Linux下架设DNS服务器的架设_百度文库

1、DNS 服务器的架设实验环境:AS4最小化安装实验目标:架设 DNS 服务器编辑:crazylinux 2007.03.22联系方式:大家好!这次我们来学习 Linux 系统中的 DNS 服务器的配置。首先我们需要安装 bind 软件,它位于 AS4的第四章光盘中,rootlocalhost # rpm -ivh /media/cdrom/RedHat/RPMS/bind-9.2.4-2.i386.rpmrootlocalhost # rpm -ivh /media/cdrom/RedHat/RPMS/caching-nameserver-7.3-3.noarch.rpm rootlocalh

2、ost # rpm -qa | grep bindbind-utils-9.2.4-2bind-9.2.4-2bind-libs-9.2.4-2ypbind-1.17.2-3rootlocalhost # rpm -qa | grep cachingcaching-nameserver-7.3-3我们架设 DNS 服务器需要这些软件,实例情况:主域名服务器的地址是 , 从域名服务器的地址是 winxpIP 地址是 74在主域名服务器中添加 域名区域下面我们就来架设主域名服务器1,软件安装完后我们修改配置文件rootlocal

3、host # vi /etc/named.conf修改完后的 named.conf 如下:rootlocalhost # cat /etc/named.conf/ named.conf for Red Hat caching-nameserver/options directory "/var/named"dump-file "/var/named/data/cache_dump.db"statistics-file "/var/named/data/named_stats.txt"/* If there is a firewall

4、between you and nameservers you want * to talk to, you might need to uncomment the query-source * directive below. Previous versions of BIND always asked * questions using port 53, but BIND 8.1 uses an unprivileged * port by default.*/ query-source address * port 53;/ a caching only nameserver confi

5、g/controls inet allow localhost; keys rndckey; ;zone "." IN type hint;file "named.ca"zone "localdomain" IN type master;file "localdomain.zone"allow-update none; ;zone "localhost" IN type master;file "localhost.zone"allow-update no

6、ne; ;zone "" IN type master;file ".zone"zone "1.168.192." IN type master;file "192.168.1.rev"zone "0.0.127." IN type master;file "named.local"allow-update none; ;zone ".....0.0

7、...0." IN type master;file "named.ip6.local"allow-update none; ;zone "255." IN type master;file "named.broadcast"allow-update none; ;zone "0." IN type master;file "named.zero"allow-update none; ;incl

8、ude "/etc/rndc.key"2建立正向和反向区域文件rootlocalhost named# cd /var/named/rootlocalhost named# cp localhost.zone .zone 把 localhost 的摸版 cp 后修改嘿嘿修改完后的 .zone 的文件如下rootlocalhost named# cat .zone$TTL 86400 IN SOA . . (42 ; serial (d. adams3H ; refresh15M ; retry1W ; expiry1D ; minimumIN NS .IN NS .ns1

9、IN A ns2 IN A host1 IN A 74mail IN CNAME . IN MX 5 .rootlocalhost named# cp .zone 192.168.1.rev 把修改完后的 .zone cp一份作为反向配置文件,修改 后如下rootlocalhost named# cat 192.168.1.rev$TTL 86400 IN SOA . . (42 ; serial (d. adams 3H ; refresh15M ; retry1W ; expiry1D ; minimumIN NS .IN

10、NS .2 IN PTR .3 IN PTR .174 IN PTR .3, 对区域文件的测试对 named.conf 的测试rootlocalhost named# named-checkconf 如没语法错误就没任何信息对区域文件测试rootlocalhost named# named-checkzone /var/named/.zonezone loaded serial 42OKrootlocalhost named# named-checkzone 1.168.192. /var/named/192.168.1.rev zone 1.168.192.in-ad

11、/IN: loaded serial 42OK4, rootlocalhost named# cat /etc/resolv.conf 把服务器的 DNS 地址指向自己nameserver search localdomain5,启动 named 服务rootlocalhost named# service named restartStopping named: OK Starting named: OK 6,测试主域名服务rootlocalhost named# host has address rootlocalhost name

12、d# host has address rootlocalhost named# host has address 74rootlocalhost named# host -t mx mail is handled by 5 .rootlocalhost named# host 92. domain name pointer .rootlocalhost named# host 92. domain name pointer

13、 .rootlocalhost named# host 7492. domain name pointer .嘿嘿 今天很顺利,一次 OK下面我们就来架设缓存域名服务器缓存服务器的架设很 easy ,我们只需要安装 caching-nameserver 软件包就 OK下面我们就来架设从域名服务器 (在 中做首先从服务器设置从主服务器中获取 域的正向和反向区域文件,同时他也提 供域名解析1, 安装软件包rootlocalhost RPMS# rpm -ivh bind-9.2.4-2.i386.rpmwar

14、ning: bind-9.2.4-2.i386.rpm: V3 DSA signature: NOKEY, key ID db42a60ePreparing. # 100% 1:bind # 100% rootlocalhost RPMS# rpm -ivh caching-nameserver-7.3-3.noarch.rpmwarning: caching-nameserver-7.3-3.noarch.rpm: V3 DSA signature: NOKEY, key ID db42a60ePreparing. # 100% 1:caching-nameserver warning: /

15、etc/named.conf saved as /etc/named.conf.rpmorig # 100% 2, 设置 named.conf在从域名服务器的 named.conf 中添加 域和其反向解析区域的设置 ,内容如下 rootlocalhost RPMS# cat /etc/named.conf/ named.conf for Red Hat caching-nameserver/options directory "/var/named"dump-file "/var/named/data/cache_dump.db"statistics-f

16、ile "/var/named/data/named_stats.txt"/* If there is a firewall between you and nameservers you want * to talk to, you might need to uncomment the query-source * directive below. Previous versions of BIND always asked * questions using port 53, but BIND 8.1 uses an unprivileged * port by de

17、fault. */ / query-source address * port 53; ; / / a caching only nameserver config / controls inet allow localhost; keys rndckey; ; ; zone "." IN type hint; file "named.ca" ; zone "localdomain" IN type master; file "localdomain.zone" allow-update non

18、e; ; ; zone "localhost" IN type master; file "localhost.zone" allow-update none; ; ; zone "" IN type slave; file "slaves/.zone" masters ; ; ; zone "1.168.192." IN type slave; file "slaves/192.168.1.rev" masters ; ; ; zone "0.0.127." IN type master; file "named.local" allow-update none; ; ; z