CentOS7.9 搭建DNS服务器
CentOS7 搭建DNS服务器,实现局域网域名访问,内网域名解析
dns服务 192.168.199.170
vm-dev001.wowo.com 192.168.199.171
vm-dev002.wowo.com 192.168.199.172
vm-dev003.wowo.com 192.168.199.173安装DNS服务器软件包bind
yum install bind配置文件
在主配置文件中实现或主配置文件辅助配置文件中实现:/etc/named.conf或者/etc/named.rfc1912.zones
- 格式
zone "ZONE_NAME" IN {
type {master|slave|hint|forward};
file "ZONE_NAME.zone";
};- 例子
# 下面添加etc/named.rfc1912.zones
zone "wowo.com" IN {
type master;
file "wowo.com.zone";
};创建区域数据文件
1.在/var/named/目录下建立区域数据文件;
[root@vm-wowo-dev0-base named]# pwd
/var/named
[root@vm-wowo-dev0-base named]# cat wowo.com.zone
$TTL 1D
@ IN SOA dns.wowo.com admin.wowo.com. (
123 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ IN NS dns
@ IN MX 5 mail
dns IN A 192.168.199.170
mail IN A 192.168.199.170
www IN A 192.168.199.170
vm-dev001 IN A 192.168.199.171
vm-dev002 IN A 192.168.199.172
vm-dev003 IN A 192.168.199.1732.修改区域文件的权限及属组
[root@vm-wowo-dev0-base named]# chown :named wowo.com.zone3.检查配置文件和区域文件是否有语法错误
[root@vm-wowo-dev0-base named]# named-checkconf
[root@vm-wowo-dev0-base named]# named-checkzone wowo /var/named/wowo.com.zone
zone enzhi.com/IN: loaded serial 213
OK让服务器重载配置文件和区域文件
rndc restart | reload
或者
systemctl reload named.service修改配置文件 vim /etc/named.conf
listen-on port 53 { 127.0.0.1; 192.168.199.170;};
下面这些都注释掉,至于为啥不知道
// dump-file "/var/named/data/cache_dump.db";
// statistics-file "/var/named/data/named_stats.txt";
// memstatistics-file "/var/named/data/named_mem_stats.txt";
// recursing-file "/var/named/data/named.recursing";
// secroots-file "/var/named/data/named.secroots";
// allow-query { localhost; };
// dnssec-enable yes;
// dnssec-validation yes;命令
#启动DNS服务(说明:DNS服务的守护进程为named)
[root@vm-wowo-dev0-base named]# systemctl start named.service
#将DNS设为开机自启动
[root@vm-wowo-dev0-base named]# systemctl enable named.service
#查看DNS服务的状态
[root@vm-wowo-dev0-base named]# systemctl status named.service
#nslookup一下
[root@vm-wowo-dev001 ~]# nslookup -qt=ns vm-dev001.wowo.com
*** Invalid option: qt=ns
Server: 192.168.199.170
Address: 192.168.199.170#53
Name: vm-dev001.wowo.com
Address: 192.168.199.171测试
[root@vm-wowo-dev0-base named]# dig -t A www.wowo.com @192.168.199.170
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-26.P2.el7_9.3 <<>> -t A www.wowo.com @192.168.199.170
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9528
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
//
;www.wowo.com. IN A
;; ANSWER SECTION:
www.wowo.com. 86400 IN A 192.168.199.170
;; AUTHORITY SECTION:
wowo.com. 86400 IN NS dns.wowo.com.
;; ADDITIONAL SECTION:
dns.wowo.com. 86400 IN A 192.168.199.170
;; Query time: 0 msec
;; SERVER: 192.168.199.170#53(192.168.199.170)
;; WHEN: 二 1月 05 00:28:49 CST 2021
;; MSG SIZE rcvd: 91
参考
https://www.cnblogs.com/6relation/p/6992070.html
https://blog.csdn.net/yelllowcong/article/details/78823520
https://blog.csdn.net/dyw_666666/article/details/103551865
https://www.cnblogs.com/wangenzhi/p/6308957.html
2021学习交流Q群号:939627878