本文介绍如何在CentOS系统上配置DNS服务器,包括安装BIND软件包、设置主机名、配置解析文件等步骤,并通过dig命令验证配置正确性。
1、配置DNS服务器(不是caching only/forwarding服务器)
1)查看是否安装bind
(
yum install bind
yum install bind-chroot
yum install bind-libs
yum install bind-utils
)
[root@E1 ~]# rpm -qa | grep '^bind'
bind-libs-9.8.2-0.17.rc1.el6_4.6.i686
bind-utils-9.8.2-0.17.rc1.el6_4.6.i686
yum install -y bind bind-chroot bind-utils
[root@E1 ~]# rpm -qa | grep '^bind'
bind-chroot-9.8.2-0.37.rc1.el6_7.4.i686 《-将bing主目录关在家里面
bind-9.8.2-0.37.rc1.el6_7.4.i686 《-bing主程序所需要的软件
bind-libs-9.8.2-0.37.rc1.el6_7.4.i686 《-给bind与相关命令使用的函数库
bind-utils-9.8.2-0.37.rc1.el6_7.4.i686 《-客户端查找主机名的相关命令
chroot :change to root(根目录),就是将BIND程序锁在根目录里面。centos6.X将BIND锁在/var/named/chroot目录中。
2)设置主机名称
vi /etc/sysconfig/network
HOSTNAME=ns.centos.E1
[root@ns ~]# hostname
ns.centos.E1
3)配置文件
/etc/named.conf:主要配置文件
/etc/sysconfig/named:是否启动chroot及额外的参数,由这个文件控制;
/var/named/:数据库文件默认放在这个目录;
vi /etc/named.conf (主要配置文件)
配置文件,在里面添加如下正解域文件,反解域文件(这里设置域就是centos.E1)
zone "centos.E1" IN {
type master;
file "named.centos.E1";
};
zone "44.18.172.in-addr.arpa" IN {
type master;
file "named.172.18.44";
};
全部文件内容如下:
[root@ns named]# vi /etc/named.conf
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { any; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; };
recursion yes;
allow-transfer { none; };
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
zone "centos.E1" IN {
type master;
file "named.centos.E1";
};
zone "44.18.172.in-addr.arpa" IN {
type master;
file "named.172.18.44";
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
4)编辑正解、反解数据库文件
/var/named
vi named.centos.E1 (域名的正解文件)
$TTL 600
@ IN SOA ns.centos.E1. root.centos.E1(
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ IN NS ns.cetnos.E1.
;@ IN MX 10 www.centos.E1.
ns.centos.E1. IN A 172.18.44.53
www.centos.E1. IN A 172.18.44.53
mail.centos.E1. IN CNAME www.centos.E1.
ftp.centos.E1. IN CNAME www.centos.E1.
vi named.172.18.44(对应ip网络的反解文件)
$TTL 600
@ IN SOA ns.centos.E1. root.centos.E1. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ IN NS ns.centos.E1.
53 IN PTR ns.centos.E1.
53 IN PTR www.centos.E1.
53 IN PTR mail.centos.E1.
53 IN PTR ftp.centos.E1.
5)设置目录所属组为named
[root@ns named]# chgrp named /var/named/chroot/var/named/*
[root@ns named]# ls -l named.centos.E1
-rw-r----- 1 root named 419 12月 1 10:49 named.centos.E1
6)
重启named服务:
service names restart
开机启动DNS
chkconfig named on
7)使用dig验证,返回NOERROR才是没有错误:
dig mail.centos.E1
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.4 <<>> mail.centos.E1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8980
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;mail.centos.E1. IN A
;; ANSWER SECTION:
mail.centos.E1. 600 IN CNAME www.centos.E1.
www.centos.E1. 600 IN A 172.18.44.53
dig -x 172.18.44.53
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.4 <<>> -x 172.18.44.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38976
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;53.44.18.172.in-addr.arpa. IN PTR
;; ANSWER SECTION:
53.44.18.172.in-addr.arpa. 600 IN PTR ftp.centos.E1.
53.44.18.172.in-addr.arpa. 600 IN PTR ns.centos.E1.
53.44.18.172.in-addr.arpa. 600 IN PTR www.centos.E1.
53.44.18.172.in-addr.arpa. 600 IN PTR mail.centos.E1.
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
