使用BIND来搭建简单的主辅DNS服务器 推荐
2008-10-28 19:14
671 查看
文中有不对或者有不清楚的地方,请大家告诉我,谢谢! 使用BIND来搭建简单的主辅DNS服务器 一.安装BIND在系统中使用rpm –qa |grep bind查看有没有安装BIND包。如果没有安装,则将系统盘挂载,使用rpm –ivh *bind* 安装。
二.启动BINDservice named startchkconfig --level 35 named on 三.试验拓扑试验拓扑如下图,使用bob.com域:
四.配置Master DNS[b]1. 编辑DNS的主配置文件named.confvi /etc/named.confoptions { directory "/var/named";};zone "." IN { type hint; file "named.ca";};zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; };};zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; };};zone "bob.com" IN { type master; file "bob.com.dns"; allow-update { none; }; allow-transfer { 192.168.120.241; };};zone "120.168.192.in-addr.arpa" IN { type master; file "bob.com.rev"; allow-update { none; }; allow-transfer { 192.168.120.241; };};include "/etc/rndc.key";[/b] 2. 编辑区域数据文件[b]vi /var/named/chroot/var/named/bob.com.dns$TTL 86400$ORIGIN bob.com.@ IN SOA bob.com. root.bob.com. ( 2 ; serial 120 ; refresh 14400 ; retry 3600000 ; expiry 86400 ) ; minimum IN NS bob.com.master IN A 192.168.120.240slave IN A 192.168.120.241www IN A 192.168.120.250[/b] vi /var/named/chroot/var/named/bob.com.rev$TTL 86400@ IN SOA bob.com. root.bob.com. ( 2 ; Serial 120 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS bob.com. 240 IN PTR master.bob.com.241 IN PTR slave.bob.com.250 IN PTR www.bob.com. chown named.named /var/named/chroot/var/named/bob.com.* 3. 测试① 在Master DNS上使用host命令查看信息:[root@master /]# host www.bob.comwww.bob.com has address 192.168.120.250[root@master /]# host master.bob.commaster.bob.com has address 192.168.120.240[root@master /]# host slave.bob.comslave.bob.com has address 192.168.120.241 ② 在Master DNS上使用nslookup命令查看信息:[root@master /]# nslookup > www.bob.comServer: 192.168.120.240Address: 192.168.120.240#53Name: www.bob.comAddress: 192.168.120.250> master.bob.comServer: 192.168.120.240Address: 192.168.120.240#53Name: master.bob.comAddress: 192.168.120.240> 192.168.120.250Server: 192.168.120.240Address: 192.168.120.240#53250.120.168.192.in-addr.arpa name=www.bob.com. ③ 在用户pc上将DNS指向192.168.120.240,然后访问www.bob.com
4. 查看日志[root@master /]#service named start[root@master /]#cat /var/log/messages |grep namedSep 8 18:24:35 master named[15322]: starting BIND 9.2.4 -u named -t /var/named/chrootSep 8 18:24:35 master named[15322]: using 1 CPUSep 8 18:24:35 master named[15322]: loading configuration from '/etc/named.conf'Sep 8 18:24:35 master named[15322]: listening on IPv4 interface lo, 127.0.0.1#53Sep 8 18:24:35 master named[15322]: listening on IPv4 interface eth0, 192.168.120.240#53Sep 8 18:24:35 master named[15322]: command channel listening on 127.0.0.1#953Sep 8 18:24:35 master named[15322]: command channel listening on ::1#953Sep 8 18:24:35 master named[15322]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700Sep 8 18:24:35 master named[15322]: zone 120.168.192.in-addr.arpa/IN: loaded serial 2Sep 8 18:24:35 master named[15322]: zone bob.com/IN: loaded serial 2Sep 8 18:24:35 master named[15322]: zone localhost/IN: loaded serial 42Sep 8 18:24:35 master named[15322]: named startup succeededSep 8 18:24:35 master named[15322]: running 5. 注意事项A.修改区域数据文件在每次存盘时要注意增加Serial值,主要用来让辅助服务器同步主服务器的区域数据文件。