这篇文章将为大家详细讲解有关如何在DNS上安装bind,文章内容质量较高,因此小编分享给大家做个参考,希望大家阅读完这篇文章后对相关知识有一定的了解。四台测试服务器:mail、www、主dns、从DNS主DNS: 192.168.1.27www: 192.168.1.28mail: 192.168.1.29从DNS: 192.168.1.34主、从dns上安装bindyum install bind
一、使用新创建配置文件的方式配置DNS以下操作在主DNS上实现
1、把原配置文件打成bak
[root@localhost ~]# mv /etc/named.conf /etc/named.conf.bak2、重新建主配置文件named.conf[root@localhost ~]# vim /etc/named.confoptions {
directory “/var/named”;
};
zone “.” IN { #根解析
type hint;
file “named.ca”; #根解析文件路径
};
zone “localhost.” IN { #本机正向解析
type master;
file “named.localhost”; #本机正向解析的文件路径
};
zone “1.0.0.127.in-addr.arpa.” IN { #本机反向解析
type master;
file “named.loopback”; #本机反向解析的文件路径
};
3、修改/etc/named.conf的属主属组和权限[root@localhost ~]# chown root:named /etc/named.conf[root@localhost ~]# chmod 640 /etc/named.conf4、检查配置文件是否有语法错误[root@localhost ~]# service named configtest
zone localhost/IN: loaded serial 0
zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
5、启动named服务[root@localhost ~]# service named start
Generating /etc/rndc.key: [确定]
启动 named: [确定]
6、添加区域到配置文件中/etc/named.confzone “shamereedwine.com.” IN {
type master;
file “shamereedwine.com.zone”;
};7、创建区域文件shamereedwine.com.zonecd /var/named目录中vim shamereedwine.com.zone$TTL 600
@ IN SOA dns.shamereedwine.com. admin.shamereedwine.com. (
2017061801
2H
10M
7D
1D )
@ IN NS dns
@ IN MX 10 mail
dns IN A 192.168.1.27
mail IN A 192.168.1.29
www IN A 192.168.1.28
pop IN CNAME mail
ftp IN CNAME www
8、修改区域文件shamereedwine.com.zone的属组和属主[root@localhost named]# chown root:named shamereedwine.com.zone
[root@localhost named]# chmod 640 shamereedwine.com.zone
9、检查语法是否有错误[root@localhost named]# service named configtest
zone localhost/IN: loaded serial 0
zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
zone shamereedwine.com/IN: loaded serial 201706180110、重新启动named服务[root@localhost named]# service named restart
停止 named:. [确定]
启动 named: [确定]
11、使用dig命令测试dns解析
[root@localhost named]# dig -t NS shamereedwine.com
; > DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2 > -t NS shamereedwine.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;shamereedwine.com. IN NS
;; ANSWER SECTION:
shamereedwine.com. 600 IN NS dns.shamereedwine.com.
;; ADDITIONAL SECTION:
dns.shamereedwine.com. 600 IN A 192.168.1.27
;; Query time: 1 msec
;; SERVER: 192.168.1.27#53(192.168.1.27)
;; WHEN: Mon Jun 19 07:49:56 2017
;; MSG SIZE rcvd: 69
12、使用dig命令解析pop.shamereedwine.com[root@localhost named]# dig -t A pop.shamereedwine.com
; > DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2 > -t A pop.shamereedwine.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;pop.shamereedwine.com. IN A
;; ANSWER SECTION:
pop.shamereedwine.com. 600 IN CNAME mail.shamereedwine.com.
mail.shamereedwine.com. 600 IN A 192.168.1.29
;; AUTHORITY SECTION:
shamereedwine.com. 600 IN NS dns.shamereedwine.com.
