-
在rhel5.5x64下用yum安裝DNS安裝主伺服器 IP 192.168.5.205
前提:配置yum
[[email protected] ~]# yum -y install bind-9.3*
[[email protected] ~]# yum -y install caching-nameserver
DNS的配置過程
1)配置一個DNS來解析域名 www.test.com ,假設對應的IP 是192.168.5.206
[[email protected] ~]# ll /var/named/
total 48
drwxr-x---. 5 root named 4096 Sep 25 23:29 chroot
drwxrwx---. 2 named named 4096 Sep 25 23:46 data
-rw-r-----. 1 root named 198 Jan 18 2010 localdomain.zone
-rw-r-----. 1 root named 195 Jan 18 2010 localhost.zone
-rw-r-----. 1 root named 427 Jan 18 2010 named.broadcast
-rw-r-----. 1 root named 1892 Jan 18 2010 named.ca
-rw-r-----. 1 root named 424 Jan 18 2010 named.ip6.local
-rw-r-----. 1 root named 426 Jan 18 2010 named.local
-rw-r-----. 1 root named 427 Jan 18 2010 named.zero
drwxrwx---. 2 named named 4096 Jan 18 2010 slaves
2)DNS主配置檔案為named.conf
[[email protected] ~]# ll /etc/named.*
-rw-r-----. 1 root named 1230 Jan 18 2010 /etc/named.caching-nameserver.conf
-rw-r-----. 1 root named 1138 Sep 25 23:51 /etc/named.rfc1912.zones
複制named.caching-nameserver.conf 為named.conf
[[email protected] ~]# cp -p /etc/named.caching-nameserver.conf /etc/named.conf
編輯name.conf
[[email protected] ~]# vim /etc/named.conf
3)在named.rfc1912.zones的配置檔案中,添加 正向解析檔案test.com.zone 、反向解析檔案192.168.5.zone
[[email protected] ~]# vim /etc/named.rfc1912.zones
可以看出配置檔案裡預設域名是 localdomian,對應的檔案是 localdomain.zone ,
預設反向解析是 0.0.127.in-addr.arpa 對應的檔案是named.local
是以定義:
添加正向解析域名test.com ,對應的檔案名為test.com.zone
反向解析5.168.192.in-addr.arpa ,對應的檔案名為192.168.5.zone
複制檔案名localdomain.zone 為 test.com.zone
複制檔案名named.local為192.168.5.zone
[[email protected] ~]# cd /var/named/
[[email protected] named]# cp -p localdomain.zone test.com.zone
[[email protected] named]# cp -p named.local 192.168.5.zone
注:-p 是權限一緻
4)修改正向解析域名test.com的配置檔案test.com.zone
[[email protected] named]# vim test.com.zone
5)修改反向解析5.168.192.in-addr.arpa的配置檔案192.168.5.zone
[[email protected] named]# vim 192.168.5.zone
6)啟動DNS服務
[[email protected] ~]# service named start
7)測試DNS是否能正常解析
現在DNS伺服器關閉selinux和iptables
[[email protected] ~]# setenforce 0
[[email protected] ~]# service iptables stop
例如找個同網段的機器,設定dns 為192.168.5.205
[[email protected] ~]# vim /etc/resolv.conf
ping一下www.test.com和web.test.com
nslookup檢視詳細資訊
補充:如果域名伺服器無法解析時,比如要通路百度等外網域名将請求交由202.106.0.20 8.8.8.8來解析
修改配置檔案/etc/named.conf
21 添加 forwarders {202.106.0.20;8.8.8.8;};
29 修改 allow-query-cache {any;};
2.DNS從伺服器IP192.168.5.204
在從伺服器安裝過程、主配置檔案named.conf是一樣的,隻需改動/etc/named.rfc1912.zones,的
的正向解析域名為從、配置檔案位置,标注主伺服器為192.168.5.205;反向解析為從、配置檔案位置,标注主伺服器為192.168.5.205
[[email protected] ~]# vim /etc/named.rfc1912.zones
啟動dns服務
[[email protected] ~]# service named start
[[email protected] ~]# ll /var/named/slaves/
total 8
-rw-r--r--. 1 named named 362 Sep 26 02:41 192.168.5.zone
-rw-r--r--. 1 named named 330 Sep 26 02:41 test.com.zone
發現這兩個配置檔案由主伺服器同步到從伺服器
轉載于:https://blog.51cto.com/nmszh/1558307