以下内容转载自http://hi.baidu.com/wang01ning/blog/item/aa9292ff0795b03a5d600840.html
CentOS5.6安装DNS的Bind服务器
以下内容部分为DNS的在CentOS的安装配置与测试,redhat 5系列的都差不多。
[root@testserver named]# uname -a
Linux testserver 2.6.18-164.el5 #1 SMP Thu Sep 3 03:28:30 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
[root@testserver CentOS]# rpm -qa | grep bind
bind-chroot-9.3.6-4.P1.el5
bind-utils-9.3.6-4.P1.el5
bind-libs-9.3.6-4.P1.el5
ypbind-1.19-12.el5
bind-9.3.6-4.P1.el5
kdebindings-3.5.4-6.el5
[root@testserver CentOS]# rpm -ivh bind-libbind-devel-9.3.6-4.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:bind-libbind-devel ########################################### [100%]
[root@testserver CentOS]# rpm -ivh bind-devel-9.3.6-4.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:bind-devel ########################################### [100%]
[root@testserver CentOS]# rpm -qa | grep bind
bind-chroot-9.3.6-4.P1.el5
bind-utils-9.3.6-4.P1.el5
bind-libs-9.3.6-4.P1.el5
ypbind-1.19-12.el5
bind-9.3.6-4.P1.el5
bind-libbind-devel-9.3.6-4.P1.el5
kdebindings-3.5.4-6.el5
bind-libbind-devel-9.3.6-4.P1.el5
bind-devel-9.3.6-4.P1.el5
[root@testserver CentOS]#
[root@testserver CentOS]# rpm -ivh caching-nameserver-9.3.6-4.P1.el5.x86_64.rpm
Preparing... ########################################### [100%]
1:caching-nameserver ########################################### [100%]
这里有点蒙了,安装到那里去了呢?一般的配置文件都在/etc/下,当然也可以rpm -ax | grep i bind,去看看/etc/named.*
[root@testserver named]# ls -la /etc/named.*
lrwxrwxrwx 1 root named 52 Dec 17 16:50 /etc/named.caching-nameserver.conf -> /var/named/chroot//etc/named.caching-nameserver.conf
lrwxrwxrwx 1 root named 42 Dec 17 16:50 /etc/named.rfc1912.zones -> /var/named/chroot//etc/named.rfc1912.zones
看到了吗?原来这是一个 l 文件,方法有两种,你可以直接进入原目录去对原文件进行编辑,也可对链接文件操作,效果一样的!
[root@testserver CentOS]# cd /var/named/chroot/etc/
[root@testserver etc]# ls
localtime named.caching-nameserver.conf named.rfc1912.zones rndc.key
[root@testserver etc]# cd /var/named/chroot/var/named/
[root@testserver named]# ls -ld
drwxr-x--- 4 root named 4096 Dec 17 16:50 .
[root@testserver named]# ls
data localhost.zone named.ca named.local slaves
localdomain.zone named.broadcast named.ip6.local named.zero
[root@testserver named]# cd http://www.cnblogs.com/etc/
# pwd
/var/named/chroot/etc
# cd ../var/named/
# pwd
/var/named/chroot/var/named
[root@testserver etc]# cp -b named.rfc1912.zones named.rfc1912.zones.bak
[root@testserver etc]# ls
localtime named.caching-nameserver.conf named.rfc1912.zones named.rfc1912.zones.bak rndc.key
any;为更改后的
[root@testserver etc]# vim named.caching-nameserver.conf
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
query-source-v6 port 53;
allow-query { any; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
view localhost_resolver {
match-clients { any; };
match-destinations { any; };
recursion yes;
include "/etc/named.rfc1912.zones";
};
[root@testserver named]# cd http://www.cnblogs.com/etc/
---------------------------------------------------------------------------
[root@testserver etc]# cp named.rfc1912.zones named.rfc1912.zones.bak
//定义一个正向域 area.com ,定义正向解析文件名 area.com.zone
//定义反向域 ,定义反向解析文件名 10.25.61.zone
[root@testserver etc]# vi named.rfc1912.zones
//test
zone "area.com" IN {
type master;
file "area.com.zone";
allow-update { none; };
};
zone "61.25.10.in-addr.arpa" IN {
type master;
file "10.25.61.zone";
allow-update { none; };
};
---------------------------------------------------------------------------
# 配置正反向解析文件
---------------------------------------------------------------------------
#cp -p localdomain.zone area.com.zone
#vim area.com.zone
$TTL 86400
@ IN SOA www.area.com. root.area.com. (
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS www.area.com.
www IN A 10.25.61.32
IN AAAA ::1
---------------------------------------------------------------------------
#cp -p named.local 10.25.61.zone
#vim 10.25.61.zone
$TTL 86400
@ IN SOA www.area.com. root.area.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS www.area.com.
32 IN PTR www.area.com.
---------------------------------------------------------------------------
32是指的是IP:10.25.61.32的最后一个数。
添加自己的机器进行域名解析
# vi /etc/hosts
127.0.0.1 localhost.localdomain localhost
#::1 localhost6.localdomain6 localhost6
10.25.61.32 www.area.com www
# vi /etc/resolv.conf
nameserver 10.25.61.32
search area.com
配置selinux
[root@testserver etc]# setup
弹出一个对话框。我们要进行的是防火墙配置,步骤如下:
选择“Firewall Configuration”---按 “Tab”键切换到“Run Tool”—回车—“Security Level”选项要在“Enabled”前面按一下“Tab”键---“SelLinux”选项要选“Disabled”—按一下“Tab”键---选中“Customize”---弹出新对话框---在“Other Port”栏目里输入“53:tcp 53:udp”—“OK”—返回上一个对话框—“OK”—对话框自动关闭。配置完成。
启动named
# service named start
# /etc/init.d/named start
测试
-------host----------
[root@testserver named]# host 10.25.61.32
32.61.25.10.in-addr.arpa domain name pointer www.area.com.
[root@testserver named]# host www.area.com
www.area.com has address 10.25.61.32
www.area.com has IPv6 address ::1
[root@testserver named]#
---------nslookup--------------------------
[root@testserver named]# nslookup
> www.area.com
Server: 10.25.61.32
Address: 10.25.61.32#53
Name: www.area.com
Address: 10.25.61.32
> 10.25.61.32
Server: 10.25.61.32
Address: 10.25.61.32#53
32.61.25.10.in-addr.arpa name = www.area.com.
> exit
修改配置后记得重启
# service named restart
# /etc/init.d/named restart
ftp://rs.internic.net/domain/ 下载最新的name.root 数据库