Centos7 配置域名解析服务
|
|
1,098
|
0
|
Linux笔记,日常分享,服务搭建

689 字
|
4 分钟
本文最后更新于 1178 天前,其中的信息可能已经有所发展或是发生改变。

Centos7 配置域名解析服务

Bind的配置

配置网卡IP 为 192.168.101.1
vi /etc/sysconfig/network-scripts/ifcfg-eno16777736

file

重启网卡 IP已经应用上去了
[root@localhost ~]# systemctl restart network
[root@localhost ~]# ip a
2: eno16777736: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether 00:0c:29:a3:f1:b0 brd ff:ff:ff:ff:ff:ff
inet 192.168.101.1/24 brd 192.168.101.255 scope global eno16777736
valid_lft forever preferred_lft forever
inet6 fe80::20c:29ff:fea3:f1b0/64 scope link
valid_lft forever preferred_lft forever

关闭selinux
[root@localhost ~]# vi /etc/sysconfig/selinux

file

关闭临时防火墙
[root@localhost ~]# setenforce 0

挂在镜像

file

挂在镜像
[root@localhost ~]# mount /dev/cdrom /mnt/
mount: /dev/sr0 is write-protected, mounting read-only

配置本地YUM源仓库
[root@localhost ~]# cd /etc/yum.repos.d/
[root@localhost yum.repos.d]# mv CentOS-Base.repo CentOS-Base.repo.a
[root@localhost yum.repos.d]# vi CentOS-Media.repo

file

安装BIND和nslookup查看工具
[root@localhost ~]# yum -y install bind bind-utils

配置bind的主配置文件
[root@localhost ~]# vi /etc/named.conf

file

配置域名解析信息 代码可以在vi /etc/named.rfc1912.zones 拷贝

file

上图的代码 域名为test.com
zone "test.com" IN {
type master;
file "test.com.zone";
allow-update { none; };
};

zone "101.168.192.in-addr.arpa" IN {
type master;
file "101.168.192.zone";
allow-update { none; };
};

配置解析子域名
[root@localhost ~]# cd /var/named/
[root@localhost named]# cp -pr named.localhost test.com.zone
[root@localhost named]# cp -pr named.loopback 101.168.192.zone

file

file

重启bind服务
[root@localhost named]# systemctl restart named

测试成功访问

file

外网访问本机访问开启防火墙
[root@localhost named]# firewall-cmd --permanent --add-port=53/udp
success
[root@localhost named]# firewall-cmd --reload
success
[root@localhost named]# firewall-cmd --list-all
public (default, active)
interfaces: eno16777736
sources:
services: dhcpv6-client ssh
ports: 53/udp
masquerade: no
forward-ports:
icmp-blocks:
rich rules:

file

Unborund 配置
删除上面的配置
[root@localhost ~]# cd /var/named/
[root@localhost named]# mv test.com.zone test.com.zone.bak
[root@localhost named]# mv 101.168.192.zone 101.168.192.zone.bak

Yum -y remove bind

file

安装unbound
Yum -y install unbound

进入unbound主配置文件
[root@localhost named]# vi /etc/unbound/unbound.conf

设置vi文本内的数字显示

file

file

删除38行的# 默认监听所有的IP

file

YY复制176行 粘贴下去 修改refuse为allow 允许所有IP的访问

file

复制457行 yy粘贴之后修改成域名需要的子域名

file

复制473行 yy粘贴之后修改反向解析域名后面要加点 不能漏了

file

重启unbound服务
Systemctl restart unbound

Nslookup 查看正反解析

file

file

外面的地址访问过来 一样是要开启 firewalld的防火墙

[root@localhost named]# firewall-cmd --permanent --add-port=53/udp
success
[root@localhost named]# firewall-cmd --reload
success
[root@localhost named]# firewall-cmd --list-all
public (default, active)
interfaces: eno16777736
sources:
services: dhcpv6-client ssh
ports: 53/udp
masquerade: no
forward-ports:
icmp-blocks:
rich rules:

对此文章 《Centos7 配置域名解析服务》 如有异议、侵犯您的版权,及时联系我处理或者在本站留言。谢谢!
Centos
暂无评论

发送评论 编辑评论 


				

			

						

				

					

						

							

								
							

							
						

					

				

				

					

						

							

								
							

							
						

					

				

				

					

						

							

								
							

							
							
													

					

				

			

			
			

				

					
				

			

				

											

							
							
						

																				
					
											
						

	

		
|´・ω・)ノ
ヾ(≧∇≦*)ゝ
(☆ω☆)
(╯‵□′)╯︵┴─┴
 ̄﹃ ̄
(/ω\)
∠( ᐛ 」∠)_
(๑•̀ㅁ•́ฅ)
→_→
୧(๑•̀⌄•́๑)૭
٩(ˊᗜˋ*)و
(ノ°ο°)ノ
(´இ皿இ`)
⌇●﹏●⌇
(ฅ´ω`ฅ)
(╯°A°)╯︵○○○
φ( ̄∇ ̄o)
ヾ(´・ ・`。)ノ"
( ง ᵒ̌皿ᵒ̌)ง⁼³₌₃
(ó﹏ò。)
Σ(っ °Д °;)っ
( ,,´・ω・)ノ"(´っω・`。)
╮(╯▽╰)╭
o(*////▽////*)q
>﹏<
( ๑´•ω•) "(ㆆᴗㆆ)
😂
😀
😅
😊
🙂
🙃
😌
😍
😘
😜
😝
😏
😒
🙄
😳
😡
😔
😫
😱
😭
💩
👻
🙌
🖕
👍
👫
👬
👭
🌚
🌝
🙈
💊
😶
🙏
🍦
🍉
😣
Source: github.com/k4yt3x/flowerhd
	

	

		
颜文字
Emoji
小恐龙
花!
	


									

			

			
			
		

	






上一篇
下一篇