linux——dns
来源:互联网 发布:苹果电脑软件下载 编辑:程序博客网 时间:2024/06/05 16:21
一.安装部署dns
yum install bind -y
systemctl start named
systemctl enable named
systemctl stop firewalld
主配置文件: /etc/named.conf
子配置文件:/etc/name.rfc1912.zones
数据目录: /var/named
二.高速缓存dns
vim /etc/named.conf
11 listen-on port 53 { any; };
17 allow-query { any; };
18 forwarders { 172.25.254.250; };
systemctl restart named
测试
在客户主机
vim /etc/resolv.conf
nameserver 172.25.254.206
dig www.baidu.com
三.权威dns的正向解析
vim /etc/named.rfc1912.zones
zone “wy.com” IN {
type master;
file “wy.com.zone”;
allow-update { none; };
};
cd /var/named
cp -p named.localhost wy.com.zone
vim wy.com.zone
$TTL 1D ####可以保存1天
@ IN SOA dns.wy.com. root.westos.com. ( ####root是维护用户
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.wy.com.
dns A 172.25.254.2
www A 111.11.111.111
测试:
dig www.wy.com
四.反向解析
vim /etc/named.rfc1912.zones
zone “254.25.172.in-addr.arpa” IN {
type master;
file “yw.com.ptr”;
allow-update { none; };
};
cp -p named.loopback yw.com.ptr
vim yw.com.ptr
$TTL 1D
@ IN SOA dns.yw.com. root.yw.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.yw.com.
dns A 172.25.254.206
206 PTR www.yw.com.
systemctl restart named
测试
dig -x 172.25.254.206
五.内部解析与外部解析
vim /etc/named.conf
view localnet {
match-clients { 172.25.254.85; };
zone “.” IN {
type hint;
file “named.ca”;
};
include “/etc/named.rfc1912.zones”;
include “/etc/named.root.key”;
};
view any {
match-clients { any; };
zone “.” IN {
type hint;
file “named.ca”;
};
include “/etc/named.rfc1912.zones.inter”;
include “/etc/named.root.key”;
};
p /etc/named.rfc1912.zones /etc/named.rfc1912.zones.inter -p
im /etc/named.rfc1912.zones.inter
53 zone “wy.com” IN {
54 type master;
55 file “wy.com.inter”;
56 allow-update { none; };
57 };
cp -p wy.com.zone wy.com.inter
im wy.com.inter
$TTL 1D
@ IN SOA dns.wy.com. root.westos.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.wy.com.
dns A 22.22.22.22
www A 22.22.22.22
ystemctl restart named
试:
172.25.254.85 上
dig www.wy.com
其他客户端上
dig www.wy.com
六.辅助dns*
dns 的设定
vim /etc/named.rfc1912.zones.inter
zone “wy.com” IN {
type master;
file “wy.com.inter”;
allow-update { none; };
also-notify {172.25.254.1; };
systemctl restart named
注意 :每次更改A记录文件后必须更改serial 的数值,这个数值最大10位
辅助dns设定
yum install bind -y
systemctl start named
systemctl enable named
systemctl stop firewalld
vim /etc/named.conf
11 listen-on port 53 { any; };
17 allow-query { any; };
vim /etc/named.rfc1912.zones
zone “wy.com” IN {
type slave;
masters {172.25.254.2; };
file “slave/wy.com.inter”;
allow-update { none; };
};
systemctl restart named
测试
vim /etc/resolv.conf
nameserver 172.25.254.1
dig www.wy.com
vim /etc/resolv.conf
nameserver 172.25.254.2
dig www.wy.com
七dns 的远程更新
基于ip
vim /etc/named.rfc1912.zones.inter
zone “wy.com” IN {
type master;
file “wy.com.inter”;
allow-update { 172.25.254.1; };
also-notify {172.25.254.1; };
};
chmod g+w /var/named
备份好数据
做饰演前:[root@localhost named]# cp -p wy.com.inter /mnt/
做完后:[root@localhost named]# cp -p /mnt/wy.com.inter .
