测试环境:
192.168.1.188 master.example.com(NS,A)
www.example.com(A)
linux.example.com(CNAME)
ftp.example.com(CNAME)
www.example.com(MX)
192.168.1.2 slave.example.com(NS,A)
clientlinux.example.com(A)
192.168.1.111 win7.example.com(A)
所需文件:
1. named.conf (主要配置文件)
2. named.example.com (主要的 example.com 的正解檔)
3. named.192.168.1 (主要的 192.168.1.0/24 的反解檔)
4. named.ca (由 bind 软件提供的 . 正解檔)
所需bind软件:
bind-9.8.2-0.10.rc1.el6.x86_64 <==就是 bind 主程序所需软件
bind-chroot-9.8.2-0.10.rc1.el6.x86_64 <==将 bind 主程序关在家里面!
bind-libs-9.8.2-0.10.rc1.el6.x86_64 <==给 bind 与相关指令使用的函式库
bind-utils-9.8.2-0.10.rc1.el6.x86_64 <==这个是客户端搜寻主机名的相关指令
所谓的 chroot 代表的是『 change to root(根目录) 』的意思
BIND 的配置文件为 /etc/named.conf,在这个档案里面可以规范 zone file 的完整檔名
开始配置:
第一步:主配置文件 /etc/named.conf 的设置
[root@localhost ~]# cat /etc/named.conf
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; };
recursion yes;
allow-transfer { none; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.root";
};
zone "example.com" IN {
type master;
file "named.example.com";
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "named.192.168.1";
};
第二步:最上层 . (root) 数据库档案的设定
named.ca在/var/named/内
这里使用默认的named.root文件
[root@localhost named]# cat named.ca
. 518400 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 IN A 192.41.0.4
# 上面这两行是成对的!代表点由 A.ROOT-SERVERS.NET. 管理,并附上 IP 查询
. 518400 IN NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 IN A 202.12.27.33
M.ROOT-SERVERS.NET. 3600000 IN AAAA 2001:dc3::35
# 上面这三行是成对的,代表 M 开头的服务器有 A 与 AAAA 的记录
第三步:正解文件档案的设定
[root@localhost named]# vim named.example.com
$TTL 3h
@ IN SOA master.example.com. felix@example.com. (
2 ;Serial
3h ;Refresh after 3 hours
1h ;Retry after 1 hour
1w ;Expire after 1 week
1h ) ;Negative caching TTL of 1 hour
@ IN NS master.example.com.
master.example.com. IN A 192.168.1.188
@ IN MX 10 www.example.com.
www.example.com. IN A 192.168.1.188
linux.example.com. IN CNAME www.example.com.
ftp.example.com. IN CNAME www.example.com.
slave.example.com. IN A 192.168.1.2
clientlinux.example.com. IN A 192.168.1.2
win7.example.com. IN A 192.168.1.111
第四步:反解数据库档案的设定
[root@localhost named]# vim named.192.168.1
$TTL 3h
@ IN SOA master.example.com. felix@example.com (
2 ;Serial
3h ;Refresh after 3 hours
1h ;Retry after 1 hour
1w ;Expire after 1 week
1h) ;Negative caching TTL of 1 hour
@ IN NS master.example.com.
188.1.168.192.in-addr.arpa. IN PTR master.example.com.
188.1.168.192.in-addr.arpa. IN PTR www.example.com.
2.1.168.192.in-addr.arpa. IN PTR slave.example.com.
111.1.168.192.in-addr.arpa. IN PTR win7.example.com.
配置完成!启动服务:
[root@localhost ~]# /etc/init.d/named start
Starting named: /usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named)
/usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named)
/usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/sbin/named)
/usr/sbin/named: /usr/lib/libxml2.so.2: no version information available (required by /usr/lib64/libisc.so.83)
[ OK ]
注意要防火墙开放53号端口!
