Loading... <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">我的环境是<br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 192.168.1.130 主DNS <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 192.168.1.112 从DNS<br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">DNS 的安装包有bind bind-libs bind-utils</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">安装DNS </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <span style="font-family: 宋体,SimSun;font-size: 14px"> # yum -y install bind</span></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">修改主配置文件,主要修改如下</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"><span style="font-family: 宋体,SimSun;font-size: 14px"> </span> #vim /etc/named.conf <span style="font-family: 宋体,SimSun;font-size: 14px"> <br /></span></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> options {</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // listen-on port 53 { 127.0.0.1; };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // listen-on-v6 port 53 { ::1; };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> directory "/var/named";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> dump-file "/var/named/data/cache_dump.db";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> statistics-file "/var/named/data/named_stats.txt";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> memstatistics-file "/var/named/data/named_mem_stats.txt";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // allow-query { localhost; };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> recursion yes;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // dnssec-enable yes;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // dnssec-validation yes;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // dnssec-lookaside auto;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> /* Path to ISC DLV key */</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // bindkeys-file "/etc/named.iscdlv.key";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> // managed-keys-directory "/var/named/dynamic";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">定义一个正向域名<br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /etc/named.rfc1912.zones </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> zone "shise.com" IN {</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> type master;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> file "shise.com";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">添加域</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /var/named/shise.com </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> $TTL 86400</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> $ORIGIN shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> @ IN SOA ns1.shise.com. admin.shise.com (</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 2015122601 #序列号</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 1H #刷新时间</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 5M #重试时间</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 7D #过期时间</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 1D ) #否定答案的TTL值</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN NS ns1</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN NS ns2</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN MX 10 mx1</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN MX 20 mx2</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> ns1 IN A 192.168.1.130</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> ns2 IN A 192.168.1.112</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> mx1 IN A 192.168.1.130</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> mx2 IN A 192.168.1.113</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> www IN A 192.168.1.130</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> ftp IN CNAME WWW <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">这样一个正向解析域就定义好了改权限属组 启动DNS 测试</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> #chmod 640 shise.com</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> #chown :named shise.com<br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # service named start</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # dig -t A </span><span style="font-family: 宋体,SimSun;font-size: 12px">www.shise.com</span><span style="font-family: 宋体,SimSun;font-size: 12px"> @192.168.1.130</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">定义一个反向域名</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /etc/named.rfc1912.zones</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> zone "1.168.192.in-addr.arpa" IN {</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> type master;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> file "192.168.1.zone";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">添加反向域 </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /var/named/192.168.1.zone </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> $TTL 86400</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> $ORIGIN 1.168.192.in-addr.arpa.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> @ IN SOA ns1.shise.com. admin.shise.com. (</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 2015122601</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 1H</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 5M</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 7D</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 1D )</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN NS ns1.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> IN NS ns2.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 130 IN PTR ns1.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 112 IN PTR ns2.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 130 IN PTR mx1.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 113 IN PTR mx2.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> 130 IN PTR www.shise.com.</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">重启服务测试 <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # chmod 640 192.168.1.zone</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # chown :named 192.168.1.zone <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # service named restart</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # dig -x 192.168.1.130 @192.168.1.130 <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">定义从服务器(192.168.1.112)</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /etc/named.conf 修改和主DNS一样</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> # vim /etc/named.rfc1912.zones</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> zone "shise.com" IN {</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> type slave;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> masters { 192.168.1.130; };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> file "slaves/shise.com";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <br /></span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> zone "1.168.192.in-addr.arpa" IN {</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> type slave;</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> masters { 192.168.1.130; };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> file "slaves/192.168.1.zone";</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> };</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px">重启服务查看日志 </span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> #service named restart</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> #tail /var/log/messages</span></p> <p style="line-height: normal"><span style="font-family: 宋体,SimSun;font-size: 12px"> <span style="font-family: 宋体,SimSun;font-size: 14px"><br /></span></span></p> 最后修改:2021 年 12 月 10 日 10 : 53 AM © 允许规范转载 赞赏 如果觉得我的文章对你有用,请随意赞赏 赞赏作者 支付宝微信