Centos7搭建主从DNS服务器的教程
1、准备
例:两台192.168.11.10(主),192.168.11.11(从),域名www.test1.com
#主从DNS服务器均需要安装bind、bind-chroot、bind-utils yum-yinstallbindbind-utilsbind-chroot #如果防火墙开启,配置防火墙,添加服务(防火墙已禁用则忽略) firewall-cmd--permanent--add-service=dns firewall-cmd--reload
2、主DNS服务器(192.168.11.10)配置
#编辑配置文件
vim/etc/named.conf
#找到其中两行
listen-onport53{127.0.0.1;};
allow-query{localhost;};
#修改为
listen-onport53{any;};
allow-query{any;};
3、配置正向解析
#编辑文件/etc/named.rfc1912.zones,在末尾添加需要解析的域
zone"test1.com"IN{
typemaster;
file"data/test1.com.zone";
};
#创建test1.com.zone解析域
vim/var/named/data/test1.com.zone
$TTL3H
@INSOAtest1.com.root(
20180928;serial
1D;refresh
1H;retry
1W;expire
3H);minimum
INNS@
INA192.168.11.10
wwwINA192.168.11.10
ftpINA192.168.11.10
#编辑/etc/resolv.conf,添加
searchlocaldomain
nameserver192.168.11.10
4、重启DNS服务器
#重启named systemctlrestartnamed #查看状态 systemctlstatusnamed
5、检查解析是否成功
#ping命令验证 ping-c4www.test1.com #输出如下即解析成功 PINGwww.test1.com(192.168.11.10)56(84)bytesofdata. 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=1ttl=64time=0.033ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=2ttl=64time=0.058ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=3ttl=64time=0.066ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=4ttl=64time=0.057ms ---www.test1.compingstatistics--- 4packetstransmitted,4received,0%packetloss,time3000ms rttmin/avg/max/mdev=0.033/0.053/0.066/0.014ms #nslookup命令验证 nslookup >www.test1.com #输出如下即解析成功 Server:192.168.11.10 Address:192.168.11.10#53 Name:www.test1.com Address:192.168.11.10
6、配置反向解析
#编辑文件/etc/named.rfc1912.zones,在末尾添加
vimetc/named.rfc1912.zones
zone"11.168.192.in-addr.arpa"IN{
typemaster;
file"data/11.168.192.zone";
};
#创建11.168.192.zone解析域
vim/var/named/data/11.168.192.zone
$TTL3H
@INSOAweb3.com.root(
20180928;serial
1D;refresh
1H;retry
1W;expire
3H);minimum
@INNSwww.test1.com.
10INPTRwww.test1.com.
10INPTRftp.test1.com.
7、重启DNS服务器
#重启named systemctlrestartnamed #查看状态 systemctlstatusnamed
8、检查解析是否成功
#ping命令验证 ping-c4192.168.11.10 #输出如下即解析成功 PING192.168.11.10(192.168.11.10)56(84)bytesofdata. 64bytesfrom192.168.11.10:icmp_seq=1ttl=64time=0.061ms 64bytesfrom192.168.11.10:icmp_seq=2ttl=64time=0.058ms 64bytesfrom192.168.11.10:icmp_seq=3ttl=64time=0.081ms 64bytesfrom192.168.11.10:icmp_seq=4ttl=64time=0.060ms ---192.168.11.10pingstatistics--- 4packetstransmitted,4received,0%packetloss,time3000ms rttmin/avg/max/mdev=0.058/0.065/0.081/0.009ms #nslookup命令验证 nslookup192.168.11.10 #输出如下即解析成功 Server:192.168.11.10 Address:192.168.11.10#53 10.11.168.192.in-addr.arpaname=ftp.test1.com. 10.11.168.192.in-addr.arpaname=www.test1.com.
