#! /bin/bash
echo “Close the firewall Close the selinux”
service iptables stop &> /dev/null
/usr/sbin/setenforce 0 &> /dev/null
sed -i ‘s/SELINUX=.*/SELINUX=disabled/’ /etc/selinux/config &> /dev/null
[ $? -ne 0 ] && echo “miss”
echo “Configure local source”
mkdir -p /iso
mount -o loop /dev/cdrom /iso
echo “/dev/cdrom /iso iso9660 ro,loop 0 0” >> /etc/fstab
rm -fr /etc/yum.repos.d/*
cat > /etc/yum.repos.d/iso.repo << EOT
[base]
baseurl=file:///iso gpgcheck=0 EOT yum clean all &> /dev/null
yum makecache &> /dev/null
[ $? -ne 0 ] && echo “miss”
echo “Initialization configuration information”
cat >/etc/sysconfig/network-scripts/ifcfg-eth1 << EOT
DEVICE=eth0
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=none
IPADDR=192.168.10.254
NETMASK=255.255.255.0
GATEWAY=192.168.10.2
EOT
cat >/etc/sysconfig/network-scripts/ifcfg-eth2 << EOB
DEVICE=eth1
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=none
IPADDR=192.168.20.254
NETMASK=255.255.255.0
GATEWAY=192.168.20.2
EOB
echo "NETWORKING=yes" > /etc/sysconfig/network
echo "HOSTNAME=DNS" >>/etc/sysconfig/network
nisdomainname DNS &> /dev/null
service network restart &> /dev/nullecho “Installation package”
yum -y install bind &> /dev/null
cat >/etc/named.conf<<EOQ
acl DX { 192.168.10.0/24; };
acl LT { 192.168.20.0/24; };
options {
listen-on port 53 { 127.0.0.1; 192.168.10.254; 192.168.20.254; 192.168.30.254; };
directory “/var/named”;
dump-file “/var/named/data/cache_dump.db”;
statistics-file “/var/named/data/named_stats.txt”;
memstatistics-file “/var/named/data/named_mem_stats.txt”;
allow-query { localhost; any; };
recursion yes;
dnssec-enable no;
dnssec-validation no;
dnssec-lookaside auto;
bindkeys-file “/etc/named.iscdlv.key”;
managed-keys-directory “/var/named/dynamic”;
};
logging {
channel default_debug {
file “data/named.run”;
severity dynamic;
};
};
view 南电信 {
match-clients { DX; };
allow-query { DX; };
zone “.” IN {
type hint;
file “named.ca”;
};
zone "star.com" IN {
type master;
file "star.com.zone.dx";};
include “/etc/named.rfc1912.zones”;
include “/etc/named.root.key”;
};
view 北联通 {
match-clients { LT; };
allow-query { LT; };
zone “.” IN {
type hint;
file “named.ca”;
};
zone "star.com" IN {
type master;
file "star.com.zone.lt";};
include “/etc/named.rfc1912.zones”;
include “/etc/named.root.key”;
};
cp /var/named/named.localhost /var/named/star.com.zone.dx
cat >/var/named/star.com.zone.dx<<EOW
\$TTL 1D
@ IN SOA ns1.star.com. admin.star.com. (
10 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ NS ns1.star.com.
ns1 A 192.168.10.254
www A 1.2.3.4
EOW
cp /var/named/named.localhost /var/named/star.com.zone.lt
cat >/var/named/star.com.zone.lt<<EOE
\$TTL 1D
@ IN SOA ns1.star.com. admin.star.com. (
10 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ NS ns1.star.com.
ns1 A 192.168.20.254
www A 2.3.4.5
EOE
cp /var/named/named.localhost /var/named/star.com.zone.hw
cat >/var/named/star.com.zone.hw<<EOJ
@ IN SOA ns1.star.com. admin.star.com. (
10 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
@ NS ns1.star.com.
ns1 A 192.168.30.254
www A 6.3.4.5
EOJ
cd /var/named/
chgrp named star.com.zone.*
service named restart &> /dev/null
yum -y install bind-chroot &> /dev/null