DNS服务器搭建指导文档资源-CSDN文库

共14个文件

txt：14个

Linux

DNS服务器

需积分: 15 87 浏览量 2013-10-24 21:53:51 上传评论 1 收藏 9KB ZIP 举报

资源推荐

资源详情

资源评论

收起资源包目录

DNS服务器.zip （14个子文件）

DNS服务器

与DNS有关的查询命令.txt 28B

与DNS解析有关的几个配置文件.txt 208B

公网上主机名与ip的对应方式.txt 109B

相关名词解释.txt 256B

cache-only与forwarding DNS服务器.txt 1KB

设定forwarder cache-only DNS Server.txt 836B

DNS服务监听本地953端口.txt 159B

正解zone的标志.txt 663B

测试环境.txt 239B

正解文件资源记录 (resource record, RR).txt 737B

完整主机名： Fully Qualified Domain Name (FQDN).txt 201B

DNS解析时文件的查找过程.txt 201B

DNS的解析过程.txt 1KB

DNS服务器架设.txt 9KB

测试环境： 192.168.1.188 master.example.com(NS,A) www.example.com(A) linux.example.com(CNAME) ftp.example.com(CNAME) www.example.com(MX) 192.168.1.2 slave.example.com(NS,A) clientlinux.example.com(A) 192.168.1.111 win7.example.com(A) 所需文件： 1. named.conf (主要配置文件) 2. named.example.com (主要的 example.com 的正解檔) 3. named.192.168.1 (主要的 192.168.1.0/24 的反解檔) 4. named.ca (由 bind 软件提供的 . 正解檔) 所需bind软件： bind-9.8.2-0.10.rc1.el6.x86_64 <==就是 bind 主程序所需软件 bind-chroot-9.8.2-0.10.rc1.el6.x86_64 <==将 bind 主程序关在家里面！ bind-libs-9.8.2-0.10.rc1.el6.x86_64 <==给 bind 与相关指令使用的函式库 bind-utils-9.8.2-0.10.rc1.el6.x86_64 <==这个是客户端搜寻主机名的相关指令所谓的 chroot 代表的是『 change to root(根目录) 』的意思 BIND 的配置文件为 /etc/named.conf，在这个档案里面可以规范 zone file 的完整檔名开始配置：第一步：主配置文件 /etc/named.conf 的设置 [root@localhost ~]# cat /etc/named.conf options { directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { any; }; recursion yes; allow-transfer { none; }; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.root"; }; zone "example.com" IN { type master; file "named.example.com"; }; zone "1.168.192.in-addr.arpa" IN { type master; file "named.192.168.1"; }; 第二步：最上层 . (root) 数据库档案的设定 named.ca在/var/named/内这里使用默认的named.root文件 [root@localhost named]# cat named.ca . 518400 IN NS A.ROOT-SERVERS.NET. A.ROOT-SERVERS.NET. 3600000 IN A 192.41.0.4 # 上面这两行是成对的！代表点由 A.ROOT-SERVERS.NET. 管理，并附上 IP 查询 . 518400 IN NS M.ROOT-SERVERS.NET. M.ROOT-SERVERS.NET. 3600000 IN A 202.12.27.33 M.ROOT-SERVERS.NET. 3600000 IN AAAA 2001:dc3::35 # 上面这三行是成对的，代表 M 开头的服务器有 A 与 AAAA 的记录第三步：正解文件档案的设定 [root@localhost named]# vim named.example.com $TTL 3h @ IN SOA master.example.com. felix@example.com. ( 2 ;Serial 3h ;Refresh after 3 hours 1h ;Retry after 1 hour 1w ;Expire after 1 week 1h ) ;Negative caching TTL of 1 hour @ IN NS master.example.com. master.example.com. IN A 192.168.1.188 @ IN MX 10 www.example.com. www.example.com. IN A 192.168.1.188 linux.example.com. IN CNAME www.example.com. ftp.example.com. IN CNAME www.example.com. slave.example.com. IN A 192.168.1.2 clientlinux.example.com. IN A 192.168.1.2 win7.example.com. IN A 192.168.1.111 第四步：反解数据库档案的设定 [root@localhost named]# vim named.192.168.1 $TTL 3h @ IN SOA master.example.com. felix@example.com ( 2 ;Serial 3h ;Refresh after 3 hours 1h ;Retry after 1 hour 1w ;Expire after 1 week 1h) ;Negative caching TTL of 1 hour @ IN NS master.example.com. 188.1.168.192.in-addr.arpa. IN PTR master.example.com. 188.1.168.192.in-addr.arpa. IN PTR www.example.com. 2.1.168.192.in-addr.arpa. IN PTR slave.example.com. 111.1.168.192.in-addr.arpa. IN PTR win7.example.com. 