配置DNS轉發器
原理:
本地dns不能解析了,請求外部的去解析,而第一臺dns不能解析(便成了轉發器),再請求其他dns解析,其他dns把結果發個轉發器,轉發器在發給本地dns配置需要:
一臺能夠正常解析的dns服務器,ip地址爲10.18.44.51
一臺dns服務器當轉發器,ip地址爲10.18.44.120開始配置:
正常能夠解析的dns服務器10.18.44.51
#vim /etc/named.conf
options {
directory "/var/named";
};
zone "lala.com." IN {
type master;
file "lala.com.zone";
};#vim /var/named/lala.com.zone
$TTL 86400
@ IN SOA vm2.lala.com. root.lala.com (
100000000
1M
15M
1W
1D)
IN NS vm2.lala.com.
vm2 IN A 10.18.44.51
#systemctl restart named轉發器10.18.44.120
#vim /etc/named.conf
option {
directory "/var/named";
recursion yes;
forward first;
forwarders { 10.18.44.51; };
};
zone "houzi.com." IN {
type master;
file "houzi.com.zone";
notify yes;
}#vim /var/named/houzi.com.zone
$TTL 86400
@ IN SOA vm1.houzi.com. root.houzi.com (
100000000
1M
15M
1W
1D)
IN NS vm1.houzi.com.
vm1 IN A 10.18.44.120測試轉發器:10.18.44.171
#vim /etc/resolv.conf
nameserver 10.18.44.120
#ping www.houzinan.com
PING www.houzinan.com (10.18.44.210) 56(84) bytes of data.
64 bytes from 10.18.44.210 (10.18.44.210): icmp_seq=1 ttl=64 time=0.693 ms
64 bytes from 10.18.44.210 (10.18.44.210): icmp_seq=2 ttl=64 time=0.645 ms
#ping vm1.houzi.com
PING vm1.houzi.com (10.18.44.120) 56(84) bytes of data.
64 bytes from 10.18.44.120 (10.18.44.120): icmp_seq=1 ttl=64 time=0.208 ms
64 bytes from 10.18.44.120 (10.18.44.120): icmp_seq=2 ttl=64 time=0.372 ms