RedHat 4 AS DNS配置安装、测试(RedHat 5方法同样)
一、在不是完全安装系统软件包的情况,必需要安装的软件包如下:
[root@dyp Server]# rpm -ivh util-linux-2.13-0.44.el5.i386.rpm
warning: util-linux-2.13-0.44.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID 37017186
Preparing... ########################################### [100%]
package util-linux-2.13-0.44.el5 is already installed
[root@dyp Server]# rpm -ivh caching-nameserver-9.3.3-7.el5.i386.rpm
warning: caching-nameserver-9.3.3-7.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID 37017186
Preparing... ########################################### [100%]
1:caching-nameserver ########################################### [100%]
[root@dyp Server]# rpm -ivh cachefilesd-0.7-6.el5.i386.rpm
warning: cachefilesd-0.7-6.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID 37017186
Preparing... ########################################### [100%]
1:cachefilesd ########################################### [100%]
[root@dyp Server]# rpm -ivh bind-chroot-9.3.3-7.el5.i386.rpm
warning: bind-chroot-9.3.3-7.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID 37017186
Preparing... ########################################### [100%]
package bind-chroot-9.3.3-7.el5 is already installed
[root@localhost Server]# rpm -ivh bind-9.3.3-10.el5.i386.rpm
warning: bind-9.3.3-10.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID 37017186
Preparing... ########################################### [100%]
1:bind ########################################### [100%]
[root@dyp etc]# ls
localtime named.conf-bak rndc.key
named.caching-nameserver.conf named.rfc1912.zones
装完上面包后,就会多了named.conf-bak,named.caching-nameserver.conf,named.rfc1912.zones这几个文件
[root@dyp named]# ls
data localhost.zone named.ca named.local slaves
localdomain.zone named.broadcast named.ip6.local named.zero
装完上面包后,就会多了localhost.zone,named.ca,named.local,localdomain.zone,named.broadcast, named.ip6.local,named.zero 这几个文件
二、配置named.conf文件
1、默认/etc/目录下没有named.conf文件,需要从/var/named/chroot/etc/拷贝过去
[root@shanghai ~]# cd /var/named/chroot/etc/
[root@shanghai etc]# ls
localtime named.conf named.conf.rpmsave rndc.key
[root@shanghai etc]# pwd
/var/named/chroot/etc
[root@shanghai etc]# cp named.conf /etc/named.conf
2、编辑named.conf,在最底端建立一个正向区域和一个反向区域
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
zone "test.com" IN {
type master;
file "test.com";
allow-update { none; };
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "test.192.168.1";
allow-update { none; };
};
include "/etc/rndc.key";
三、配置区域文件test.com和test.192.168.1
正向
[root@shanghai ~]# cd /var/named/chroot/var/named/
[root@shanghai named]# ls
data named.broadcast named.local test.192.168.1
localdomain.zone named.ca named.zero test.com
localhost.zone named.ip6.local slaves
[root@shanghai named]# cp localhost.zone test.com
[root@shanghai named]# more test.com 注意该版本的LINUX和其他的配置不一样,一定得按下面的模版来
否则会无法解析
$TTL 86400
@ IN SOA @ root.shanghai.test.com. (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS shanghai.test.com.
IN MX 10 shanghai.test.com.
shanghai IN A 192.168.1.106
mail IN CNAME shanghai
www IN CNAME shanghai
反向
[root@shanghai named]# ls
data named.broadcast named.local test.192.168.1
localdomain.zone named.ca named.zero test.com
localhost.zone named.ip6.local slaves
[root@shanghai named]# cp named.local test.192.168.1
[root@shanghai named]# more test.192.168.1 注意该版本的LINUX和其他的配置不一样,一定得按下面的模版来
否则会无法解析
$TTL 86400
@ IN SOA shanghai.test.com. root.shanghai.test.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
@ IN NS shanghai.test.com.
106 IN PTR shanghai.test.com.
106 IN PTR .
106 IN PTR mail.test.com.
四、配置域名服务器查找文件
[root@shanghai ~]# more /etc/resolv.conf
search test.com
nameserver 192.168.1.106
五、重启动named进程
[root@shanghai named]# cd /etc/init.d/
[root@shanghai init.d]# ./named restart
Stopping named: [ OK ]
Starting named: [ OK ]
六、测试
正向
[root@shanghai ~]# nslookup
>
Server: 192.168.1.106
Address: 192.168.1.106#53
canonical name = shanghai.test.com.