配置完成！启动服务： [root@localhost ~]# /etc/init.d/named start Starting named: /usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named) /usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named) /usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named) /usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/lib64/libisc.so.83) [ OK ] 注意要防火墙开放53号端口！查看named进程： [root@localhost ~]# ps -ef| grep named named 2705 1 3 00:55 ? 00:00:01 /usr/sbin/named -u named root 2717 2452 0 00:56 pts/0 00:00:00 grep named [root@localhost ~]# 查看53号端口的监听状况： [root@localhost ~]# netstat -an | grep 53 tcp 0 0 192.168.1.188:53 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN tcp 0 0 ::1:953 :::* LISTEN udp 0 0 0.0.0.0:5353 0.0.0.0:* udp 0 0 192.168.1.188:53 0.0.0.0:* udp 0 0 127.0.0.1:53 0.0.0.0:* unix 2 [ ACC ] STREAM LISTENING 13086 /tmp/orbit-gdm/linc-96e-0-10b05f6c53c58 unix 2 [ ACC ] STREAM LISTENING 11853 /var/run/abrt/abrt.socket unix 3 [ ] STREAM CONNECTED 13260 /tmp/orbit-gdm/linc-96e-0-10b05f6c53c58 [root@localhost ~]# 配置master/slave模式： 1. 修订 named.conf，主要修改 zone 参数内的 allow-transfer 项目 zone "." IN { type hint; file "named.root"; }; zone "example.com" IN { type master; file "named.example.com"; allow-transfer {192.168.1.2;};增加slave的ip }; zone "1.168.192.in-addr.arpa" IN { type master; file "named.192.168.1"; allow-transfer {192.168.1.2;};增加slave的ip }; 2. 在 zone file 里面新增 NS 标志，要注意需要有 A(正解) 及 PTR(反解) 的设定 [root@localhost named]# vim named.example.com $TTL 3h @ IN SOA master.example.com. felix@example.com. ( 2 ;Serial 3h ;Refresh after 3 hours 1h ;Retry after 1 hour 1w ;Expire after 1 week 1h ) ;Negative caching TTL of 1 hour @ IN NS master.example.com. master.example.com. IN A 192.168.1.188 @ IN NS slave.example.com. @ IN MX 10 www.example.com. www.example.com. IN A 192.168.1.188 linux.example.com. IN CNAME www.example.com. ftp.example.com. IN CNAME www.example.com. slave.example.com. IN A 192.168.1.2 clientlinux.example.com. IN A 192.168.1.2 win7.example.com. IN A 192.168.1.111 [root@localhost named]# vim named.192.168.1 $TTL 3h @ IN SOA master.example.com. felix@example.com ( 2 ;Serial 3h ;Refresh after 3 hours 1h ;Retry after 1 hour 1w ;Expire after 1 week 1h) ;Negative caching TTL of 1 hour @ IN NS master.example.com. @ IN NS slave.example.com.;增加slave的反解 188.1.168.192.in-addr.arpa. IN PTR master.example.com. 188.1.168.192.in-addr.arpa. IN PTR www.example.com. 2.1

评论收藏

内容反馈