- DNS 是计算机域名(Domain Name System)的缩写,主要功能是将计算机域名与IP地址之间作转换。执行这一服务的网络主机就可以称作为DNS服务器,通常我们都认为DNS只是将域名转换成IP地址,然后再使用所查到的IP地址去连接(俗称“正向解析”)。事实上,将IP地址转换成域名的功能也是常使用到的,(俗称“逆向解析”)。下面就来用一个假设的域名(www.mageedu.com),ip地址为172.16.86.1,是本机IP地址,那我们就用本机来做DNS服务器来讲一下DNS的基本配置吧,很简单的哦。一学就会哦。
-
- 首先介绍一下基本知识:
- 数据库中的,每一个条目称作一个资源记录,资源记录类型:
-
- SOA(Start Of Authority): #起始授权记录
- 格式: ZONE NAME TTL IN SOA FQDN ADMINISTRATOR_MAILBOX (
- serial number:版本号或序列号
- refresh:刷新周期
- retry:重试时间
- expire:过期时长
- nagative ansver TTL:否定答案的缓存时长)
-
- 如: mageedeu.com 600 IN SOA ns1.mageedu.com. admin.mageedu.com. (
- 2013040101
- 1H
- 5M
- 1W
- 1D )
- 时间单位:M(分钟)、H(小时)、D(天)、W(周),默认单位是秒
- 邮箱格式:admin@mageedu.com -也可以写为->admin.mageedu.com
-
-
- NS(Name Server):#名称服务器
- 格式: Zone MAIN NAME
- 如: mageedu.com 600 IN NS ns1.mageedu.com.
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
-
- MX(Mail eXchanger):#邮件交换器
- 格式: ZONE NAME TTL IN MX pri VALUE
- 优先级:0-99,数字越小级别越高
- 如: mageedu.com. 600 IN MX 10 mail.mageedu.com.
- mail.mageedu.com. 600 IN A 1.1.1.3
- A(address):FQDN
- AAAA(address):FQDN
- PTR(pointer):IP
- CNAME(Canonical NAME):FQDN
- 如 ftp.magedu.com. IN CNAME www.magedu.com.
-
-
- 一、 首先要配置yum源,我们是从本地服务器上下载的,你们可以用光盘或者镜像文件挂载本地也是可以的。我们就用bind97来介绍一下吧。
-
- [root@localhost ~]#cd /etc/yum.repos.d
- [root@localhost yum.repos.d]# wget ftp://172.16.0.1/pub/gls/server.repo
-
-
- 二、安装bind97,并添加或修改其主配置文件,我们这里就来自己编辑其配置文件。
-
- [root@localhost yum.repos.d]# rpm -e bind-libs bind-utils
- [root@localhost yum.repos.d]# yum install bind97-libs bind97-utils
- [root@localhost ~]# yum install bind97 -y #安装bind97主包
- [root@localhost ~]# cd /etc/
- [root@localhost etc]# cat named.conf #查看配置文件
- [root@localhost etc]# mv /etc/named.conf /etc/named.conf.orig #这里把原有的配置文件重命名或者删除都可以
- [root@localhost etc]# ll -l /etc/named.conf.orig #查看原配置文件的权限和属性
- -rw-r
-
- [root@localhost etc]# vim named.conf #编辑配置文件 创建缓存名称服务器
-
- [root@localhost etc]# chown root:named /etc/named.conf #修改属主和属组
-
- [root@localhost etc]# chmod 640 /etc/named.conf #修改权限
- [root@localhost etc]# named-checkconf #检查语法是否有错误,不报信息就是最好的信息
- [root@localhost etc]# named-checkzone "." /var/named/named.ca
- zone ./IN: has 0 SOA records
- zone ./IN: not loaded due to errors.
- [root@localhost etc]# named-checkzone "localhost" /var/named/named.localhost
- zone localhost/IN: loaded serial 0
- OK
- [root@localhost etc]# named-checkzone "0.0.127.in-addr.arpa" /var/named/named.loopback
- zone 0.0.127.in-addr.arpa/IN: loaded serial 0
- OK
-
- [root@localhost ~]# service named start #启动DNS服务器
- Starting named: [ OK ]
-
- 三、关闭 selinux
-
- [root@localhost ~]# getenforce #查看当前selinux状态
- Enforcing #开启
- [root@localhost ~]# setenforce 0 #关闭selinux
- [root@localhost ~]# getenforce
- Permissive
-
- [root@localhost ~]# vim /etc/selinux/config #修改配置文件永久有效
-
- 四、修改DNS服务器地址为本机地址,并让它开机自动运行
-
- [root@localhost ~]# vim /etc/resolv.conf
- nameserver 172.16.86.1
- search localdomain
-
- [root@localhost ~]# chkconfig
- named 0:off 1:off 2:off 3:off 4:off 5:off 6:off
- [root@localhost ~]# chkconfig named on #用此命令实现开机自动运行DNS服务器
- [root@localhost ~]# chkconfig
- named 0:off 1:off 2:on 3:on 4:on 5:on 6:off
-
- 五、实现正向解析
-
- [root@localhost named]# vim /etc/named.conf #编辑主配置文件,添加如下内容
-
- zone "magedu.com" IN {
- type master;
- file "mageedu.com.zone";
- };
-
- [root@localhost named]#vim mageedu.com.zone #在/var/named目录下创建文件并编辑文件内容
- $TTL 600
- magedu.com. IN SOA ns1.mageedu.com. admin.mageedu.com. (
- 2013040101
- 1H
- 5M
- 2D
- 6H )
- IN NS ns1.mageedu.com.
