主从 DNS
搭建主DNS服务器
一块网卡为vmnet1
1.修改网络配置
1)vim /etc/sysconfig/network-scripts/ifcfg-eth0
DEVICE=eth0
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=static
IPADDR=192.168.1.254
NETMASK=255.255.255.0
DNS1=192.168.1.254
DNS2=192.168.1.222
2)/etc/init.d/network restart
3)vim /etc/sysconfig/network
2.安装bind软件包
1)yum -y install bind bind-utils
3.编辑主配置文件
1)vim /etc/named.conf
options {
listen-on port 53 { 192.168.1.254; }; //设置监听IP地址;需修改
directory "/var/named"; //区域配置文件存放目录
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";\
allow-query {localhost;}; //删除该行
recursion yes;
forwarders {114.114.114.114;8.8.8.8;}; //转发器设置,将所有DNS查询请求转发
dnssec-enable no; //bind安全检测机制;需修改
dnssec-validation no; //bind安全检测机制;需修改
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "hehe.com" IN { //指定正向解析域为xueluo.org
type master; //指定DNS类型,为主DNS服务器
file "hehe.com"; //正向解析文件
allow-transfer {192.168.1.222;}; //允许同步服务器IP
};
zone "1.168.192.in-addr.arpa" IN { //指定反向解析区域
type master; //指定DNS类型,为主DNS服务器
file "192.168.1.arpa"; //反向解析文件
allow-transfer {192.168.1.222;}; //允许同步服务器IP
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
2)cp /var/named/named.empty /var/named/hehe.com.zone //拷贝DNS模版文件并重命名
3)cp /var/named/named.empty /var/named/192.168.1.arpa
4)vim /var/named/hehe.com.zone
$TTL 86400(TTL值,生命周期)
@ IN SOA hehe.com(需要解析的域名) admin.xueluo.org.(管理员邮箱) (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns1.hehe.com. //NS记录(起始授权记录);输入主DNS和从DNS服务器的主机名
IN NS ns2.hehe.com.
ns1 IN A 192.168.1.254 //DNS服务器对应的IP地址
ns2 IN A 192.168.1.222
5)vim /var/named/192.168.1.arpa
$TTL 86400(TTL值,生命周期)
@ IN SOA xueluo.org.(需要解析的域名) admin.xueluo.org.(管理员邮箱) (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns1.hehe.com. //NS记录(起始授权记录);输入主DNS和从DNS服务器的主机名
IN NS ns2.hehe.com.
6)/etc/init.d/named start && chkconfig --level 35 named on
chown named:named /var/named/192.168.1.arpa /var/named/hehe.com
从DNS搭建
一块网卡为vmnet1
1.修改网络配置
1)vim /etc/sysconfig/network-scripts/ifcfg-eth0
DEVICE=eth0
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=static
IPADDR=192.168.1.222
NETMASK=255.255.255.0
GATEWAY=192.168.1.1
DNS1=192.168.1.222
DNS2=192.168.1.254
2)/etc/init.d/network restart
3)vim /etc/sysconfig/network
2.安装bind软件包
1)yum -y install bind bind-utils bind-chroot
3.编辑主配置文件
1)scp [email protected]:/etc/named.conf /etc/
2)vim /etc/named.conf
options {
listen-on port 53 { 192.168.1.222; }; //设置监听IP地址;需修改
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";\
recursion yes;
forwarders {114.114.114.114;8.8.8.8;};
dnssec-enable no;
dnssec-validation no;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "xueluo.org" IN {
type slave; //指定DNS类型,为从DNS服务器
file "slaves/xueluo.org.zone"; //指定同步后正向解析文件存储路径
masters {192.168.1.254;}; //指定主DNS对应IP
};
zone "1.168.192.in-addr.arpa" IN {
type slave; //指定DNS类型,为从DNS服务器
file "slaves/192.168.1.arpa"; //指定同步后反向解析文件存储路径
masters {192.168.1.254;}; //指定主DNS对应IP
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
3)/etc/init.d/named start && chkconfig --level 35 named on //启动named服务并设置为开机自启
4)ls -l /var/named/slaves/ //验证是否有拷贝的文件
测试
修改配置文件
测试
Linux客户端测试