0、環境
系統版本:CentOS Linux release 7.5.1804 (Core)
IP地址:192.168.0.2
1、安裝
yum -y install bind.x86_64
2、配置
(1)全局配置文件
vim /etc/named.conf
options {
listen-on port 53 { 127.0.0.1;192.168.0.2; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; };
recursion yes;
forwarders { 223.5.5.5; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
include "/etc/named.zones";(2)主配置文件
vim /etc/named.zones
zone "youjiabest.com" IN {
type slave;
masters { 192.168.0.1; };
file "slaves/youjiabest.com.zone";
};
zone "zzzz.com" IN {
type slave;
masters { 192.168.0.1; };
file "slaves/zzzz.com.zone";
};(3)區域配置文件:slave不需要配置,會從master服務器同步過來
3、啓動
service named start
4、測試
(1)slave啓動後,會從master服務器同步區域配置文件,在主配置文件裏面定義的/var/named/slaves下面:
注:allow-transfer參數:允許區域傳輸的輔助區域,未指定將允許傳輸到所有的主機,所有我們就不在master服務器的全局配置文件的option塊裏面添加了
(2)如果我們在master服務器上新增一條解析記錄,比如:
xxx IN A 192.168.0.4
會發現使用slave無法解析出來,dig @192.168.0.2 xxx.youjiabest.com失敗,
原因是我們需要在master服務器全局配置文件的option塊,增加兩個參數:
notify yes;
also-notify { 192.168.0.2; }
同時修改對應的區域配置文件youjiabest.com.zone裏面的序列號,
增加完成後,重啓master服務器的named,再使用slave進行解析,就會成功:
;; ANSWER SECTION: xxx.youjiabest.com. 86400 IN A 192.168.0.4 ;; AUTHORITY SECTION: youjiabest.com. 86400 IN NS dns.youjiabest.com. ;; ADDITIONAL SECTION: dns.youjiabest.com. 86400 IN A 192.168.0.