RHEL5——DNS服務器的搭建
DNS服務器的搭建
DNS(Domain Name System,域名系統),因特網上作爲域名和IP地址相互映射的一個分佈式數據庫,能夠使用戶更方便的訪問互聯網,而不用去記住能夠被機器直接讀取的IP數串。通過主機名,最終得到該主機名對應的IP地址的過程叫做域名解析(或主機名解析)。DNS協議運行在UDP協議之上,使用端口號53。
配置步驟:
1)配置服務器的IP地址
# cat /etc/sysconfig/network-scripts/ifcfg-eth0
DEVICE=eth0 BOOTPROTO=none HWADDR=00:0C:29:38:85:C0 ONBOOT=yes IPADDR=192.168.1.254 NETMASK=255.255.255.0
2)安裝DNS所需軟件包
# yum -y installbind bind-chroot caching-nameserver
3)修改DNS服務器主配置文件
# cpnamed.caching-nameserver.conf named.conf –p #拷貝模板 # cat/var/named/chroot/etc/named.conf
// // named.caching-nameserver.conf // // Provided by Red Hat caching-nameserver package to configure the // ISC BIND named(8) DNS server as a caching only nameserver // (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configurationfiles. // // DO NOT EDIT THIS FILE - use system-config-bind or an editor // to create named.conf - edits to this file will be lost on // caching-nameserver package upgrade. // options { listen-on port 53 { any;}; #修改爲監聽所有IP // listen-on-v6 port 53 {::1; }; #如用不到IPV6註釋此行即可 directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file"/var/named/data/named_stats.txt"; memstatistics-file"/var/named/data/named_mem_stats.txt"; // Those options should beused carefully because they disable port // randomization // query-source port 53; // query-source-v6 port53; allow-query { any; }; #設置允許任何人解析 allow-query-cache { any;}; }; logging { channel default_debug { file"data/named.run"; severity dynamic; }; }; view localhost_resolver { match-clients { any; }; #允許任何客戶端訪問 match-destinations { any;}; recursion yes; include"/etc/named.rfc1912.zones"; };
4)檢測配置文件語法
# named-checkconf named.conf
5) 修改區域文件
添加以下兩個區域: zone"ssxiaoguai.com" IN { #域名 type master; file "ssxiaoguai.zone"; #數據庫文件名 }; zone"1.168.192.in-addr.arpa" IN { #DNS服務器IP地址192.168.1.254 type master; file "ssxiaoguai.zero"; #數據庫文件名 };
6)檢測區域文件語法
# named-checkconfnamed.rfc1912.zones
7) 編寫數據庫文件
# pwd /var/named/chroot/var/named # cp -p named.local ssxiaoguai.zone # cat ssxiaoguai.zone #正向解析文件
$TTL 86400 @ IN SOA ssxiaoguai.com.root.ssxiaoguai.com. ( 2014070501 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400) ; Minimum IN NS dns1.ssxiaoguai.com. dns1 IN A 192.168.1.254 www IN A 192.168.1.253 bbs IN A 192.168.1.252 ftp IN A 192.168.1.251
# catssxiaoguai.zero
$TTL 86400 @ IN SOA ssxiaoguai.com.root.ssxiaoguai.com. ( 2014070501 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400) ; Minimum IN NS dns1.ssxiaoguai.com. 254 IN PTR dns1.ssxiaoguai.com. 253 IN PTR www.ssxiaoguai.com. 252 IN PTR bbs.ssxiaoguai.com. 251 IN PTR ftp.ssxiaoguai.com.
8)檢測數據庫文件語法
#named-checkzone ssxiaoguai.com ssxiaoguai.zone zone ssxiaoguai.com/IN:loaded serial 2014070501 OK #named-checkzone ssxiaoguai.com ssxiaoguai.zero zone ssxiaoguai.com/IN:loaded serial 2014070502 OK
9)啓動DNS服務
#service named start 啓動 named: [確定]
10)設置爲開機自啓
#chkconfig named on
11)測試DNS正向解析
12)測試DNS反向解析