CentOS 7安装使用bind9(域名解析服务)
生活随笔
收集整理的這篇文章主要介紹了
CentOS 7安装使用bind9(域名解析服务)
小編覺(jué)得挺不錯(cuò)的,現(xiàn)在分享給大家,幫大家做個(gè)參考.
1.1安裝bind9軟件
##1.安裝軟件 [root@jack7-118] yum install bind -y##2.配置bind主配置文件 [root@jack7-118]# cat /etc/named.conf options {listen-on port 53 { 10.2.7.118; }; # 配置服務(wù)器IPlisten-on-v6 port 53 { ::1; };directory "/var/named";dump-file "/var/named/data/cache_dump.db";statistics-file "/var/named/data/named_stats.txt";memstatistics-file "/var/named/data/named_mem_stats.txt";recursing-file "/var/named/data/named.recursing";secroots-file "/var/named/data/named.secroots";allow-query { any; };forwarders { 223.5.5.5; };recursion yes;dnssec-enable no; dnssec-validation no;/* Path to ISC DLV key */ bindkeys-file "/etc/named.root.key";managed-keys-directory "/var/named/dynamic";pid-file "/run/named/named.pid"; session-keyfile "/run/named/session.key";};logging {channel default_debug {file "data/named.run";severity dynamic;}; };zone "." IN {type hint;file "named.ca"; };include "/etc/named.rfc1912.zones"; include "/etc/named.root.key";#檢查配置文件是否有錯(cuò) [root@jack7-118]# named-checkconf1.2 配置bind9
#配置區(qū)域配置文件 [root@jack7-118]# cat /etc/named.rfc1912.zones ... ...zone "host.com" IN { # 配置內(nèi)部服務(wù)type master;file "host.com.zone";allow-update { 10.2.7.118; }; };zone "jack-yan.com" IN { # 配置外部服務(wù)type master;file "jack-yan.com.zone";allow-update { 10.2.7.118; }; };#配置區(qū)域數(shù)據(jù)文件 [root@jack7-118]# cat /var/named/host.com.zone # 內(nèi)部服務(wù)配置文件 $ORIGIN host.com. $TTL 600 ; 10 minutes @ IN SOA dns.host.com. dnsadmin.host.com. (2020010201 ; serial10800 ; refresh (3 hours)900 ; retry (15 minutes)604800 ; expire (1 week)86400 ; minimum (1 day))NS dns.host.com. $TTL 60 ; 1 minute dns A 10.2.7.118 jack7-118 A 10.2.7.118 jack7-11 A 10.2.7.11 jack7-12 A 10.2.7.12 jack7-13 A 10.2.7.13 jack7-51 A 10.2.7.51 jack7-52 A 10.2.7.52[root@jack7-118]# cat /var/named/jack-yan.com.zone # 外部服務(wù)配置文件 $ORIGIN jack-yan.com. $TTL 600 ; 10 minutes @ IN SOA dns.jack-yan.com. dnsadmin.jack-yan.com. (2020010201 ; serial10800 ; refresh (3 hours)900 ; retry (15 minutes)604800 ; expire (1 week)86400 ; minimum (1 day))NS dns.jack-yan.com. $TTL 60 ; 1 minute dns A 10.2.7.118 harbor A 10.2.7.118注意:serial字段在每次修改配置文件時(shí)數(shù)值+1
1.3,啟動(dòng)并驗(yàn)證DNS,能夠正常解析域名
#啟動(dòng)服務(wù) [root@jack7-118]# systemctl start named [root@jack7-118]# systemctl enable named [root@jack7-118]# netstat -lntup | grep 53 tcp 0 0 10.2.7.118:53 0.0.0.0:* LISTEN 1280/named tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 1280/named tcp6 0 0 ::1:53 :::* LISTEN 1280/named tcp6 0 0 ::1:953 :::* LISTEN 1280/named udp 0 0 10.2.7.118:53 0.0.0.0:* 1280/named udp6 0 0 ::1:53 :::* 1280/named #驗(yàn)證 [root@jack7-118]# dig -t A jack7-11.host.com @10.2.7.118 +short 10.2.7.11#在其他主機(jī)上設(shè)置dns為10.2.7.118即可解析~]# cat /etc/resolv.conf Generated by NetworkManager search host.com #短域名解析 nameserver 10.2.7.118總結(jié)
以上是生活随笔為你收集整理的CentOS 7安装使用bind9(域名解析服务)的全部?jī)?nèi)容,希望文章能夠幫你解決所遇到的問(wèn)題。
- 上一篇: 决策树进阶——剪枝处理
- 下一篇: tuxedo错误码6_tuxedo错误