NSD Faʻamalosia DNS Server + Shorewall - SME Networks

phico | | Fesoʻotaʻiga / Servers, Tutorials / Tusi lesona / Motugaafa

8 Comments

Faʻasino lautele o le faʻasologa: Fesootaiga komepiuta mo SMEs: Faatomuaga

O lenei tusitusiga o le faʻaauauina o:

Talofa uo ma uo!

Le vaega Tagata fiafia faatau le initaneti igoa igoa mailinux.fan i lau 'auʻaunaga i Initaneti poʻo ISP. I le avea ai o se vaega o lenei mauaina, na latou fesili ai i le latou ISP ia aofia uma DNS faamaumauga talafeagai mo fesili talafeagai e uiga i la latou vaega e foia mai le Initaneti.

Na latou talosagaina foʻi faʻamaumauga a le SRV e faʻatatau i le XMPP aua latou te fuafua e faʻapipiʻi se vave feau server faʻavae i luga Prosody lena o le a auai i le faʻalapotopotoga o loʻo iai nei XMMP tautua i luga o le Initaneti.

  • O le autu autu o lenei tusitusiga o le faʻaalia lea pe faʻafefea ona mafai ona atagia mai faʻamaumauga a le SRV e fesoʻotaʻi ma le XMPP-talafeagai Instant Messaging tautua i se DNS sone faila..
  • O le faʻapipiʻiina o le Fale puipui Faatasi ai ma le tasi fesoʻotaʻiga fesoʻotaʻiga, e mafai ona tautuaina i latou oe filifili e faʻapipiʻi se 'auʻauna pei o lenei e faʻatonutonu ai le tuʻuina atu DNS Sone. Afai o lena 'auʻaunaga e fesoʻotaʻi i le Enterprise LAN i le faʻaopopoga i le Initaneti, o tulaga manaʻomia e tatau ona faia e faʻaogaina ai ni fesoʻotaʻiga se lua.

Nofoaga autu

O le a matou faʻapipiʻiina se pule DNS DNS NSD luga Debian "Jessie". Lenei o le aʻa sapalai mo le "ili." O le faʻavae autu o le sapalai o:

Igoa: ns.fan IP tuatusi: 172.16.10.30 root @ ns: ~ # hostname
ns

aʻa @ ns: ~ # hostname --fqdn
ns.fan

aʻa @ ns: ~ # ip addr faʻaali
1: a: mtu 65536 qdisc noqueue state UNKNOWN group default link / loopback 00: 00: 00: 00: 00: 00 brd 00: 00: 00: 00: 00: 00 inet 127.0.0.1/8 lautele host host valid_lft faavavau prefer_lft faavavau inet6 :: 1/128 lautele 'au talimalo valid_lft faʻavavau fiafia_lft faavavau 2: eth0: mtu 1500 qdisc pfifo_fast state UP kulupu le tumau qlen 1000 link / ether 00: 0c: 29: dc: d7: 1b brd ff: ff: ff: ff: ff: ff inet 172.16.10.30/24 brd 172.16.10.255 lautele lalolagi eth0 valid_lft faavavau faʻaaogaina_lft faʻavavau inet6 fe80 :: 20c: 29ff: fedc: d71b / 64 lautele avanoa valid_lft faʻavavau fiafia_lft faʻavavau

Fale puipui

Ae e te leʻi alu ese ma se tautua i le WWW Village, e matuaʻi lelei le puipuia o le 'auʻaunaga ma tautua o loʻo tuʻuina mai e ala ile malosiʻaga o Pusa Faʻafuaseʻi - Router. O le Shorewall e faigofie lava ona setiina ma o se filifiliga sefe mo le puipuiga.

  • O le saʻo ma le maeʻa faʻatulagaina o se Firewall o le galuega a tagata faʻafiafia poʻo tagata atamamai, lea tatou te le o. E naʻo le tusi atu mo se faʻatonuga laʻititi ma aoga.