Name: shanghai.test.com
Address: 192.168.1.106
> mail.test.com
Server: 192.168.1.106
Address: 192.168.1.106#53
mail.test.com canonical name = shanghai.test.com.
Name: shanghai.test.com
Address: 192.168.1.106
> shanghai.test.com
Server: 192.168.1.106
Address: 192.168.1.106#53
Name: shanghai.test.com
Address: 192.168.1.106
>
反向
> 192.168.1.106
Server: 192.168.1.106
Address: 192.168.1.106#53
106.1.168.192.in-addr.arpa name = .
106.1.168.192.in-addr.arpa name = mail.test.com.
106.1.168.192.in-addr.arpa name = shanghai.test.com.
>
[root@shanghai ~]# ping
PING shanghai.test.com (192.168.1.106) 56(84) bytes of data.
64 bytes from shanghai (192.168.1.106): icmp_seq=0 ttl=64 time=0.028 ms
64 bytes from shanghai (192.168.1.106): icmp_seq=1 ttl=64 time=0.036 ms
64 bytes from shanghai (192.168.1.106): icmp_seq=2 ttl=64 time=0.036 ms
--- shanghai.test.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2000ms
rtt min/avg/max/mdev = 0.028/0.033/0.036/0.006 ms, pipe 2
[root@shanghai ~]# ping mail.test.com
PING shanghai.test.com (192.168.1.106) 56(84) bytes of data.
64 bytes from shanghai (192.168.1.106): icmp_seq=0 ttl=64 time=0.021 ms
64 bytes from shanghai (192.168.1.106): icmp_seq=1 ttl=64 time=0.036 ms
--- shanghai.test.com ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.021/0.028/0.036/0.009 ms, pipe 2
[root@shanghai ~]# ping shanghai.test.com
PING shanghai.test.com (192.168.1.106) 56(84) bytes of data.
64 bytes from shanghai (192.168.1.106): icmp_seq=0 ttl=64 time=0.021 ms
64 bytes from shanghai (192.168.1.106): icmp_seq=1 ttl=64 time=0.045 ms
--- shanghai.test.com ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.021/0.033/0.045/0.012 ms, pipe 2
[root@shanghai ~]#
七、补充我的/etc/hosts里的配置
[root@shanghai etc]# vi hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
192.168.1.106 shanghai
#127.0.0.1 localhost
八、查看53端口是否起来
[root@shanghai etc]# netstat -ant|grep 53
tcp 0 0 192.168.1.106:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN
九、查看日志相关内容是否正常,没有发现报错
[root@shanghai log]# tail -20 messages
Jul 13 19:38:11 shanghai named[7573]: exiting
Jul 13 19:38:11 shanghai named: succeeded
Jul 13 19:38:13 shanghai named[7618]: starting BIND 9.2.4 -u named -t /var/named/chroot
Jul 13 19:38:13 shanghai named[7618]: using 1 CPU
Jul 13 19:38:13 shanghai named[7618]: loading configuration from '/etc/named.conf'
Jul 13 19:38:13 shanghai named[7618]: listening on IPv4 interface lo, 127.0.0.1#53
Jul 13 19:38:13 shanghai named[7618]: listening on IPv4 interface eth0, 192.168.1.106#53
Jul 13 19:38:13 shanghai named[7618]: command channel listening on 127.0.0.1#953
Jul 13 19:38:13 shanghai named[7618]: zone 0.in-addr.arpa/IN: loaded serial 42
Jul 13 19:38:13 shanghai named[7618]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
Jul 13 19:38:13 shanghai named[7618]: zone 1.168.192.in-addr.arpa/IN: loaded serial 1997022700
Jul 13 19:38:13 shanghai named[7618]: zone 255.in-addr.arpa/IN: loaded serial 42
Jul 13 19:38:13 shanghai named[7618]: zone 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 1997022700
Jul 13 19:38:13 shanghai named[7618]: zone test.com/IN: loaded serial 42
Jul 13 19:38:13 shanghai named[7618]: zone localdomain/IN: loaded serial 42
Jul 13 19:38:13 shanghai named[7618]: zone localhost/IN: loaded serial 42
Jul 13 19:38:13 shanghai named: named startup succeeded
Jul 13 19:38:13 shanghai named[7618]: running
Jul 13 19:38:13 shanghai named[7618]: zone test.com/IN: sending notifies (serial 42)
Jul 13 19:38:13 shanghai named[7618]: received notify for zone 'test.com'
[root@shanghai log]#
