创建DNS服务器
1、查看是否安装了bind
#rpm -qa | grep bind
bind-9.2.2-13Thiz
bind-utils-9.2.2-13Thiz
ypbind-1.11-2Thiz
kdebindings-devel-3.1-1Thiz
bind-devel-9.2.2-13Thiz
bind-chroot-9.2.2-13Thiz
kdebindings-3.1-1Thiz
2、查看本机的IP地址,假设为192.168.1.190
#ifconfig
3、编辑/etc/hosts文件(假设域名为davidway.com)
#vi /etc/hosts
内容如下:
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 localhost.localdomain localhost
192.168.1.190 dns.davidway.com dns
192.168.1.190 mail.davidway.com mail
4、编辑/etc/resolv.conf文件,内容如下:
; generated by /sbin/dhclient-script
search domain
nameserver 192.168.1.190
nameserver 202.96.134.133
nameserver 202.96.134.188
将最近的服务器放在第一个位置,即192.168.1.190
5、编辑/etc/host.conf文件,确定使用哪些服务和按什么顺序查询,内容如下:
order hosts,bind
6、编辑主配置文件named.conf
它的实际位置为:/var/named/chroot/etc/named.conf
#vi /etc/named.conf 只是一个链接文件
#vi /var/named/chroot/etc/named.conf 内容如下:
options {
directory "/var/named";
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "localhost.arpa";
};
zone "davidway.com" IN {
type master;
file "davidway.zone";
};
zone "1.168.192.in-addr.arpa" IN {
type master;
file "davidway.arpa";
};
7、编辑本地域正向解析文件localhost.zone
#vi /var/named/chroot/var/named/localhost.zone
内容为:
$TTL 86400
@ IN SOA localhost root (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS localhost
localhost IN A 127.0.0.1
8、编辑本地域反向解析文件localhost.arpa
#vi /var/named/chroot/var/named/localhost.arpa
内容为:
$TTL 86400
@ IN SOA localhost. root.localhost. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS localhost.
IN PTR localhost.
9、创建主域名服务器正向解析数据库文件(区文件)
#vi /var/named/chroot/var/named/davidway.zone
内容为:
$TTL 864010 ; 1 week 3 days 10 seconds
@ IN SOA dns.davidway.com. root.dns.davidway.com. (
20060805 ; serial
1000 ; refresh (1000 seconds)
15 ; retry (15 seconds)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
@ IN NS dns.davidway.com.
@ IN MX 10 mail.davidway.com.
dns IN A 192.168.1.190
mail IN A 192.168.1.190
注:后面的两个@,可以不写!
10、创建主域名服务器反向解析数据库文件
#vi /var/named/chroot/var/named/davidway.arpa
内容为:
$TTL 86400 ; 1 day
@ IN SOA dns.davidway.com. root.dns.davidway.com. (
20060805 ; serial
1000 ; refresh (1000 seconds)
15 ; retry (15 seconds)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
@ IN NS dns.davidway.com.
@ IN MX 10 mail.davidway.com.
190 IN PTR dns.davidway.com
190 IN PTR mail.davidway.com
11、安装根域名服务器指向文件named.ca到以下位置
/var/named/chroot/var/named/named.ca
named.ca 文件可以从www.isc.org下载最新的
内容为:
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.cache
; on server FTP.INTERNIC.NET
; -OR- RS.INTERNIC.NET
;
; last update: Jan 29, 2004
; related version of root zone: 2004012900
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; operated by VeriSign, Inc.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
;
; operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; operated by ICANN
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
; End of File
12、启动DNS服务
#service named start (启动)
#service named stop (停止)
#service named restart (重启)
或者#/etc/rc.d/init.d/named start
13、检查bind是否运行(bind所使用的端口号是53)
#netstat -anup
#pstree | grep named
14、用下面的命令排错
#tail /var/log/messages
#named -u named -g l -t /var/named/chroot
15、若希望named在下次计算机启动时自动启动,使用下面的命令
#ntsysv
选中named,按F2退出。
16、用host或者nslookup命令测试DNS
#host dns.davidway.com
#host 192.168.1.190
#nslookup dns.davidway.com
#nslookup 192.168.1.190
附:主配置文件和区文件祥解
1)named.conf
options {
#定义服务器区配置文件的工作目录
directory "/var/named";
};
#定义根区声明
zone "." IN {
type hint;
file "named.ca";
};
#定义本地域正向解析区声明
zone "localhost" IN {
type master;
file "localhost.zone";
};
#定义本地域反向解析区声明
zone "0.0.127.in-addr.arpa" IN {
type master;
file "localhost.arpa";
};
#定义主域名服务器正向解析区声明
zone "davidway.com" IN {
type master;
file "davidway.zone";
};
#定义主域名服务器反向解析区声明
zone "1.168.192.in-addr.arpa" IN {
type master;
file "davidway.arpa";
};
2)davidway.zone
#定义默认的TTL
$TTL 864010 ; 1 week 3 days 10 seconds
#设置起始授权记录
@ IN SOA dns.davidway.com. root.dns.davidway.com. (
#指定本文件的序列号,一般以文件建立的时间来标识
20060805 ; serial
#更新时间,单位是秒
1000 ; refresh (1000 seconds)
#重试时间间隔,这个时间应该远远小于更新时间
15 ; retry (15 seconds)
#过期时间,这个时间一般设置的要较长
604800 ; expire (1 week)
#最小时间间隔,指存活期
86400 ; minimum (1 day)
)
#设定域名服务记录
@ IN NS dns.davidway.com.
#设置邮件交换记录
@ IN MX 10 mail.davidway.com.
#设置地址记录
dns IN A 192.168.1.190
mail IN A 192.168.1.190
注:区文件里的注销,是用分号“;”,而不是用“#”。
