bind9源码编译主、辅DNS

bind的地位我想就不用废话了。现在我来动手自己创建一整套DNS。

两台机器： ns.263.net      10.1.1.10

          ns1.263.net     10.1.1.12

一、主 DNS （ 10.1.1.10 ）的安装配置：

1 、安装 bind

tar zxvf bind-9.6.0.tar.gz

./configure --prefix=/usr/local/named --enable-threads

make&&make install

2 、创建 named.conf 文件

[root@ns bind-9.6.0]# cd /usr/local/named/

[root@ns named] #sbin/rndc-confgen >./etc/rndc.conf

[root@ns named]# cd etc/

[root@ns etc]# tail -10 rndc.conf |head -9|sed s/#\//g >named.conf

[root@ns etc]# cat named.conf

key "rndc-key" {         algorithm hmac-md5;         secret "TcbwEQ1VOCMTzkIw1ZElEw==";  };    controls {         inet 127.0.0.1 port 953                 allow { 127.0.0.1; } keys { "rndc-key"; };

修改为如下：

[root@ns etc]# vi named.conf

key "rndc-key" {         algorithm hmac-md5;         secret "ZFAkrxR5I2YUjeKhAnDZrg==";  };    controls {         inet 127.0.0.1 port 953                 allow { 127.0.0.1; } keys { "rndc-key"; };  };   logging {         channel default_syslog { syslog local2; severity notice; };         channel audit_log { file "/var/log/named.log"; severity notice; print-time yes; };         category default { default_syslog; };         category general { default_syslog; };         category security { audit_log; default_syslog; };         category config { default_syslog; };         category resolver { audit_log; };         category xfer-in { audit_log; };         category xfer-out { audit_log; };         category notify { audit_log; };         category client { audit_log; };         category network { audit_log; };         category update { audit_log; };         category queries { audit_log; };         category lame-servers { audit_log; };         };   options {         directory "/var/named/";         pid-file "/var/named/named.pid";         statistics-file "/var/named/named.stats";         dump-file "/var/log/named.dump";         zone-statistics yes;         auth-nxdomain yes;         notify yes;         transfer-format many-answers;         max-transfer-time-in 60;         interface-interval 0;         listen-on-v6 { any; };         };   zone "263.net" IN {         type master;         file "db.263.net"; };

3 、创建区域数据文件

 [root@ns etc]# vi /var/named/db.263.net

$TTL    86400 @       IN SOA  @      root (                                         20091031      ; serial                                         14400   ; Retry                                         28800   ; Refresh                                         3600000 ; Expiry                                         86400 ) ; Minimum                 IN NS           ns.263.net.                 IN MX   10      mail.263.net. ns              IN A            10.1.1.10 mail            IN A            10.1.1.100 www             IN A            10.1.1.101

4. 启动 bind 服务器

[root@ns etc]# mkdir /var/named

[root@ns etc]# /usr/local/named/sbin/named -g &

[root@ns etc]# netstat -ntlp|grep named

tcp        0      0 10.1.1.10:53                0.0.0.0:*                   LISTEN      14093/named        

tcp        0      0 127.0.0.1:53                0.0.0.0:*                   LISTEN      14093/named        

tcp        0      0 127.0.0.1:953               0.0.0.0:*                   LISTEN      14093/named        

tcp        0      0 :::53                       :::*                        LISTEN      14093/named   

5. 测试：

[root@ns etc]# nslookup ns.263.net

31-Oct-2009 12:16:13.611 client 10.1.1.10#32771: query: ns.263.net IN A +

Server:         10.1.1.10

Address:        10.1.1.10#53

 

Name:   ns.263.net

Address: 10.1.1.10

 

[root@ns etc]# nslookup mail.263.net

31-Oct-2009 12:16:19.040 client 10.1.1.10#32771: query: mail.263.net IN A +

Server:         10.1.1.10

Address:        10.1.1.10#53

 

Name:   mail.263.net

Address: 10.1.1.100

 

[root@ns etc]# nslookup www.263.net

31-Oct-2009 12:16:22.631 client 10.1.1.10#32771: query: www.263.net IN A +

Server:         10.1.1.10

Address:        10.1.1.10#53

 

Name:   www.263.net

Address: 10.1.1.101

二、安装配置辅 DNS(10.1.1.12)

1 、安装过程与上面相同。

2 、配置

named.conf 的配置跟主 DNS 基本相同，以下部分不同：

zone "263.net" IN {         type slave;         file " bak.db.263.net ";         masters {10.1.1.10;}; };

3 、启动辅 bind 服务器

[root@ns etc]# mkdir /var/named

[root@ns etc]# /usr/local/named/sbin/named -g &

[root@ns1 named]# netstat -ntlp|grep named

tcp        0      0 10.1.1.12:53                0.0.0.0:*                   LISTEN      12257/named        

tcp        0      0 127.0.0.1:53                0.0.0.0:*                   LISTEN      12257/named        

tcp        0      0 127.0.0.1:953               0.0.0.0:*                   LISTEN      12257/named        

tcp        0      0 :::53                       :::*                        LISTEN      12257/named   

4. 查看是否生成文件 bak.db.263.net

[root@ns1 named]# ls

bak.db.263.net  named.pid

[root@ns1 named]# more bak.db.263.net

$ORIGIN . $TTL 86400      ; 1 day 263.net                 IN SOA  263.net. root.263.net. (                                 20091031   ; serial                                 14400      ; refresh (4 hours)                                 28800      ; retry (8 hours)                                 3600000    ; expire (5 weeks 6 days 16 hours)                                 86400      ; minimum (1 day)                                 )                         NS      ns.263.net.                         MX      10 mail.263.net. $ORIGIN 263.net. mail                    A       10.1.1.100 ns                      A       10.1.1.10 www                     A       10.1.1.101

5 、测试（此机器的 dns 服务器指向自己）

[root@ns1 named]# nslookup www.263.net

31-Oct-2009 12:42:54.558 client 10.1.1.12#32769: query: www.263.net IN A +

Server:         10.1.1.12

Address:        10.1.1.12#53

 

Name:   www.263.net

Address: 10.1.1.101

 

[root@ns1 named]# nslookup mail.263.net

31-Oct-2009 12:43:01.127 client 10.1.1.12#32769: query: mail.263.net IN A +

Server:         10.1.1.12

Address:        10.1.1.12#53

 

Name:   mail.263.net

Address: 10.1.1.100

 

[root@ns1 named]# nslookup www.263.net

31-Oct-2009 12:43:05.352 client 10.1.1.12#32769: query: www.263.net IN A +

Server:         10.1.1.12

Address:        10.1.1.12#53

 

Name:   www.263.net

Address: 10.1.1.101