前言:上次发了如何搭建ftp,这次当然要给大家打来如何搭建dns啦,哦,对了如果对两台如何搭建主从dns的不懂得博友们可以在评论告诉我一下,我会第一时间帮忙解决,最后希望能给大家提供帮助,感觉可以的话,就冲吧!
(官方大大,我这次注意不会图片很多了,希望官方大大,让我上推荐!)
脚本解析(两份脚本,你们可以进行对比取得自己所需的东西)
第一份脚本解析
CentOS7搭建DNS服务器 |
第一步:安装 |
[root@localhost ~]# yum install bind |
[root@localhost ~]# systemctl stop firewalld //关闭防火墙 |
[root@localhost ~]# setenforce 0 //关闭selinux |
第二步:编辑配置文件 |
-----1.编辑主配置文件------ |
[root@localhost ~]# vi /etc/named.conf |
options { |
listen-on port 53 { 192.168.80.10; }; //改成自己服务器的IP |
listen-on-v6 port 53 { ::1; }; |
directory "/var/named"; |
dump-file "/var/named/data/cache_dump.db"; |
statistics-file "/var/named/data/named_stats.txt"; |
memstatistics-file "/var/named/data/named_mem_stats.txt"; |
allow-query { any; }; //任何人都可以访问 |
保存退出 |
-----2.编辑区域配置文件------- |
[root@localhost ~]# vi /etc/named.rfc1912.zones |
……………… |
//正向区域配置 |
zone "hello.com" IN { |
type master; |
file "hello.com.zone"; |
allow-update { none; }; |
}; |
//反向区域配置 |
zone "80.168.192.in-addr.arpa" IN { |
type master; |
file "hello.com.local"; |
allow-update { none; }; |
}; |
//其它不用动 |
保存退出 |
--------3.编辑正向区域数据配置文件-------- |
[root@localhost ~]# cd /var/named |
[root@localhost named]# cp -p named.localhost hello.com.zone |
[root@localhost named]# vi hello.com.zone |
$TTL 1D |
@ IN SOA @ rname.invalid. ( |
0 ; serial |
1D ; refresh |
1H ; retry |
1W ; expire |
3H ) ; minimum |
NS @ |
A 192.168.80.10 //本服务器地址 |
www IN A 192.168.80.10 //www.hello.com对应的地址 |
ftp IN A 192.168.80.10 //ftp.hello.com对应的地址 |
mail IN CNAME www //mail.hello.com是www.hello.com的另一个名称 |
* IN A 192.168.80.2 //如果后缀是hello.com但是前面的内容记录中没有的时候向查询主机返回192.168.80.2这个地址 |
保存退出 |
---------4.编辑反向区域数据配置文件------------ |
[root@localhost named]# cp -p hello.com.zone hello.com.local |
[root@localhost named]# vi hello.com.local |
$TTL 1D |
@ IN SOA @ rname.invalid. ( |
0 ; serial |
1D ; refresh |
1H ; retry |
1W ; expire |
3H ) ; minimum |
NS @ |
A 192.168.80.10 |
10 IN PTR www.hello.com. |
保存退出 |
第三步:启动服务 |
[root@localhost named]# systemctl start named |
[root@localhost named]# netstat -anpu | grep name //查看服务运行状态,UDP 53端口在监听 |
第四步:测试,验证 |
[root@localhost named]# vi /etc/resolv.conf |
nameserver 192.168.80.10 |
保存退出 |
[root@localhost ~]# yum provides nslookup //查询安装nslookup命令 |
[root@localhost ~]# yum install bind-utils -y |
[root@localhost ~]# nslookup www.hello.com |
成功显示: |
Server: 192.168.80.10 |
Address: 192.168.80.10#53 |
Name: www.hello.com |
Address: 192.168.80.10 |
[root@localhost ~]# nslookup 192.168.80.10 |
成功显示: |
Server: 192.168.80.10 |
Address: 192.168.80.10#53 |
10.80.168.192.in-addr.arpa name = www.hello.com. |
搭建主、从域名服务器 |
第一步:搭建主从同步服务器(主服务器上配置) |
[root@localhost ~]# vi /etc/named.rfc1912.zones |
zone "hello.com" IN { |
type master; |
file "hello.com.zone"; |
allow-update { 192.168.80.20; }; //配置为从服务器IP地址 |
also-notify { 192.168.80.20; }; |
}; |
保存退出 |
第二步:配置从服务器(从服务器上配置) |
--------1.搭建DNS服务器--------(参照上面配置) |
//编辑主配置文件 |
[root@localhost ~]# vi /etc/named.conf |
options { |
listen-on port 53 { 192.168.80.20; }; //改成监听的服务器的IP(主服务器地址) |
listen-on-v6 port 53 { ::1; }; |
directory "/var/named"; |
dump-file "/var/named/data/cache_dump.db"; |
statistics-file "/var/named/data/named_stats.txt"; |
memstatistics-file "/var/named/data/named_mem_stats.txt"; |
allow-query { any; }; //任何人都可以访问 |
保存退出 |
--------2.搭建主从同步服务器(从服务器上配置)---------- |
[root@localhost ~]# vi /etc/named.rfc1912.zones |
//正向区域配置 |
zone "hello.com" IN { |
type slave; |
masters { 192.168.80.10; }; |
file "slaves/hello.com.zone"; |
allow-notify { 192.168.80.10; }; |
}; |
//反向区域配置 |
zone "80.168.192.in-addr.arpa" IN { |
type slave; |
masters { 192.168.80.10; }; |
file "slaves/hello.com.local"; |
