Shulou(Shulou.com)06/02 Report--

The previous article has implemented kea-dhcp to assign IPv6 addresses, and the next step is to configure DNS.

Specific requirements:

1.master-dns ns record dns1.langqun.com 192.168.23.10 2001:da8:1000:1000:192:168:23:10

Slave-dns ns record dns2.langqun.com 192.168.23.11 2001:da8:1000:1000:192:168:23:11

two。 Add www.langqun.com A record 192.168.23.100 2001:da8:1000:1000:192:168:23:100

Add web.langqun.com CNAME record www.langqun.com

Software selection:

The traditional use of bind software, the software is relatively familiar, the operation manual is relatively easy to find.

Unbound software is more practical, more powerful, online relative operation manual is less, can only go to the official website to check. Bind is the operation here.

Implementation steps:

1. Select the main DNS ns1.langqun.com 192.168.23.10 2001:da8:1000:1000:192:168:23:10

two。 Perform the yum-y install bind* installation; point to rpm-aq bind after the installation to see if the installation is complete.

3. Compile named.conf:

Vim / etc/named.conf

Lines 13 and 14 listen for local IPv4 addresses and IPv6 addresses

Line 21 allows any to query, which is a policy for access control.

Add the following after line 57:! [] (https://s1.51cto.com/images/blog/201912/09/2a5a67a6ce6f9efafadcd4cd29b8c67f.png?x-oss-process=image/watermark,size_16,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_100,g_se,x_10,y_10,shadow_90,type_ZmFuZ3poZW5naGVpdGk=)

What is added is the key information of rndc. Rndc is the manager of dns. With this tool, you don't need to restart the dns service every time, you just need to execute rndc reload.

Rndc is in / etc/rndc.conf by default, but there are all kinds of errors when loading rndc, and finally find a lot of reasons to copy the rndc file to the named.conf file.

two。 Compile vim / etc/named.rfc1912.zones

Add at the bottom:

The allow-transfer here is synchronized from the primary standby dns server to the primary DNS. It must be configured, otherwise there is a security risk of zone transmission.

Zone "langqun.com" is positive parsing content

Zone "23.168.192.in-addr.arpa" parses content for reverse regions

The configuration file for 3.bind is located under / var/named/, so modify the configuration file in this folder

Vim / var/named/langqun.com.zone (langqun.com.zone is a custom configuration file defined according to your actual situation)

After the configuration, check the integrity of the configuration and check whether the syntax is wrong. Execute the following command

Named-checkconf check profile

Named-checkzone langqun.com / var/named/langqun.com.zone check area profile

Chmod 640 langqun.com.zone changes the properties of a file

Chown: named langqun.com.zone changes the group of files.

For the configuration of reverse zone resolution, you need to compile the following:

Vim / var/named/192.168.23.zone (192.168.23.zone is a custom configuration file defined according to your actual situation)

After compilation, you need to execute the following:

Chgrp named 192.168.23.zone

Chmod o = 192.168.23.zone

Named-checkconf

Named-checkzone 23.168.192.in-addr.arpa / var/named/192.168.23.zone

Verify:

5. Select ns2.langqun.com 192.168.23.11 2001:da8:1000:1000:192:168:23:11 configuration

Install files using yum install bind

6. Compiled file

Vim / etc/named.rfc1912.zones

Vim / etc/named.conf

7. Restart standby dns

Systemctl restart named.service

Rndc reload

Systemc status named.service can see the following:

8. Verification

At this point, the master slave dns is configured, and the next step is to start configuring nginx.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.