Configure DNS service with BIND under CentOS

I. INTRODUCTION of DNS

Second, bind installation

Third, bind configuration

Iv. bind Check configuration file

V. Verification

Vi. Common Mistakes

Seven, to be sorted

I. INTRODUCTION of DNS

DNS (domain Name Service), name resolution service.

History:

1, the early computer compared to the people by creating changes to the Hosts file on their own computer to achieve IP and domain name corresponding relationship.

2, for unified management, faster update to the latest HOSTS file, people unified to an FTP server to download the Hosts file.

3, when the computer explosive growth, through the unified to the FTP server download update Hosts file is not realistic, resulting in a multi-level domain to manage domain names. The parent domain is only responsible for the subordinate domain authorization.

Domain Name Type:

"Root domain"

.

"Primary domain/top-level domain"

organizational domain, business organization domain:com, com.cn, org, gov, edu, net

country domain:cn, HK, TW, JP, KR, IR, IQ, my, US, UK, RU, JP

reverse domain:in-addr-arpa

"Level two domain"

Baidu.com sina.com.cn, CN 163.com

Example: (This ignores the TTL description) The DNS server set by user 202.96.128.1 is: 8.8.8.8, which obtains the IP address of tieba.baidu.com. The process is as follows: 1, 202.96.128.1 first query the local have no query cache, if not the DNS server query. 2, the DNS server 8.8.8.8 information, so it does not directly return the tieba.baidu.com IP, but tells the DNS server 8.8.8.8: "com. The address is 1.1.1.1, you go to find it query it." "4, 8.8.8.8 to COM inquiry. In the same vein, the COM. domain does not hold tieba.baidu.com IP, it returns information to the DNS server 8.8.8.8: "Baidu.com. The address is 10.10.10.10, you go to find it query it. "5, the DNS server 8.8.8.8 to baidu.com at this time. Query the address of tieba.baidu.com, Baidu.com will return tieba.baidu.com. ip:12.12.12.12 to the DNS server. 6, the DNS server receives the query results will be cached to facilitate the user later query, and return the query results to the user 202.96.128.1.

Second, bind installation

Bind (Berkeley Internet Name Domain)

Using Yum installation in CentOS: Yum install bind bind-utils bind-libs portreserve

Portreserve I don't know what it is, dependencies installed it bind-libs bind to use the library bind-utils some tools, nslookup,host,dig and so bind is the domain name resolution installation package

Third, bind configuration

# vim /etc/named.conf    #  Modify the listening address and allow query configuration         listen-on port 53 { 192.168.86.16; };   // Set bind listener in 192.168.86.16:53        allow-query     The  { 192.168.86.0/24; };  //setting allows the 192.168.86.0 network segment to be set as a DNS server to query # vim /etc/ named.rfc1912.zones    #  add contoso.com domain and reverse parse 192.168.86.arpazone  "contoso.com"  IN {        type master;         file  "contoso.com";     //filename must correspond to the zone file created later (/var/named/)          allow-update { none; };}; zone  "86.168.192.in-addr.arpa"  IN {        type  master;        file  "192.168.86.arpa ";  //filename must correspond to the zone file created later (/var/named/)          allow-update { none; }; };

# vim/var/named/contoso.com

$TTL 1800

@in SOAcontoso.com. Admin.contoso.com. (

0; Serial

1D; Refresh

1H; Retry

1W; Expire

3H); Minimum

@inNSlinuxdns.contoso.com.

LinuxdnsinA192.168.86.16

DC01inA192.168.86.1

DC02inA192.168.86.2

*inA192.168.86.12

# Vim/var/named/192.168.86.arpa

$TTL 1800

@in SOAcontoso.com. Admin.contoso.com. (

0; Serial

1D; Refresh

1H; Retry

1W; Expire

3H); Minimum

@inNSlinuxdns.contoso.com.

inPTRlinuxdns.contoso.com.

1inPTRdc01.contoso.com.

2inPTRdc02.contoso.com.

# chown Named.named/var/named/192.168.86.arpa/var/named/contoso.com

#/etc/init.d/named Start

Iv. bind Check configuration file

# named-checkconf/etc/named.conf

# Named-checkconf/etc/named.rfc1912.zones

# Named-checkzone Contoso.com/var/named/contoso.com

V. Verification

Nslookup linuxdns.contoso.com 192.168.86.16

Nslookup dc01.contoso.com 192.168.86.16

Nslookup dc02.contoso.com 192.168.86.16

Dig linuxdns.contoso.com @192.168.86.16

Vi. Common Error Troubleshooting

1, bind configuration file, Allow-query, listen-on,

2, zone file format and permissions (named need to have read permissions to the file) # Chown-r named.named/var/named/

3, Iptables (open 53 port) # Iptables-f

4, SELinux (generally set to permissive or disabled) # Setenforce 0

Vii. to be sorted and updated

This article is from the "Do not forget Beginner's mind" blog, please be sure to keep this source http://winterysea.blog.51cto.com/9677346/1679834

Configure DNS service with BIND under CentOS