案例?1

有一個域abc.com，dns?服務(wù)器為192.168.6.6，有主機www1.1.1.1，

ftp主機，地址為2.2.2.2，mail3.3.3.3，mail的別名為pop3，smtp。

郵件交換器是MX。

拓撲圖：

1.掛載光驅(qū)，安裝軟件包

mkdir?/media/cdrom

[root@centos?~]#?mount?/dev/cdrom?/media/cdrom/

[root@centos?~]#?cd?/media/cdrom/Packages/

查詢和bind有關(guān)的軟件包

[root@centos?Packages]#?ll?bind*

-r--r--r--?2?root?root?4157992?Feb?24??2013?bind-9.8.2-0.17.rc1.el6.x86_64.rpm

-r--r--r--?2?root?root???71924?Feb?24??2013?bind-chroot-9.8.2-0.17.rc1.el6.x86_64.rpm

-r--r--r--?2?root?root???70056?Feb?24??2013?bind-dyndb-ldap-2.3-2.el6.x86_64.rpm

-r--r--r--?2?root?root??902940?Feb?24??2013?bind-libs-9.8.2-0.17.rc1.el6.i686.rpm

-r--r--r--?2?root?root??891916?Feb?24??2013?bind-libs-9.8.2-0.17.rc1.el6.x86_64.rpm

-r--r--r--?2?root?root??186068?Feb?24??2013?bind-utils-9.8.2-0.17.rc1.el6.x86_64.rpm

用yum安裝：bind，bind-chroot，bind-utils。

2.產(chǎn)生鑰匙文件

在本地終端里面執(zhí)行:

rndc?confgen?-a

啟動named:

service?named?start

[root@centos?~]#?cd?/var/named/chroot/etc

ll?查看生成的鑰匙文件

[root@centos?etc]#?ll

total?32

-rw-r--r--?1?root?root???405?Mar?29?04:26?localtime

drwxr-x---?2?root?named?4096?Feb?22??2013?named

-rw-r-----?1?root?named?1008?Jul?19??2010?named.conf

-rw-r--r--?1?root?named?2389?Feb?22??2013?named.iscdlv.key

-rw-r-----?1?root?named??931?Jun?21??2007?named.rfc1912.zones

-rw-r--r--?1?root?named??487?Jul?19??2010?named.root.key

drwxr-x---?3?root?named?4096?May??2?05:56?pki

-rw-------?1?root?root????77?May??3?08:28?rndc.key

改變rndc.key的所屬組為named,加上r權(quán)限：

[root@centos?etc]#?chgrp??named??rndc.key

[root@centos?etc]#?chmod?g+r?rndc.key

3.執(zhí)行[root@centos?~]#?rndc?reload

查看日志看是否成功

[root@centos?etc]#?tail?-f?/var/log/messages

結(jié)果：執(zhí)行成功。

May??3?08:56:34?centos?named[2474]:?reloading?configuration?succeeded

May??3?08:56:34?centos?named[2474]:?reloading?zones?succeeded

4.編輯主配置文檔

[root@centos?~]#?cd?/var/named/chroot/etc

[root@centos?etc]#?vim?named.conf

內(nèi)容：

10?options?{

11?????????listen-on?port?53?{?any;?};//改為any

17?????????allow-query?????{?any;?};//改為any

5.編輯區(qū)域聲明文件：

/var/named/chroot/etc目錄下:

[root@centos?etc]#?vim?named.rfc1912.zones

添加25到29?5行；

6.編輯區(qū)域文件

[root@centos?~]#?cd?/var/named/chroot/var/named/

把named.localhost拷貝到abc.com.zone

[root@centos?named]#?cp?-p?named.localhost?abc.com.zone

[root@centos?named]#?vim?abc.com.zone

7.?windows?server?2003測試(DNS服務(wù)器虛擬機和2003虛擬機都選擇僅主機模式)

ip?配置：192.168.6.50?2555.255.255.0網(wǎng)關(guān)192.168.6.1??DNS?192.168.6.6

用nslookup?解析：

C:\Documents?and?Settings\Administrator>nslookup?www.abc.com

Server:??UnKnown

Address:??192.168.6.6

Name:????www.abc.com

Address:??1.1.1.1

案例2主輔同步

有一個域abc.com

dns1?【主linux?192.168.6.6】

dns2??【輔linux192.168.6.7】

www??1.1.1.1ftp2.2.2.2

mail3.3.3.3

pop3??smtp

MX

拓撲圖：

一.編輯主dns服務(wù)器(192.168.6.6)

在案例一的基礎(chǔ)上

二.建立一臺輔助dns服務(wù)器(192.168.6.7)

1.