B.使用绝对域名时千万别忘了后面要带"."。C.主配置文件named.conf的";"不能少。 五.配置Slave DNS1. 编辑DNS的主配置文件named.conf[b]vi /etc/named.confoptions { directory "/var/named";};zone "." IN { type hint; file "named.ca";};zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; };};zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; };};zone "bob.com" IN { type slave; file "slaves/bob.com.dns"; masters { 192.168.120.240; };};zone "120.168.192.in-addr.arpa" IN { type slave; file "slaves/bob.com.rev"; masters { 192.168.120.240; };};include "/etc/rndc.key"[/b] 2. 修改从主DNS复制过来的区域文件存放目录的权限[b]cd /var/named/chroot/var/named/slaveschmod 775 /var/named/chroot/var/named/slaveschown named.named /var/named/chroot/var/named/slaves[/b] 3. 测试① 在Slave DNS上查看区域数据文件有没有从主DNS复制过来[root@slave /]#ll /var/named/chroot/var/named/slaves-rw------- 1 named named 406 Jun 13 23:50 bob.com.dns-rw------- 1 named named 410 Jun 13 19:10 bob.com.rev ② 在Slave DNS上使用host命令查看信息[root@slave /]# host www.bob.comwww.bob.com has address 192.168.120.250[root@slave /]# host master.bob.commaster.bob.com has address 192.168.120.240[root@slave /]# host slave.bob.comslave.bob.com has address 192.168.120.241 ③ 在slave DNS上使用nslookup命令查看信息[root@slave /]# nslookup > www.bob.comServer: 192.168.120.241Address: 192.168.120.241#53Name: www.bob.comAddress: 192.168.120.250> master.bob.comServer: 192.168.120.241Address: 192.168.120.241#53Name: master.bob.comAddress: 192.168.120.240> 192.168.120.250Server: 192.168.120.241Address: 192.168.120.241#53250.120.168.192.in-addr.arpa name=www.bob.com. ④ 在用户pc上将DNS指向192.168.120.241,然后访问www.bob.com
4. 查看日志[root@slaves /]#services named start[root@slaves /]# cat /var/log/messages |grep namedJun 14 00:04:48 slave named[10083]: starting BIND 9.2.4 -u named -t /var/named/chrootJun 14 00:04:48 slave named[10083]: using 1 CPUJun 14 00:04:48 slave named[10083]: loading configuration from '/etc/named.conf'Jun 14 00:04:48 slave named[10083]: listening on IPv4 interface lo, 127.0.0.1#53Jun 14 00:04:48 slave named[10083]: listening on IPv4 interface eth0, 192.168.120.241#53Jun 14 00:04:48 slave named[10083]: command channel listening on 127.0.0.1#953Jun 14 00:04:48 slave named[10083]: command channel listening on ::1#953Jun 14 00:04:49 slave named[10083]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700Jun 14 00:04:49 slave named[10083]: zone localhost/IN: loaded serial 42Jun 14 00:04:49 slave named[10083]: named startup succeededJun 14 00:04:49 slave named[10083]: runningJun 14 00:04:49 slave named[10083]: zone 120.168.192.in-addr.arpa/IN: transferred serial 2Jun 14 00:04:49 slave named[10083]: transfer of '120.168.192.in-addr.arpa/IN' from 192.168.120.240#53: end of transferJun 14 00:04:49 slave named[10083]: zone bob.com/IN: transferred serial 2Jun 14 00:04:49 slave named[10083]: transfer of 'bob.com/IN' from 192.168.120.240#53: end of transfer 5. 注意事项A.从主DNS复制过来的区域文件存放目录的权限。B.主配置文件named.conf的";"不能少。
二.启动BINDservice named startchkconfig --level 35 named on 三.试验拓扑试验拓扑如下图,使用bob.com域:
