Centos 7.4 DNS域名解析

1、安装部署包

yum -y install bind bind-utils bind-chroot

2、启动服务并设置开机自启动

[root@localhost ~]# systemctl start named.service
[root@localhost ~]# systemctl enable named 
Created symlink from /etc/systemd/system/multi-user.target.wants/named.service to /usr/lib/systemd/system/named.service.

3、查看服务是否启动成功

[root@localhost ~]# ps -ef|grep named
[root@localhost ~]# netstat -anntup|grep 53

 

 

 

 

4、修改主配置文件

vim /etc/named.conf
...

将下行中的127.0.0.1修改为any，代表允许监听任何IP地址
------------------------------
修改前：
options {
    listen-on port 53 { 127.0.0.1; }; #修改
    listen-on-v6 port 53 { ::1; };#修改
    directory     "/var/named";
    dump-file     "/var/named/data/cache_dump.db";
    statistics-file "/var/named/data/named_stats.txt";
    memstatistics-file "/var/named/data/named_mem_stats.txt";
    allow-query     { localhost; };#修改
-----------------------------------------
修改后
options {
        listen-on port 53 { any; };
        listen-on-v6 port 53 { any; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { any; };

以下无需修改，但是需要了解，特此说明：
//此文件内定义了全球13台根DNS服务器的IP地址
zone "." IN {
type hint;
file "named.ca";
};

//此文件保存着正向与反向解析的区域信息，非常的重要。
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

5、检查语法看是否正确

[root@localhost ~]# named-checkconf 

6、修改区域配置文件

　 6.1配置文件尾部追加

vi /etc/named.rfc1912.zones
尾部追加
zone "wangzy.com" IN {
        type master;
        file "wangzy.com.zone";
        allow-update { none; };
};

  zone "43.168.192.in-addr.arpa" IN {
  type master;
  file "named.192.168.43";
  };

　　6.2 添加正向解析域

基于 name.localhost 模板，创建配置文件


[root@localhost ymyg]# cp -p /var/named/named.localhost /var/named/wangzy.com.zone
[root@localhost ymyg]# vi /var/named/wangzy.com.zone
$TTL 1D
@    IN SOA    @ rname.invalid. (
                    0    ; serial
                    1D    ; refresh
                    1H    ; retry
                    1W    ; expire
                    3H )    ; minimum
    NS    @
    A    127.0.0.1
    AAAA    ::1

ns IN A 192.168.43.13
www IN A 192.168.43.13

说明：

 http://www.wangzy.com  将会解析成192.168.43.13

授权 named 用户

[root@localhost named]# chown :named /var/named/wangzy.com.zone

检查区域配置文件是否正确

[root@localhost named]# named-checkzone "wangzy.com" /var/named/wangzy.com.zone

 zone tx.ymyg/IN: loaded serial 0 
  OK

 

6.3 添加反向解析

修改区域配置文件

[root@localhost named]# cp named.localhost /var/named/named.192.168.43
[root@localhost named]# vi named.192.168.43 
$TTL 1D
@    IN SOA    @ rname.invalid. (
                    0    ; serial
                    1D    ; refresh
                    1H    ; retry
                    1W    ; expire
                    3H )    ; minimum
    NS    @
    A    127.0.0.1
    AAAA    ::1
13    PTR www.wangzy.com

 

7、重启服务

[root@localhost named]# systemctl restart named

 

使用nslookup测试

bind-utils 软件包本身提供了测试工具 nslookup

yum -y install bind-utils

访问测试前添加域名

[root@localhost named]# vi /etc/resolv.conf 
nameserver 192.168.43.13

测试：

[root@localhost named]# nslookup www.wangzy.com
Server:        192.168.43.13
Address:    192.168.43.13#53

Name:    www.wangzy.com
Address: 192.168.43.13

[root@localhost named]# nslookup 192.168.43.13
Server:        192.168.43.13
Address:    192.168.43.13#53

13.43.168.192.in-addr.arpa    name = www.wangzy.zone.43.168.192.in-addr.arpa.