linux网络应用报告.docx
《linux网络应用报告.docx》由会员分享,可在线阅读,更多相关《linux网络应用报告.docx(39页珍藏版)》请在冰豆网上搜索。
linux网络应用报告
2012年Linux网络应用
实
训
报
告
姓名:
蒋文芳
学号:
10102212
班级:
10网络2班
课题一DNS
主DNS配置
1、查看是否安装了DNS软件包
[root@localhost~]#rpm-qa|grepbind
bind-utils-9.3.4-10.P1.el5
bind-9.3.4-10.P1.el5
bind-libs-9.3.4-10.P1.el5
ypbind-1.19-11.el5
bind-chroot-9.3.4-10.P1.el5
[root@localhost~]#rpm-qa|grepcaching
[root@localhost~]#
2、挂载光驱装包
[root@localhost~]#cd/mnt/q
[root@localhostq]#ls
CentOSRELEASE-NOTES-enRELEASE-NOTES-nl
EULARELEASE-NOTES-en.htmlRELEASE-NOTES-nl.html
GPLRELEASE-NOTES-en_USRELEASE-NOTES-pt_BR
imagesRELEASE-NOTES-en_US.htmlRELEASE-NOTES-pt_BR.html
isolinuxRELEASE-NOTES-esRELEASE-NOTES-ro
NOTESRELEASE-NOTES-es.htmlRELEASE-NOTES-ro.html
RELEASE-NOTES-csRELEASE-NOTES-frrepodata
RELEASE-NOTES-cs.htmlRELEASE-NOTES-fr.htmlRPM-GPG-KEY-beta
RELEASE-NOTES-deRELEASE-NOTES-jaRPM-GPG-KEY-CentOS-5
RELEASE-NOTES-de.htmlRELEASE-NOTES-ja.htmlTRANS.TBL
[root@localhostq]#cdCentOS
[root@localhostCentOS]#ls|grepcaching
caching-nameserver-9.3.4-10.P1.el5.i386.rpm
[root@localhostCentOS]#rpm-ivhcaching-nameserver-9.3.4-10.P1.el5.i386.rpm
warning:
caching-nameserver-9.3.4-10.P1.el5.i386.rpm:
HeaderV3DSAsignature:
NOKEY,keyIDe8562897
Preparing...###########################################[100%]
1:
caching-nameserver###########################################[100%]
[root@localhostCentOS]#
3、修改文件属性
[root@localhostetc]#ll
total28
-rw-r--r--1rootroot3519Feb272006localtime
-rw-r-----1rootnamed1195Jan212009named.caching-nameserver.conf
-rw-r-----1rootnamed955Jan108:
53named.conf
-rw-r-----1rootnamed955Jan212009named.rfc1912.zones
-rw-r-----1rootnamed113Feb92012rndc.key
4、编辑DNS主配置文件
options{
directory"/var/named";
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
zone""IN{
typemaster;
file".host";
allow-update{none;};
};
zone"2.168.192.in-addr.arpa"IN{
typemaster;
file"192.168.2.rev";
allow-update{none;};
};
5、正向解析配置
[root@localhostnamed]#vim.host
$TTL86400
@INSOA.(
42;serial(d.adams)
3H;refresh
15M;retry
1W;expiry
1D);minimum
INNS.
wwwINA192.168.2.100
ftpINA192.168.2.10
mailINA192.168.2.240
ptINA192.168.2.241
pressINA192.168.2.242
vodINA192.168.2.243
6、反向解析配置
[root@localhostnamed]#vim192.168.2.rev
$TTL86400
@INSOA..(
1997022700;Serial
28800;Refresh
14400;Retry
3600000;Expire
86400);Minimum
INNS.
100INPTR.
10INPTR.
240INPTR.
241INPTR.
242INPTR.
243INPTR.
7、设置LINUXDNS地址
[root@localhostetc]#vimresolv.conf
;generatedby/sbin/dhclient-script
searchlocaldomain
nameserver192.168.2.100
8、测试结果
[root@localhostetc]#nslookup
>
Server:
192.168.2.100
Address:
192.168.2.100#53
Name:
Address:
192.168.2.100
>192.168.2.100
Server:
192.168.2.100
Address:
192.168.2.100#53
100.2.168.192.in-addr.arpaname=.
>192.168.2.10
Server:
192.168.2.100
Address:
192.168.2.100#53
10.2.168.192.in-addr.arpaname=.
>
Server:
192.168.2.100
Address:
192.168.2.100#53
Name:
Address:
192.168.2.10
二、辅助DNS
1、先把主DNS做完,保证两者之间网络互通
2、DNS主配置文件
options{
directory"/var/named";
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
zone""IN{
typeslave;
file"slaves/.host";
masters{192.168.2.100;};
};
zone"2.168.192.in-addr.arpa"IN{
typeslave;
file"slaves/192.168.2.rev";
masters{192.168.2.100;};
};
3、修改LINUX客户端的DNS地址
[root@localhostetc]#vimresolv.conf
;generatedby/sbin/dhclient-script
searchlocaldomain
nameserver192.168.2.101
4、生成目录
[root@localhostslaves]#ll
total8
-rw-r--r--1namednamed370Jan109:
13192.168.2.rev
-rw-r--r--1namednamed334Jan109:
13.host
5、测试结果
>
Server:
192.168.2.101
Address:
192.168.2.101#53
Name:
Address:
192.168.2.100
>192.168.2.100
Server:
192.168.2.101
Address:
192.168.2.101#53
100.2.168.192.in-addr.arpaname=.