;; ADDITIONAL SECTION:
dns.shamereedwine.com. 600 IN A 192.168.1.27
;; Query time: 1 msec
;; SERVER: 192.168.1.27#53(192.168.1.27)
;; WHEN: Mon Jun 19 07:54:39 2017
;; MSG SIZE rcvd: 108二、使用原有配置文件配置DNS以下操作在主DNS上实现
1、vim /etc/named.confoptions {
directory “/var/named”;
dump-file “/var/named/data/cache_dump.db”;
statistics-file “/var/named/data/named_stats.txt”;
memstatistics-file “/var/named/data/named_mem_stats.txt”;
recursion yes;
/* Path to ISC DLV key */};logging {
channel default_debug {
file “data/named.run”;
severity dynamic;
};
};zone “.” IN {
type hint;
file “named.ca”;
};include “/etc/named.rfc1912.zones”;
2、vim /etc/named.rfc1912.zones #在该主配置文件的扩展配置文件里加入shamereedwine.com的域zone “shamereedwine.com” IN {
type master;
file “shamereedwine.com.zone”;
};
3、创建区域文件 #创建shamereedwine.com.zonecd开发云主机域名 /var/namedvim shamereedwine.com.zone$TTL 600
@ IN SOA dns.shamereedwine.com. admin.shamereedwine.com. (
2017061801
1H
5M
3D
12H )
IN NS dns
IN MX 10 mail
dns IN A 192.168.1.27
mail IN A 192.168.1.29
www IN A 192.168.1.28
pop IN CNAME mail
ftp IN CNAME wwwchown root:named shamereedwine.com.zone #改变该区域的属主和属组chown 640 shamereedwine.com.zone #改变权限4、检查配置文件和区域文件named-checkconfnamed-checkzone “shamereedwine.com” shamereedwine.com.zone5、重新启动named服务service named restart6、测试解析[root@dns named]# dig -t NS shamereedwine.com; > DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2 > -t NS shamereedwine.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1;; QUESTION SECTION:
;shamereedwine.com.INNS;; ANSWER SECTION:
shamereedwine.com.600INNSdns.shamereedwine.com.;; ADDITIONAL SECTION:
dns.shamereedwine.com.600INA192.168.1.27;; Query time: 0 msec
;; SERVER: 192.168.1.27#53(192.168.1.27)
;; WHEN: Wed May 4 02:25:01 2016
;; MSG SIZE rcvd: 69
7、使用nslookup 查看[root@dns named]# nslookup
> set q=A
> www.shamereedwine.com
Server:192.168.1.27
Address:192.168.1.27#53Name:www.shamereedwine.com
Address: 192.168.1.28
> set q=MX
> shamereedwine.com
Server:192.168.1.27
Address:192.168.1.27#53shamereedwine.commail exchanger = 10 mail.shamereedwine.com.
> q
Server:192.168.1.27
Address:192.168.1.27#538、配置反向解析配置文件vim /etc/named.rfc1912.zones加入下面所示的反向解析区域参数zone “1.168.192.in-addr.arpa” IN {
type master;
file “192.168.1.zone”;
};9、配置反向解析区域文件cd /var/namedvim 192.168.1.zone$TTL 600
@ IN SOA dns.shamereedwine.com. dnsadmin.shamereedwine.com. (
2017061801
1H
5M
3D
12H )
IN NS dns.shamereedwine.com.
27 IN PTR dns.shamereedwine.com.
28 IN PTR www.shamereedwine.com.
29 IN PTR mail.shamereedwine.com.chown root:named 192.168.1.zone #更改属主和属组chmod 640 192.168.1.zone #设置权限10、测试主配置文件和区域文件的正确性service named configtest
zone localhost.localdomain/IN: loaded serial 0
zone localhost/IN: loaded serial 0
zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
zone 0.in-addr.arpa/IN: loaded serial 0
zone shamereedwine.com/IN: loaded serial 2017061801
zone 1.168.192.in-addr.arpa/IN: loaded serial 201706180111、重启服务service named reload12、测试反向解析 #解析192.168.1.27[root@dns named]# dig -x 192.168.1.27; > DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2 > -x 192.168.1.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1;; QUESTION SECTION: #请求
;27.1.168.192.in-addr.arpa.INPTR;; ANSWER SECTION: #应答
27.1.168.192.in-addr.arpa. 600INPTRdns.shamereedwine.com.;; AUTHORITY SECTION:
1.168.192.in-addr.arpa.600INNSdns.shamereedwine.com.;; ADDITIONAL SECTION:
dns.shamereedwine.com.600INA192.168.1.27;; Query time: 24 msec
;; SERVER: 192.168.1.27#53(192.168.1.27)
;; WHEN: Wed May 4 04:38:55 2016
;; MSG SIZE rcvd: 108
13、使用dig模拟区域传送[root@dns named]# dig -t axfr shamereedwine.com @192.168.1.27; > DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2 > -t axfr shamereedwine.com @192.168.1.27
;; global options: +cmd
shamereedwine.com.600INSOAdns.shamereedwine.com. admin.shamereedwine.com. 2017061801 3600 300 259200 43200
shamereedwine.com.600INNSdns.shamereedwine.com.
