Linux系统域名服务(DNS)配置方法----RHEL4

一、安装BIND服务器软件包，确认系统安装有以下软件包：



[root@test ~]# rpm -qa|grep bind
ypbind-1.17.2-8
bind-utils-9.2.4-16.EL4
bind-devel-9.2.4-16.EL4
bind-libs-9.2.4-16.EL4
bind-9.2.4-16.EL4





二、named.conf 配置文件

BIND服务器的主配置文件是 named.conf ，保存在“/etc ”目录中，如下所示：



[root@test ~]# cat /etc/named.conf
//
// named.conf for Red Hat caching-nameserver
//

options {
        directory "/var/named";
        dump-file "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        /*
         * If there is a firewall between you and nameservers you want
         * to talk to, you might need to uncomment the query-source
         * directive below.  Previous versions of BIND always asked
         * questions using port 53, but BIND 8.1 uses an unprivileged
         * port by default.
         */
         // query-source address * port 53;
};



三、BIND服务器的工作目录



BIND服务器中的域名区域文件需要保存在工作目录“/var/named/ ”中，bind软件包安装后，该目录中包括两个空的子目录，管理员需要在该工作目录中保存DNS服务器的区域文件。

[root@test ~]# ls /var/named/
chroot  data  localdomain.zone  localhost.zone  named.broadcast  named.ca  named.ip6.local  named.local  named.zero  slaves


四、BIND服务器的启动与停止

[root@test ~]# service named start

[root@test ~]# service named stop



五、named.conf 中的全局设置（缓存服务器的配置）

[root@test ~]# head -29 /etc/named.conf
//
// named.conf for Red Hat caching-nameserver
//

options {
        directory "/var/named";
        dump-file "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        /*
         * If there is a firewall between you and nameservers you want
         * to talk to, you might need to uncomment the query-source
         * directive below.  Previous versions of BIND always asked
         * questions using port 53, but BIND 8.1 uses an unprivileged
         * port by default.
         */
         // query-source address * port 53;
};

//
// a caching only nameserver config
//
controls {
        inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

zone "." IN {
        type hint;
        file "named.ca";
};



六、构建主域名服务器

1.设置1test.com 域的正向区域

[root@test ~]# vi /etc/named.conf

zone "1test.com" IN {
     type master;
     file "1test.com";
};




[root@test named]# vi /var/named/1test.com

$TTL 86400
1test.com.  IN  SOA  test.jiawei.com.    root.1test.cn.(
       2009081301
       28800
       14400
       3600000
       86400 )


@    IN   NS   test.jiawei.com.
www  IN   A    192.168.100.1
ftp  IN   A    192.168.100.2
mail IN   CNAME     www
test IN   A    192.168.2.10
@    IN   MX    10    www.1test.com



测试
[root@test named]# nslookup
> server 192.168.2.10
Default server: 192.168.2.10
Address: 192.168.2.10#53
> www.1test.com
Server:         192.168.2.10
Address:        192.168.2.10#53

Name:   www.1test.com
Address: 192.168.100.1
> ftp.1test.com
Server:         192.168.2.10
Address:        192.168.2.10#53

Name:   ftp.1test.com
Address: 192.168.100.2
> mail.1test.com
Server:         192.168.2.10
Address:        192.168.2.10#53

mail.1test.com  canonical name = www.1test.com.
Name:   www.1test.com
Address: 192.168.100.1
> set type=mx
> 1test.com
Server:         192.168.2.10
Address:        192.168.2.10#53

1test.com       mail exchanger = 10 www.1test.com.1test.com.
>




2、建立反向区域文件

[root@test ~]# vi /etc/named.conf
zone "2.168.192.in-addr.arpa" {
     type master;
     file "192.168.2.rev";
     };






[root@test named]# vi /var/named/192.168.2.rev

$TTL  86400
@   IN  SOA  test.jiawei.com.   root.1test.com.(
2009081301
28800
14400
3600000
86400 )

@   IN   NS   test.jiawei.com
10  IN   PTR  www.1test.com




测试
[root@test named]# nslookup
> server 192.168.2.10
Default server: 192.168.2.10
Address: 192.168.2.10#53
> www.1test.com
Server:         192.168.2.10
Address:        192.168.2.10#53

Name:   www.1test.com
Address: 192.168.100.1
> 192.168.2.10
Server:         192.168.2.10
Address:        192.168.2.10#53

10.2.168.192.in-addr.arpa       name = www.1test.com.2.168.192.in-addr.arpa.
> exit






七、配置文件和区域文件的测试

[root@test named]# named-checkconf
[root@test named]# named-checkzone 1test.com /var/named/1test.com
zone 1test.com/IN: loaded serial 2009081301
OK
[root@test named]#



八、构建从域名服务器

[root@test slaves]# vi /etc/named.conf
zone "abc.com" {
     type slave;
     file "slaves/abc.com.zone";
     masters { 192.168.2.1 ;};
     };



zone "2.168.192.in-addr.arpa" {
     type master;
     file "192.168.2.rev";
     };

以上设置内容完成如下设置功能：
1、建立了abc.com区域和1.168.192.in-addr.arpa ,后者是前者的反向解析区域。
2、两个区域的类型都设置为slave ,即从域名服务器类型。
3、使用 master 设置主服务器的地址为 192.168.1.2 ,该地址是其它主域名服务器的IP地址。
4、从域名服务器中的区域文件是从主服务器中请求接收，并保存在" /var/named/slaves "目录中。


测试
[root@test slaves]# service named restart
停止 named：[  确定  ]
启动 named：[  确定  ]
[root@test slaves]# ls
abc.com.zone
[root@test slaves]# cat abc.com.zone
$ORIGIN .
$TTL 3600       ; 1 hour
abc.com                 IN SOA  vs1. hostmaster. (
                                3          ; serial
                                900        ; refresh (15 minutes)
                                600        ; retry (10 minutes)
                                86400      ; expire (1 day)
                                3600       ; minimum (1 hour)
                                )
                        NS      vs1.
$ORIGIN abc.com.
ftp                     A       192.168.3.45
www                     A       172.16.0.2
[root@test slaves]#

看到slaves 文件夹里有了abc.com.zone 的区域文件，则说明成功配置了从域名服务器。




                  -----END