Linux

DNS 서버 구축

포드맨 2024. 12. 18. 09:30

- OS : CentOS 7

- IP : 10.0.1.58

- Domain : seonmin.com

 

 

1. bind 패키지 설치

$ yum    install    bind*

 

 

2. named.conf 설정

$ vi    /etc/named.conf

--------------------------------------------------------------

options {

        listen-on port 53 { any; };

        listen-on-v6 port 53 { ::1; };

        directory       "/var/named";

        dump-file       "/var/named/data/cache_dump.db";

        statistics-file "/var/named/data/named_stats.txt";

        memstatistics-file "/var/named/data/named_mem_stats.txt";

        recursing-file  "/var/named/data/named.resursing";

        securoots-file  "/var/named/data/named.secroots";

        allow-query     { any; };

        masterfile-format text;

--------------------------------------------------------------

 

 

3. named.conf  오류 체크

$ named-checkconf     /etc/named.conf     (출력 내용 없으면 정상)

 

 

4. domain zone 추가

$ vi    /etc/named.rfc1912.zones

--------------------------------------------------------------

zone "seonmin.com" IN {

        type master;

        file "seonmin.com.zone";

        allow-update { any; };

};

--------------------------------------------------------------

 

 

5. zone 파일 생성 및 권한 변경

$ cp    /var/named/named.localhost    /var/named/seonmin.com.zone

 

$ chown     root:named     /var/named/seonmin.com.zone

 

 

6. zone 파일 레코드 수정하기

$ vi   /var/named/seonmin.com.zone

--------------------------------------------------------------

$TTL 1D

@        IN SOA    seonmin.com. root. (

                                                           0       ; serial

                                                           1D      ; refresh

                                                           1H      ; retry

                                                           1W      ; expire

                                                           3H )    ; minimum

            IN          NS         seonmin.com.

            IN          A           10.0.1.58

www     IN           A           10.0.1.58

--------------------------------------------------------------

 

 

7. Zone 설정 파일 확인 유효성 체크

$ named-checkconf      /etc/named.rfc1912.zones   (출력 내용 없으면 정상)

 

$ named-checkzone     seonmin.com      /var/named/seonmin.com.zone

--------------------------------------------------------------

zone seonmin.com/IN: loaded serial 0

OK

--------------------------------------------------------------

 

 

8. /etc/resolv.conf 등록

$ vi   /etc/sysconfig/network-scripts/ifcfg-ens192

--------------------------------------------------------------

DNS1=127.0.0.1   (가장 상위에)

NM_CONTROLLED=no

--------------------------------------------------------------

 // 다른 DNS1 설정이 있다면 지우기

 

 

$ vi   /etc/resolv.conf

--------------------------------------------------------------

nameserver    127.0.0.1    (가장 상위에)

--------------------------------------------------------------

 

$ systemctl    restart    network

 

 

9. named 서비스 재기동

$ systemctl     restart      named

$ systemctl     enable     named

 

 

10. 도메인 및 IP 확인

$ nslookup

--------------------------------------------------------------

> seonmin.com

Server:         127.0.0.1

Address:        127.0.0.1#53

 

Name:   seonmin.com

Address: 10.0.1.58

--------------------------------------------------------------