Matou te faʻapipiʻi le ato laupapa ma ona faʻamaumauga.

aʻa @ ns: ~ # faʻaalia faʻaalia le tafatafa o le fale
Afifi: shorewall Fou: ioe Tulaga: le faʻapipiʻiina
Faʻamatalaga: 4.6.4.3-2

root @ ns: ~ # aptitude faʻapipiʻi shorewall shorewall-doc

Tusi

Oe o le a mauaina tele faʻamaumauga i totonu o faila:

  • / usr / share / doc / shorewall
  • / usr / share / doc / shorewall / faʻataʻitaʻiga
  • / usr / share / doc / shorewall-doc / html

Matou te configure mo se fesoʻotaʻiga fesoʻotaʻiga

aʻa @ ns: ~ # cp / usr / share / doc / shorewall / faʻataʻitaʻiga / tasi-interface / interfaces \
/ ma isi / fale puipui /

aʻa @ ns: ~ # nano / etc / shorewall / interfaces
#ZONE INTERFACE OPTIONS net eth0 tcpflags, logmartians, nosmurfs, sourceroute = 0

Matou te taʻutino atu o pa puipui

aʻa @ ns: ~ # cp / usr / share / doc / shorewall / faʻataʻitaʻiga / tasi-interface / sone \
/ ma isi / fale puipui /

aʻa @ ns: ~ # nano / etc / shorewall / sone
#ZONE TYPE OPTIONS IN OUT # FILIFILIGA FILIFILIGA ww firewall net ipv4

Le tumau faiga faʻavae e ulufale ai i le firewall

aʻa @ ns: ~ # cp / usr / share / doc / shorewall / faʻataʻitaʻiga / tasi-faʻatasi / faʻavae \
/ ma isi / fale puipui /

aʻa @ ns: ~ # nano / etc / shorewall / faiga faʻavae
#SOURCE DEST POLICY LOG LEVEL LIMIT LIMIT: BURST $ FW net Talia
net uma DROP faʻamatalaga
# O LE FAIGA FAʻAFAIGALUEGA TATAU ONA OI mulimuli uma uma REJECT info

Tulafono mo le faʻaaogaina o le firewall

aʻa @ ns: ~ # cp / usr / share / doc / shorewall / faʻataʻitaʻiga / tasi-interface / tulafono \
/ ma isi / fale puipui /

aʻa @ ns: ~ # nano / etc / shorewall / tulafono
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER / MARK CON $ # PORT PORT (S) DEST LIMIT GROUP? SECTION ALL? SECTION FAIA? SECTION RELATED? SECTION INVALID? SECTION UNTRACKED? SECTION NEW # DROP packets in the INVALID state # Discard afifi i se tulaga le faʻamaoni Le aoga (DROP) net $ FW tcp # Faʻapaʻu Ping mai le "leaga" upega sone .. ma taofi lau laupapa mai le lolovaia .. # Lafoaʻi Ping mai le "leaga" sone sone. # Puipuia lologa o le faila ogalaau (/ var / log / syslog) Ping (DROP) net $ FW # Faʻatagaina uma ICMP feʻaveaiga MAI le firewall I le net zone # Faʻatagaina uma ICMP feʻaveaiga MAI le firewall TO le sone upega. Talia le $ FW net icmp