四.配置Master DNS[b]1. 编辑DNS的主配置文件named.confvi /etc/named.confoptions { directory "/var/named";};zone "." IN { type hint; file "named.ca";};zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; };};zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; };};zone "bob.com" IN { type master; file "bob.com.dns"; allow-update { none; }; allow-transfer { 192.168.120.241; };};zone "120.168.192.in-addr.arpa" IN { type master; file "bob.com.rev"; allow-update { none; }; allow-transfer { 192.168.120.241; };};include "/etc/rndc.key";[/b] 2. 编辑区域数据文件[b]vi /var/named/chroot/var/named/bob.com.dns$TTL 86400$ORIGIN bob.com.@ IN SOA bob.com. root.bob.com. ( 2 ; serial 120 ; refresh 14400 ; retry 3600000 ; expiry 86400 ) ; minimum IN NS bob.com.master IN A 192.168.120.240slave IN A 192.168.120.241www IN A 192.168.120.250[/b] vi /var/named/chroot/var/named/bob.com.rev$TTL 86400@ IN SOA bob.com. root.bob.com. ( 2 ; Serial 120 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS bob.com. 240 IN PTR master.bob.com.241 IN PTR slave.bob.com.250 IN PTR www.bob.com. chown named.named /var/named/chroot/var/named/bob.com.* 3. 测试① 在Master DNS上使用host命令查看信息:[root@master /]# host www.bob.comwww.bob.com has address 192.168.120.250[root@master /]# host master.bob.commaster.bob.com has address 192.168.120.240[root@master /]# host slave.bob.comslave.bob.com has address 192.168.120.241 ② 在Master DNS上使用nslookup命令查看信息:[root@master /]# nslookup > www.bob.comServer: 192.168.120.240Address: 192.168.120.240#53Name: www.bob.comAddress: 192.168.120.250> master.bob.comServer: 192.168.120.240Address: 192.168.120.240#53Name: master.bob.comAddress: 192.168.120.240> 192.168.120.250Server: 192.168.120.240Address: 192.168.120.240#53250.120.168.192.in-addr.arpa name=www.bob.com. ③ 在用户pc上将DNS指向192.168.120.240,然后访问www.bob.com
4. 查看日志[root@master /]#service named start[root@master /]#cat /var/log/messages |grep namedSep 8 18:24:35 master named[15322]: starting BIND 9.2.4 -u named -t /var/named/chrootSep 8 18:24:35 master named[15322]: using 1 CPUSep 8 18:24:35 master named[15322]: loading configuration from '/etc/named.conf'Sep 8 18:24:35 master named[15322]: listening on IPv4 interface lo, 127.0.0.1#53Sep 8 18:24:35 master named[15322]: listening on IPv4 interface eth0, 192.168.120.240#53Sep 8 18:24:35 master named[15322]: command channel listening on 127.0.0.1#953Sep 8 18:24:35 master named[15322]: command channel listening on ::1#953Sep 8 18:24:35 master named[15322]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700Sep 8 18:24:35 master named[15322]: zone 120.168.192.in-addr.arpa/IN: loaded serial 2Sep 8 18:24:35 master named[15322]: zone bob.com/IN: loaded serial 2Sep 8 18:24:35 master named[15322]: zone localhost/IN: loaded serial 42Sep 8 18:24:35 master named[15322]: named startup succeededSep 8 18:24:35 master named[15322]: running 5. 注意事项A.修改区域数据文件在每次存盘时要注意增加Serial值,主要用来让辅助服务器同步主服务器的区域数据文件。B.使用绝对域名时千万别忘了后面要带"."。C.主配置文件named.conf的";"不能少。 五.配置Slave DNS1. 编辑DNS的主配置文件named.conf[b]vi /etc/named.confoptions { directory "/var/named";};zone "." IN { type hint; file "named.ca";};zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; };};zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; };};zone "bob.com" IN { type slave; file "slaves/bob.com.dns"; masters { 192.168.120.240; };};zone "120.168.192.in-addr.arpa" IN { type slave; file "slaves/bob.com.rev"; masters { 192.168.120.240; };};include "/etc/rndc.key"[/b] 2. 