bind9主從配置DNS

1、在從服務(wù)器安裝bind

[root@centos6 ~]# yum install bind -y

[root@centos6 ~]# cat /etc/named.conf

//

// named.conf

//

// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS

// server as a caching only nameserver (as a localhost DNS resolver only).

//

// See /usr/share/doc/bind*/sample/ for example named configuration files.

//

options {

listen-on port 53 { 127.0.0.1;10.0.5.108; };? #添加本機的IP

listen-on-v6 port 53 { ::1; };

directory "/var/named";

dump-file "/var/named/data/cache_dump.db";

? ? ? ? statistics-file "/var/named/data/named_stats.txt";

? ? ? ? memstatistics-file "/var/named/data/named_mem_stats.txt";

allow-query? ? { localhost; };

recursion yes;

dnssec-enable no;

dnssec-validation no;

/* Path to ISC DLV key */

bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";

};

logging {

? ? ? ? channel default_debug {

? ? ? ? ? ? ? ? file "data/named.run";

? ? ? ? ? ? ? ? severity dynamic;

? ? ? ? };

};

zone "." IN {

type hint;

file "named.ca";

};

include "/etc/named.rfc1912.zones";

include "/etc/named.root.key";

2、在從服務(wù)器上配置slave定義從區(qū)域

vim /etc/named.rfc1912.zones

zone "safeidc.cn" IN {

? ? ? ? type slave;

? ? ? ? file "slaves/safeidc.cn.zone";

? ? ? ? masters { 10.0.5.105; };? ? #主DNS的地址

};

在主服務(wù)器上的safeid.cn.zone添加從服務(wù)器的地址

[root@centos6 named]# tail -20 safeidc.cn.zone

$TTL 3600

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

@ NS ns1

@ NS ns2

ns1? A 10.0.5.105

ns2? A 10.0.5.108 #從dns的地址

www? ? A 10.0.5.106

bbs A 10.0.5.107

web CNAME www

mx CNAME www

主服務(wù)器檢查配置文件:

[root@centos6 named]# named-checkzone safeidc.cn safeidc.cn.zone

zone safeidc.cn/IN: loaded serial 0

OK

[root@centos6 named]# service? named restart

從服務(wù)器上

[root@centos6 named]# service? named restart

并查看/var/named/slaves是否有同步過來主服務(wù)器的配置文件

[root@centos6 slaves]# pwd

/var/named/slaves

[root@centos6 slaves]# ls

safeidc.cn.zone

驗證解析:

[root@centos6 slaves]# dig bbs.safeidc.cn @10.0.5.108

;; QUESTION SECTION:

;bbs.safeidc.cn. IN A

;; ANSWER SECTION:

bbs.safeidc.cn. 3600 IN A 10.0.5.107

;; AUTHORITY SECTION:

safeidc.cn. 3600 IN NS ns2.safeidc.cn.

safeidc.cn. 3600 IN NS ns1.safeidc.cn.

;; ADDITIONAL SECTION:

ns1.safeidc.cn. 3600 IN A 10.0.5.105

ns2.safeidc.cn. 3600 IN A 10.0.5.108

#############################################

?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請聯(lián)系作者
【社區(qū)內(nèi)容提示】社區(qū)部分內(nèi)容疑似由AI輔助生成,瀏覽時請結(jié)合常識與多方信息審慎甄別。
平臺聲明:文章內(nèi)容(如有圖片或視頻亦包括在內(nèi))由作者上傳并發(fā)布,文章內(nèi)容僅代表作者本人觀點,簡書系信息發(fā)布平臺,僅提供信息存儲服務(wù)。

相關(guān)閱讀更多精彩內(nèi)容

友情鏈接更多精彩內(nèi)容