allow-notify { 192.168.80.10; }; //also-notify:主动通知从域名服务器进行更新 |
}; |
保存退出 |
第三步:启动服务 |
[root@localhost named]# systemctl start named |
[root@localhost named]# netstat -anpu | grep name //查看服务运行状态,UDP 53端口在监听 |
成功显示: |
netstat -anpu | grep name |
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name |
udp 0 0 192.168.80.20:53 0.0.0.0:* 1102/named |
udp6 0 0 ::1:53 :::* 1102/named |
[root@localhost ~]# cd /var/named/slaves/ |
[root@localhost slaves]# ls |
成功显示: |
hello.com.local hello.com.zone |
[root@localhost slaves]# yum install bind-utils |
[root@localhost ~]# nslookup www.hello.com |
成功显示: |
Server: ::1 |
Address: ::1#53 |
Name: www.hello.com |
Address: 192.168.80.10 |
第四步:测试验证 |
-----主服务器修改配置----- |
[root@localhost ~]# vi /var/named/hello.com.zone |
$TTL 1D |
@ IN SOA @ rname.invalid. ( |
1 ; serial //修改序列号,往上修改 |
1D ; refresh |
1H ; retry |
1W ; expire |
3H ) ; minimum |
NS @ |
A 192.168.80.10 |
www IN A 192.168.80.10 |
ftp IN A 192.168.80.20 //修改ftp地址,用来验证 |
mail IN CNAME www |
* IN A 192.168.80.2 |
保存退出 |
[root@localhost ~]# systemctl restart named //重启dns服务 |
[root@localhost ~]# nslookup ftp.hello.com //解析ftp地址 |
成功显示 |
Server: 192.168.80.10 |
Address: 192.168.80.10#53 |
Name: ftp.hello.com |
Address: 192.168.80.20 |
--------从服务器验证--------- |
[root@localhost ~]# nslookup ftp.hello.com |
成功显示: |
Server: ::1 |
Address: ::1#53 |
Name: ftp.hello.com |
Address: 192.168.80.20 |
//测试成功 |
第二份脚本解析
yum install bind -y vi /etc/named.conf //主配置文件listen-on port 53 { 192.168.80.181; }; //改成自己服务器的IP……allow-query { any; }; //改成anyvi /etc/named.rfc1912.zones //区域配置文件zone "aa.com" IN { //定义一个正向区,名称是hello.com type master; //区域类型是主服务器 file "aa.com.zone"; //区域数据文件,正向区通常以zone结尾。};----------以下是反向区----------------zone "80.168.192.in-addr.arpa" IN { type master; file "hello.com.local";};-----------以下编辑区域配置文件------------cd /var/named/cp -p named.localhost aa.com.zonevi aa.com.zone$TTL 1D@ IN SOA @ rname.invalid. ( 0 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum NS @ A 192.168.80.181 //本服务器地址www IN A 192.168.80.181 //www.hello.com对应的地址ftp IN A 192.168.80.181 //ftp.hello.com对应的地址mail IN CNAME www //mail.hello.com是www.hello.com的另一个名称
- IN A 192.168.80.6 //如果后缀是hello.com但是前面的内容记录中没有的时候向查询主机返回192.168.80.6这个地址。
----------以下是反向区数据文件----------cp aa.com.zone hello.com.local -p$TTL 1D@ IN SOA hello.com. rname.invalid. ( 0 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum NS @ A 192.168.80.181181 IN PTR www.hello.com.systemctl start named netstat -anpu | grep name //UDP 53端口在监听------以下验证-----vi /etc/resolv.confnameserver 192.168.80.185 rpm -ivh /mnt/Packages/bind-utils-9.9.4-50.el7.x86_64.rpmnslookup www.hello.comnslookup 192.168.80.181------------以下是搭建主从同步----------vi /etc/named.rfc1912.zones //主服务器操作zone "hello.com" IN { type master; file "hello.com.zone"; allow-update { 192.168.80.182; }; also-notify { 192.168.80.182; };};-----以下是从服务器配置----vi /etc/named.conf……vi /etc/named.rfc1912.zoneszone "test.com" IN { type slave; masters { 192.168.80.18; }; file "slaves/test.com.zone"; allow-notify { 192.168.80.18; };};cd /var/named/slaves 工作目录
搭建dns域名解析
主服务器配置方法(两台dns服务器,这边我就不进行实验,跟一台dns差不多上面脚本也有讲到,不懂得可以评论区走一下)
zone"bdqn.com" IN {
type master;
file "bdqn.com.zone";
allow-update { 192.168.10.20; };
also-notify { 192.168.10.20; };
};
zone"10.168.192.in-addr.arpa" IN {
type master;
file "bdqn.com.local";
allow-update { 192.168.10.20; };
also-notify { 192.168.10.20; };
};
从服务器配置方法
zone"bdqn.com" IN {
type slave;
masters { 192.168.10.10; };
file "slaves/bdqn.com.zone";
allow-notify { 192.168.10.10; };
};
zone"10.168.192.in-addr.arpa" IN {
type slave;
masters { 192.168.10.10; };
file "slaves/bdqn.com.local";
allow-notify { 192.168.10.10; };
};
