DNS(域名解析服务器)
安装包:bind-9.8.2-0.17.rc1.el6.x86_64.rpm
端口:53
配置文件:/etc/named.conf
/etc/named.rfc1912.zones
自定义域解析文件
启动服务:service named restart

配置正向解析:
1.定义访问控制
[root@robin ~]# vim /etc/named.conf
listen-on port 53 { any; };
allow-query { any; };

2.定义域名及域解析文件 (在每句之后都有；)
[root@robin ~]# vim /etc/named.rfc1912.zones
zone "uplooking.com" IN {
type master;
file "uplooking.com.zone";
};

3.创建域解析文件
[root@robin ~]# touch /var/named/uplooking.com.zone
[root@robin ~]# chmod 640 /var/named/uplooking.com.zone
[root@robin ~]# chown .named /var/named/uplooking.com.zone
[root@robin named]# vim uplooking.com.zone
$TTL 1D
@ IN SOA dns.uplooking.com. root( 20151208 1D 1H 1W 3H)
IN NS dns.uplooking.com.
dns IN A 172.16.110.1
www IN A 172.16.110.1

4.重启服务

测试
客户端设置DNS服务器
[root@data1 ~]# vim /etc/resolv.conf
nameserver 172.16.110.1

测试解析 (与server，client的hostname没有关系)
[root@data1 ~]# host www.uplooking.com
www.uplooking.com has address 172.16.110.1

[root@data1 ~]# nslookup www.uplooking.com
Server: 172.16.110.1
Address: 172.16.110.1#53

Name: www.uplooking.com
Address: 172.16.110.1

解析报错
Host www.uplooking.com.nba.com not found: 2(SERVFAIL)
1.查看日志 tailf /var/log/message

各种域名解析写法
$TTL 1D
@ IN SOA dns.uplooking.com. root( 20151208 1D 1H 1W 3H)
IN NS dns.uplooking.com. 管理服务器
dns IN A 172.16.110.1 -------DNS服务器域名解析
www IN A 172.16.110.1 -------web服务器域名解析
ftp IN A 172.16.110.1 -------ftp服务器域名解析
web IN CNAME www.uplooking.com. ---- web别名www
IN MX 5 mail.uplooking.com. ---- 邮件
mail IN A 172.16.110.1
@ IN A 172.16.110.1 ---- 本域解析
ww IN A 172.16.110.1
wwww IN A 172.16.110.1

轮循
www IN A 172.16.110.1
www IN A 172.16.110.2
www IN A 172.16.110.3

泛解析

• IN A 172.16.100.1
  连续解析 (批量解析服务器)
  $GENERATE 1-254 stu$ IN A 172.16.110.$

反向解析
1.定义访问控制
[root@robin ~]# vim /etc/named.conf
listen-on port 53 { any; };
allow-query { any; };

2.定义域
[root@robin ~]# vim /etc/named.rfc1912.zones
zone "110.16.172.in-addr.arpa" IN {
type master;
file "172.16.110.arpa";
};

3.定义域解析文件
[root@robin named]# touch /var/named/172.16.110.arpa
[root@robin named]# chmod 640 /var/named/172.16.110.arpa
[root@robin named]# chown .named /var/named/172.16.110.arpa
[root@robin named]# vim 172.16.110.arpa
$TTL 86400
@ IN SOA dns.hehe.com. root (20151208 1D 1H 1W 3H)
IN NS dns.hehe.com.
111 IN PTR www.hehe.com.
110 IN PTR www.haha.com.

测试
[root@robin named]# host 172.16.110.110
110.110.16.172.in-addr.arpa domain name pointer www.haha.com.
[root@robin named]# host 172.16.110.111
111.110.16.172.in-addr.arpa domain name pointer www.hehe.com.

转发服务器(在optional中做)
forward first;
forwarders { 172.16.110.31;172.16.110.81;172.16.110.21; };

forward only;
forwarders { 172.16.110.31;172.16.110.81;172.16.110.21; };

注释dnssec-lookaside auto; 和 两行include
options {
listen-on port 53 { any; };
allow-query { any; };
forward only;
forwarders {1221;};
recursion yes;

dnssec-lookaside auto;

}

include "/etc/named.rfc1912.zones";

include "/etc/named.root.key";

DNS的主从服务器
主服务器

[root@robin ~]# vim /etc/named.conf
listen-on port 53 { any; };
allow-query { any; };

[root@robin named]# vim /etc/named.rfc1912.zones
zone "upup.com" IN {
type master;
file "upup.com.zone";
allow-transfer {172.16.110.3;};
};

[root@robin named]# vim upup.com.zone
$TTL 1D
@ IN SOA dns.upup.com. root ( 20151208 1D 1H 1W 3H) 版本号（配置文件比对） 刷新时间（自动reload） 重试时间 重试放弃时间 生存时间
IN NS dns.upup.com.
dns IN A 172.16.110.1
www IN A 172.16.110.1

从服务器
1.安装软件

[root@robin ~]# vim /etc/named.conf
listen-on port 53 { any; };
allow-query { any; };

zone "upup.com" IN{
type slave;
file "slaves/upup.com.zone";
masters {172.16.110.1;};
};

4.同步

服务的开机自启动
[root@robin ~]# chkconfig --list
[root@robin ~]# chkconfig --list httpd
[root@robin ~]# chkconfig httpd on 在默认级别开机启动
[root@robin ~]# chkconfig httpd off 开机不自动启动
[root@robin ~]# chkconfig --level 35 httpd on 指定级别

笔记补充：
服务器与服务器之间是迭代查询
客户端与服务器之间是递归查询
主日志 /var/named/data/named.run