Skip to main content

Installation of DNS server on Centos 7

By
Run the following command on both the machines
yum install bind bind-utils -y

vi /etc/named.conf

acl "trusted" {

172.16.120.179;    # nameserver1 - can be set to localhost

172.16.120.154;  # host1

};

listen-on port 53 { 127.0.0.1; 172.16.120.179; };

allow-query     { trusted; };

zone "atos.local" IN {

type master;

file "forward.learnwithak";

allow-update { none; };

};

zone "120.16.172.learnwithak.local" IN {

type master;

file "reverse.learnwithak";

allow-update { none; };

};

 

sudo vi /var/named/forward.learnwithak

$TTL 86400

@   IN  SOA     masterdns.learnwithak.local. root.learnwithak.local. (

2011071001  ;Serial

3600        ;Refresh

1800        ;Retry

604800      ;Expire

86400       ;Minimum TTL

)

@       IN  NS          masterdns.learnwithak.local.

@       IN  A           172.16.120.179

@       IN  A           172.16.120.154

@       IN  A           172.16.120.69

masterdns       IN  A   172.16.120.179

vault          IN  A   172.16.120.154

vault-2          IN  A   172.16.120.69

 

vi /var/named/reverse.learnwithak

$TTL 86400

@   IN  SOA     masterdns.learnwithak.local. root.learnwithak.local. (

2011071001  ;Serial

3600        ;Refresh

1800        ;Retry

604800      ;Expire

86400       ;Minimum TTL

)

@       IN  NS          masterdns.learnwithak.local.

@       IN  PTR         learnwithak.local.

masterdns       IN  A   172.16.120.179

vault          IN  A   172.16.120.154

vault-2          IN  A   172.16.120.69

179     IN  PTR         masterdns.learnwithak.local.

154     IN  PTR         vault.learnwithak.local.

69      IN  PTR         vault-2.learnwithak.local.

 
systemctl enable named

systemctl start named

 

add 53 port in tcp and udp

 
chgrp named -R /var/named

chown -v root:named /etc/named.conf

restorecon -rv /var/named

restorecon /etc/named.conf

 

 
named-checkconf /etc/named.conf

 
named-checkzone learnwithak.local /var/named/forward.learnwithak

 
named-checkzone learnwithak.local /var/named/reverse.learnwithak

In the client machines:

Add the DNS Server details in your network interface config file.
vi /etc/sysconfig/network-scripts/ifcfg-enp0s3

 

Edit file /etc/resolv.conf,
vi /etc/resolv.conf

 
dig masterdns.learnwithak.local

 
Labels:

Comments

Post a Comment

Popular posts from this blog

Saltstack and Vault integration

By
First install and configure vault using this tutorial: https://apassionatechie.wordpress.com/2017/03/05/hashicorp-vault/ Use the latest version of vault. Then install salt using the steps given here: https://docs.saltstack.com/en/latest/topics/installation/ If you face any issues then refer these links: https://apassionatechie.wordpress.com/2017/07/31/salt-issues/ https://apassionatechie.wordpress.com/2017/08/03/salt-stack-formulas/ Now let's integrate vault and salt so that we can access vault secrets from inside salt state. First let's add some key values into our vault. vault write secret/ssh/user1 password="abc123" Then you can check it by reading: vault read secret/ssh/user1 To allow salt to access your secrets you must firstly create a policy as follows: salt-policy.hcl [code] path "secret/*" { capabilities = ["read", "list"] } path "auth/*" { capabilities = ["read", "list","sudo",...
2 comments
Read more

Salt stack issues

By
The function “state.apply” is running as PID Restart salt-minion with command:  service salt-minion restart No matching sls found for ‘init’ in env ‘base’ Add top.sls file in the directory where your main sls file is present. Create the file as follows: 1 2 3 base: 'web*' : - apache If the sls is present in a subdirectory elasticsearch/init.sls then write the top.sls as: 1 2 3 base: '*' : - elasticsearch.init How to execute saltstack-formulas create file  /srv/pillar/top.sls  with content: base : ' * ' : - salt create file  /srv/pillar/salt.sls  with content: salt : master : worker_threads : 2 fileserver_backend : - roots - git gitfs_remotes : - git://github.com/saltstack-formulas/epel-formula.git - git://github.com/saltstack-formulas/git-formula.git - git://github.com/saltstack-formulas/nano-formula.git - git://github.com/saltstack-f...
12 comments
Read more

How to grep the output of cURL?

By
curl writes the output to stderr, so redirect that and also suppress the progress: curl - v -- silent https :// google . com / 2 >& 1 | grep expire The reason why  curl  writes the information to stderr is so you can do: curl <url> | someprgram  without that information clobbering the input of  someprogram It is possible to use  --stderr -  as parameter, to redirect the output from stderr (default) to stdout. With this option you also should use  --silent  to suppress the progress bar. $ curl - v -- silent https :// google . com / -- stderr - | grep expire * expire date : 2015 - 09 - 01 00 : 00 : 00 GMT  
Post a Comment
Read more