# Oe lava tulafono # Avanoa ala i le SSH mai lua komupiuta
SSH / ACCEPT upega: 172.16.10.1,172.16.10.10 $ FW tcp 22

# Faʻatagaina auala i luga o taulaga 53 / tcp ma 53 / udp
Talia net $ FW tcp 53
Talia net $ FW udp 53

Matou te siakiina le faʻamatalaga o faila faʻatulagaina

aʻa @ ns: ~ # siaki laupapa
Siakiina ... Faʻagasologa / etc / shorewall / params ... Faʻagasologa /etc/shorewall/shorewall.conf ... Loading Modules ... Checking / etc / shorewall / zones ... Checking / etc / shorewall / interfaces .. Fuafua Malosiaga i Sone ... Sailia Faʻagaio Faila ... Siaki / etc / shorewall / faiga faʻavae ... Faʻaopopo Anti-smurf Tulafono Siakiina TCP Fuʻa faʻamamaina ... Siakiina Kernel Auala Faʻavasegaina ... Siakiina Martian Logging ... Siaki Talia le Faʻagasologa o Auala ... Siakiina o Faʻasologa MAC - Vaega 1 ... Siakiina / etc / shorewall / tulafono ... Siakiina / etc / shorewall / fesoʻotaʻi ... Siakiina MAC Filtration - Vaega 2 ... Faʻaaogaina Aiaiga .. . Siakiina /usr/share/shorewall/action.Drop mo filifili Pa'ū ... Siaki /usr/share/shorewall/action.Broadcast mo filifili Faʻasalalauga ... Shorewall configurment configure

aa @ ns: ~ # nano / etc / default / shorewall
# puipuia le amataina ma le faʻamautuina o faʻatulagaina # seti le mea e mafai ona mulimuli mai i le 1 ina ia mafai ai Shorewall e amata
amataga =1
------

aʻa @ ns: ~ # tautua amataga fale
aʻa @ ns: ~ # tautua shorewall toe amata
aʻa @ ns: ~ # tautua tulaga shorewall
● shorewall.service - LSB: Faʻalelei le firewall i le taimi o boot ua utaina: utaina (/etc/init.d/shorewall) Galue: toaga (exited) talu mai le Sun 2017-04-30 16:02:24 EDT; 31min talu ai Faʻagasologa: 2707 ExecStop = / etc / init.d / shorewall stop (code = exited, status = 0 / SUCCESS) Faʻagasologa: 2777 ExecStart = / etc / init.d / shorewall start (code = exited, status = 0 / MANUIA)

E matua aʻoaʻo le faitau ma le totoʻa i le faʻatonuga o le poloaʻiga iptables -L aemaise lava e faʻatatau i tulafono le faʻaoga mo INPUT, FORWARD, OUTPUT, ma mea e teʻena - teena le Firewall e puipuia mai osofaʻiga i fafo. Le mea sili, e alu i le Initaneti ma sina puipuiga, a ea? 😉

aʻa @ ns: ~ # iptables -L

NSD

aʻa @ ns: ~ # faʻaalia faʻaali nsd
Afifi: nsd Fou: ioe Tulaga: faapipiiina Faʻapipiʻi otometi: leai
Faʻamatalaga: 4.1.0-3

aʻa @ ns: ~ # aptitude install nsd
aʻa @ ns: ~ # ls / usr / share / doc / nsd /
contrib changelog.Debian.gz NSD-DIFFFILE REQUIREMENTS.gz faʻataʻitaʻiga changelog.gz NSD-FOR-BIND-USERS.gz TODO.gz copyright copyright.pdf.gz README.gz UPGRADING CREDITS NSD-DATABASE RELNOTES.gz

aʻa @ ns: ~ # nano /etc/nsd/nsd.conf
# NSD faʻamau faila mo Debian. # Vaai i le nsd.conf (5) tamaloa itulau.
# Vaʻai /usr/share/doc/nsd/examples/nsd.conf mo se manatu
# faila faila faʻasino.
# O le laina lea e aofia ai faʻaopoopo faila faʻatulagaina mai le # /etc/nsd/nsd.conf.d Directory. # WARNING: E leʻo galue le faiga o le lalolagi ... # aofia ai: "/etc/nsd/nsd.conf.d/*.conf" server: logfile: "/var/log/nsd.log" ip-address : 172.16.10.30 # faʻalogo i IPv4 fesoʻotaʻiga faia-ip4: ioe # faʻalogo i luga o IPv6 fesoʻotaʻiga faia-ip6: leai # taulaga e tali ai fesili luga. faaletonu o 53. taulaga: 53 igoa ole igoa: nsd # I sone, o le saunia-xfr filifiliga e mo # axfr siaki sone: igoa: fan zonefile: /etc/nsd/fan.zone sone: igoa: mailinux.fan
    sonefile: /etc/nsd/desdelinux.fan.zone aiaia-xfr: 172.16.10.250 NOKEY sone: igoa: 10.16.172.in-addr.harp
    zonefile: /etc/nsd/10.16.172.arpa.zone aiaia-xfr: 172.16.10.250 NOKEY sone: igoa: swl.fan zonefile: /etc/nsd/swl.fan.zone sone: igoa: debian.fan zonefile: /etc/nsd/debian.fan.zone sone: igoa: centos.fan zonefile: /etc/nsd/centos.fan.zone sone: igoa: freebsd.fan zonefile: /etc/nsd/freebsd.fan.zone


