DNS 的搭建 主从同步&子域授权&分离解析
2014-10-30 15:48
281 查看
DNS服务器
yum -y install bind bind-chroot
mv /etc/named.conf /etc/named.conf.origin
vim /var/named/chroot/etc/named.conf
options { #定义全局选项
directory "/var/named"; #区域数据文件的默认存放位置
allow-transfer { 192.168.1.199; }; #授权从DNS服务器
};
zone "zongxuan.com" IN { #定义正向解析区域
type master; #类型为主区域
file "zongxuan.com.zone"; #本区域的地址数据文件
};
zone "1.168.192.in-addr.arpa" IN { #设置反向解析区域(不是必需的,可选)
type master;
file "192.168.1.arpa";
};
vim /var/named/chroot/var/named/zongxuan.com.zone
$TTL 86400 #有效记录的生存周期
@ IN SOA zongxuan.com. admin.zongxuan.com. (
2013101601 #更新序号
3H #刷新时间
15M #重试间隔
1W #失效时间
1D #无效记录的生存周期
)
@ IN NS ns.zongxuan.com. #本域的DNS服务器地址
ns IN A 192.168.1.254
svr6 IN A 192.168.1.6
www IN A 192.168.2.100
mail IN A 192.168.3.25
ftp IN CNAME www #CNAME别名记录
* IN A 192.168.4.100 #*泛域名解析
vim /var/named/chroot/var/named/192.168.1.arpa
$TTL 86400
@ IN SOA zongxuan.com. admin.zongxuan.com. (
2013101601
3H
15M
1W
1D
)
@ IN NS ns.zongxuan.com.
254 IN PTR ns.zongxuan.com.
6 IN PTR ser1.zongxuan.com.
25 IN PTR mail.zongxuan.com.
100 IN PTR www.zongxuan.com.
named-checkconf etc/named.conf
named-checkzone zongxuan.com var/named/zongxuan.com.zone
named-checkzone 1.168.192.in-addr.arpa var/named/192.168.1.arpa
service named restart
主从DNS服务器
yum -y install bind bind-chroot
cd /var/named/chroot/etc/
scp root@192.168.1.254:/var/named/chroot/etc/named.conf ./
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
#allow-transfer { 192.168.1.199; }; //移除此行授权配置
};
zone "zongxuan.com" IN {
type slave; //区域类型改为slave
file "slaves/zongxuan.com.zone"; //改为保存到slaves/子目录下
masters { 192.168.1.254; }; //指定主DNS服务器的地址
};
zone "1.168.192.in-addr.arpa" IN {
type slave; //区域类型改为slave
file "slaves/192.168.1.arpa"; //指定主DNS服务器的地址
masters { 192.168.1.254; }; //改为保存到slaves/子目录下
};
service named restart
子域授权
子DNS
yum -y install bind bind-chroot
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
};
zone "bj.zongxuan.com" IN { #权威域bj.zongxuan.com
type master;
file "bj.zongxuan.com.zone";
};
zone "zongxuan.com" IN { #转发域zongxuan.com
type forward; #类型为forward
forwarders { 192.168.1.254; }; #若有查询请求转发到父域DNS服务器
};
vim /var/named/chroot/var/named/bj.zongxuan.com.zone
$TTL 86400
@ IN SOA bj.zongxuan.com. admin.bj.zongxuan.com. (
2013101701
3H
15M
1W
1D
)
@ IN NS dns.bj.zongxuan.com.
IN A 192.168.1.199
dns IN A 192.168.1.199
www IN A 1.2.3.4
service named restart
父DNS
vim /var/named/chroot/var/named/zongxuan.com.zone
bj.zongxuan.com. IN NS dns.bj.zongxuan.com.
dns.bj.zongxuan.com. IN A 192.168.1.199
DNS分离解析
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
};
acl "neiwang" { #针对已知地址定义acl
192.168.1.0/24; 127.0.0.0/8;
};
view "mylan" { #定义视图mylan
match-clients { neiwang; }; #适用于mylan定义的客户机地址
zone "zongxuan.com" IN {
type master;
file "zongxuan.com.zone.lan"; #视图mylan的地址数据文件
};
};
view "other" { #定义视图other
match-clients { any; }; #any为内建acl,无需再定义
zone "zongxuan.com" IN {
type master;
file "zongxuan.com.zone.other"; #视图other的地址数据文件
};
};
vim /var/named/chroot/var/named/zongxuan.com.zone.lan
用内网的IP
vim /var/named/chroot/var/named/zongxuan.com.zone.other
用公网的IP
做内网外网分离
移动电信联通分离
客户机
vim /etc/resolv.conf
nameserver 192.168.1.254
nslookup www.zongxuan.com
nslookup www.zongxuan.com 192.168.1.254
yum -y install bind bind-chroot
mv /etc/named.conf /etc/named.conf.origin
vim /var/named/chroot/etc/named.conf
options { #定义全局选项
directory "/var/named"; #区域数据文件的默认存放位置
allow-transfer { 192.168.1.199; }; #授权从DNS服务器
};
zone "zongxuan.com" IN { #定义正向解析区域
type master; #类型为主区域
file "zongxuan.com.zone"; #本区域的地址数据文件
};
zone "1.168.192.in-addr.arpa" IN { #设置反向解析区域(不是必需的,可选)
type master;
file "192.168.1.arpa";
};
vim /var/named/chroot/var/named/zongxuan.com.zone
$TTL 86400 #有效记录的生存周期
@ IN SOA zongxuan.com. admin.zongxuan.com. (
2013101601 #更新序号
3H #刷新时间
15M #重试间隔
1W #失效时间
1D #无效记录的生存周期
)
@ IN NS ns.zongxuan.com. #本域的DNS服务器地址
ns IN A 192.168.1.254
svr6 IN A 192.168.1.6
www IN A 192.168.2.100
mail IN A 192.168.3.25
ftp IN CNAME www #CNAME别名记录
* IN A 192.168.4.100 #*泛域名解析
vim /var/named/chroot/var/named/192.168.1.arpa
$TTL 86400
@ IN SOA zongxuan.com. admin.zongxuan.com. (
2013101601
3H
15M
1W
1D
)
@ IN NS ns.zongxuan.com.
