Php文档 Php问答行业资讯 Php论坛 Php手册 Php博客

游戏榜单

软件榜单

关闭导航

热搜榜

热门下载

热门标签

关闭搜索

php爱好者> php文档>DNS

DNS

时间：2007-03-11 来源：lxj821212

DNS配置过程

.com .org

chinaitlab.com sohu.com linux.org kernel.org

使用chinaitlab.com域名服务解析

www.chinaitlab.com

安装BIIND

下载最新bind --http://www.isc.org

ftp://ftp/isc.org/isc/bind9/9.2.3/bind-9.4.0.tar.gz

编译安装

#tar xvzf bind-9.2.3.tar.gz

#cd bind-9.2.3

#./configure –-sysconfdir=/etc --prefix=/usr/local/named

注:这里的etc 主要是DNS的配置文件,而在/usr/local/named里是BIIND的目录,里面有一些相关的命令。

#make

#make install

#vi /etc/named.conf(要手工的编辑文件) 安装查找一个named.conf和caching-nameserver<这个是redhat提供的一个软件包,里面有一个默认的文件，后者会方便一些。

options {

directory “/var/named”;

};

zone “.” {

type hint;

file “named.ca”; ##根文件

}

注：根文件可以到 ftp://ftp.internic.org/domain/named.root下载

more /etc/named.conf 检查一下文件无误

ls /var/named

mkdir /var/named

cd /var/named

配置根服务器

文件/etc/named.conf:

options {directory “/var/named”; };

zone “.”{

type hint;

file “named.ca”;

}

产生named.ca，即ftp://ftp.internic.org/domain/named.root 文件，下载过来，改成named.ca文件，存放在/var/named目录下

vi /etcresolv.conf #本机DNS设置，可以先填写上自己的主机IP#

#vi /etc/resolv.conf

nameserver 127.0.0.1

#echo “nameserver 本机IP” > /etc/resolv.conf

声明这里目前的目录是/usr/local/name/sbin/下

用RNDC控制服务器

#./rndc-confgen > /etc/rndc.conf

#./rndc status

#./named 启动

#tail /var/log/message 看一下日志的记录是否正常

#ps -aux | grep named

#rndc-confgen >/etc/rndc.cnf

#vi /etc/rndc.conf 看一下就可以

#more /etc/rnd.conf 会看到第13行后有一个写着要追加到 named.conf

#tail +13 /etc/rnd.conf >> /etc/named.conf 要打开注释从user的下一行到倒数第一行的注释去掉

#killall -9 named 停止一下

#ps aux |grep named

#./named

#tail /var/log/message

#./rndc reload

会出现成功，请注意一下

#rndc status (看一下服务器)

vi /etc/named.conf

:.,$-1s/^#\ // 注释: 这里是去掉注示标记<. 从当前; $-1到结束语的前一些 ;/ $# #号 ; \ // 到空格删除 ;

#ps aux |grep named

#killall –9 named

#ps aux |grep named

#named

#tail /var/log/messages

#./rndc reload

#./rndc status (目前有根两个域,本地127,根)

#host localhost

#more /etc/hosts (127.0.0.1 localhost.localdomain localhost)

#host locahost 和 #dig 都是靠服务器解析出来的

#/etc/named.conf

zone “localhost” {

type master; #主域

file “named.local”;

};

#cd /var/named/

#vi named.local 以下两个选择一个

示例

@ IN SOA localhost。 root(

2004081201 ; serial

1H ;refresh

15M ;retry

1W ;expire

1D ) ;TTL

IN NS @

IN A 127.0.0.1

#####@ 代表是 localhost类型######SOA区文件##

#rndc reload

#host localhost

#vi named。Local

@ 1D IN SOA localhost. root (

20070111

15M

1D )

localhost. IN NS localhost.

localhost . IN A 127.0.0.1

#######注这里的localhost. 可以不写，就是代理第一行都是@，即localhost.

#rndc reload 加载配置

#host 127.0.0.1

#dig -t A localhost

增加一个正向区

/etc/named.conf

zone “chinaitlab.com”{

type master;

file“chinaitlab.com.zone”;

};

/var/named/chinaitlab.com.zone;

@ 1D IN SOA chinaitlab.com. root.chinaitlab.com. (

20070111

15M

1D )

NS chinaitlab.com.

A 10.0.0.25

www IN A 10.0.0.1

mail IN A 10.0.0.2

dns IN CNAME www

######FQDN ##########

#vi /etc/named.conf

zone “chinaitlab.com” {

type master;

file “chiinaitlab.com.zone”;

};

#cd /var/named/

#cp named.local chinaitlab.com.zone

#vi chinaitlab.com.zone

@ 1D IN SOA chinaitlab.com. root.chinaitlab.com.

20070111

15M

1D )

IN NS ns.chinaitlab.com. #或ns##

IN MX 10 mail.chinaitlab.com.##或mail##

ns IN A 10.0.0.254

ww IN A 10.0.0.1

mail IN A 10.0.0.2

news IN CNAME www

#rndc reload

#tail /var/log/message

#dig chinaitlab.com

#host www.chinaitlab.com

vi chinaitllb.com.zone

@ 1D IN SOA chinaitlab.com. root.chinaitlab.com.