9、配置从DNS服务器(192.168.11.11)
#先修改主DNS服务器(192.168.11.10)的配置/etc/named.rfc1912.zones
vim/etc/named.rfc1912.zones
zone"test1.com"IN{
typemaster;
file"data/test1.com.zone";
allow-transfer{192.168.11.11;};
notifyyes;
also-notify{192.168.11.11;};
};
zone"11.168.192.in-addr.arpa"IN{
typemaster;
file"data/11.168.192.zone";
allow-transfer{192.168.11.11;};
notifyyes;
also-notify{192.168.11.11;};
};
10、配置从DNS服务器(192.168.11.11)正向解析
#编辑named.conf文件
vim/etc/named.conf
#找到其中两行
listen-onport53{127.0.0.1;};
allow-query{localhost;};
#修改为
listen-onport53{any;};
allow-query{any;};
#编辑文件/etc/named.rfc1912.zones,在末尾添加需要解析的域
vim/etc/named.rfc1912.zones
zone"test1.com"IN{
typeslave;
file"data/test1.com.zone";};
masters{192.168.11.10;};
#创建test1.com.zonek空文件
touch/var/named/data/test1.com.zone
#设置所有者
chownnamed:namedtest1.com.zone
#编辑/etc/resolv.conf,添加
vim/etc/resolv.conf
searchlocaldomain
nameserver192.168.11.11
11、重启DNS服务器
#重启named systemctlrestartnamed #查看状态 systemctlstatusnamed
12、检测解析是否成功
#ping命令验证 ping-c4www.test1.com #输出如下即解析成功 PINGwww.test1.com(192.168.11.10)56(84)bytesofdata. 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=1ttl=64time=0.033ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=2ttl=64time=0.058ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=3ttl=64time=0.066ms 64bytesfromftp.test1.com(192.168.11.10):icmp_seq=4ttl=64time=0.057ms ---www.test1.compingstatistics--- 4packetstransmitted,4received,0%packetloss,time3000ms rttmin/avg/max/mdev=0.033/0.053/0.066/0.014ms #nslookup命令验证 nslookup >www.test1.com #输出如下即解析成功 Server:192.168.11.11 Address:192.168.11.11#53 Name:www.test1.com Address:192.168.11.10
13、配置从DNS服务器(192.168.11.11)反向解析
#在文件/etc/named.rfc1912.zones中添加
vimetc/named.rfc1912.zones
zone"11.168.192.in-addr.arpa"IN{
typemaster;
file"data/11.168.192.zone";
masters{192.168.11.10;};
};
#创建空文件11.168.192.zone
touch/var/named/data/11.168.192.zone
#设置所有者
chownnamed:named11.168.192.zone
14、重启DNS服务器
#重启named systemctlrestartnamed #查看状态 systemctlstatusnamed
15、查看文件/var/named/data/test1.com.zone和/var/named/data/11.168.192.zone是否有二进制数据
cat/var/named/data/test1.com.zone cat/var/named/data/11.168.192.zone
16、检查解析是否成功
#ping命令验证 ping-c4192.168.11.11 #输出如下即解析成功 PING192.168.11.11(192.168.11.11)56(84)bytesofdata. 64bytesfrom192.168.11.11:icmp_seq=1ttl=64time=0.061ms 64bytesfrom192.168.11.11:icmp_seq=2ttl=64time=0.058ms 64bytesfrom192.168.11.11:icmp_seq=3ttl=64time=0.081ms 64bytesfrom192.168.11.11:icmp_seq=4ttl=64time=0.060ms ---192.168.11.11pingstatistics--- 4packetstransmitted,4received,0%packetloss,time3000ms rttmin/avg/max/mdev=0.058/0.065/0.081/0.009ms #nslookup命令验证 nslookup192.168.11.11 #输出如下即解析成功 Server:192.168.11.11 Address:192.168.11.11#53 10.11.168.192.in-addr.arpaname=ftp.test1.com. 10.11.168.192.in-addr.arpaname=www.test1.com.
总结
以上所述是小编给大家介绍的Centos7搭建主从DNS服务器的教程,希望对大家有所帮助,如果大家有任何疑问请给我留言,小编会及时回复大家的。在此也非常感谢大家对毛票票网站的支持!
如果你觉得本文对你有帮助,欢迎转载,烦请注明出处,谢谢!