当前位置: 首页 > news >正文

部署DNS主从服务器

news 2026/4/5 14:25:58

1、主DNS服务器部署

1.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo

yum clean all && yum makecache

1.2、安装dns

yum install -y bind bind-utils

1.3、配置主DNS服务器

vim /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-query { any; };

allow-transfer { 192.168.52.17; }; # 从服务器IP

recursion yes;

allow-recursion { any; }; # 新增

};

# 配置正向解析

zone "westos1.com" IN {

type master;

file "westos1.com.zone";

allow-transfer { 192.168.52.17; };

allow-update { none; };

};

# 配置反向解析

zone "52.168.192.in-addr.arpa" IN {

type master;

file "192.168.52.zone";

allow-transfer { 192.168.52.17; };

};

cd /var/named

cp named.empty westos1.com.zone

cp named.empty 192.168.52.zone

chown -R named.named 192.168.52.zone westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

vi 192.168.52.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

15 IN PTR dns.westos1.com.

15 IN PTR www.westos1.com.

1.4、检查反向区域

named-checkzone westos1.com /var/named/westos1.com.zone

named-checkzone 52.168.192.in-addr.arpa /var/named/192.168.52.zone

1.5、启动named

systemctl restart named

systemctl enable named

systemctl status named

1.6、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

2、从DNS服务器部署

2.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-8.repo

yum clean all && yum makecache

2.2、安装dns

yum install -y bind bind-utils

2.3、配置从DNS服务器

vi /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-transfer { none; };

recursion yes;

allow-recursion { any; };

};

zone "westos1.com" IN {

type slave;

file "westos1.com.zone";

masters { 192.168.52.15; };

allow-update { none; }; # 新增

};

cd /var/named

cp named.empty westos1.com.zone

chown -R named.named westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

2.4、启动named

systemctl restart named

systemctl enable named

systemctl status named

2.5、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

3、dns验证

dig -t A www.westos1.com @192.168.52.15

http://www.jsqmd.com/news/244967/

相关文章:

  • 特性与反射总结
  • linux主机安全加固指南!
  • AI agents协作分析社交网络:评估公司的社会影响力
  • 大规模语言模型在自动诗歌创作中的探索
  • 亲测好用!10款一键生成论文工具测评:本科生毕业论文必备清单
  • AI应用架构师必知:优化AI系统故障诊断的方案
  • AUTOSAR如何自动化生成BSW、RTE、AP模块并进行一致性校验?
  • SRAM 芯片容量计算及常见型号速查表
  • 计算机毕业设计springboot互联网就医系统 基于Spring Boot的互联网医疗服务平台设计与实现 Spring Boot框架下的在线医疗系统开发与应用
  • 救命神器8个AI论文工具,专科生搞定毕业论文+格式规范!
  • 【卫星】全球导航卫星系统GNSS中的欺骗与欺骗检测算法,模拟载体在正常GNSS导航和GNSS欺骗攻击下的运动状态,通过IMU+GNSS融合定位,最终实现欺骗检测与结果分析附matlab代码
  • 单片机基础知识 -- HADDR
  • 深度测评 自考必备 9款一键生成论文工具TOP9推荐
  • 【电力系统】基于混合粒子群优化-禁忌搜索优化在光伏丰富的配电网络中用于优化电池储能系统的位置、容量和调度附matlab代码
  • 一次内网开发环境访问方式的改进实践:使用 FRP 替代远程桌面
  • 在Markdown文档中添加目录的方法
  • 计算机网络经典问题透视:媒体播放器与媒体服务器的AB面
  • MySQL事务隔离级别:从并发混乱到数据一致性守护者
  • 巴西木培养养护的原则
  • 2025_NIPS_Follow-the-Perturbed-Leader Nearly Achieves Best-of-Both-Worlds for the m-Set Semi-Bandit
  • 进阶-存储过程3-存储函数
  • 2025_NIPS_Follow-the-Perturbed-Leader Nearly Achieves Best-of-Both-Worlds for the m-Set Semi-Bandit
  • 模组日志技术体系介绍 !
  • 一文彻底搞懂机器学习评估之“留出法”:从理论、实践到陷阱的深度剖析
  • 进阶-存储对象4-触发器
  • 大数据实战:如何构建高效的大数据处理平台?
  • 人工智能入门教程
  • 进阶-锁章节
  • 2025_NIPS_C-LoRA: Contextual Low-Rank Adaptation for Uncertainty Estimation in Large Language Models
  • 精益生产不是口号,中小企业上手最快的5类工具