要求:
1.通过dns分离技术解析www.qq.com主机ip地址,实现通过内网主机解析为内网服务主机,外网主机解析到外网主机。
2.配置A和B主机实现免密登录
1.DNS
我们给服务器配置俩块网卡,一个是NAT,模拟内网,IP是 192.168.137.0/24 网段;一个是仅主机,模拟外网,ip是192.168.109.0/24 网段。
服务端配置:
首先安装DNS的bind服务包
[root@server ~]# mount /dev/sr0 /mnt
mount: /mnt: WARNING: device write-protected, mounted read-only.
[root@server ~]# yum install bind -y
然后编辑主配置文件
[root@server ~]# vim /etc/named.conf
options {
listen-on port 53 {
any; };
directory "/var/named";
allow-query {
any; };
};
acl "china" {
192.168.137.0/24; };
acl "vmware" {
192.168.109.0/24; };
view"china"{
match-clients{
"china";};
zone"qq.com"IN{
type master;
file"named.qq.com";
notify yes;
};
};
view "vmware" {
match-clients {
"vmware"; };
zone "qq.com" IN {
type master;
file "named.qq1.com";
};
};
先配置内网qq.com文件
[root@server ~]# vim /var/named/named.qq.com
$TTL 1D
@ IN SOA @ admin.admin.com. ( 2021071501 1D 2H 3D 1D )
IN NS dns.qq.com.
dns IN A 192.168.137.128
www IN