>
Server:
192.168.2.101
Address:
192.168.2.101#53
Name:
Address:
192.168.2.254
>192.168.2.254
Server:
192.168.2.101
Address:
192.168.2.101#53
254.2.168.192.in-addr.arpaname=.
三、转发
1.只转发
1 DNS主配置文件
options{
directory"/var/named";
recursionyes;
forwardonly;
forwarders{192.168.2.100;};
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
2 测试结果
[root@localhostetc]#nslookup
>
Server:
192.168.2.101
Address:
192.168.2.101#53
Non-authoritativeanswer:
Name:
Address:
192.168.2.100
>192.168.2.100
Server:
192.168.2.101
Address:
192.168.2.101#53
Non-authoritativeanswer:
100.2.168.192.in-addr.arpaname=.
Authoritativeanswerscanbefoundfrom:
2.168.192.in-addr.arpanameserver=.
2.部分转发
1)DNS主配置
options{
directory"/var/named";
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
zone""IN{
typemaster;
file".host";
allow-update{none;};
};
zone"2.168.192.in-addr.arpa"IN{
typemaster;
file"192.168.2.rev";
allow-update{none;};
};
zone""IN{
typeforward;
forwarders{192.168.2.100;};
};
2)正反向解析配置
[root@localhostnamed]#vim.host
$TTL86400
@INSOAdns.xy.xn.(
42;serial(d.adams)
3H;refresh
15M;retry
1W;expiry
1D);minimum
INNS.
wwwINA192.168.2.101
mailINA192.168.2.222
[root@localhostnamed]#vim192.168.2.rev
$TTL86400
@INSOA..(
1997022700;Serial
28800;Refresh
14400;Retry
3600000;Expire
86400);Minimum
INNS.
101INPTR.
222INPTR.
3)测试结果
[root@localhostetc]#nslookup
>
Server:
192.168.2.101
Address:
192.168.2.101#53
Non-authoritativeanswer:
Name:
Address:
192.168.2.100
>
Server:
192.168.2.101
Address:
192.168.2.101#53
Name:
Address:
192.168.2.101
>192.168.2.101
Server:
192.168.2.101
Address:
192.168.2.101#53
101.2.168.192.in-addr.arpaname=.
综合案例:
某公司申请了一个二级域名:
按要求完成如下DNS服务器的配置:
1.在192.168.2.1的机器上配置主DNS服务器,可以解析:
其ip:
192.168.2.6;
2.在192.168.2.4的机器上配置:
的子域:
的域名解析;
3.在192.168.2.3的机器上配置:
的辅助DNS服务器;
1、主DNS主配置文件
root@localhostetc]#vimnamed.conf
options{
directory"/var/named";
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
zone""IN{
typemaster;
file".host";
allow-update{none;};
};
zone"2.168.192.in-addr.arpa"IN{
typemaster;
file"192.168.2.rev";
allow-update{none;};
};
2、主DNS正反向查询配置文件
[root@localhostnamed]#vim.host
$TTL86400
@INSOA..(
42;serial(d.adams)
3H;refresh
15M;retry
1W;expiry
1D);minimum
@INNS.
xinxiINNS.
wwwINA192.168.2.6
dns1.xinxiINA192.168.2.4
[root@localhostnamed]#vim192.168.2.rev
$TTL86400
@INSOA..(
1997022700;Serial
28800;Refresh
14400;Retry
3600000;Expire
86400);Minimum
@INNS.
2INNS.
6INPTR.
4INPTR.
3、DNS子域主配置文件
[root@localhostetc]#vimnamed.conf
options{
directory"/var/named";
};
zone"."IN{
typehint;
file"named.ca";
};
zone"localdomain"IN{
typemaster;
file"localdomain.zone";
allow-update{none;};
};
zone"localhost"IN{
typemaster;
file"localhost.zone";
allow-update{none;};
};
zone"0.0.127.in-addr.arpa"IN{
typemaster;
file"named.local";
allow-update{none;};
};
zone""IN{
typemaster;
file".host";
allow-update{none;};
};
zone"2.168.192.in-addr.arpa"IN{
typemaster;
file"192.168.2.rev";
allow-update{none;};
};
4、DNS子域正反向配置文件
[root@localhostnamed]#vim.host
$TTL86400
@INSOA..(
42;serial(d.adams)
3H;refresh
15M;retry
1W;expiry
1D);minimum
INNS.
dns1INA192.168.2.4
[root@localhostnamed]#vim192.168.2.rev
$TTL86400
@INSOA..(
1997022700;Serial
28800;Refresh
144