centos-dns配置文档.doc

第一步，定义acl文件 实际情况下可以下载一个ripe工具，去下载不同IDC的IP段 wget /apnic/dbase/tools/ripe-dbase-client-v3.tar.gz tar xvf ripe-dbase-client-v3.tar.gz -C /usr/src/ cd /usr/src/whois-3.1/ ./configure ;make ;make install whois3 -h -l -i mb MAINT-CHINANET /var/named/chroot/var/named/chinanet whois3 -h -l -i mb MAINT-CNCGROUP /var/named/chroot/var/named/cncgroup 下下来的文件，要经过 grep awk sed的处理得到IP或者IP段 这个在实验环境下实现不了 手动编写不同的ACL文件 vim /var/named/chroot/var/named/dianxin acl dianxin { 5; 9; 192.168.1/24; --也可以写IP段 }; vim /var/named/chroot/var/named/wangtong acl wangtong { 6; 6; 172.16.1/24; }; 第二步:定义DNS的主配置文件 vim /var/named/chroot/etc/named.conf options { directory /var/named; }; include dianxin; include wangtong; view dianxin { match-clients {dianxin;}; zone IN { type master; file data/.zone; }; }; view wangtong { match-clients {wangtong;}; zone IN { type master; file data/.zone; }; }; view others { match-clients {any;}; zone IN { type master; file data/.zone; }; }; 第三步：编写定义的三个zone文件 vim /var/named/chroot/var/named/data/.zone $TTL 86400 @ IN SOA . . ( 2010070401 360 480 720 86400 ) IN NS . dns IN A 92 --DNS服务器的地址 www IN A 0 --假设的电信机房的服务器IP为0 vim /var/named/chroot/var/named/data/.zone $TTL 86400 @ IN SOA . . ( 2010070401 360 480 720 86400 ) IN NS . dns IN A 92 www IN A 1 --网通机房的服务器IP为1 vim /var/named/chroot/var/named/data/.zone $TTL 86400 @ IN SOA . . ( 2010070401 360