aʻa @ ns: ~ # nsd-checkconf /etc/nsd/nsd.conf
aʻa @ ns: ~ #

Matou te faia faila Zones

O le Root Sone «oso.»Faʻatulagaina i lalo e MO Tofotofoga Naʻo ma e le tatau ona avea o se faʻataʻitaʻiga. E leʻo matou o Faʻatonu o Servers Real Estate Name Servers. 😉

aʻa @ ns: ~ # nano /etc/nsd/fan.zone
$ ORIGIN ili. $ TTL 3H @ I SOA ns.fan. aʻa.fan. (1; serial 1D; faʻafouina 1H; toe taumafai 1W; faamutaina 3H); maualalo pe; Le lelei le taimi o le teuina o le ola e ola ai; @ I NS ns.fan. @ I LE 172.16.10.30; ns I LE 172.16.10.30

aʻa @ ns: ~ # nano /etc/nsd/desdelinux.fan.zone
$ ORIGIN mai le linux.fan. $ TTL 3H @ I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. (1; serial 1D; faʻafouina 1H; toe taumafai 1W; faamutaina 3H); maualalo pe; Le lelei le taimi o le teuina o le ola e ola ai; @ I NS ns.fromlinux.fan. @ I MX 10 meli.fromlinux.fan. @ IN TXT "v = spf1 a: mail.desdelinux.fan -all"; ; Faʻamau e foia ai eli fesili mai linux.fan @ IN A 172.16.10.10; ns I LE 172.16.10.30 meli I CNAME mai linux.fan. talanoa I le CNAME mai linux.fan. www I CNAME mai linux.fan. ; ; SRV faamaumauga faʻatatau i le XMPP
_xmpp-server._tcp I SRV 0 0 5269 mai linux.fan.
_xmpp-client._tcp I SRV 0 0 5222 mai linux.fan.
_jabber._tcp I SRV 0 0 5269 mai le linux.fan.

aʻa @ ns: ~ # nano /etc/nsd/10.16.172.arpa.zone
$ ORIGIN 10.16.172.in-addr.arpa.
$ TTL 3H @ I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. (1; serial 1D; faʻafouina 1H; toe taumafai 1W; faamutaina 3H); maualalo pe; Le lelei le taimi o le teuina o le ola e ola ai; @ I NS ns.fromlinux.fan. ; 30 I PTR ns.fromlinux.fan. 10 I PTR mai linux.fan.

aʻa @ ns: ~ # nsd-checkzone mai le linux.fan / etc / nsd / mai le linux.fan.zone
sone mai le linux.fan e lelei
root @ ns: ~ # nsd-checkzone 10.16.172.in-addr.arpa /etc/nsd/10.16.172.arpa.zone
sone 10.16.172.in-addr.arpa e lelei # I luga o Debian, ua faʻamutaina e le NSD lona faʻapipiʻiina faʻatagaina e le masani ai
aʻa @ ns: ~ # systemctl toe amata nsd
aʻa @ ns: ~ # systemctl tulaga nsd
● nsd.service - Igoa o le Daemon Loaded: utaina (/lib/systemd/system/nsd.service; mafai) Faʻagaoioia: toaga (tamoʻe) talu mai le Sun 2017-04-30 09:42:19 EDT; 21min talu ai Autu PID: 1230 (nsd) CGroup: /system.slice/nsd.service ├─1230 / usr / sbin / nsd -d -c /etc/nsd/nsd.conf ├─1235 / usr / sbin / nsd - d -c /etc/nsd/nsd.conf └─1249 / usr / sbin / nsd -d -c /etc/nsd/nsd.conf

