内容简介:客户端访问www.magedu.com时,本地DNS服务器向根DNS服务器转发,com域实现主从域的搭建。3.启动服务并设置开机启动
目标
客户端访问www.magedu.com时,本地DNS服务器向根DNS服务器转发,com域实现主从域的搭建。
架构图
| 主机IP | 作用 | 版本 |
|---|---|---|
| 192.168.36.6 | 客户端 | centos7 |
| 192.168.36.7 | DNS服务器 | centos6 |
| 192.168.36.17 | 根域 | centos6 |
| 192.168.36.27 | com域 | centos6 |
| 192.168.36.37 | 主dns服务器 | centos6 |
| 192.168.36.47 | 备用dns服务器 | centos6 |
| 192.168.36.67 | www服务器 | centos6 |
基本环境搭建
- 每个主机清空防火墙规则、关闭防火墙、关闭selinux
[root@centos ~]# iptables -F [root@centos ~]# setenforce 0 # 此为临时关闭,若想永久关闭还需要更改配置文件/etc/selinux/conf [root@centos ~]# service iptables stop iptables:将链设置为政策 ACCEPT:filter [确定] iptables:清除防火墙规则: [确定] iptables:正在卸载模块: [确定]
- 客户端dns指定为DNS服务器的IP
[root@CentOS6 ~]# cat /etc/sysconfig/network-scripts/ifcfg-eth0 DEVICE=eth0 ONBOOT=yes BOOTPROTO=static IPADDR=192.168.36.6 NETMASK=255.255.255.0 DNS1=192.168.36.7 NAME="System eth0" [root@CentOS6 ~]# cat /etc/resolv.conf # Generated by NetworkManager search magedu36.com nameserver 192.168.36.7
服务搭建
www服务器上搭建WEB服务
- 安装httpd软件包
[root@centos ~]#yum install -y httpd
- 搭建WEB页面
[root@centos ~]#echo "<h1>www.magedu.com</h1>" >> /var/www/html/index.html
3.启动服务并设置开机启动
[root@centos ~]#systemctl restart httpd [root@centos ~]#systemctl enable httpd Created symlink from /etc/systemd/system/multi-user.target.wants/httpd.service to /usr/lib/systemd/system/httpd.service.
- curl测试WEB网页
[root@centos ~]#curl 192.168.36.67 <h1>www.magedu.com</h1>
DNS主服务器配置
- 安装bind软件包
[root@master ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@master ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
allow-transfer {192.168.36.47;}; # 仅允许192.168.36.47主机获取该主机所有域的数据
[root@master ~]# vim /etc/named.rfc1912.zones
zone "magedu.com" IN { # 解析magedu.com
type master; # 主
file "magedu.com.zone"; # 自定义的域名到IP的正向解析的配置文件
};
[root@master ~]# cd /var/named/
[root@master named]# cp -p named.localhost magedu.com.zone
[root@master named]# vim magedu.com.zon
$TTL 1D
@ IN SOA master admin.magedu.com. (
0 ; serial # 数据库序列号/版本号
1D ; refresh # 主从服务器时间间隔
1H ; retry # 同步间隔
1W ; expire # 未同步过期时间
3H ) ; minimum # 不存在记录,默认缓存时间
NS master
NS slave
master A 192.168.36.37 # 域名指定IP
slave A 192.168.36.47
www A 192.168.36.67
- 启动服务并设置开机启动
[root@master named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@master named]# chkconfig named on [root@master named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@master named]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15433 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS slave.magedu.com. magedu.com. 86400 IN NS master.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 17:47:26 2019 ;; MSG SIZE rcvd: 121
DNS备用服务器配置
- 安装bind软件包
[root@slave ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@slave ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
allow-transfer {none;}; # 不允许任何主机获取该主机所有域的数据
[root@slave ~]# vim /etc/named.rfc1912.zones
zone "magedu.com" IN {
type slave;
masters { 192.168.36.37; };
file "slaves/magedu.com.slave";
};
- 启动服务并设置开机启动
[root@slave named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@slave named]# chkconfig named on [root@slave named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- 检查是否从主服务器上获取数据库文件
[root@slave ~]# ll /var/named/slaves/ 总用量 4 -rw-r--r--. 1 named named 387 4月 23 18:56 magedu.com.slave
- dig测试
[root@slave ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6099 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS master.magedu.com. magedu.com. 86400 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 20:02:31 2019 ;; MSG SIZE rcvd: 121
com域配置
- 安装bind软件包
[root@com ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@com ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
[root@com ~]# vim /etc/named.rfc1912.zones
zone "com" IN {
type master;
file "come.zone";
};
[root@com ~]# cd /var/named/
[root@com named]# cp -p named.localhost come.zone
[root@com named]# vim come.zone
$TTL 1D
@ IN SOA com admin.magedu.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS com
magedu NS masterns
magedu NS slavens
com A 192.168.36.27
masterns A 192.168.36.37
slavens A 192.168.36.47
- 启动服务并设置开机启动
[root@com named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@com named]# chkconfig named on [root@com named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@com named]# dig www.magedu.com @192.168.36.37 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.37 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64848 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS slave.magedu.com. magedu.com. 86400 IN NS master.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 0 msec ;; SERVER: 192.168.36.37#53(192.168.36.37) ;; WHEN: Tue Apr 23 20:06:17 2019 ;; MSG SIZE rcvd: 121 [root@com named]# dig www.magedu.com @192.168.36.47 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.47 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6321 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS master.magedu.com. magedu.com. 86400 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 192.168.36.47#53(192.168.36.47) ;; WHEN: Tue Apr 23 20:06:19 2019 ;; MSG SIZE rcvd: 121
- 因com域与根域配置类似,所以将com域的数据库文件scp至根域中
[root@com named]# scp come.zone 192.168.36.17:/var/named/ The authenticity of host '192.168.36.17 (192.168.36.17)' can't be established. RSA key fingerprint is 6a:f4:58:5b:fc:8e:64:69:fd:b8:64:04:89:d3:dc:5d. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.36.17' (RSA) to the list of known hosts. root@192.168.36.17's password: come.zone
根域配置
- 安装bind软件包
[root@gen ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@gen ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
....
