Of Stack

centos7. x deployment of master and slave DNS server issues

  • 2021-07-01 08:33:45
  • OfStack

1. Prepare

Example: Two sets of 192.168. 219.146 (master), 192.168. 219.147 (slave), domain name www. panyangduola. com

Both master and slave DNS servers need to install bind, bind-chroot, bind-utils

yum -y install bind bind-utils bind-chroot

If the firewall is turned on, configure the firewall and add services (ignored if the firewall is disabled) 


firewall-cmd --permanent --add-service=dns
firewall-cmd --reload

2. Primary DNS Server (192.168. 219.146) Configuration

Edit Configuration File

vim /etc/named.conf

Find two of the lines 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };

Modify to 


listen-on port 53 { any; };
allow-query { any; };

2-1, Configuration Forward Parsing

Edit the file/etc/named. rfc1912.zones and add the fields to be resolved at the end 


vim /etc/named.rfc1912.zones
zone "panyangduola.com" IN {
  type master;
  file "data/panyangduola.com.zone";
};

Create panyangduola. com. zone parsing domain 


vim /var/named/data/panyangduola.com.zone
$TTL 3600
$ORIGIN panyangduola.com.
@  IN  SOA panyangduola.com. admin.panyangduola.com. (
  2018042101
  1D
  1H
  1W
  3H
)
@  IN  NS  ns1.panyangduola.com.
@  IN  NS  ns2.panyangduola.com.
ns1  IN  A  192.168.219.146
ns2  IN  A  192.168.219.147
www  IN  A  192.168.219.146
web  IN  CNAME www

2-2. Configuration reverse parsing

Edit the file/etc/named. rfc1912.zones, adding the fields to be resolved at the end 


vim /etc/named.rfc1912.zones
zone "219.168.192.in-addr.arpa" IN {
   type master;
   file "data/219.168.192.zone"; 
};

Create 219.168. 192. zone parse domain 


vim /var/named/data/219.168.192.zone
$TTL 3600
$ORIGIN 219.168.192.in-addr.arpa.
@  IN  SOA panyangduola.com. admin.panyangduola.com. (
  2018042101
  1D
  1H
  1W
  3H
)
@  IN  NS  ns1.panyangduola.com.
@  IN  NS  ns2.panyangduola.com.
146  IN  PTR  ns1.panyangduola.com.
147  IN  PTR  ns2.panyangduola.com.
146  IN  PTR  www.panyangduola.com.

2-3. Perform 1 syntax check on DNS configuration file: 


cd /etc
named-checkconf named.conf
named-checkconf named.rfc1912.zones
cd /var/named/data
named-checkzone panyangduola.com panyangduola.com.zone
named-checkzone 219.168.192.in-addr.arpa 219.168.192.zone

2-4, edit/etc/resolv. conf, add 


vim /etc/resolv.conf
search localdomain
nameserver 192.168.219.146

2-5. Start the named service if there is no error in step 2-3

Restart named

systemctl restart named

View status

systemctl status named

2-6. Check whether the main DNS server parses successfully

ping Command Validation 


ping -c 4 www.panyangduola.com
nslookup Command validation 
nslookup
>www.panyangduola.com
nslookup
>192.168.219.146

3. Configure from DNS Server (192.168. 219.147)

Edit the named. conf file

vim /etc/named.conf

Find two of the lines 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
0

Modify to 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
1

3-1, modifying the configuration of the primary DNS server (192.168. 219.146)/etc/named. rfc1912. zones 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
2

3-2, configure forward parsing from DNS server (192.168. 219.147)

Edit the file/etc/named. rfc1912. zones, adding the fields to be resolved at the end 


vim /etc/named.rfc1912.zones
zone "panyangduola.com" IN {
    type slave;
    file "data/panyangduola.com.zone";
    masters { 192.168.219.146; };
};

Create an empty panyangduola. com. zone file

touch /var/named/data/panyangduola.com.zone

Set Owner 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
4

3-3, Configuration Reverse Parsing from DNS Server (192.168. 219.147)

Add in file/etc/named. rfc1912. zones 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
5

Create an empty file 219.168. 192. zone

touch /var/named/data/219.168.192.zone

Set Owner 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
6

3-4. Perform 1 syntax check on DNS configuration file: 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
7

3-5, Edit/etc/resolv.conf, Add 


vim /etc/resolv.conf
search localdomain
nameserver 192.168.219.147

3-6. Start the named service if no errors occur in steps 3-4

Restart named

systemctl restart named

View status

systemctl status named

3-7, see files/var/named/data/panyangduola. com. zone and/var/named/data/219. 168.192. zone for binary data 


listen-on port 53 { 127.0.0.1; };
allow-query { localhost; };
9

3-8. Check whether parsing from DNS server is successful 


ping Command validation 
ping -c 4 www.panyangduola.com
nslookup Command validation 
nslookup
>192.168.219.147

Summarize

Related articles: