centos6.5 DNS服务器搭建

前提是修改主机名为cetiti111
[root@cetiti111 ~]# hostname
cetiti111
[root@cetiti111 ~]# yum -y install bind*

[root@cetiti111 named]# vi /etc/named.conf

//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//

options {
    listen-on port 53 { any; };
    directory   "/var/named";
    dump-file   "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
    allow-query     { any; };
    recursion yes;

    dnssec-enable yes;
    dnssec-validation yes;

    /* Path to ISC DLV key */
    bindkeys-file "/etc/named.iscdlv.key";

    managed-keys-directory "/var/named/dynamic";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
    type hint;
    file "named.ca";
};

zone "linux.com" {
    type master;
    file "linux.com.zone";};
zone "153.168.192.in-addr.arpa"{
    type master;
    file "192.168.153.rev";};

[root@cetiti111 named]# cd /var/named

[root@cetiti111 named]# cp named.empty linux.com.zone

[root@cetiti111 named]# vi linux.com.zone

$TTL 3H
@   IN SOA  @ linux.com. (
                    0   ; serial
                    1D  ; refresh
                    1H  ; retry
                    1W  ; expire
                    3H )    ; minimum
    NS  cetiti111.linux.com.
cetiti111   A   192.168.153.128

[root@cetiti111 named]# cp linux.com.zone 192.168.153.rev
[root@cetiti111 named]# vi 192.168.153.rev

$TTL 3H
@   IN SOA  @ linux.com. (
                    0   ; serial
                    1D  ; refresh
                    1H  ; retry
                    1W  ; expire
                    3H )    ; minimum
    NS  @
    A   192.168.153.128
128 IN  PTR cetiti111.linux.com.

[root@cetiti111 named]# chown root:named linux.com.zone
[root@cetiti111 named]# chown root:named 192.168.153.rev

[root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa /var/named/192.168.153.rev
[root@cetiti111 named]# named-checkzone 153.168.192.in-addr.arpa /var/named/192.168.153.rev
[root@cetiti111 named]# 140 iptables -I INPUT -p udp –dport 53 -j ACCEPT
[root@cetiti111 named]# 141 iptables -I INPUT -p tcp –dport 53 -j ACCEPT
[root@cetiti111 named]# vi /etc/resolv.conf

# Generated by NetworkManager
nameserver 192.168.153.128
domain localdomain
search localdomain
nameserver 192.168.153.2

[root@cetiti111 named]# nslookup 192.168.153.128
Server: 192.168.153.128
Address: 192.168.153.128#53

128.153.168.192.in-addr.arpa name = cetiti111.linux.com.

[root@cetiti111 named]# nslookup cetiti111.linux.com
Server: 192.168.153.128
Address: 192.168.153.128#53

Name: cetiti111.linux.com
Address: 192.168.153.128