Unbound(DNSリゾルバ)インストールに関するサンプルコマンド
Unboundインストール
yum install -y epel-release
yum install -y unbound
Unboundの設定
mkdir -p /root/backup
cp -p /etc/unbound/unbound.conf ${BKDIR}/unbound.conf.`date "+%Y%m%d_%H%M%S"`
cat << 'EOF' | sudo tee /etc/unbound/conf.d/infra-workshop.tech.conf
server:
interface: 0.0.0.0
access-control: 10.0.0.0/8 allow
do-ip6: no
local-zone: "infra-workshop.tech" static
local-data: "IN NS dns01.infra-workshop.tech."
local-data: "IN NS dns02.infra-workshop.tech."
local-data: "dns01.infra-workshop.tech. IN A 10.32.30.43"
local-data: "dns02.infra-workshop.tech. IN A 10.32.30.44"
local-data: "gw.infra-workshop.tech. IN A 10.32.30.254"
forward-zone:
name: "."
forward-addr: 8.8.8.8
EOF
Firewallの開放
firewall-cmd --add-service=dns --permanent
firewall-cmd --reload
Unboundの起動
systemctl start unbound
systemctl enable unbound