DNS正反向解析
1 DNS安装配置
1.1 DNS安装
l 挂载分区:
mount /dev/cdrom /mnt/
l 安装DNS要用到的软件包
bind-9.3.6-20.P1.el5.x86_64.rpm
bind-chroot-9.3.6-20.P1.el5.x86_64.rpm
caching-nameserver-9.3.6-20.P1.el5.x86_64.rpm
l 使用rpm安装
[root@localhost Server]# rpm -ivh bind-9.3.6-20.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:bind ########################################### [100%]
[root@localhost Server]# rpm -ivh bind-chroot-9.3.6-20.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:bind-chroot ########################################### [100%]
[root@localhost Server]# rpm -ivh caching-nameserver-9.3.6-20.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:caching-nameserver ########################################### [100%]
1.2 DNS配置
进入DNS主目录
# cd /var/named/chroot/
[root@localhost chroot]# ll
total 12
drwxr-x--- 2 root named 4096 May 19 16:39 dev
drwxr-x--- 2 root named 4096 May 19 16:40 etc
drwxr-x--- 6 root named 4096 May 19 16:39 var
重命名DNS主配置文件
# cd /var/named/chroot/etc/
# cp named.caching-nameserver.conf named.conf
修改named.conf的权限
# chown root.named named.conf
修改named.conf配置文件
|
options { listen-on port 53 { 10.15.62.115; }; listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt";
// Those options should be used carefully because they disable port // randomization // query-source port 53; // query-source-v6 port 53;
allow-query { 10.15.62.115; }; allow-query-cache { 10.15.62.115; }; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; view localhost_resolver { // match-clients { localhost; }; // match-destinations { localhost; }; // recursion yes; include "/etc/named.rfc1912.zones"; }; |
1.2.1 正向解析DNS配置
修改named.rfc1912.zones文件配置
# vi /var/named/chroot/etc/named.rfc1912.zones
复制其中的模块到最后,修改如下:
|
zone "zyn.com" IN { type master; file "zyn.com.zone"; allow-update { none; }; }; |
创建模块文件zyn.com.zone
# cd /var/named/chroot/var/named/
# cp localhost.zone zyn.com.zone
# chown root.named zyn.com.zone
# vi zyn.com.zone
|
[root@localhost named]# vi zyn.com.zone
$TTL 86400 @ IN SOA @ root ( 42 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum
IN NS nsl.zyn.com. 设定DNS服务器名解析 nsl.zyn.com. IN A 10.15.62.115 设定DNS服务器的ip www.zyn.com. IN A 10.15.62.115 网站解析协议 IN AAAA ::1 ~ |
1.2.2 正向解析DNS结果
设置指定服务器用哪个DNS解析
# vi /etc/resolv.conf
[root@localhost named]# vi /etc/resolv.conf
; generated by /sbin/dhclient-script
nameserver 10.15.62.115
#nameserver 202.96.209.5
search localdomain
[root@localhost named]# nslookup www.zyn.com
Server: 10.15.62.115
Address: 10.15.62.115#53
Name: www.zyn.com
Address: 10.15.62.115
[root@localhost named]#
[root@localhost named]# nslookup nsl.zyn.com
Server: 10.15.62.115
Address: 10.15.62.115#53
Name: nsl.zyn.com
Address: 10.15.62.115
1.2.3 反向解析DNS配置
复制上文中提到的模块到文件末尾,做修改
# cd /var/named/chroot/etc/
# vi named.rfc1912.zones
添加以下一段内容:
|
zone "62.15.10.in-addr.arpa" IN { type master; file "zyn.com.zone"; allow-update { none; }; }; |
# cd /var/named/chroot/var/named/
# vi zyn.com.zone
|
$TTL 86400 @ IN SOA @ root ( 42 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum
IN NS nsl.zyn.com. nsl.zyn.com. IN A 10.15.62.115 www.zyn.com. IN A 10.15.62.115 IN AAAA ::1 115 IN PTR www.zyn.com 115 IN PTR nsl.zyn.com |
反向解析DNS结果
[root@localhost named]# /etc/init.d/named restart
Stopping named: [ OK ]
Starting named: [ OK ]
[root@localhost named]# nslookup 10.15.62.115
Server: 10.15.62.115
Address: 10.15.62.115#53
115.62.15.10.in-addr.arpa name = nsl.zyn.com.62.15.10.in-addr.arpa.
115.62.15.10.in-addr.arpa name = www.zyn.com.62.15.10.in-addr.arpa.
扫一扫
799
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
