클라우드팡
DNS Server 설치 본문
OpenShift Container Platform/지원시스템 준비 - Disconnected environment
DNS Server 설치
cloudpang 2023. 5. 20. 16:46OpenShift Container Platform 배포의 경우 다음 구성 요소에 DNS 이름을 확인해야 합니다.
- Kubernetes API
- OpenShift Container Platform 애플리케이션 와일드카드
- 부트스트랩, 컨트롤 플레인 및 컴퓨팅 시스템
DNS 서버 설치
yum install -y bind
/etc/named.conf 파일을 수정 합니다.
if [[ ! -f /etc/named.conf.orig ]]; then
mv /etc/named.conf /etc/named.conf.orig
fi
cat <<EOF > /etc/named.conf
options {
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
secroots-file"/var/named/data/named.secroots";
recursing-file"/var/named/data/named.recursing";
allow-query { any; };
recursion yes;
dnssec-enable no;
dnssec-validation no;
managed-keys-directory "/var/named/dynamic";
pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
include "/etc/crypto-policies/back-ends/bind.config";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
zone "cloudpang.tistory.local" IN {
type master;
file "cloudpang.tistory.local.zone";
allow-update { none; };
};
zone "100.168.192.in-addr.arpa" IN {
type master;
file "cloudpang.tistory.local.rr.zone";
allow-update { none; };
};
EOF
DNS A/AAAA 또는 CNAME 레코드 설정
cloudpang.tistory.local.zone 파일을 생성 합니다.
vi /var/named/cloudpang.tistory.local.zone
$ORIGIN cloudpang.tistory.local.
$TTL 86400
@ IN SOA dns01.cloudpang.tistory.local. hostmaster01.cloudpang.tistory.local. (
2022101101
21600
3600
604800
86400 )
;
IN NS dns01.cloudpang.tistory.local.
dns01 IN A 192.168.100.100
;
bastion IN A 192.168.100.100
;
lb IN A 192.168.100.100
;
api IN A 192.168.100.100
api-int IN A 192.168.100.100
*.apps IN A 192.168.100.100
;
bootstrap IN A 192.168.100.110
;
master01 IN A 192.168.100.111
master02 IN A 192.168.100.112
master03 IN A 192.168.100.113
;
worker01 IN A 192.168.100.121
worker02 IN A 192.168.100.122
worker03 IN A 192.168.100.123
;
PTR 레코드 설정
cloudpang.tistory.local.rr.zone 파일을 생성 합니다.
vi /var/named/cloudpang.tistory.local.rr.zone
$ORIGIN 100.168.192.in-addr.arpa.
$TTL 86400
@ IN SOA dns01.cloudpang.tistory.local. hostmaster01.cloudpang.tistory.local. (
2022101101
21600
3600
604800
86400 )
;
IN NS dns01.cloudpang.tistory.local.
;
100 IN PTR api.cloudpang.tistory.local.
100 IN PTR api-int.cloudpang.tistory.local.
;
110 IN PTR bootstrap.cloudpang.tistory.local.
;
111 IN PTR master01.cloudpang.tistory.local.
112 IN PTR master02.cloudpang.tistory.local.
113 IN PTR master03.cloudpang.tistory.local.
;
121 IN PTR worker01.cloudpang.tistory.local.
122 IN PTR worker02.cloudpang.tistory.local.
123 IN PTR worker03.cloudpang.tistory.local.
;
DNS 서버 시작
chown root:named /var/named/cloudpang.tistory.local.*
chcon --reference=/var/named/named.empty /var/named/cloudpang.tistory.local.*
firewall-cmd --permanent --add-service=dns --zone=public
firewall-cmd --reload
systemctl enable named.service
systemctl start named.service
'OpenShift Container Platform > 지원시스템 준비 - Disconnected environment' 카테고리의 다른 글
| Load Balancer 설치 - HAProxy (0) | 2023.05.20 |
|---|---|
| Httpd Server 설치 (0) | 2023.05.20 |
| RHEL 서버에 추가 설치하는 Packages (0) | 2023.05.20 |