zone "." IN { # 修改根域,让其在本地文件查找
type master;
file "root.zone";
};
[root@gen named]# mv come.zone root.zone
[root@gen named]# vim root.zone
$TTL 1D
@ IN SOA ns admin.magedu.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS ns
com NS comns
ns A 192.168.36.17
comns A 192.168.36.27
[root@gen named]# chgrp named root.zone # 修改组为named [root@gen named]# ll root.zone -rw-r-----. 1 root named 192 4月 23 18:22 root.zone
- 启动服务并设置开机启动
[root@gen named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@gen named]# chkconfig named on [root@gen named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@gen ~]# dig www.magedu.com @192.168.36.27 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.27 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20620 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 71917 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS masterns.com. magedu.com. 86400 IN NS slavens.com. ;; ADDITIONAL SECTION: masterns.com. 86400 IN A 192.168.36.37 slavens.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 192.168.36.27#53(192.168.36.27) ;; WHEN: Tue Apr 23 22:16:22 2019 ;; MSG SIZE rcvd: 125
DNS服务器配置
- 安装bind软件包
[root@main ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@main ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
dnssec-enable no; # 将安全相关的转发设置改为no
dnssec-validation no;
修改本地域指向根域的库文件 [root@main ~]# vim /var/named/named.ca . 3600000 NS A.ROOT-SERVERS.NET. A.ROOT-SERVERS.NET. 3600000 A 192.168.36.17
- 启动服务并设置开机启动
[root@main named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@main named]# chkconfig named on [root@main named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@main ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58392 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 72483 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 72493 IN NS master.magedu.com. magedu.com. 72493 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: slave.magedu.com. 72493 IN A 192.168.36.47 master.magedu.com. 72493 IN A 192.168.36.37 ;; Query time: 8 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 22:23:43 2019 ;; MSG SIZE rcvd: 121
DNS客户端测试
最终测试
[root@CentOS6 ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52502 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 72434 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 72444 IN NS slave.magedu.com. magedu.com. 72444 IN NS master.magedu.com. ;; ADDITIONAL SECTION: slave.magedu.com. 72444 IN A 192.168.36.47 master.magedu.com. 72444 IN A 192.168.36.37 ;; Query time: 0 msec ;; SERVER: 192.168.36.7#53(192.168.36.7) ;; WHEN: Tue Apr 23 14:24:33 2019 ;; MSG SIZE rcvd: 121
[root@CentOS6 ~]# curl www.magedu.com <h1>www.magedu.com</h1>
至此,已完成DNS互联网的架构功能。
以上就是本文的全部内容,希望本文的内容对大家的学习或者工作能带来一定的帮助,也希望大家多多支持 码农网
猜你喜欢:
- 『互联网架构』软件架构-解密电商系统-互联网BAT商品详情缓存架构(82)
- 『互联网架构』软件架构-分布式架构(14)
- 『互联网架构』软件架构-电商系统架构(上)(69)
- 『互联网架构』软件架构-电商系统架构(中)(70)
- 『互联网架构』软件架构-电商系统架构(下)(71)
- 『互联网架构』软件架构-电商系统架构发展历程(68)
本站部分资源来源于网络,本站转载出于传递更多信息之目的,版权归原作者或者来源机构所有,如转载稿涉及版权问题,请联系我们。
JavaScript Patterns
Stoyan Stefanov / O'Reilly Media, Inc. / 2010-09-21 / USD 29.99
What's the best approach for developing an application with JavaScript? This book helps you answer that question with numerous JavaScript coding patterns and best practices. If you're an experienced d......一起来看看 《JavaScript Patterns》 这本书的介绍吧!
