部署DNS主从服务器

遇见火星2026-01-15 12:19

1、主DNS服务器部署

1.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo

yum clean all && yum makecache

1.2、安装dns

yum install -y bind bind-utils

1.3、配置主DNS服务器

vim /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-query { any; };

allow-transfer { 192.168.52.17; }; # 从服务器IP

recursion yes;

allow-recursion { any; }; # 新增

};

配置正向解析

zone "westos1.com" IN {

type master;

file "westos1.com.zone";

allow-transfer { 192.168.52.17; };

allow-update { none; };

};

配置反向解析

zone "52.168.192.in-addr.arpa" IN {

type master;

file "192.168.52.zone";

allow-transfer { 192.168.52.17; };

};

cd /var/named

cp named.empty westos1.com.zone

cp named.empty 192.168.52.zone

chown -R named.named 192.168.52.zone westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

vi 192.168.52.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

15 IN PTR dns.westos1.com.

15 IN PTR www.westos1.com.

1.4、检查反向区域

named-checkzone westos1.com /var/named/westos1.com.zone

named-checkzone 52.168.192.in-addr.arpa /var/named/192.168.52.zone

1.5、启动named

systemctl restart named

systemctl enable named

systemctl status named

1.6、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

2、 从DNS服务器部署

2.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-8.repo

yum clean all && yum makecache

2.2、安装dns

yum install -y bind bind-utils

2.3、配置从DNS服务器

vi /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-transfer { none; };

recursion yes;

allow-recursion { any; };

};

zone "westos1.com" IN {

type slave;

file "westos1.com.zone";

masters { 192.168.52.15; };

allow-update { none; }; # 新增

};

cd /var/named

cp named.empty westos1.com.zone

chown -R named.named westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

2.4、启动named

systemctl restart named

systemctl enable named

systemctl status named

2.5、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

3、 dns验证

dig -t A www.westos1.com @192.168.52.15

相关推荐
劳埃德福杰2 分钟前
【Kylin银河麒麟】文件系统磁盘空间满导致无法进入操作系统
运维·服务器·电脑·笔记本电脑·kylin
逻辑峰11 分钟前
ReadStat在Linux的安装和使用
linux·运维·服务器
Lsir10110_22 分钟前
【Linux】序列化与反序列化——网络计算器的实现
linux·运维·网络
脆皮的饭桶40 分钟前
给负载均衡做高可用的工具Keepalived
运维·服务器·负载均衡
袁小皮皮不皮1 小时前
【HCIA】第三章TCP/IP协议栈中其他主要协议
运维·服务器·网络·网络协议·tcp/ip
阿梦Anmory1 小时前
保姆级教程:Flask应用实现后台常驻运行(Linux服务器)
linux·服务器·flask
夏日听雨眠1 小时前
Linux学习1
linux·服务器·学习
头孢头孢1 小时前
效率提升 10 倍!我用 OpenClaw 实现了工作自动化
运维·自动化
Agent产品评测局1 小时前
中国龙虾ai软件有哪些选择?2026自动化选型指南
运维·人工智能·ai·chatgpt·自动化
思麟呀1 小时前
应用层自定义协议与序列化
linux·运维·服务器·网络·c++
热门推荐
01GitHub 镜像站点02Qwen3.5 开源全解析:从 0.8B 到 397B,代际升级 + 全场景选型指南03OpenClaw 使用和管理 MCP 完全指南04Labelme从安装到标注:零基础完整指南05AI 编程三剑客:Spec-Kit、OpenSpec、Superpowers 深度对比与实战指南06小黑课堂计算机二级WPSoffice题库软件下载安装教程(2026年3月最新版)07UV安装并设置国内源08OpenClaw Control UI安全上下文访问配置09Claude Code + GLM4.7 避坑指南:解决 Unable to connect to Anthropic services10不需要账号、免登录使用ClaudeCode+国内模型