20070111

15M

1D )

IN A 10.0.0.254

IN MX 10 mail.chinaitlab.com.##或mail##

ns IN A 10.0.0.254

ww IN A 10.0.0.1

mail IN A 10.0.0.2

news IN CNAME www

#rndc reload

#host –t a chinaitlab.com

#host news.chinaitlab.com

#host news

#echo “searcj chinaitlab.com” >> /etc/resolv.com

#host news

#host www

#more /etc/named.conf

vi chinaitllb.com.zone

$TTL 1D

@ 1D IN SOA chinaitlab.com. root.chinaitlab.com.

20070111

15M

1D )

IN A 10.0.0.254

IN MX 10 mail.chinaitlab.com.##或mail##

ns IN A 10.0.0.254

ww IN A 10.0.0.1

mail IN A 10.0.0.2

news IN CNAME www

127．0．0的反向区

/etc/named.conf 追加：

zone “0.0.127.in-addr.arpa” {

type master;

file “127.0.0.zone”;

};

编辑/var/named/127.0.0.zone:

@ IN SOA @ root.localhost. (20070111 1H 15M 1W 1D )

IN NS localhost.

254 IN PRT localhost.

测试：

rndc reload

host 127.0.0.1

#vi /etc/named.conf

zone “0.0.127.in-addr.arp” {

type mast;

file “127.0.0.zone”;

};

#vi 127.0.0.zone ###@是 0.0.127.in-addr.arp##

$TTL 1D

@ IN SOA @ root.localhost. ( 20070111 1H 15M 1W 1D)

IN NS localhost.

1 IN PTR localhost.

##和上一条是一样的1.0.0.127.in-addr.arpa. IN PTR localhost.##

# rndc reload

#host 127.0.0.1

# dig 127.0.0.1 不支持

#dig -t PTR 127.0.0.1

#dig –x 127.0.0.1

#dig -t PTR 1.0.0.127.in-addr.arpa

增加一个反向区

/etc/named.conf

zone “0.168.192.in-addr.arpa” {

type mast;

file “192.168.0.zone”;

/var/named/192.168.0.zone

@ IN SOA chinaitlab.com. root.chinaitlab.

200060121

36000

7200

360000

86400 )

IN NS chinaitlab.com.

1 IN A ww.chinaitlab.com.

254 IN A ns.chinaitlab.com.

3.0.168.192.in-addr.arpa. IN A mail.chinitlab.com.

#rndc reload

#host 192.168.0.2

#host 192.168.0.3

子域授权

实际

#vi chinaitlab.com(增加)

domain IN NS ns.domain

ns.domain IN A 10.0.0.2

(也可以用domain 代表 ns.domain主机)

#hos ns.domin.com (服务器不给回应的) rndc 也不可以

之后到 10.0.0.2上去

ssh 10.0.0.2

事先确定远程主机有相应的服务器软件,并可能配置

#vi named.conf

zone “domain.chinitlab.com” {

type master;

file “domain.chinitlab.com.zone”;

};

vi /var/named/domain.chinaitlab.com.zone

TTL 1D

@ IN SOA @ root (

20070121 1H 15M 1W 1D )

IN NS ns

NS IN A 10.0.0.2

www IN A 10.1.0.254

#rndc reload

#echo “nameserver 127.0.0.1” >/etc/resolv.conf

#host ns.doman.example.com

#more /etc/named.conf

#more /var/named/domain.chinaitlab.zone

#host www.domain.chinaitlab.com

#exit 回到本机

#host ns.domain.chinaitlab.com

#host ww.domain.chinaitlab.com

#vi /etc/resovle .conf

nameserver 10.0.0.2 这样就不可以,它是从父域开始找的

#host www.domain.chinaitlab.com

辅助域名服务器

实际

#ifconfig

#host -t SOA chinaitlab.com

#ssh 10.0.0.2 辅助服务器

#host www.chinaitlab.com

#vi /etc/named.conf

zone “chinaitlab.com” {

type slave;

file “chinaitlab.com.zone”; 这个文件会自动和主服务器产生

mast { 10.0.0.254; };

}

#rndc reload

#tail /var/log/message 看一下情况

/var/named文件没有权限

#ls -ld /var/named

#chmod g+w /var/named

#rndc reload

#ls /var/named/chinaitlab.com.zone

# more /var/named/chinaitlab.com.zone

#exit 回到自己的服务器

#ls /var/run/ (pid进程信息)

#ls -ld /var/run

#vi /etc/named.conf

options {

directory “/var/named”;

pid-file “/var/run/named/named.pid”;

};

#useradd –s /bin/false -d /dev/null named

#id named

#mkdir /var/run/named

#chown named.named /var/run/named

#chmod 700 /var/run/named

#killall –9 named

#./named –u named

#tail /var/log/message

#ps aux|grep named

#whereis named

/usr/local/sbin/named

#echo “/usr/local/bin/named –u named” >> /etc/rc.local

#ls -ld /var/named 同步数据时要加上可写

同一个域不要配两个

forwarders 转发,当服务器找不到的时候会去相应的服务器找

allow-transfer 是否允许数据同步, 在options是全局的

allow-query是否可以查询局域网就是192.168.0/24

#host www.chinaitlab.com

#rndc reload

#tail /var/log/message

#vi

#host www.chinaitlab.com

DSN的过程

首先编辑 named.conf

#more /etc/named.conf

#rndc-g(

#more /etc/rndc.conf

ls /var/named/

#more /var/named/chinaitlab.com.zone

主机名用.收尾写完就有”.”

#named -u named

#more /etc/resolv.con