部署DNS主从服务器

遇见火星2026-01-15 12:19

1、主DNS服务器部署

1.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo

yum clean all && yum makecache

1.2、安装dns

yum install -y bind bind-utils

1.3、配置主DNS服务器

vim /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-query { any; };

allow-transfer { 192.168.52.17; }; # 从服务器IP

recursion yes;

allow-recursion { any; }; # 新增

};

配置正向解析

zone "westos1.com" IN {

type master;

file "westos1.com.zone";

allow-transfer { 192.168.52.17; };

allow-update { none; };

};

配置反向解析

zone "52.168.192.in-addr.arpa" IN {

type master;

file "192.168.52.zone";

allow-transfer { 192.168.52.17; };

};

cd /var/named

cp named.empty westos1.com.zone

cp named.empty 192.168.52.zone

chown -R named.named 192.168.52.zone westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

vi 192.168.52.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS dns.westos1.com.

15 IN PTR dns.westos1.com.

15 IN PTR www.westos1.com.

1.4、检查反向区域

named-checkzone westos1.com /var/named/westos1.com.zone

named-checkzone 52.168.192.in-addr.arpa /var/named/192.168.52.zone

1.5、启动named

systemctl restart named

systemctl enable named

systemctl status named

1.6、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

2、 从DNS服务器部署

2.1、配置yum源

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config

setenforce 0

cd /etc/yum.repos.d/

mkdir backup

mv CentOS-* backup/

curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-8.repo

yum clean all && yum makecache

2.2、安装dns

yum install -y bind bind-utils

2.3、配置从DNS服务器

vi /etc/named.conf

options {

listen-on port 53 { any; };

directory "/var/named";

allow-transfer { none; };

recursion yes;

allow-recursion { any; };

};

zone "westos1.com" IN {

type slave;

file "westos1.com.zone";

masters { 192.168.52.15; };

allow-update { none; }; # 新增

};

cd /var/named

cp named.empty westos1.com.zone

chown -R named.named westos1.com.zone # 新增

vi westos1.com.zone

$TTL 3H

@ IN SOA @ rname.invalid. (

0 ; serial

1D ; refresh

1H ; retry

1W ; expire

3H ) ; minimum

NS westos1.com.

dns IN A 192.168.52.15

www IN A 192.168.52.15

2.4、启动named

systemctl restart named

systemctl enable named

systemctl status named

2.5、防火墙放行dns流量

firewall-cmd --permanent --add-service=dns

firewall-cmd --reload

3、 dns验证

dig -t A www.westos1.com @192.168.52.15

相关推荐
jiayong2313 小时前
DevOps体系详解01-核心概念与价值
运维·devops
jiayong2314 小时前
DevOps体系详解02-技术架构与工具链
运维·架构·devops
pride.li14 小时前
开发板和Linux--nfs服务挂载
linux·运维·服务器
looking_for__14 小时前
【Linux】应用层协议
linux·服务器·网络
云泽80816 小时前
不止是命令:Linux 高频指令实战 + 芯片架构底层逻辑
linux·运维·服务器
j_xxx404_16 小时前
Linux:基础IO
linux·运维·服务器
angushine17 小时前
银河麒麟V10创建用户
运维
Trouvaille ~18 小时前
【Linux】网络编程基础(二):数据封装与网络传输流程
linux·运维·服务器·网络·c++·tcp/ip·通信
久绊A18 小时前
春节前云平台运维深度巡检-实操经验
运维·安全·容器·kubernetes·云平台
万邦科技Lafite18 小时前
一键获取京东商品评论信息,item_reviewAPI接口指南
java·服务器·数据库·开放api·淘宝开放平台·京东开放平台
热门推荐
01GitHub 镜像站点02一文了解国产算子编程语言 TileLang,TileLang 对国产开源生态的影响与启示03Vue-skills的中文文档04Claude Code Skills 实用使用手册05UV安装并设置国内源06让 Trae IDE 智能体 “读懂”文档 Excel+PDF+DOCX :mcp-documents-reader 工具使用指南07Claude Code + GLM4.7 避坑指南:解决 Unable to connect to Anthropic services08OpenClaw部署与配置教程:在Mac mini上接入国产大模型与飞书09在Trae中使用Pencil MCP10OpenCode 入门教程:介绍 · 安装 · 配置第三方 API (如 Claude)