Chinaunix首页 | 论坛 | 博客

Archer的足迹

首页 |  博文目录 |  关于我

domachine

  • 博客访问: 245991
  • 博文数量: 8
  • 博客积分: 0
  • 博客等级: 民兵
  • 技术积分: 240
  • 用 户 组: 普通用户
  • 注册时间: 2014-05-13 08:39
个人简介

笨鸟要先飞

文章分类

全部博文(8)

文章存档

2015年(5)

2014年(3)

我的朋友
最近访客
推荐博文
相关博文
CentOS6.5下配置DNS过程

分类: 系统运维

2014-12-08 18:27:28

安装bind

点击(此处)折叠或打开

  1. # mount -o loop /root/Downloads/CentOS-6.5-x86_64-bin-DVD1.iso /mnt/DVD
  2. # cd /mnt/DVD
  3. # cd Packages
  4. # ll | grep bind
  5. -r--r--r-- 2 root root 4171112 Aug 28 2013 bind-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  6. -r--r--r-- 2 root root 72520 Aug 28 2013 bind-chroot-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  7. -r--r--r-- 2 root root 70696 Nov 25 2013 bind-dyndb-ldap-2.3-5.el6.x86_64.rpm
  8. -r--r--r-- 2 root root 910676 Aug 28 2013 bind-libs-9.8.2-0.17.rc1.el6_4.6.i686.rpm
  9. -r--r--r-- 2 root root 899540 Aug 28 2013 bind-libs-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  10. -r--r--r-- 2 root root 186584 Aug 28 2013 bind-utils-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  11. # rpm -ivh bind-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  12. # rpm -ivh bind-chroot-9.8.2-0.17.rc1.el6_4.6.x86_64.rpm
  • 配置named.conf

点击(此处)折叠或打开

  1. key "rndc-key" {
  2. algorithm hmac-md5;
  3. secret "4Re7AAqoTeAWNLyZUyD1sQ==";
  4. };

  6. controls {
  7. inet 127.0.0.1 port 953
  8. allow { 127.0.0.1; } keys { "rndc-key"; };
  9. };

  11. options
  12. {
  13. // Put files that named is allowed to write in the data/ directory:
  14. directory "/var/named"; // "Working" directory
  15. dump-file "data/cache_dump.db";
  16. statistics-file "data/named_stats.txt";
  17. memstatistics-file "data/named_mem_stats.txt";

  19. //listen-on port 53 { any; };
  20. listen-on port 53 { any; };

  22. //listen-on-v6 port 53 { any; };
  23. listen-on-v6 port 53 { ::1; };

  25. allow-query { any; };
  26. allow-query-cache { any; };

  28. // Enable/disable recursion - recursion yes/no;
  29. recursion yes;
  30. dnssec-enable yes;
  31. dnssec-validation yes;
  32. dnssec-lookaside auto;

  34. bindkeys-file "/etc/named.iscdlv.key";

  36. managed-keys-directory "/var/named/dynamic";

  38. };

  40. logging
  41. {
  42. channel default_debug {
  43. file "data/named.run";
  44. severity dynamic;
  45. };
  46. };

  48. view "localhost_resolver"
  49. {
  50. match-clients { any; };
  51. match-destinations { any; };
  52. recursion yes;

  54. # all views must contain the root hints zone:
  55. zone "." IN {
  56. type hint;
  57. //file "/var/named/named.ca";
  58. file "/dev/null";
  59. };
  60. include "/etc/named.rfc1912.zones";
  61. };
  • 配置zone:named.rfc1912.zones,包括正向解析和反向解析

点击(此处)折叠或打开

  1. // named.rfc1912.zones:
  2. //
  3. // Provided by Red Hat caching-nameserver package
  4. //
  5. // ISC BIND named zone configuration for zones recommended by
  6. // RFC 1912 section 4.1 : localhost TLDs and address zones
  7. // and
  8. // (c)2007 R W Franks
  9. //
  10. // See /usr/share/doc/bind*/sample/ for example named configuration files.
  11. //

  13. zone "oracle.test" IN {
  14. type master;
  15. file "oracle.test.zone";
  16. allow-update { none; };
  17. };

  19. zone "17.168.192.in-addr.arpa" IN {
  20. type master;
  21. file "17.168.192.zone";
  22. allow-update { none; };
  23. };
正向解析文件:

点击(此处)折叠或打开

  1. # cat oracle.test.zone
  2. $TTL 86400
  3. @ IN SOA ns.oracle.test. root.oracle.test. (
  4. 42 ; serial
  5. 3H ; refresh
  6. 15M ; retry
  7. 1W ; expire
  8. 1D ) ; minimum
  9. IN NS ns.oracle.test.
  10. ns IN A 192.168.17.240
  11. node1 IN A 192.168.17.235
  12. node2 IN A 192.168.17.236
  13. node1-vip IN A 192.168.17.237
  14. node2-vip IN A 192.168.17.238
  15. node-scan IN A 192.168.17.239
反向解析文件:

点击(此处)折叠或打开

  1. # cat 17.168.192.zone
  2. $TTL 86400
  3. @ IN SOA ns.oracle.test. root.oracle.test. (
  4. 1997022700 ; serial
  5. 28800 ; refresh
  6. 14400 ; retry
  7. 3600000 ; expire
  8. 86400 ) ; minimum

  10. IN NS ns.oracle.test.
  11. 240 IN PTR ns.oracle.test.
  12. 235 IN PTR node1.oracle.test.
  13. 236 IN PTR node2.oracle.test.
  14. 237 IN PTR node1-vip.oracle.test.
  15. 238 IN PTR node2-vip.oracle.test.
  16. 239 IN PTR node-scan.oracle.test.
配置完控制文件后还要记得生成rndc-key,这里就不再赘述了。
都完成后便可以重启named服务并检查配置了:

点击(此处)折叠或打开

  1. # service named restart
  2. # service named status
  3. # nslookup node1
  4. Server: 192.168.17.240
  5. Address: 192.168.17.240#53

  7. Name: node1.oracle.test
  8. Address: 192.168.17.235
阅读(4904) | 评论(0) | 转发(0) |
0

上一篇:Oracle 11g R2+RAC+ASM+OracleLinux6.4安装详解(图)

下一篇:Linux(RHEL6\CENTOS6\OLE6) 下VNC-SERVER安装与配置

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6