DNS
客户端
修改dns
vim /etc/resolv.conf
# Generated by NetworkManager
search ilt.example.com example.com
nameserver 172.25.254.124
dig www.baidu.com
服务端
yum install bind -y
firewall-cmd --permanent --add-service=dns
firewall-cmd --reload
setenforce 0
netstat -antulpe | grep named
vim /etc/named.conf
listen-on port 53 { any; };##设定端口开放 any表示对所有interface开放
allow-query { any; };##回答所有人的问题
forwarders {172.25.254.250;};##缓存谁的答案
dnssec-validation no;
systemctl restart named
正向解析
vim /etc/name.rfc1912.zones
zone "taxing.com" IN {
域名
type master;
file "taxing.com.zone";#域名管理文件名
allow-update { none; };
};
cp /var/named/named.localhost /var/name/taxing.come.zone
vim /var/name/taxing.come.zone
$TTL 1D#缓存更新时间
@ IN SOA dns.taxing.com. timo.taxing.come. (
起始地址 dns域名 域名管理员
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.taxing.com.
dns A 172.25.254.124
www A 172.25.254.152
www A 172.25.254.253
bbs CNAME www.taxing.com.
taxing.com. MX 1 172.25.254.124.
systemctl restart named
客户端dig www.taxing.com
快速访问
dig -t mx taxing.com
dig bbs.taxing.com
反向解析
vim /etc/named.rfc1912.zones
zone "254.25.172.in-addr.arpa" IN {
type master;
file "rito.com.zone";
allow-update { none; };
vim rito.com.zone
$TTL 1D
@ IN SOA dns.rito.com. timo.rito.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns.rito.com.
A 172.25.254.124
178 PTR www.timo.com.
195 PTR www.shasi.com.
systemctl restart named
客户端
dig -x 172.25.254.178
内外网
vim named.conf
view localnet {
match-clients{172.25.254.124;};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
};
view internet {
match-clients {any;};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones.inter";
};
cp -p taxing.com.zone taxing.com.zone.inter
cp -p named.rfc1912.zones named.rfc1912.zones.inter
可改变taxing.com.zone.inter里面的网段来显示