[root@host2?~]#?cd?/var/named/chroot/etc

[root@host2?etc]#?vim?named.rfc1912.zones

指明masters是192.168.6.6，自己的類型是slave,從主服務(wù)器拷貝的文件放在

/var/named/chroot/var/named/slaves目錄下面

2.主服務(wù)器執(zhí)行rndc?reload,在輔助服務(wù)器上查看日志，傳輸開始，序列號為2

到slaves目錄下查看拷貝的文件：

[root@host2?~]#?cd?/var/named/chroot/var/named/slaves

[root@host2?slaves]#?ll

total?4

-rw-r--r--.?1?named?named?330?May??6?03:42?abc.com.zone

4.主服務(wù)器的abc.com.zone添加mail記錄的別名,MX記錄，并把序列號改為5

pop3??IN????????CNAME????mail

smtp??IN???????CNAME????mail

@????IN??????MX?10?????mail

然后執(zhí)行：rndc??reload

輔助dns服務(wù)器上查看日志：

序列號變?yōu)?，

May??6?19:15:45?host2?named[1216]:?zone?abc.com/IN:?Transfer?started.

May??6?19:15:45?host2?named[1216]:?transfer?of?'abc.com/IN'?from?192.168.6.6#53:?connected?using?192.168.6.7#50851

May??6?19:15:45?host2?named[1216]:?zone?abc.com/IN:?transferred?serial?5

May??6?19:15:45?host2?named[1216]:?transfer?of?'abc.com/IN'?from?192.168.6.6#53:?Transfer?completed:?1?messages,?10?records,?258?bytes,?0.004?secs?(64500?bytes/sec)

再來到slaves目錄下查看拷貝的文件：有了添加的內(nèi)容。

vim/var/named/chroot/var/named/slaves/abc.com.zone

案例3授權(quán)與轉(zhuǎn)發(fā)

父域dns對子域dns實現(xiàn)授權(quán)，

子域?qū)Ω赣?/p>

1.改變根提示，把父域dns視為根

2.轉(zhuǎn)發(fā)器

sh.b.com???dns

1.聲明要管轄的區(qū)域：

[root@host2?~]#?vim?/var/named/chroot/etc/named.rfc1912.zones

添加以下代碼：

25?zone?"sh.b.com"?IN?{

26?????????type?master;

27?????????file?"sh.b.com.zone";

28?????????allow-update?{?none;?};

29?};

[root@host2?~]#?cd?/var/named/chroot/var/named/

2.創(chuàng)建sh.b.com.zone文件：

[root@host2?named]#?cp?-p?named.localhost?sh.b.com.zone

[root@host2?named]#?ll

3.[root@host2?named]#?vim?sh.b.com.zone

1?$TTL?1D

2?@???????IN?SOA??ns.sh.b.com?rname.invalid.?(

3?????????????????????????????????????????1???????;?serial

4?????????????????????????????????????????1D??????;?refresh

5?????????????????????????????????????????1H??????;?retry

6?????????????????????????????????????????1W??????;?expire

7?????????????????????????????????????????3H?)????;?minimum

8?@???IN??NS??????ns.sh.b.com.

9?ns??IN??A???????192.168.6.7

10?www?IN??A???????3.3.3.3//添加www記錄

11

4.[root@host2?named]#?rndc?reload

5.有條件轉(zhuǎn)發(fā)

編輯主配置文件：

[root@host2?~]#?cd?/var/named/chroot/etc

[root@host2?etc]#?vim?named.conf

編輯named.rfc1912.zones，

[root@host2?~]#?cd?/var/named/chroot/etc

[root@host2?etc]#?vim?named.rfc1912.zones

zone?"b.com"?IN?{[root@host2?~]#?cd?/var/named/chroot/etc

type?forward;

forwarders?{?192.168.6.6;?};

};

b.com?父域

1.[root@host2?~]#?cd?/var/named/chroot/etc

聲明2個區(qū)域b.com和bj.b.com

[root@centos?etc]#?vim?named.rfc1912.zones

zone?"b.com"?IN?{

type?master;

file?"b.com.zone";

allow-update?{?none;?};

};

zone?"bj.b.com"?IN?{

type?master;

file?"bj.b.com.zone";

allow-update?{?none;?};

};

2.給sh.b.com授權(quán)：

[root@host2?~]#?cd?/var/named/chroot

[root@centos?chroot]#?cd?var/named/

[root@centos?named]#?cp?-p?named.localhost?b.com.zone

[root@centos?named]#?vim?b.com.zone

3.北京子域

[root@host2?~]#?cd?/var/named/chroot

[root@centos?chroot]#?cd?var/named/

root@centos?named]#?cp?-p?named.localhost?bj.b.com.zone

[root@centos?named]#?vim?bj.b.com.zone

測試：轉(zhuǎn)發(fā)成功

PC?的dns指向192.168.6.7

C:\Documents?and?Settings\Administrator>nslookup?www.sh.b.com

Name:????www.sh.b.com

Address:??3.3.3.3

C:\Documents?and?Settings\Administrator>nslookup?www.b.com

***?Can't?find?server?name?for?address?192.168.6.7:?Timed?ou

Non-authoritative?answer:

Name:????www.b.com

Address:??1.1.1.1

C:\Documents?and?Settings\Administrator>nslookup?www.bj.b.com

Non-authoritative?answer:

Name:????www.bj.b.com

Address:??2.2.2.2

總結(jié)

以上是生活随笔為你收集整理的linux下实现dns服务器,linux下DNS服务器的实现1的全部內(nèi)容，希望文章能夠幫你解決所遇到的問題。

如果覺得生活随笔網(wǎng)站內(nèi)容還不錯，歡迎將生活随笔推薦給好友。