本文主要介绍了在Linux环境中如何进行动态域名解析的配置,通过编辑`/etc/named.conf`和`/var/named/Sunshine.com.zone`文件来设置DNS。
注:本实验初始环境为纯净
8. 动态域名解析
##服务器设置##
1)配置DNS
> vim /etc/named.conf
listen-on port 53 { any; };
allow-query { any; };
zone "Sunshine.com" IN {
type master;
file "Sunshine.com.zone";
allow-update { key Sunshine; };
};
> vim /var/named/Sunshine.com.zone
1 $TTL 1D2 @ IN SOA dns.Sunshine.com. root.Sunshine.com. ( 3 0 ; serial 4 1D ; refresh 5 1H ; retry 6 1W ; expire 7 3H ) ; minimum 8 NS dns.Sunshine.com. 9 dns A 172.25.254.18
2)生成密钥,DNS加密文件
> cp /etc/rndc.key /etc/Sunshine.key -p
> dnssec-keygen -a HMAC-MD5 -b 128 -n HOST Sunshine
> cat Ksunshine.+157+07896.key
Sunshine. IN KEY 512 3 157 GTs=
> vim /etc/Sunshine.key
> vim /etc/named.conf1 key "Sunshine" {
2 algorithm hmac-md5; 3 secret "GTs="; 4 };
42 include "/etc/Sunshine.key";
3)修改权限
> chmod 770 /var/named/
4)保证selinux打开named_write_master_zone 服务
> getsebool -a | grep named
named_tcp_bind_http_port --> off
named_write_master_zones --> off
> setsebool -P named_write_master_zones on
5)配置dhcp服务
> yum install dhcp -y
> cp /usr/share/doc/dhcp-4.2.5/dhcpd.conf.example /etc/dhcp/dhcpd.conf
> vim /etc/dhcp/dhcpd.conf
7 option domain-name "Sunshine.com";
8 option domain-name-servers 172.25.254.18; 32 subnet 172.25.254.0 netmask 255.255.255.0 { 33 range 172.25.254.150 172.25.254.160; 34 option routers 172.25.254.18;
注: 删除27, 28及35行之后的内容
6)在dhcp中添加密钥文件
> vim /etc/dhcp/dhcpd.conf
14 ddns-update-style interim; ##取消注释 35 key Sunshine { 36 algorithm hmac-md5; 37 secret "GTs="; 38 }; 39 zone Sunshine.com. IN { 40 primary 127.0.0.1; 41 key Sunshine; 42 };##设置客户端##
1)设置dns为172.25.254.18
> vim /etc/resolv.conf
nameserver 172.25.254.18
2)设置主机名为 www.Sunshine.com
> hostnamectl set-hostname www.Sunshine.com
3)设置IP为自动获取
> vim /etc/sysconfig/network-script/ifcfg-eth0
DEVICE=eth0
BOOTPROTO=dhcp
ONBOOT=yes
> systemctl restart network
测试:
在服务端
dig www.Sunshine.com
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
