Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • DNS

    Încărcat de

    paul andrade
    22 vizualizări5 pagini
    dns 3

    Drepturi de autor

    © © All Rights Reserved

    Formate disponibile

    PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    dns 3

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    22 vizualizări5 pagini

    DNS

    Încărcat de

    paul andrade
    dns 3

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 5

    ---------------------CONFIGURACION DNS----------------------------------- DNS Master---------------------

    echo Configurar tarjeta de red


    cd /etc/sysconfig/network-scripts/
    gedit ifcfg-eno...
    gedit /etc/sysconfig/network-scripts/ifcfg-eno16777736
    echo Configurar tarjeta de red con estos parmetros:
    echo DNS1 y IPADDR tienen que tener la misma direccin IP
    IPADDR="192.168.1.20"
    PREFIX="24"
    GATEWAY="192.168.1.1"
    DNS1="192.168.1.20"
    echo Asignar nombre de host y dominio
    hostnamectl set-hostname srvuiodns01.proxima.gob.ec
    echo

    echo reiniciar servicio


    systemctl restart network.service
    echo
    echo Instalar librerias
    yum install bind bind-utils -y
    echo
    echo Editar fichero named.conf y editar las lneas como se muestra
    echo Los lneas que deben modificarse son la ip de los servidores echo
    DNS y el dominio, es decir lo sealado en negrilla.
    gedit /etc/named.conf
    options {
    listen-on port 53 { 127.0.0.1; 192.168.1.20;}; ### Master DNS IP ###
    # listen-on-v6 port 53 { ::1; };
    directory
    "/var/named";
    dump-file
    "/var/named/data/cache_dump.db";
    statistics-file "/var/named/data/named_stats.txt";
    memstatistics-file "/var/named/data/named_mem_stats.txt";
    allow-query
    { localhost; 192.168.1.0/24;}; ### IP Range ###
    allow-transfer{ localhost; 192.168.1.21; };
    ### Slave DNS IP ###
    zone "proxima.gob.ec" IN {
    type master;
    file "forward.proxima.gob.ec";
    allow-update { none; };
    };
    zone "1.168.192.in-addr.arpa" IN {
    type master;
    file "reverse.proxima.gob.ec";

    allow-update { none; };
    };
    include "/etc/named.rfc1912.zones";
    include "/etc/named.root.key";

    echo Configurar forward. Vease anexo DNS forward


    gedit /var/named/forward.proxima.gob.ec

    echo Configurar reverse. Vease anexo DNS reverse


    gedit /var/named/reverse.proxima.gob.ec

    echo Habilitar e Iniciar servicio


    systemctl enable named
    systemctl start named
    echo Abrir firewall
    firewall-cmd --permanent --add-port=53/tcp
    firewall-cmd --permanent --add-port=53/udp
    firewall-cmd --reload

    echo

    echo Configurar Permissions, Ownership, and SELinux


    chgrp named -R /var/named
    chown -v root:named /etc/named.conf
    restorecon -rv /var/named
    restorecon /etc/named.conf
    echo

    echo Verificar si el fichero named.conf est sin errores


    echo Si est bien configurado no debe salir ningn mensaje
    named-checkconf /etc/named.conf

    echo Probar resolucin


    nslookup 192.168.1.20
    nslookup srvuiodns01.proxima.gob.ec
    dig

    srvuiodns01.proxima.gob.ec

    echo Verificar resolucin


    named-checkzone uio.secap.gob.ec /var/named/forward.proxima.gob.ec
    echo Salida OK
    named-checkzone uio.secap.gob.ec /var/named/reverse.proxima.gob.ec
    echo Salida OK
    echo
    echo
    echo
    echo

    verificar en resolv.conf el nameserver si est correcto la ip y


    el dominio segn el caso
    search proxima.gob.ec
    nameserver 192.168.1.20

    gedit /etc/resolv.conf

    --------------------- DNS Slave----------------------------------------------------------------------------------------

    echo Configurar tarjeta de red


    cd /etc/sysconfig/network-scripts/
    gedit ifcfg-eno...
    gedit /etc/sysconfig/network-scripts/ifcfg-eno16777736
    echo Configurar tarjeta de red con estos parmetros:
    echo DNS1 y IPADDR tienen que tener la misma direccin IP
    IPADDR="192.168.1.21"
    PREFIX="24"
    GATEWAY="192.168.1.1"
    DNS1="192.168.1.21"
    DNS1="192.168.1.21"
    echo Asignar nombre de host y dominio
    hostnamectl set-hostname srvuiodns02.proxima.gob.ec
    echo

    echo reiniciar servicio


    systemctl restart network.service
    echo
    echo Instalar librerias
    yum install bind bind-utils -y
    echo

    echo Editar fichero named.conf y editar las lneas como se muestra


    echo Los lneas que deben modificarse son la ip de los servidores echo
    DNS y el dominio, es decir lo sealado en negrilla.
    gedit /etc/named.conf

    options {
    listen-on port 53 { 127.0.0.1; 192.168.1.21; };
    listen-on-v6 port 53 { ::1; };
    directory "/var/named";
    dump-file "/var/named/data/cache_dump.db";
    statistics-file "/var/named/data/named_stats.txt";
    memstatistics-file "/var/named/data/named_mem_stats.txt";
    allow-query
    { localhost; 192.168.1.0/24; };

    zone "proxima.gob.ec" IN {
    type slave;
    file "slaves/ proxima.gob.ec.fwd";
    masters { 192.168.1.20; };
    };
    zone "1.168.192.in-addr.arpa" IN {
    type slave;
    file "slaves/ proxima.gob.ec.rev";
    masters { 192.168.1.20; };
    };
    include "/etc/named.rfc1912.zones";
    include "/etc/named.root.key";

    echo Habilitar e Iniciar servicio


    systemctl enable named
    systemctl start named

    echo Ahora las zonas forwardy reverseserautomticamentereplicadasdesdeelDNS


    matesroa /var/named/slaves/ en elservidorDNSSecundario.
    ls /var/named/slaves/
    echo salida: proxima.gob.ec.fwd

    echo
    echo
    echo
    echo
    echo

    proxima.gob.ec.rev

    verificar en resolv.conf el nameserver si est correcto la ip y


    el dominio segn el caso
    search proxima.gob.ec
    nameserver 192.168.1.20
    nameserver 192.168.1.21

    echo Reiniciar servicio


    systemctl restart network

    echo

    echo Abrir firewall


    firewall-cmd --permanent --add-port=53/tcp
    firewall-cmd --reload

    echo

    echo Configurar Permissions, Ownership, and SELinux


    chgrp named -R /var/named
    chown -v root:named /etc/named.conf
    restorecon -rv /var/named
    restorecon /etc/named.conf
    echo

    echo Probar resolucin


    nslookup 192.168.1.21
    nslookup 192.168.1.20

    nslookup srvuiodns02.proxima.gob.ec
    dig

    srvuiodns02.proxima.gob.ec

    echo Verificar las resoluciones del dominio:


    nslookup proxima.gob.ec
    Server:
    192.168.1.20
    Address:
    192.168.1.20#53
    Name: proxima.gob.ec
    Address: 192.168.1.6
    Name: proxima.gob.ec
    Address: 192.168.1.20
    Name: proxima.gob.ec
    Address: 192.168.1.5
    Name: proxima.gob.ec
    Address: 192.168.1.21

    S-ar putea să vă placă și