测试:
在1 这台主机上
[root@dns-slave ~]# nsupdate
server 172.25.254.2 ####添加
update add bbs.wy.com 86400 A 1.1.1.3 #####86400s =1day
send
dig bbs.wy.com
server 172.25.254.2
update delete bbs.wy.com #####删除
send
dig bbs.wy.com
基于key
dnssec-keygen -a HMAC-MD5 -b 512 -n HOST wy
cp -p /etc/rndc.key /etc/wy.key
cat Kwy.+157+54996.key
wy. IN KEY 512 3 157 tkTzYT/aGaqBVlYg/Bv6eQ==
vim /etc/wy.key
1 key “wy” {
2 algorithm hmac-md5;
3 secret “tkTzYT/aGaqBVlYg/Bv6eQ==”;
4 };
~
vim /etc/named.rfc1912.zones.inter
zone “wy.com” IN {
type master;
file “wy.com.inter”;
allow-update { key wy; };
also-notify {172.25.254.1; };
};
vim /etc/named.conf
include “/etc/wy.key”;
logging {
channel default_debug {
file “data/named.run”;
severity dynamic;
};
};
systemctl restart named
scp K* root@172.25.254.1:/mnt/
测试:
nsupdate -k Kwy.+157+54996.private
server 172.25.254.2 ####添加
update add bbs.wy.com 86400 A 3.3.3.3 #####86400s =1day
send
dig bbs.wy.com
server 172.25.254.2
update delete bbs.wy.com #####删除
send
dig bbs.wy.com
八.动态域名解析 ddns 花生壳
yum install dhcp -y
cp /usr/share/doc/dhcp-4.2.5/dhcpd.conf.example /etc/dhcp/dhcpd.conf
cp: overwrite ‘/etc/dhcp/dhcpd.conf’? y
vim /etc/dhcp/dhcpd.conf
option domain-name “van.com”;
option domain-name-servers 172.25.254.108;
ddns-update-style interim; ##允许更新 
subnet 172.25.254.0 netmask 255.255.255.0 {
range 172.25.254.150 172.25.254.199;
option routers 172.25.254.108;
}
key van {
algorithm hmac-md5;
secret 1gUySTnt04KRXoh9UfjwNw==;
};
zone van.com. {
primary 127.0.0.1;
key van;
} 
vim van.com.zone
www A 172.25.254.222 ##删除防止干扰
systemctl restart dhcpd
systemctl restart named
辅机
hostnamectl set-hostname www.van.com ##域名要相同
cd /etc/sysconfig/network-scripts/
vim ifcfg-eth0
BOOTPROTO=dhcp
systemctl restart network
ifconfig 
dig www.van.com
- linux——dns
- Linux——高速缓存dns
- Linux——dns高速缓存
- Linux DNS 进阶配置——主从DNS
- Linux DNS 进阶配置——父子域DNS
- linux操作———dns
- Linux网络服务——DNS全攻略
- linux 服务——DNS服务
- Linux学习三——DNS设置
- Linux系统下搭建DNS服务器——DNS原理总结
- LINUX学习笔记——DNS服务器设置篇(转载)
- LINUX学习笔记——DNS服务器设置篇
- 企业级Linux服务攻略——DNS服务全攻略
- 鸟哥Linux服务器篇——什么是 DNS
- DNS编程开发—DNS协议格式
- Linux DNS
- Linux DNS
- DHCP——DNS
- iOS 基础动画参数
- java使用poi实现导出复杂excel之后弹出保存提示框
- 修改Android设备型号和内核版本号
- 听课(下)
- SLAM(二)——RGB-D的含义
- linux——dns
- 关于迅雷与优酷
- centos7自学之7-rabbitmq的安装与配置
- Linux下如何不停止服务,清空nohup.out文件
- CentOS如何修改yum源
- 贪心算法
- Max Num
- 大数据、人工智能如何融合?来自微软、阿里、滴滴、科大讯飞等的 120 多位专家要用 3 天为你解答!
- [LC]289. Game of Life
