简单搭建DNS服务器——bind

安装bind

# yum install -y bind bind-utils bind-chroot

修改配置文件

# grep '^[^#]' /etc/named.conf
options {
    listen-on port  { any; };
。。。
    allow-query     { any; };

。。。

# grep '^[^#]' /etc/named.rfc1912.zones
zone "test.com" IN {
      type master;
      file "test.com.zone";
};
zone "50.168.192.in-addr.arpa" IN {
      type master;
      file "50.168.192.in-addr.arpa.zone";
};

# cat 50.168.192.in-addr.arpa.zone
$TTL
@       IN SOA  ns root (
                                               ; serial
                                        1D      ; refresh
                                        1H      ; retry
                                        1W      ; expire
                                        3H )    ; minimum

    IN       NS         ns.test.com.
    IN       PTR        elasticsearch.test.com.
    IN       PTR        logstash.test.com.
    IN       PTR        kibana.test.com.
worker01    IN    CNAME    elasticsearch
worker02    IN    CNAME    logstash
manager        IN    CNAME    kibana

# cat test.com.zone
$TTL
$ORIGIN test.com.
@    IN     SOA    ns  root (
                        ; serial
                    1D    ; refresh
                    1H    ; retry
                    1W    ; expire
                    3H )    ; minimum
    NS     ns.test.com.
ns        IN    A    192.168.50.42
elasticsearch    IN    A    192.168.50.63
logstash    IN    A    192.168.50.64
kibana        IN    A    192.168.50.65
worker01    IN    CNAME    elasticsearch
worker02    IN    CNAME    logstash
manager         IN    CNAME   kibana

生成key

# rndc-confgen -r /dev/urandom -a
wrote key file "/etc/rndc.key"

# chown named.named /var/named/*    ##关乎成败的一步

启动bind

# tailf /var/log/messages   ##观察日志，注意报错信息

启动
# systemctl restart named.service

测试

正向解析：

# dig  @192.168.50.42  worker02.test.com  

; <<>> DiG 9.11.-P2-RedHat-9.11.-.P2.el7 <<>> @192.168.50.42 worker02.test.com
; ( server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
;; flags: qr aa rd ra; QUERY: , ANSWER: , AUTHORITY: , ADDITIONAL: 

;; OPT PSEUDOSECTION:
; EDNS: version: , flags:; udp:
;; QUESTION SECTION:
;worker02.test.com.        IN    A

;; ANSWER SECTION:
worker02.test.com.        IN    CNAME    logstash.test.com.
logstash.test.com.        IN    A    192.168.50.64

;; AUTHORITY SECTION:
test.com.            IN    NS    ns.test.com.

;; ADDITIONAL SECTION:
ns.test.com.            IN    A    192.168.50.42

;; Query time:  msec
;; SERVER: 192.168.50.42#(192.168.50.42)
;; WHEN: Wed Nov  :: CST
;; MSG SIZE  rcvd: 

反向解析：

# dig -x 192.168.50.65 @192.168.50.42                     

; <<>> DiG 9.11.-P2-RedHat-9.11.-.P2.el7 <<>> -x 192.168.50.65 @192.168.50.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
;; flags: qr aa rd ra; QUERY: , ANSWER: , AUTHORITY: , ADDITIONAL: 

;; OPT PSEUDOSECTION:
; EDNS: version: , flags:; udp:
;; QUESTION SECTION:
;65.50.168.192.in-addr.arpa.    IN    PTR

;; ANSWER SECTION:
65.50.168.192.in-addr.arpa.     IN    PTR    kibana.test.com.

;; AUTHORITY SECTION:
50.168..in-addr.arpa.     IN    NS    ns.test.com.

;; ADDITIONAL SECTION:
ns.test.com.            IN    A    192.168.50.42

;; Query time:  msec
;; SERVER: 192.168.50.42#(192.168.50.42)
;; WHEN: Wed Nov  :: CST
;; MSG SIZE  rcvd: 

PS: 博客园自定义皮肤功能很不错，就是博客编译器太烂了。。。

凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，凑够150字，