马哥博客作业第九周
1、配置 bind 服务,实现 www.magedu.org 域名解析
1>安装bind服务端及客户端软件
#yum -y install bind bind-utils
2>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
3>编写DNS区域解析库文件
#cp -p /var/named/named.localhost /var/named/magedu.org.zone
#vim /var/named/magedu.org.zone
$TTL 1D
@ IN SOA master admin (
2020072415 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS master
master A 10.0.0.202
www A 10.0.0.203
* A 10.0.0.203
@ A 10.0.0.203
4>将区域解析库文件和区域配置文件关联
#vim /etc/named.rfc1912.zones,添加如下配置
zone "magedu.org" IN {
type master;
file "magedu.org.zone";
};
5> 检查配置文件和数据库文件格式,并启动服务
#named-checkconf
#named-checkzone magedu.org /var/named/magedu.org.zone
#systemctl start named #第一次启动服务
#rndc reload #不是第一次启动服务
6>在客户端进行测试
#nslookup www.magedu.org
Server: 10.0.0.202
Address: 10.0.0.202#53
Name: www.magedu.org
Address: 10.0.0.203
2、配置 bind 服务,实现域名反向解析
1>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
2>编写DNS区域解析库文件
#cp -p /var/named/named.loopback /var/named/10.0.0.zone
#vim /var/named/10.0.0.zone
$TTL 1D
@ IN SOA ns1 admin.magedu.org. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS ns1.magedu.org.
201 PTR www.magedu.org.
203 PTR app.magedu.org.
3>将区域解析库文件和区域配置文件关联
#vim /etc/named.rfc1912.zones,添加如下配置
zone "0.0.10.in-addr.arpa" IN {
type master;
file "10.0.0.zone";
};
4> 检查配置文件和数据库文件格式,并启动服务
#named-checkconf
#named-checkzone 0.0.10.in-addr.arpa 10.0.0.zone
#systemctl start named #第一次启动服务
#rndc reload #不是第一次启动服务
5>在客户端进行测试
#nslookup 10.0.0.201
Server: 10.0.0.202
Address: 10.0.0.202#53
201.0.0.10.in-addr.arpa name = www.magedu.org.
#nslookup 10.0.0.203
Server: 10.0.0.202
Address: 10.0.0.202#53
203.0.0.10.in-addr.arpa name = app.magedu.org.
3、配置 bind 服务,实现主从 DNS 服务配置:
DNS主服务器:10.0.0.202
DNS从服务器:10.0.0.203
web服务器:10.0.0.203
DNS客户端:10.0.0.201
主DNS服务端配置
#yum install bind -y
1>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
#allow-transfer { 10.0.0.203; };
2>编写DNS区域解析库文件
#cp -p /var/named/named.localhost /var/named/magedu.org.zone
#vim /var/named/magedu.org.zone
$TTL 1D
@ IN SOA master admin (
1; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS master
NS slave1
master A 10.0.0.202
slave1 A 10.0.0.203
www A 10.0.0.203
* A 10.0.0.203
@ A 10.0.0.203
3>将区域解析库文件和区域配置文件关联
#vim /etc/named.rfc1912.zones,添加如下配置
zone "magedu.org" {
type master;
file "magedu.org.zone";
};
4>加载配置文件
#rndc reload
从DNS服务器配置
#yum install bind -y
1>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
#allow-transfer {none;};
2>修改区域配置文件
#vim /etc/named.rfc1912.zones,添加如下配置
zone "magedu.org" IN {
type slave;
masters {10.0.0.202;};
file "slaves/magedu.org.zone.slave";
};
3>加载配置文件
#rndc reload
客户端测试主从DNS服务架构
1>修改客户端DNS设置
#vim /etc/sysconfig/network-scripts/ifcfg-eth0
DNS1=10.0.0.202
DNS2=10.0.0.203
2>安装DNS客户端测试软件
#yum -y install bind-utils
3>客户端验证域名是否可以解析
#nslookup www.magedu.org
Server: 10.0.0.202
Address: 10.0.0.202#53
Name: www.magedu.org
Address: 10.0.0.203
4>在主服务器上停止DNS服务
#systemctl stop named
5>验证从DNS服务器仍然可以查询
#nslookup www.magedu.org
Server: 10.0.0.203
Address: 10.0.0.203#53
Name: www.magedu.org
Address: 10.0.0.203
4、 配置 bind 服务,实现子域服务器:
父域DNS服务端配置(10.0.0.202)
#yum install bind -y
1>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
#allow-transfer { 10.0.0.203; };
2>编写父DNS区域解析库文件
#cp -p /var/named/named.localhost /var/named/magedu.org.zone
#vim /var/named/magedu.org.zone
$TTL 1D
@ IN SOA master admin (
1; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS master
NS slave1
k8s NS k8sub
k8sub A 10.0.0.203
master A 10.0.0.202
slave1 A 10.0.0.203
www A 10.0.0.203
* A 10.0.0.203
@ A 10.0.0.203
3>将区域解析库文件和区域配置文件关联
#vim /etc/named.rfc1912.zones,添加如下配置
zone "magedu.org" {
type master;
file "magedu.org.zone";
};
4>加载配置文件
#rndc reload
子域DNS服务器配置(10.0.0.203)
#yum install bind -y
1>修改DNS配置文件
#vim /etc/named.conf
#注释掉下面两行
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
#allow-transfer {none;};
2>编写子DNS区域解析库文件
#cp -p /var/named/named.localhost/var/named/k8s.magedu.org.zone
#vim /var/named/k8s.magedu.org.zone
$TTL 1D
@ IN SOA master admin (
1; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS master
master A 10.0.0.203
www A 1.1.1.1
3>将区域解析库文件和区域配置文件关联
#vim /etc/named.rfc1912.zones,添加如下配置
zone "k8s.magedu.org" IN {
type master;
file "k8s.magedu.org.zone";
};
4>加载配置文件
#rndc reload
客户端测试(通过父域查找)
#dig www.k8s.magedu.org
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.k8s.magedu.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11651
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;www.k8s.magedu.org. IN A
;; ANSWER SECTION:
www.k8s.magedu.org. 85472 IN A 1.1.1.1
;; AUTHORITY SECTION:
k8s.magedu.org. 86400 IN NS k8sub.magedu.org.
;; ADDITIONAL SECTION:
k8sub.magedu.org. 86400 IN A 10.0.0.203
;; Query time: 1 msec
;; SERVER: 10.0.0.202#53(10.0.0.202)
;; WHEN: Mon Jul 27 12:52:32 2020
;; MSG SIZE rcvd: 88
通过子域查找
#dig www.k8s.magedu.org @10.0.0.203
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.k8s.magedu.org @10.0.0.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1530
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;www.k8s.magedu.org. IN A
;; ANSWER SECTION:
www.k8s.magedu.org. 86400 IN A 1.1.1.1
;; AUTHORITY SECTION:
k8s.magedu.org. 86400 IN NS master.k8s.magedu.org.
;; ADDITIONAL SECTION:
master.k8s.magedu.org. 86400 IN A 10.0.0.203
;; Query time: 1 msec
;; SERVER: 10.0.0.203#53(10.0.0.203)
;; WHEN: Mon Jul 27 12:55:46 2020
;; MSG SIZE rcvd: 89
浙公网安备 33010602011771号