centos6.5 DNSサーバ構築
5869 ワード
ホスト名cetititi 111を変更することを前提としている[root@cetiti111 ~]# hostname cetiti111 [root@cetiti111 ~]# yum -y install bind*
[root@cetiti111 named]# vi/etc/named.conf
[root@cetiti111 named]# cd/var/named
[root@cetiti111 named]# cp named.empty linux.com.zone
[root@cetiti111 named]# vi linux.com.zone
[root@cetiti111 named]# cp linux.com.zone 192.168.153.rev [root@cetiti111 named]# vi 192.168.153.rev
[root@cetiti111 named]# chown root:named linux.com.zone [root@cetiti111 named]# chown root:named 192.168.153.rev
[root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa/var/named/192.168.153.rev [root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa/var/named/192.168.153.rev [root@cetiti111 named]# 140 iptables -I INPUT -p udp –dport 53 -j ACCEPT [root@cetiti111 named]# 141 iptables -I INPUT -p tcp –dport 53 -j ACCEPT [root@cetiti111 named]# vi/etc/resolv.conf
[root@cetiti111 named]# nslookup 192.168.153.128 Server: 192.168.153.128 Address: 192.168.153.128#53
128.153.168.192.in-addr.arpa name = cetiti111.linux.com.
[root@cetiti111 named]# nslookup cetiti111.linux.com Server: 192.168.153.128 Address: 192.168.153.128#53
Name: cetiti111.linux.com Address: 192.168.153.128
[root@cetiti111 named]# vi/etc/named.conf
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
options {
listen-on port 53 { any; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { any; };
recursion yes;
dnssec-enable yes;
dnssec-validation yes;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
zone "linux.com" {
type master;
file "linux.com.zone";};
zone "153.168.192.in-addr.arpa"{
type master;
file "192.168.153.rev";};
[root@cetiti111 named]# cd/var/named
[root@cetiti111 named]# cp named.empty linux.com.zone
[root@cetiti111 named]# vi linux.com.zone
$TTL 3H
@ IN SOA @ linux.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS cetiti111.linux.com.
cetiti111 A 192.168.153.128
[root@cetiti111 named]# cp linux.com.zone 192.168.153.rev [root@cetiti111 named]# vi 192.168.153.rev
$TTL 3H
@ IN SOA @ linux.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS @
A 192.168.153.128
128 IN PTR cetiti111.linux.com.
[root@cetiti111 named]# chown root:named linux.com.zone [root@cetiti111 named]# chown root:named 192.168.153.rev
[root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa/var/named/192.168.153.rev [root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa/var/named/192.168.153.rev [root@cetiti111 named]# 140 iptables -I INPUT -p udp –dport 53 -j ACCEPT [root@cetiti111 named]# 141 iptables -I INPUT -p tcp –dport 53 -j ACCEPT [root@cetiti111 named]# vi/etc/resolv.conf
# Generated by NetworkManager
nameserver 192.168.153.128
domain localdomain
search localdomain
nameserver 192.168.153.2
[root@cetiti111 named]# nslookup 192.168.153.128 Server: 192.168.153.128 Address: 192.168.153.128#53
128.153.168.192.in-addr.arpa name = cetiti111.linux.com.
[root@cetiti111 named]# nslookup cetiti111.linux.com Server: 192.168.153.128 Address: 192.168.153.128#53
Name: cetiti111.linux.com Address: 192.168.153.128