shamereedwine.com.600INMX10 mail.shamereedwine.com.
dns.shamereedwine.com.600INA192.168.1.27
ftp.shamereedwine.com.600INCNAMEwww.shamereedwine.com.
mail.shamereedwine.com.600INA192.168.1.29
pop.shamereedwine.com.600INCNAMEmail.shamereedwine.com.
www.shamereedwine.com.600INA192.168.1.28
shamereedwine.com.600INSOAdns.shamereedwine.com. admin.shamereedwine.com. 2017061801 3600 300 259200 43200
;; Query time: 249 msec
;; SERVER: 192.168.1.27#53(192.168.1.27)
;; WHEN: Wed May 4 04:48:31 2016
;; XFR size: 9 records (messages 1, bytes 240)三、配置主从同步服务器主dns服务器: 192.168.1.27
从dns服务器: 192.168.1.34yum install bind1、打开主dns服务器192.168.1.27的主区域文件,添加一条从DNS服务器NS和A记录vim /var/named/shamereedwine.com.zone,如下图所示:2、从DNS服务器192.168.1.34修改DNS主配置文件,改后的主配置文件如下图所示:3、修改主区域配置文件的扩展配置文件/etc/named.rfc1912.zones,添加一个区域,分别指定主DNS服务器地址192.168.1.27和区域文件的所在路径 /var/named/slaves/shamereedwine.com.zone4、启动服务注意:从服务器不需要创建区域数据文件,自动从主服务器同步5、查看系统日志6、可以看到从dns的区域数据文件已经传到/var/named/slaves目录下,文件为shamereedwine.com.zone7、在从DNS上做解析测试,解析www.shamereedwine.com的域名,如下图所示:8、查找本地NS记录,可以看到有两个DNS服务器9、测试同步,在主DNS上的正向区域文件/var/named/shamereedwine.com.zone文件里,加一条A记录,并把序号加1.从DNS的/var/named/slaves/shamereedwine.com.zone文件下:可以看到所加的A记录以成功同步到从dns的区域配置文件中10、编辑反向区域数据文件/etc/named.rfc1912.zones,加上反向区域解析的参数,主DNS的地址192.168.1.27,从DNS区域数据文件的路径/var/named/slaves/192.168.1.zone
11、检查区域文件是否有语法错误、重启服务、查看日志,如下图所示开发云主机域名:named-checkconfservice named reloadtail -f /var/log/messages12、到区域文件的主目录/var/named/slaves下,可以看到192.168.1.zone已经从主DNS服务器192.168.1.27同步过来13、测试反向区域同步:在主DNS192.168.1.27的方向区域数据文件里添加dns2的反向区域数据文件的A记录并把序列号加1从DNS的反向解析配置文件,/var/named/开发云主机域名slaves/192.168.1.zone14、设置访问控制列表区域传送控制: allow-transfer { IP: };
四、配置rndc来管理BINDrndc:密钥 rndc:持有一半密钥,保存于rndc的配置文件中 BIND:持有一半密钥,保存于主配置文件中rndc的配置文件/etc/rndc.conf CentOS,RHEL: 密钥文件
1、使用rndc生成主配置文件2、把下面的一段代码,黏贴到主DNS的配置文件/etc/named.conf里,3、把上面所加代码去掉注释五、BIND子域授权的实现 在父域的配置文件中添加如下项: 授权的子区域名称 子区域的名称服务器 子区域的名称服务器的IP地址1、打开主DNS的正向区域数据文件,加入下图所示的代码,配置一个tech.shamereedwine.com的授权子域
vim shamereedwine.com.zone2、在为授权子域提供DNS服务的服务器(1)、19
这篇文章主要介绍了如何解决phpcms控制器不存在的问题,具有一定借鉴价值,需要的朋友可以参考下。希望大家阅读完这篇文章后大有收获。下面让小编带着大家一起了解一下。控制器不存在解决方法:一、排查问题方法 1、检查链接;2、检查模块下的文件名称是否和链接一致;3…
免责声明:本站发布的图片视频文字,以转载和分享为主,文章观点不代表本站立场,本站不承担相关法律责任;如果涉及侵权请联系邮箱:360163164@qq.com举报,并提供相关证据,经查实将立刻删除涉嫌侵权内容。
微信扫一扫 