- IN MX 10 mail.mageedu.com.
- ns1 IN A 172.16.86.1
- mail IN A 172.16.86.2
- www IN A 172.16.86.1
- ftp IN CNAME www
-
- [root@localhost named]# chmod 640 mageedu.com.zone
- [root@localhost named]# chown root:namedmageedu.com.zone
-
-
- [root@localhost named]# named-checkzone "mageedu.com" /var/named/mageedu.com.zone
- zonemagedu.com/IN: loaded serial 2013040101
- OK
-
-
- [root@localhost named]# service named restart #重启DNS服务
- Stopping named: [ OK ]
- Starting named: [ OK ]
-
- 测试结果:
-
- [root@localhost named]# dig -t CNAME ftp.mageedu.com
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -t CNAME ftp.mageedu.com
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40718
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
-
- ;; QUESTION SECTION:
- ;ftp.mageedu.com. IN CNAME
-
- ;; ANSWER SECTION:
- ftp.mageedu.com. 600 IN CNAME www.mageedu.com.
-
- ;; AUTHORITY SECTION:
- mageedu.com. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 5 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:23:43 2013
- ;; MSG SIZE rcvd: 85
-
-
- [root@localhost named]# dig -t NSmagedu.com
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -t NSmagedu.com
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37572
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
-
- ;; QUESTION SECTION:
- ;mageedu.com. IN NS
-
- ;; ANSWER SECTION:
- mageedu.com. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 13 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:24:29 2013
- ;; MSG SIZE rcvd: 63
-
-
-
- [root@localhost named]# dig -t MXmagedu.com
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -t MXmagedu.com
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57248
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
-
- ;; QUESTION SECTION:
- ;mageedu.com. IN MX
-
- ;; ANSWER SECTION:
- mageedu.com. 600 IN MX 10 mail.mageedu.com.
-
- ;; AUTHORITY SECTION:
- mageedu.com. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- mail.mageedu.com. 600 IN A 172.16.86.2
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 9 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:25:02 2013
- ;; MSG SIZE rcvd: 100
-
-
- 六、实现反向解析
-
- [root@localhost named]vim /etc/named.conf
- zone "86.16.172.in-addr.arpa" IN {
- type master;
- file "172.16.86.zone";
-
- [root@localhost named]# vim 172.16.86.zone
- $TTL 600
- @ IN SOA ns1.mageedu.com. admin.mageedu.com. (
- 2013040101
- 1H
- 5M
- 2D
- 6H )
- IN NS ns1.mageedu.com.
- 1 IN PTR ns1.mageedu.com.
- 1 IN PTR www.mageedu.com.
- 2 IN PTR mail.mageedu.com.
-
- [root@localhost named]# chmod 640 172.16.86.zone
- [root@localhost named]# chown root:named 172.16.86.zone
-
- [root@localhost named]# named-checkzone "86.16.172.in-addr.arpr" 172.16.86.zone
- zone 86.16.172.in-addr.arpr/IN: loaded serial 2013040101
- OK
-
- [root@localhost named]# service named restart
- Stopping named: [ OK ]
- Starting named: [ OK ]
-
- [root@localhost named]# dig -x 172.16.86.1 #dig -x IP 根据IP查主机名
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -x 172.16.86.1
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46711
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1
-
- ;; QUESTION SECTION:
- ;1.86.16.172.in-addr.arpa. IN PTR
-
- ;; ANSWER SECTION:
- 1.86.16.172.in-addr.arpa. 600 IN PTR www.mageedu.com.
- 1.86.16.172.in-addr.arpa. 600 IN PTR ns1.mageedu.com.
-
- ;; AUTHORITY SECTION:
- 86.16.172.in-addr.arpa. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 5 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:43:49 2013
- ;; MSG SIZE rcvd: 119
-
- [root@localhost named]# dig -x 172.16.86.2
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -x 172.16.86.2
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50818
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
-
- ;; QUESTION SECTION:
- ;2.86.16.172.in-addr.arpa. IN PTR
-
- ;; ANSWER SECTION:
- 2.86.16.172.in-addr.arpa. 600 IN PTR mail.mageedu.com.
-
- ;; AUTHORITY SECTION:
- 86.16.172.in-addr.arpa. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 2 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:44:16 2013
- ;; MSG SIZE rcvd: 106
-
- [root@localhost named]# dig -x 172.16.86.3
-
- ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-6.P2.el5_7.4 <<>> -x 172.16.86.3
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28749
- ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
-
- ;; QUESTION SECTION:
- ;3.86.16.172.in-addr.arpa. IN PTR
-
- ;; ANSWER SECTION:
- 3.86.16.172.in-addr.arpa. 600 IN PTR www.mageedu.com.
-
- ;; AUTHORITY SECTION:
- 86.16.172.in-addr.arpa. 600 IN NS ns1.mageedu.com.
-
- ;; ADDITIONAL SECTION:
- ns1.mageedu.com. 600 IN A 172.16.86.1
-
- ;; Query time: 6 msec
- ;; SERVER: 172.16.86.1#53(172.16.86.1)
- ;; WHEN: Fri Mar 29 21:44:29 2013
- ;; MSG SIZE rcvd: 105
-
-
- 七、就这样一个简单的DNS服务器就做成了,是不是很简单啊 ,自己动手实现以下吧。