254 IN PTR ns.zongxuan.com.
6 IN PTR ser1.zongxuan.com.
25 IN PTR mail.zongxuan.com.
100 IN PTR www.zongxuan.com.
named-checkconf etc/named.conf
named-checkzone zongxuan.com var/named/zongxuan.com.zone
named-checkzone 1.168.192.in-addr.arpa var/named/192.168.1.arpa
service named restart
主从DNS服务器
yum -y install bind bind-chroot
cd /var/named/chroot/etc/
scp root@192.168.1.254:/var/named/chroot/etc/named.conf ./
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
#allow-transfer { 192.168.1.199; }; //移除此行授权配置
};
zone "zongxuan.com" IN {
type slave; //区域类型改为slave
file "slaves/zongxuan.com.zone"; //改为保存到slaves/子目录下
masters { 192.168.1.254; }; //指定主DNS服务器的地址
};
zone "1.168.192.in-addr.arpa" IN {
type slave; //区域类型改为slave
file "slaves/192.168.1.arpa"; //指定主DNS服务器的地址
masters { 192.168.1.254; }; //改为保存到slaves/子目录下
};
service named restart
子域授权
子DNS
yum -y install bind bind-chroot
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
};
zone "bj.zongxuan.com" IN { #权威域bj.zongxuan.com
type master;
file "bj.zongxuan.com.zone";
};
zone "zongxuan.com" IN { #转发域zongxuan.com
type forward; #类型为forward
forwarders { 192.168.1.254; }; #若有查询请求转发到父域DNS服务器
};
vim /var/named/chroot/var/named/bj.zongxuan.com.zone
$TTL 86400
@ IN SOA bj.zongxuan.com. admin.bj.zongxuan.com. (
2013101701
3H
15M
1W
1D
)
@ IN NS dns.bj.zongxuan.com.
IN A 192.168.1.199
dns IN A 192.168.1.199
www IN A 1.2.3.4
service named restart
父DNS
vim /var/named/chroot/var/named/zongxuan.com.zone
bj.zongxuan.com. IN NS dns.bj.zongxuan.com.
dns.bj.zongxuan.com. IN A 192.168.1.199
DNS分离解析
vim /var/named/chroot/etc/named.conf
options {
directory "/var/named";
};
acl "neiwang" { #针对已知地址定义acl
192.168.1.0/24; 127.0.0.0/8;
};
view "mylan" { #定义视图mylan
match-clients { neiwang; }; #适用于mylan定义的客户机地址
zone "zongxuan.com" IN {
type master;
file "zongxuan.com.zone.lan"; #视图mylan的地址数据文件
};
};
view "other" { #定义视图other
match-clients { any; }; #any为内建acl,无需再定义
zone "zongxuan.com" IN {
type master;
file "zongxuan.com.zone.other"; #视图other的地址数据文件
};
};
vim /var/named/chroot/var/named/zongxuan.com.zone.lan
用内网的IP
vim /var/named/chroot/var/named/zongxuan.com.zone.other
用公网的IP
做内网外网分离
移动电信联通分离
客户机
vim /etc/resolv.conf
nameserver 192.168.1.254
nslookup www.zongxuan.com
nslookup www.zongxuan.com 192.168.1.254
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- Linux之centos6.5搭建DNS分离解析
- Redhat6.5中搭建DNS分离解析服务器
- 搭建DNS服务,构建分离解析的域名服务器。
- Linux之centos6.5搭建DNS分离解析
- Linux—CentOS7.4-DNS三(搭建分离解析的DNS服务器)
- DNS子域授权和分离解析
- DNS服务搭建和正反区域解析
- DNS的高级使用、DNS子域授权、split分离解析
- 搭建DNS与域的分离
- Dnsmasq安装与配置-搭建本地DNS服务器 更干净更快无广告DNS解析
- DNS主从搭建之解析
- DNS子域授权和DNS分离解析
- DNS(BIND) 正向解析 反向解析 基本服务的搭建
- centos5.3 搭建DNS多域名解析服务器的教程
- DNS分离解析简配
- bind9搭建dns,本网可解析,其他网段只解析自定义的域名,不解析公网
- 从DNS基础到在CentOS6.5上“玩着”搭建一个支持正向、反向解析的“
- linux_DNS分离解析
- centos5.3搭建DNS多域名解析服务器
- DNS服务器的搭建以及DNS的正向-反向解析、主从同步、子域授权。 推荐