准备
192.168.122.11 dns
192.168.122.12 nginx
192.168.122.100 harbor01
192.168.122.100 harbor02
关闭selinux 和 防火墙
systemctl disable NetworkManager
systemctl stop NetworkManager
sed -i 's#SELINUX=enforcing#SELINUX=disabled#' /etc/selinux/config
setenforce 0
systemctl stop firewalld && systemctl disable firewalld
yum -y install iptables-services && systemctl start iptables && systemctl enable iptables && iptables -F && service iptables save
timedatectl set-timezone Asia/Shanghai
timedatectl set-local-rtc 0
systemctl restart rsyslog.service
systemctl restart crond.service
systemctl stop postfix.service && systemctl disable postfix.service
rpm -Uvh http://www.elrepo.org/elrepo-release-7.0-3.el7.elrepo.noarch.rpm
yum --enablerepo=elrepo-kernel install -y kernel-lt
grub2-set-default 'CentoS Linux(4.4.214-1.el7.elrepo.×86_64) 7 (Core)'
wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
配置阿里云
的yum源,升级内核
wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
yum -y install epel-release
yum -y install wget net-tools telnet tree namp systat lrzsz dos2unix bind-utils
yum -y install iptables-services && systemctl start iptables && systemctl enable
rpm -Uvh http://www.elrepo.org/elrepo-release-7.0-3.el7.elrepo.noarch.rpm
yum --enablerepo=elrepo-kernel install -y kernel-lt
grub2-set-default 'CentoS Linux(4.4.214-1.el7.elrepo.×86_64) 7 (Core)'
reboot
配置dns
192.168.122.11
- 安装bind
yum -y install bind
- 主配置文件
/etc/named.conf
options {
listen-on port 53 { 192.168.122.11; };
allow-query { any; };
forwarders { 192.168.122.1; };
recursion yes;
dnssec-enable no;
dnssec-validation no;
};
- 区域配置文件
/etc/named.rfc1912.zones
zone "host.com" IN {
type master;
file "host.com.zone";
allow-update { 192.168.122.11; };
};
zone "nb.com" IN {
type master;
file "nb.com.zone";
allow-update { 192.168.122.11; };
};
- 配置主机域(host.com)数据文件
/var/named/host.com.zone
$ORIGIN host.com.
$TTL 600 ; 10 minutes
@ IN SOA dns.host.com. dnsadmin.host.com. (
2020032701 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimun (1 day)
)
NS dns.host.com.
$TTL 60 ; 1 minute
dns A 192.168.122.11
hdss122-11 A 192.168.122.11
hdss122-12 A 192.168.122.12
hdss122-100 A 192.168.122.100
hdss122-110 A 192.168.122.110
- 配置业务域(nb.com)数据文件
/var/named/nb.com.zone
$ORIGIN nb.com.
$TTL 600 ; 10 minutes
@ IN SOA dns.nb.com. dnsadmin.nb.com. (
2020032701 ; serial
10800 ; refresh (3 hours)
900 ; retry (15 minutes)
604800 ; expire (1 week)
86400 ; minimun (1 day)
)
N
S dns.nb.com.
$TTL 60 ; 1 minute
dns A 192.168.122.11
- 启动bind9
systemctl start named
systemctl enable named
- 检查
dig -t A hdss122-11.host.com @192.168.122.11 +short
dig -t A hdss122-12.host.com @192.168.122.11 +short
dig -t A hdss122-100.host.com @192.168.122.11 +short
dig -t A hdss122-110.host.com @192.168.122.11 +short
dig -t A dns.nb.com @192.168.122.11 +short
- 配置客户端并设置主机域(host.com)为短连接
sed -i 's/DNS1.*/DNS1="192.168.122.11"/' /etc/sysconfig/network-scripts/ifcfg-eth0
systemctl restart network
sed -i '2i\search host.com' /etc/resolv.conf
-
配置本机为DNS(192.168.122.11)的客户端
控制中心-网络-无线网卡
sudo sed -i '2i\search host.com' /etc/resolv.conf
