Blog24@linux DNS配置（2）_动态域名解析

注：本实验初始环境为纯净

8. 动态域名解析

##服务器设置##

1）配置DNS

> vim /etc/named.conf

 listen-on port 53 { any; }; allow-query     { any; };

> vim /etc/named.rfc1912.zones.inter

 zone "Sunshine.com" IN {         type master;         file "Sunshine.com.zone";         allow-update { key Sunshine; };                                      };

> vim /var/named/Sunshine.com.zone

1 $TTL 1D
2 @       IN SOA   dns.Sunshine.com. root.Sunshine.com. (  3                                         0       ; serial  4                                         1D      ; refresh  5                                         1H      ; retry  6                                         1W      ; expire  7                                         3H )    ; minimum  8         NS      dns.Sunshine.com.  9 dns     A       172.25.254.18

2）生成密钥，DNS加密文件
> cp /etc/rndc.key /etc/Sunshine.key -p
> dnssec-keygen -a HMAC-MD5 -b 128 -n HOST Sunshine
> cat Ksunshine.+157+07896.key
Sunshine. IN KEY 512 3 157 GTs=
> vim /etc/Sunshine.key
  1 key "Sunshine" {
  2         algorithm hmac-md5;  3         secret "GTs=";                                                        4 };
> vim /etc/named.conf
  42 include "/etc/Sunshine.key";       

3）修改权限
> chmod 770 /var/named/

4)保证selinux打开named_write_master_zone 服务
> getsebool -a | grep named
named_tcp_bind_http_port --> off
named_write_master_zones --> off
> setsebool -P named_write_master_zones on

5)配置dhcp服务
> yum install dhcp -y
> cp /usr/share/doc/dhcp-4.2.5/dhcpd.conf.example /etc/dhcp/dhcpd.conf
> vim /etc/dhcp/dhcpd.conf
  7 option domain-name "Sunshine.com";
  8 option domain-name-servers 172.25.254.18;                                    32 subnet 172.25.254.0 netmask 255.255.255.0 { 33   range 172.25.254.150 172.25.254.160; 34   option routers 172.25.254.18;
              
注： 删除27, 28及35行之后的内容

6）在dhcp中添加密钥文件
> vim /etc/dhcp/dhcpd.conf
 14 ddns-update-style interim;  ##取消注释                                                   35 key Sunshine { 36          algorithm hmac-md5; 37          secret "GTs="; 38 }; 39 zone Sunshine.com. IN { 40          primary 127.0.0.1; 41          key Sunshine;                                                      42 }; 

##设置客户端##

1)设置dns为172.25.254.18
> vim /etc/resolv.conf
 nameserver 172.25.254.18       

2)设置主机名为 www.Sunshine.com
> hostnamectl set-hostname www.Sunshine.com

3)设置IP为自动获取
> vim /etc/sysconfig/network-script/ifcfg-eth0
  DEVICE=eth0
  BOOTPROTO=dhcp
  ONBOOT=yes
> systemctl restart network
测试：
在服务端
dig www.Sunshine.com