会员投稿
投稿指南named搭建智能DNS
日期:2011-10-22
点击:127
来源: 未知
实现目标:来自电信的ip访问电信线路上的服务器,来自网通的ip访问网通线路上的服务器,来自其它区的ip还是访问电信线路上的服务器。
1.安装bind软件包(我这里用系统自带的rpm包)bind-9.7.0-5.P2.el6.i686bind-utils-9.7.0-5.P2.el6.i686bind-chroot-9.7.0-5.P2.el6.i6862.创建主配置文件cd /var/named/chroot/ //我这里根目录是虚拟根目录/var/named/chroot/vim etc/named.conf include "/etc/cnc.acl";include "/etc/ctc.acl";options{ directory "/var/named"; dump-file "data/cache_dump.db"; statistics-file "data/named_stats.txt"; memstatistics-file "data/named_mem_stats.txt"; listen-on port 53 { 192.168.10.8; }; //这个是我的dns服务器的ip listen-on-v6 port 53 { ::1; };};logging{ channel default_debug { file "data/named.run"; severity dynamic; };};view "cnc" //网通{ match-clients { cnc; }; //这个cnc是在下面那个cnc.acl文件中定义的 zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "wt/qikangwei.com.zone"; };};view "ctc" //电信{ match-clients { ctc; }; zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "dx/qikangwei.com.zone"; };};view "other"{ match-clients { any; }; zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "dx/qikangwei.com.zone"; };};保存退出3.创建网通和电信的ip文件vim etc/cnc.aclacl cnc{192.168.10.1;}; //这里为了测试,我就随便写了一个ip,实际应该填写真实的网通ipvim etc/ctc.acl acl ctc{192.168.10.100;}; //这里为了测试,我就随便写了一个ip,实际应该填写真实的电信ip4.创建区域数据文件cd var/named/mkdir wtmkdir dxcp /var/named/named.ca ./chmod 644 named.cavim wt/qikangwei.com.zone@ IN SOA qikangwei.com. admin.qikangwei.com. ( 20111021 3H 15M 1W 1D)@ IN NS nginx.com.www IN A 192.168.10.8vim dx/qikangwei.com.zone $TTL 86400@ IN SOA qikangwei.com. admin.qikangwei.com. ( 20111021 3H 15M 1W 1D)@ IN NS nginx.com.www IN A 192.168.10.95.启动named服务service named start
(注:检查主配置文件是否正确,可输入named-checkconf -t /var/named/chroot/ /etc/named.conf 检查区域数据文件是否配置正确,可输入named-checkzone qikangwei.com /var/named/chroot/var/named/wt/qikangwei.com.zone)
1.安装bind软件包(我这里用系统自带的rpm包)bind-9.7.0-5.P2.el6.i686bind-utils-9.7.0-5.P2.el6.i686bind-chroot-9.7.0-5.P2.el6.i6862.创建主配置文件cd /var/named/chroot/ //我这里根目录是虚拟根目录/var/named/chroot/vim etc/named.conf include "/etc/cnc.acl";include "/etc/ctc.acl";options{ directory "/var/named"; dump-file "data/cache_dump.db"; statistics-file "data/named_stats.txt"; memstatistics-file "data/named_mem_stats.txt"; listen-on port 53 { 192.168.10.8; }; //这个是我的dns服务器的ip listen-on-v6 port 53 { ::1; };};logging{ channel default_debug { file "data/named.run"; severity dynamic; };};view "cnc" //网通{ match-clients { cnc; }; //这个cnc是在下面那个cnc.acl文件中定义的 zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "wt/qikangwei.com.zone"; };};view "ctc" //电信{ match-clients { ctc; }; zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "dx/qikangwei.com.zone"; };};view "other"{ match-clients { any; }; zone "." IN { type hint; file "named.ca"; }; zone "qikangwei.com" { type master; file "dx/qikangwei.com.zone"; };};保存退出3.创建网通和电信的ip文件vim etc/cnc.aclacl cnc{192.168.10.1;}; //这里为了测试,我就随便写了一个ip,实际应该填写真实的网通ipvim etc/ctc.acl acl ctc{192.168.10.100;}; //这里为了测试,我就随便写了一个ip,实际应该填写真实的电信ip4.创建区域数据文件cd var/named/mkdir wtmkdir dxcp /var/named/named.ca ./chmod 644 named.cavim wt/qikangwei.com.zone@ IN SOA qikangwei.com. admin.qikangwei.com. ( 20111021 3H 15M 1W 1D)@ IN NS nginx.com.www IN A 192.168.10.8vim dx/qikangwei.com.zone $TTL 86400@ IN SOA qikangwei.com. admin.qikangwei.com. ( 20111021 3H 15M 1W 1D)@ IN NS nginx.com.www IN A 192.168.10.95.启动named服务service named start
(注:检查主配置文件是否正确,可输入named-checkconf -t /var/named/chroot/ /etc/named.conf 检查区域数据文件是否配置正确,可输入named-checkzone qikangwei.com /var/named/chroot/var/named/wt/qikangwei.com.zone)
Tags:
相关文章列表:
推荐内容
最新文章
- CentOS 升级python2.6 到最新的python3.3
- linux iptables 保存 删除规则命令
- 阿里云ECS iptables 端口映射转发实现共享IP 访问内网
- rsync本地同步目录镜像
- Nginx+Tomcat+Session 高性能群集搭建(测试通过)
- 《Cisco/H3C交换机配置与管理完全手册(第2版)》终稿
- Linux用户、用户组和文件权限控制的学习
- 取消Windows服务器非正常启动后的原因选择
- CentOS5.5下DNS配置(初级篇)
- linux配置时间服务器(ntp)
- 在Windows Server 2008中创建密码重设盘 刘道军
- 使用密码重设盘重设密码
- Linux常用实际命令(个人整理)
- check client group policies
- 企业生产环境利用ATIES对服务器进行远程备份
关于我们 - 联系我们 - 广告服务 - 友情链接 - 网站地图 - 版权声明 - 发展历史