Skip to main content

Installation of DNS server on Centos 7

By
Run the following command on both the machines
yum install bind bind-utils -y

vi /etc/named.conf

acl "trusted" {

172.16.120.179;    # nameserver1 - can be set to localhost

172.16.120.154;  # host1

};

listen-on port 53 { 127.0.0.1; 172.16.120.179; };

allow-query     { trusted; };

zone "atos.local" IN {

type master;

file "forward.learnwithak";

allow-update { none; };

};

zone "120.16.172.learnwithak.local" IN {

type master;

file "reverse.learnwithak";

allow-update { none; };

};

 

sudo vi /var/named/forward.learnwithak

$TTL 86400

@   IN  SOA     masterdns.learnwithak.local. root.learnwithak.local. (

2011071001  ;Serial

3600        ;Refresh

1800        ;Retry

604800      ;Expire

86400       ;Minimum TTL

)

@       IN  NS          masterdns.learnwithak.local.

@       IN  A           172.16.120.179

@       IN  A           172.16.120.154

@       IN  A           172.16.120.69

masterdns       IN  A   172.16.120.179

vault          IN  A   172.16.120.154

vault-2          IN  A   172.16.120.69

 

vi /var/named/reverse.learnwithak

$TTL 86400

@   IN  SOA     masterdns.learnwithak.local. root.learnwithak.local. (

2011071001  ;Serial

3600        ;Refresh

1800        ;Retry

604800      ;Expire

86400       ;Minimum TTL

)

@       IN  NS          masterdns.learnwithak.local.

@       IN  PTR         learnwithak.local.

masterdns       IN  A   172.16.120.179

vault          IN  A   172.16.120.154

vault-2          IN  A   172.16.120.69

179     IN  PTR         masterdns.learnwithak.local.

154     IN  PTR         vault.learnwithak.local.

69      IN  PTR         vault-2.learnwithak.local.

 
systemctl enable named

systemctl start named

 

add 53 port in tcp and udp

 
chgrp named -R /var/named

chown -v root:named /etc/named.conf

restorecon -rv /var/named

restorecon /etc/named.conf

 

 
named-checkconf /etc/named.conf

 
named-checkzone learnwithak.local /var/named/forward.learnwithak

 
named-checkzone learnwithak.local /var/named/reverse.learnwithak

In the client machines:

Add the DNS Server details in your network interface config file.
vi /etc/sysconfig/network-scripts/ifcfg-enp0s3

 

Edit file /etc/resolv.conf,
vi /etc/resolv.conf

 
dig masterdns.learnwithak.local

 
Labels:

Comments

Post a Comment

Popular posts from this blog

Salt stack issues

By
The function “state.apply” is running as PID Restart salt-minion with command:  service salt-minion restart No matching sls found for ‘init’ in env ‘base’ Add top.sls file in the directory where your main sls file is present. Create the file as follows: 1 2 3 base: 'web*' : - apache If the sls is present in a subdirectory elasticsearch/init.sls then write the top.sls as: 1 2 3 base: '*' : - elasticsearch.init How to execute saltstack-formulas create file  /srv/pillar/top.sls  with content: base : ' * ' : - salt create file  /srv/pillar/salt.sls  with content: salt : master : worker_threads : 2 fileserver_backend : - roots - git gitfs_remotes : - git://github.com/saltstack-formulas/epel-formula.git - git://github.com/saltstack-formulas/git-formula.git - git://github.com/saltstack-formulas/nano-formula.git - git://github.com/saltstack-f...
12 comments
Read more

Saltstack and Vault integration

By
First install and configure vault using this tutorial: https://apassionatechie.wordpress.com/2017/03/05/hashicorp-vault/ Use the latest version of vault. Then install salt using the steps given here: https://docs.saltstack.com/en/latest/topics/installation/ If you face any issues then refer these links: https://apassionatechie.wordpress.com/2017/07/31/salt-issues/ https://apassionatechie.wordpress.com/2017/08/03/salt-stack-formulas/ Now let's integrate vault and salt so that we can access vault secrets from inside salt state. First let's add some key values into our vault. vault write secret/ssh/user1 password="abc123" Then you can check it by reading: vault read secret/ssh/user1 To allow salt to access your secrets you must firstly create a policy as follows: salt-policy.hcl [code] path "secret/*" { capabilities = ["read", "list"] } path "auth/*" { capabilities = ["read", "list","sudo",...
2 comments
Read more

Terraform

By
Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently. Terraform can manage existing and popular service providers as well as custom in-house solutions. Configuration files describe to Terraform the components needed to run a single application or your entire datacenter. Terraform generates an execution plan describing what it will do to reach the desired state, and then executes it to build the described infrastructure. As the configuration changes, Terraform is able to determine what changed and create incremental execution plans which can be applied. The infrastructure Terraform can manage includes low-level components such as compute instances, storage, and networking, as well as high-level components such as DNS entries, SaaS features, etc. The key features of Terraform are: Infrastructure as Code : Infrastructure is described using a high-level configuration syntax. This allows a blueprint of your datacenter to be versioned and...
16 comments
Read more