註釋
  1 $ORIGIN host.com.
  2 $TTL 600 ;  10 minutes
  3 @  IN SOA dns.host.com. dnsadmin.host.com. (
  4                         2020062901      ; serial
  5                         10800           ; refresh (3 hours)
  6                         900             ; retry (15 minutes)
  7                         604800          ; expire (1 week)
  8                         86400           ; minimum (1 day)
  9                         )
 10                 NS      dns.host.com.
 11 $TTL 60 ; 1 minute
 12 dns             A       192.168.116.101
 13 master-0        A       192.168.116.101
 14 worker-01       A       192.168.101.118
 15 worker-02       A       192.168.101.119
 16 worker-04       A       192.168.101.121
 17 worker-05       A       192.168.101.122

vim /var/named/od.com.zone
1 $ORIGIN od.com.
  2 $TTL 600 ;  10 minutes
  3 @  IN SOA dns.od.com. dnsadmin.od.com. (
  4                         2020062901      ; serial
  5                         10800           ; refresh (3 hours)
  6                         900             ; retry (15 minutes)
  7                         604800          ; expire (1 week)
  8                         86400           ; minimum (1 day)
  9                         )
 10                 NS      dns.od.com.
 11 $TTL 60 ; 1 minute
 12 dns             A       192.168.116.101

#檢查配置
[root@master-0 ~]# named-checkconf
[root@master-0 ~]#

#啓動
systemctl start named

[root@master-0 ~]# netstat -luntp|grep 53
tcp        0      0 192.168.116.101:53      0.0.0.0:*               LISTEN      26475/named
tcp        0      0 127.0.0.1:953           0.0.0.0:*               LISTEN      26475/named
tcp        0      0 0.0.0.0:44453           0.0.0.0:*               LISTEN      -
tcp6       0      0 :::31538                :::*                    LISTEN      10484/kube-proxy
tcp6       0      0 ::1:953                 :::*                    LISTEN      26475/named
tcp6       0      0 :::443                  :::*                    LISTEN      8538/docker-proxy
udp        0      0 192.168.116.101:53      0.0.0.0:*                           26475/named
[root@master-0 ~]#

#dig一下
[root@master-0 ~]# dig -t A master-0.host.com @192.168.116.101 +short
192.168.116.101
[root@master-0 ~]#


vim /etc/sysconfig/network-scripts/ifcfg-enp1s0
改爲
DNS1=192.168.116.101
#備份
21 DNS1=202.103.24.68
22 DNS2=202.103.44.150

systemctl restart network

vim /etc/resolv.conf
search host.com  #add這一行  restart network後會自動添加add

win客戶端改DNS服務器：

yum install bind -y

rpm -qa bind

vim  /etc/named.conf

#檢查配置是否正常
named-checkconf

vim  /etc/named.rfc1912.zones

空格和空行都嚴格保持一致！！！

vim /var/named/host.com.zone

啓動named服務：

驗證：