1、部署主機
- YN101-21.host.com
2、安裝部署bind9
#安裝bind
yum install bind -y
#查看是否安裝成功
[root@yn101-21 ~]# rpm -qa bind
#輸出如下
bind-9.11.4-9.P2.el7.x86_64
3、配置主配置文件
修改named.conf配置文件
vi /etc/named.conf
#文件內容:
options {
listen-on port 53 { 192.168.101.21; }; #修改為本機ip地址
listen-on-v6 port 53 { ::1; }; #刪除ipv6地址
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
recursing-file "/var/named/data/named.recursing";
secroots-file "/var/named/data/named.secroots";
allow-query { any; }; #改為any,允許所有ip進行查詢
forwarders { 192.168.101.1; }; #增加該行配置,上一級DNS地址,網關地址
recursion yes; #DNS采用遞歸的算法
dnssec-enable yes; #改為no
dnssec-validation yes; #改為no
檢查配置文件,無任何輸出說明配置文件格式正確
named-checkconf /etc/named.conf
4、配置區域配置文件
修改區域配置文件,將以下配置添加到配置文件中,分別配置了主機域和業務域
vi /etc/named.rfc1912.zones
#新增內容
zone "host.com" IN {
type master;
file "host.com.zone";
allow-update { 192.168.101.21; };
};
zone "yn.com" IN {
type master;
file "yn.com.zone";
allow-update { 192.168.101.21; };
};
檢查配置文件,無錯誤信息輸出說明配置正確
named-checkzone /etc/named.rfc1912.zones
5、配置區域數據文件
配置主機域數據文件,在/var/named/目錄下新建host.com.zone配置文件
vi /var/named/host.com.zone
#將以下配置文件粘貼到新建文件里面,;表示注釋
$ORIGIN host.com.
$TTL 600 ; 10 minutes
@ IN SOA dns.host.com. dnsadmin.host.com. (
2020021501 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS dns.host.com.
$TTL 60 ; 1 minute
dns A 192.168.101.21
YN101-21 A 192.168.101.21
YN101-22 A 192.168.101.22
YN101-31 A 192.168.101.31
YN101-32 A 192.168.101.32
YN101-100 A 192.168.101.100
配置業務域數據文件,在/var/named/目錄下新建yn.com.zone配置文件
vi /var/named/yn.com.zone
#將以下配置文件粘貼到新建文件里面,;表示注釋
$ORIGIN yn.com.
$TTL 600 ; 10 minutes
@ IN SOA dns.yn.com. dnsadmin.yn.com. (
2020021501 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS dns.yn.com.
$TTL 60 ; 1 minute
dns A 192.168.101.21
驗證區域數據文件
[root@yn101-21 ~]# named-checkzone host.com /var/named/host.com.zone
zone host.com/IN: loaded serial 2020021501
OK
[root@yn101-21 ~]# named-checkzone yn.com /var/named/yn.com.zone
zone yn.com/IN: loaded serial 2020021501
OK
6、啟動服務
啟動bind
systemctl start named
systemctl enable named
啟動報錯,重點檢查配置文件格式(空格,分號等),因為配置文件格式要求嚴格
#配置文件錯誤,啟動報錯
#systemctl status named查看報錯信息
[root@yn101-21 ~]# systemctl start named
Job for named.service failed because the control process exited with error code. See "systemctl status named.service" and "journalctl -xe" for details.
查看DNS服務是否啟動成功
#查看DNS服務是否啟動
[root@yn101-21 ~]# netstat -luntp|grep 53
tcp 0 0 192.168.101.21:53 0.0.0.0:* LISTEN 26587/named
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 26587/named
tcp6 0 0 :::53 :::* LISTEN 26587/named
tcp6 0 0 ::1:953 :::* LISTEN 26587/named
udp 0 0 192.168.101.21:53 0.0.0.0:* 26587/named
udp6 0 0 :::53 :::* 26587/named
檢查是否正常解析
[root@yn101-21 ~]# dig -t A YN101-22.host.com @192.168.101.21 +short
192.168.101.22
查看配置/etc/resolv.conf是否有search host.com,如果沒有新增一行search host.com
cat /etc/resolv.conf
#Generated by NetworkManager
search host.com #新增
nameserver 192.168.101.21
修改DNS1,將所有服務器的DNS1改為192.168.101.21,分別ping YN101-22(所有服務器都能ping通)和baidu.com,如果能ping通說明配置成功。
7、window配置
修改VMnet8的DNS服務為192.168.101.21,因為項目要在瀏覽器中進行訪問。設置完成后ping yn101-22.host.com,ping通配置成。如果ping不通,可修改本地網絡的DNS測試。
