一、NFS(網路文件系統,實現linux系統上文件共用) 伺服器配置 yum install nfs-utils (安裝NFS軟體包) iptables -F (清空防火牆) service iptables save (保存防火牆配置) mkdir /nfsfile (創建共用文件夾) chmod ...
一、NFS(網路文件系統,實現linux系統上文件共用)
伺服器配置
yum install nfs-utils (安裝NFS軟體包)
iptables -F (清空防火牆)
service iptables save (保存防火牆配置)
mkdir /nfsfile (創建共用文件夾)
chmod -Rf 777 /nfsfile/ (添加共用文件777許可權)
echo "hello nfs-server "> /nfsfile/1.txt (添加文件)
vim /etc/exports (編輯nfs配置文件)
systemctl restart rpcbind (NFS服務進行共用之前,需要使用RPC服務將NFS伺服器的IP地址和埠號等信息發送給客戶端)
systemctl enable rpcbind
systemctl restart nfs-server
systemctl enable nfs-server
iptalbes -F (清空防火牆)
service iptables save
客戶端配置
showmount -e 192.168.100.10 (查看NFS伺服器共用信息)
mkdir /nfsfile (創建共用文件夾)
chmod -Rf 777 /nfsfile/ (添加共用文件777許可權)
vim /etc/fstab
mount -a
二、autofs (自動掛在服務)
yum install autufs
systemctl restart autufs
systemctl enable autufs
vim /etc/auto.master
vim /etc/iso.misc
systemctl restart autofs (重啟服務)
三、DNS主伺服器配置 (配置DNS主伺服器、從伺服器、緩存伺服器)
yum install bind-chroot
systemctl restart named
systemctl enable named
vim /etc/named.conf (配置著配置文件第11行,any指所有網卡提供DNS 第17行any指所有用戶請求查詢)
配置DNS區域文件
vim /etc/named.rfc1912.zones
配置DNS數據文件
配置網卡信息
systemctl restart network
cd /var/named (切換到數據配置文件)
cp -a named.localhost dream.com.zone
cp -a named.loopback 192.168.100.arpa
vim dream.com.zone (配置正解析文件)
vim 192.168.100.arpa (配置反向解析)
systenctl restart named
systemctl enable named
nslookup (查看DNS配置)
DNS從伺服器配置
yum install bind-chroot
systemctl restart named
systemctl enable named
修改主伺服器
vim /etc/named.rfc1912.zones (允許從伺服器同步)
iptables -F
service iptables save
修改從伺服器
配置網卡信息
vim /etc/named.conf (配置同上)
vim /etc/named.rfc1912.zones
cd /var/named/slaves/
Ls
systemctl restart named (重啟服務,同步)
驗證
將從伺服器dns指向本機並重啟網卡服務
nmtui
systenctl restart network
nslookup
DNS 加密(TSIG,加密一串字元串)
主伺服器DNS加密
cd /var/named/chroot/etc
dnssec-keygen -a HMAC-MD5 -b 128 -n HOST master-slave
[root@localhost chroot]# cat Kmaster-slave.+157+50591.key
master-slave. IN KEY 512 3 157 rLxN2+BmyRhpUGa8mIOzWg==
vim transfer.key
chown root:named transfer.key
chmod 640 transfer.key
ln transfer.key /etc
vim /etc/named.conf (添加紅色標記內容)
systemctl restart named
從伺服器DNS加密
cd /var/named/chroot/etc
vim transfer.key
chown root:named transfer.key
chmod 640 transfer.key
ln transfer.key /etc
vim /etc/named.conf (添加紅色標記內容)
cd /var/named/slaves/
rm -f *
systemctl restart named
