一、环境安装要求
1、设置 yum 源 永久挂载 2、安装三台虚拟机;一台主域名服务器;一台从域名服务器;一台测试机 3、虚拟和真机防火墙关闭、核心防护关闭 (三台都需要关) 4、BIND包安装:bind ;bind-utils ;bind-libs ;bind-chroot
( 安装命令:yum -y install bind bind-utils bind-libs bind-chroot )
环境安装步骤
1、yum源永久挂载配置:
虚拟机光盘勾上已连接 ;设置 mount /dev/cdrom /mnt 挂载点 ;查看挂载点:df -Th切换至:cd /etc/yum.repos.d/ ; 创建文件:mkdir backup ; 移动文件:mv C* backup/复制文件内容至目标文件: cp backup/CentOS-Base.repo local.repo编制目标文件:vi local.repo命令模式下:36dd:删除其他内容,并找到以下内容,更改如下 [centos]name=CentOS #####名称baseurl=file:///mnt #####在/mnt文件下查找gpgcheck=0 #####0:不检验enabled=1#####1:开启服务#gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7
输入:yum clean all #####清空yum缓存 输入:yum makecache ###### 开启本地yum缓存
编辑永久挂载:vi /etc/fstab添加:/dev/cdrom /mnt iso9660 defaults 0 0:wq
2、3、4、安装虚拟机 ; 关闭防火墙及核心防护 ; 安装yum包:
2、虚拟机安装:配置好IP地址;并重启网卡;ifconfig 查看下
3、关闭防火墙及核心防护命令:
systemctl status firewalld######查看防火墙状态systemctl stop firewalld######关闭防火墙systemctl disable firewalld######开机自动关闭防火墙
更改核心防护: vi /etc/selinux/confing 更改此行为disable : SELINUX=disabled
4、yum包安装 :yum -y install bind bind-utils bind-libs bind-chroot
二、开始配置主从域名服务器
全局配置:
vi /etc/named.confoptions {listen-on port 53 { 20.0.0.11; };listen-on-v6 port 53 { ::1; };forwarders { 8.8.8.8; 114.114.114.114; };directory "/var/named";dump-file "/var/named/data/cache_dump.db";statistics-file "/var/named/data/named_stats.txt";memstatistics-file "/var/named/data/named_mem_stats.txt";allow-query{ any; };
特定DNS区域配置:
vi /etc/named.rfc1912.zones添加正向解析:zone "" IN {type master;file ".zone";allow-transfer { 20.0.0.12; };also-notify { 20.0.0.12; };};添加反向解析:zone "0.0.20.in-addr.arpa" IN {type master;file "20.0.0.arpa";allow-transfer { 20.0.0.12; };also-notify { 20.0.0.12; };};
编辑域名:vi /var/named/.zone
添加: $TTL 1D@ IN SOA . . (0 ;serial1D;refresh1H;retry1W;expire3H ) ;minimumNS@A192.168.11.119www IN A192.168.11.119ftp IN A192.168.11.118mail IN CNAME www
更改属主:chown named:named /var/named/e.zone
编辑ip:vi /var/named/20.0.0.arpa
添加:$TTL 1D@ IN SOA . .zone. (1 ;serial1D;refresh1H;retry1W;expire3H ) ;minimumNS.A20.0.0.100119 IN PTR.120 IN PTR.121 IN PTR.
更改属主:chown named:named /var/named/20.0.0.arpa
进行语法检查:named-checkconf -z /etc/named.conf
重启named: systemctl restart named
三、开始从域名服务器配置
全局配置:
vi /etc/named.confoptions {listen-on port 53 { 20.0.0.12; };listen-on-v6 port 53 { ::1; };directory "/var/named";dump-file "/var/named/data/cache_dump.db";statistics-file "/var/named/data/named_stats.txt";memstatistics-file "/var/named/data/named_mem_stats.txt";allow-query{ any; };
特定DNS区域配置:
vi /etc/named.rfc1912.zones添加正向解析:zone "" IN {type slave;masters { 20.0.0.11; };allow-notify { 20.0.0.11; };file "slaves/.zone";};添加反向解析:zone "0.0.20.in-addr.arpa" IN {type slave;masters { 20.0.0.11; };allow-notify { 20.0.0.11; };file "slaves/20.0.0.arpa";};
查看文件中无数据: cd /var/named/slaves/ ; ll命令
开启named:systemctl start named
再次查看文件中有数据: ll命令
四、测试机进行测试
添加映射关系
vi /etc/resolv.conf添加映射关系:#nameserver 20.0.0.11 ;谁测,另外一条添加#号nameserver 20.0.0.12
测试:正向解析
[root@localhost ~]# nslookup Server: 20.0.0.12Address: 20.0.0.12#53Name: Address: 192.168.11.119[root@localhost ~]# nslookup Server: 20.0.0.12Address: 20.0.0.12#53Name: Address: 192.168.11.118
测试:反向解析
[root@localhost ~]# nslookup 20.0.0.119Server: 20.0.0.12Address: 20.0.0.12#53119.0.0.20.in-addr.arpa name = .[root@localhost ~]# nslookup 20.0.0.120Server: 20.0.0.12Address: 20.0.0.12#53120.0.0.20.in-addr.arpa name = .
——————————————————————————————————————————————————————————————————————————————————————————
到此结束,感谢观看,希望对看官有所帮助