查看named进程:
[root@localhost ~]# ps -ef| grep named
named 2705 1 3 00:55 ? 00:00:01 /usr/sbin/named -u named
root 2717 2452 0 00:56 pts/0 00:00:00 grep named
[root@localhost ~]#
查看53号端口的监听状况:
[root@localhost ~]# netstat -an | grep 53
tcp 0 0 192.168.1.188:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN
tcp 0 0 ::1:953 :::* LISTEN
udp 0 0 0.0.0.0:5353 0.0.0.0:*
udp 0 0 192.168.1.188:53 0.0.0.0:*
udp 0 0 127.0.0.1:53 0.0.0.0:*
unix 2 [ ACC ] STREAM LISTENING 13086 /tmp/orbit-gdm/linc-96e-0-10b05f6c53c58
unix 2 [ ACC ] STREAM LISTENING 11853 /var/run/abrt/abrt.socket
unix 3 [ ] STREAM CONNECTED 13260 /tmp/orbit-gdm/linc-96e-0-10b05f6c53c58
[root@localhost ~]#
配置master/slave模式:
1. 修订 named.conf,主要修改 zone 参数内的 allow-transfer 项目
zone "." IN {
type hint;
file "named.root";
};
zone "example.com" IN {
type master;
file "named.example.com";
allow-transfer {192.168.1.2;};增加slave的ip
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "named.192.168.1";
allow-transfer {192.168.1.2;};增加slave的ip
};
2. 在 zone file 里面新增 NS 标志,要注意需要有 A(正解) 及 PTR(反解) 的设定
[root@localhost named]# vim named.example.com
$TTL 3h
@ IN SOA master.example.com. felix@example.com. (
2 ;Serial
3h ;Refresh after 3 hours
1h ;Retry after 1 hour
1w ;Expire after 1 week
1h ) ;Negative caching TTL of 1 hour
@ IN NS master.example.com.
master.example.com. IN A 192.168.1.188
@ IN NS slave.example.com.
@ IN MX 10 www.example.com.
www.example.com. IN A 192.168.1.188
linux.example.com. IN CNAME www.example.com.
ftp.example.com. IN CNAME www.example.com.
slave.example.com. IN A 192.168.1.2
clientlinux.example.com. IN A 192.168.1.2
win7.example.com. IN A 192.168.1.111
[root@localhost named]# vim named.192.168.1
$TTL 3h
@ IN SOA master.example.com. felix@example.com (
2 ;Serial
3h ;Refresh after 3 hours
1h ;Retry after 1 hour
1w ;Expire after 1 week
1h) ;Negative caching TTL of 1 hour
@ IN NS master.example.com.
@ IN NS slave.example.com.;增加slave的反解
188.1.168.192.in-addr.arpa. IN PTR master.example.com.
188.1.168.192.in-addr.arpa. IN PTR www.example.com.
2.1
DNS服务器搭建指导文档
需积分: 15 87 浏览量
2013-10-24
21:53:51
上传
评论 1
收藏 9KB ZIP 举报
Blue域
- 粉丝: 1
- 资源: 6
最新资源
- apk.tw_LineLite_v8a_v.2.17.1_sign.apk
- Elasticsearch实战:构建高效搜索系统的秘诀.zip
- HTML+CSS+JS网页设计:从入门到精通.zip
- 数据库课程设计:从理论到实践的全面指南.zip
- Python闭包:深入理解与应用场景解析.zip
- Win64OpenSSL-3-3-0.exe
- 课高分程设计-基于C++实现的民航飞行与地图简易管理系统-南京航空航天大学
- 航天器遥测数据故障检测系统python源码+文档说明+数据库(课程设计)
- 北京航空航天大学操作系统课设+ppt+实验报告
- 基于Vue+Echarts实现风力发电机中传感器的数据展示监控可视化系统+源代码+文档说明(高分课程设计)
资源上传下载、课程学习等过程中有任何疑问或建议,欢迎提出宝贵意见哦~我们会及时处理!
点击此处反馈