记录自己的实验过程:
系统类型:centOS6.5
2块网卡,一内网,一公网。 eth0:192.168.1.201 eth1:连接到公网
1、配置yum。
2、安装bind、 bind-libs、 bind-utils、 bind-chroot
$yum install bind bind-libs bind-utils bind-chroot
3、配置named
$vim /etc/named.conf
options {
listen-on port 53 { any; }; /* 修改为any或者IP地址*/
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; }; /* 修改为any*/
recursion yes;
forwarders { 202.106.0.20; }; /* 设置DNS转发,用于解析外网域名*/
// forwarders first;
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";4、创建域名zone,在
$vim /etc/named.rfc1912.zones
zone "" IN {
type master;
file ".zone";
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "1.168.192.zone";
};添加需要解析的域名。
5、建立域名zone文件。
正向解析:
$cd /var/named/ vim .zone $TTL 86400 @ IN SOA ns.. root ( 0 1D 1H 1W 3H ) @ IN NS ns.. @ IN MX 5 mail.. ns IN A 192.168.1.201 mail IN A 192.168.1.201 smtp IN A 192.168.1.201 pop3 IN A 192.168.1.201 pop IN A 192.168.1.201 www IN A 192.168.1.201
反向解析:
$vim 1.168.192.zone $TTL 86400 @ IN SOA ns.. root ( 0 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum @ IN NS ns.. 201 IN PTR mail.. 201 IN PTR www..
7、检查语法。
$named-checkconf /etc/named.conf $named-checkzone /var/named/.zone zone /IN: loaded serial 0 OK $/etc/init.d/iptables stop $setenforce 0
8、配置DNS地址。
$vim /etc/resolv.conf nameserver 192.168.1.201 #本地DNS服务器地址
9、启动、测试named。
$/etc/init.d/named start $nslookup www. Server: 192.168.1.201 Address: 192.168.1.201#53 Name: www. Address: 192.168.1.201
OK ,最简单的DNS服务已经搭建完成,第一次写博客,还是新手一枚,记录一下自己的成长过程 (^ ^)。