修改从主DNS复制过来的区域文件存放目录的权限[b]cd /var/named/chroot/var/named/slaveschmod 775 /var/named/chroot/var/named/slaveschown named.named /var/named/chroot/var/named/slaves[/b] 3. 测试① 在Slave DNS上查看区域数据文件有没有从主DNS复制过来[root@slave /]#ll /var/named/chroot/var/named/slaves-rw------- 1 named named 406 Jun 13 23:50 bob.com.dns-rw------- 1 named named 410 Jun 13 19:10 bob.com.rev ② 在Slave DNS上使用host命令查看信息[root@slave /]# host www.bob.comwww.bob.com has address 192.168.120.250[root@slave /]# host master.bob.commaster.bob.com has address 192.168.120.240[root@slave /]# host slave.bob.comslave.bob.com has address 192.168.120.241 ③ 在slave DNS上使用nslookup命令查看信息[root@slave /]# nslookup > www.bob.comServer: 192.168.120.241Address: 192.168.120.241#53Name: www.bob.comAddress: 192.168.120.250> master.bob.comServer: 192.168.120.241Address: 192.168.120.241#53Name: master.bob.comAddress: 192.168.120.240> 192.168.120.250Server: 192.168.120.241Address: 192.168.120.241#53250.120.168.192.in-addr.arpa name=www.bob.com. ④ 在用户pc上将DNS指向192.168.120.241,然后访问www.bob.com
4. 查看日志[root@slaves /]#services named start[root@slaves /]# cat /var/log/messages |grep namedJun 14 00:04:48 slave named[10083]: starting BIND 9.2.4 -u named -t /var/named/chrootJun 14 00:04:48 slave named[10083]: using 1 CPUJun 14 00:04:48 slave named[10083]: loading configuration from '/etc/named.conf'Jun 14 00:04:48 slave named[10083]: listening on IPv4 interface lo, 127.0.0.1#53Jun 14 00:04:48 slave named[10083]: listening on IPv4 interface eth0, 192.168.120.241#53Jun 14 00:04:48 slave named[10083]: command channel listening on 127.0.0.1#953Jun 14 00:04:48 slave named[10083]: command channel listening on ::1#953Jun 14 00:04:49 slave named[10083]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700Jun 14 00:04:49 slave named[10083]: zone localhost/IN: loaded serial 42Jun 14 00:04:49 slave named[10083]: named startup succeededJun 14 00:04:49 slave named[10083]: runningJun 14 00:04:49 slave named[10083]: zone 120.168.192.in-addr.arpa/IN: transferred serial 2Jun 14 00:04:49 slave named[10083]: transfer of '120.168.192.in-addr.arpa/IN' from 192.168.120.240#53: end of transferJun 14 00:04:49 slave named[10083]: zone bob.com/IN: transferred serial 2Jun 14 00:04:49 slave named[10083]: transfer of 'bob.com/IN' from 192.168.120.240#53: end of transfer 5. 注意事项A.从主DNS复制过来的区域文件存放目录的权限。B.主配置文件named.conf的";"不能少。
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- 使用BIND来搭建简单的主辅DNS服务器
- 使用Mahout搭建推荐系统之入门篇1-搭建REST风格简单推荐系统
- DNS浅析-Bind软件的使用及搭建一个简单的DNS缓存服务器
- 使用Mahout搭建推荐系统之入门篇1-搭建REST风格简单推荐系统
- 使用Mahout搭建推荐系统之入门篇1-搭建REST风格简单推荐系统
- 使用Mahout搭建推荐系统之入门篇1-搭建REST风格简单推荐系统
- 使用Mahout搭建推荐系统之入门篇1-搭建REST风格简单推荐系统
- LVM简单使用 推荐
- 使用node搭建一个简单服务
- Windows下Memcache环境的搭建及简单使用(包含 APACHE+PHP+MYSQL 环境配置 )
- Mybatis分页插件PageHelper的配置和简单使用方法(推荐)
- C++11新特性(六)bind,function,lambda简单使用
- Redis集群搭建与简单使用
- 使用WinWebMail 简单搭建一个局域网邮件服务 并 测试
- DNS详解及bind搭建各种DNS测试 推荐
- 企业级监控软件Zabbix搭建部署之使用mutt+msmtp配置Zabbix邮件报警 推荐
- 使用golang的标准库搭建网站--1.从最简单的页面开始
- 使用Django搭建一个简单的Python Web工程