1、安装部署包
<code>yum -y install bind bind-utils bind-chroot/<code>
2、启动服务并设置开机自启动
<code>[root@localhost ~]# systemctl start named.service
[root@localhost ~]# systemctl enable named
Created symlink from /etc/systemd/system/multi-user.target.wants/named.service to /usr/lib/systemd/system/named.service./<code>
3、查看服务是否启动成功
<code>[root@localhost ~]# ps -ef|grep named
[root@localhost ~]# netstat -anntup|grep 53/<code>
4、修改主配置文件
<code>vim /etc/named.conf
...
将下行中的127.0.0.1修改为any,代表允许监听任何IP地址
------------------------------
修改前:
options {
listen-on port 53 { 127.0.0.1; }; #修改
listen-on-v6 port 53 { ::1; };#修改
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; };#修改
-----------------------------------------
修改后
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { any; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; };
以下无需修改,但是需要了解,特此说明:
//此文件内定义了全球13台根DNS服务器的IP地址
zone "." IN {
type hint;
file "named.ca";
};
//此文件保存着正向与反向解析的区域信息,非常的重要。
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
/<code>
5、检查语法看是否正确
<code>[root@localhost ~]# named-checkconf /<code>
6、修改区域配置文件
6.1配置文件尾部追加
<code>vi /etc/named.rfc1912.zones
尾部追加
zone "wangzy.com" IN {
type master;
file "wangzy.com.zone";
allow-update { none; };
};/<code>
zone "43.168.192.in-addr.arpa" IN { type master; file "named.192.168.43"; };
6.2 添加正向解析域
基于 name.localhost 模板,创建配置文件
<code>[root@localhost ymyg]# cp -p /var/named/named.localhost /var/named/wangzy.com.zone
[root@localhost ymyg]# vi /var/named/wangzy.com.zone
$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 127.0.0.1
AAAA ::1
/<code>
ns IN A 192.168.43.13 www IN A 192.168.43.13
说明:
http://www.wangzy.com 将会解析成192.168.43.13
<code>[root@localhost named]# chown :named /var/named/wangzy.com.zone/<code>
检查区域配置文件是否正确
<code>[root@localhost named]# named-checkzone "wangzy.com" /var/named/wangzy.com.zone/<code>
<code> zone tx.ymyg/IN: loaded serial 0
OK/<code>
6.3 添加反向解析
修改区域配置文件
<code>[root@localhost named]# cp named.localhost /var/named/named.192.168.43
[root@localhost named]# vi named.192.168.43
$TTL 1D
@ IN SOA @ rname.invalid. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 127.0.0.1
AAAA ::1
13 PTR www.wangzy.com/<code>
7、重启服务
<code>[root@localhost named]# systemctl restart named/<code>
使用nslookup测试
bind-utils 软件包本身提供了测试工具 nslookup
<code>yum -y install bind-utils/<code>
访问测试前添加域名
<code>[root@localhost named]# vi /etc/resolv.conf
nameserver 192.168.43.13/<code>
测试:
<code>[root@localhost named]# nslookup www.wangzy.com
Server: 192.168.43.13
Address: 192.168.43.13#53
Name: www.wangzy.com
Address: 192.168.43.13
[root@localhost named]# nslookup 192.168.43.13
Server: 192.168.43.13
Address: 192.168.43.13#53
13.43.168.192.in-addr.arpa name = www.wangzy.zone.43.168.192.in-addr.arpa./<code>
分享到:
閱讀更多 羊毛與狗 的文章
