缓存服务器就是把用户经常使用到的域名与IP地址的解析记录保存在主机本地,从而提升下次解析的效率。
1.配置双网卡系统
缓存服务器:外网网卡(ens192,桥接模式)根据物理设备的网络参数进行配置(通过DHCP 或手动方式指定 IP 地址与网关等信息),内网网卡(ens160仅主机模式):192.168.10.2
客户端:192.168.10.7
1)vm虚拟机设置编辑菜单虚拟网络编辑器
![图片[1]-6.5 DNS缓存服务器-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片21.png)
2)添加网卡,并设置两块网卡模式
![图片[2]-6.5 DNS缓存服务器-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片22.png)
3)设置ens192网卡参数
![图片[3]-6.5 DNS缓存服务器-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片23.png)
4)启动新添加网卡,查看网卡参数
[root@dsrw ~]# nmcli connection up ens192
连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/9)
[root@dsrw ~]# ifconfig
ens160: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.10.2 netmask 255.255.255.0 broadcast 192.168.10.255
inet6 fe80::8782:14ae:73c2:4971 prefixlen 64 scopeid 0x20<link>
ether 00:0c:29:65:c4:9c txqueuelen 1000 (Ethernet)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 28 bytes 4130 (4.0 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
ens192: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.1.9 netmask 255.255.255.0 broadcast 192.168.1.255
inet6 fe80::c8dc:5b03:14cd:3395 prefixlen 64 scopeid 0x20<link>
ether 00:0c:29:65:c4:a6 txqueuelen 1000 (Ethernet)
RX packets 456 bytes 31488 (30.7 KiB)
RX errors 0 dropped 2422 overruns 0 frame 0
TX packets 65 bytes 10671 (10.4 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
2.在bind服务程序的主配置文件中添加缓存转发参数。
[root@dsrw ~]# vim /etc/named.conf
9 options {
10 listen-on port 53 { any; };
11 listen-on-v6 port 53 { ::1; };
12 directory "/var/named";
13 dump-file "/var/named/data/cache_dump.db";
14 statistics-file "/var/named/data/named_stats.txt";
15 memstatistics-file "/var/named/data/named_mem_stats.txt";
16 secroots-file "/var/named/data/named.secroots";
17 recursing-file "/var/named/data/named.recursing";
18 allow-query { any; };
19 forwarders { 8.8.8.8; };
3.设置防火墙参数,并重新启动DNS服务
[root@dsrw ~]# iptables -F
[root@dsrw ~]# iptables-save
# Generated by xtables-save v1.8.2 on Fri Dec 23 10:12:39 2022
*filter
[root@dsrw ~]# firewall-cmd --permanent --zone=public --add-service=dns
success
[root@dsrw ~]# firewall-cmd --reload
Success
[root@dsrw ~]# systemctl restart named
4.设置客户端DNS地址为缓存服务器地址,测试。
![图片[4]-6.5 DNS缓存服务器-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片24.png)
![图片[5]-6.5 DNS缓存服务器-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片25.png)
[root@dsrw ~]# nmcli connection up ens160
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/5)
[root@dsrw ~]# nslookup www.bpbz.cn
Server: 192.168.10.2
Address: 192.168.10.2#53
Non-authoritative answer:
Name: www.bpbz.cn
Address: 39.107.138.83
4.服务器测试。
[root@dsrw ~]# nslookup www.baidu.com
Server: 192.168.10.2
Address: 192.168.10.2#53
Non-authoritative answer:
www.baidu.com canonical name = www.a.shifen.com.
Name: www.a.shifen.com
Address: 39.156.66.14
Name: www.a.shifen.com
Address: 39.156.66.18
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后查看评论内容