Siaki mai le ns.fan server lava ia

aʻa @ ns: ~ # talimalo mai linux.fan
desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

aʻa @ ns: ~ # talimalo meli.fromlinux.fan
mail.desdelinux.fan o se igoa faʻaigoa mo desdelinux.fan. desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

aʻa @ ns: ~ # talimalo talatalanoa.fromlinux.fan
chat.desdelinux.fan o se igoa faʻaigoa mo desdelinux.fan. desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

aʻa @ ns: ~ # talimalo www.desdelinux.fan
www.desdelinux.fan o se igoa faʻaigoa mo desdelinux.fan. desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

aʻa @ ns: ~ # talimalo ns.fromlinux.fan
ns.fromlinux.fan ei ai le tuatusi 172.16.10.30

aʻa @ ns: ~ # talimalo 172.16.10.30
30.10.16.172.in-addr.arpa igoa igoa faʻailoga ns.fromlinux.fan.

aʻa @ ns: ~ # talimalo 172.16.10.10
10.10.16.172.in-addr.arpa igoa igoa faʻasino mai linux.fan.

aʻa @ ns: ~ # talimalo ns.fan
ns.fan ei ai le tuatusi 172.16.10.30

Igoa o le siakiina o igoa mai le Initaneti

  • O auiliiliga auiliiliga DNS e le sili atu, aua o le saʻo faʻagaioiga o le Domain Name Resolution o le a faʻalagolago i se tele tele i luga o le saʻo faʻagaioiga o le network.

E faʻatino fesili DNS na ou fesoʻotaʻi i laʻu ki - suiga suʻega, o se komupiuta ma le IP 172.16.10.250 ma faitotoʻa 172.16.10.1, IP tuatusi e tutusa ma laʻu galuega sysadmin.fromlinux.fan pei ona iloa mai tala muamua.

sandra @ komipiuta: ~ $ sudo ip addr faʻaali
1: a: mtu 16436 qdisc noqueue state UNKNOWN sootaga / loopback 00: 00: 00: 00: 00: 00 brd 00: 00: 00: 00: 00: 00 inet 127.0.0.1/8 lautele host host inet6 :: 1/128 lautele host valid_lft faavavau faʻaaogaina_lft faʻavavau 2: eth0: mtu 1500 qdisc pfifo_fast state UP qlen 1000 link / ether 00: 17: 42: 8e: 85: 54 brd ff: ff: ff: ff: ff: ff inet 172.16.10.250/24 brd 172.16.10.255 global range eth0 inet6 fe80: : 217: 42ff: fe8e: 8554/64 lautele avanoa fesoʻotaʻi valid_lft faavavau fiafia_lft faavavau 3: wlan0: mtu 1500 qdisc noop tulaga I LALO qlen 1000 link / ether 00: 1d: e0: 88: 09: d5 brd ff: ff: ff: ff: ff: ff 4: pan0: mtu 1500 qdisc noop setete LALU sootaga / ether de: 0b: 67: 52: 69: ad brd ff: ff: ff: ff: ff: ff


sandra @ komipiuta: ~ $ sudo auala -n
Kernel IP faʻasolosolo laulau Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 172.16.10.1 0.0.0.0 UG 0 0 0 eth0 172.16.10.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0

sandra @ komepiuta feaveaʻi: ~ $ pusi /etc/resolv.conf
igoa igoa 172.16.10.30

sandra @ komipiuta: ~ $ talimalo desdelinux.fan
desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

sandra @ komepiuta feaveaʻi: ~ $ talimalo meli.fromlinux.fan
mail.desdelinux.fan o se igoa faʻaigoa mo desdelinux.fan. desdelinux.fan ei ai le tuatusi 172.16.10.10 desdelinux.fan meli o loʻo tagofia e 10 mail.desdelinux.fan.

sandra @ komepiuta feaveaʻi: ~ $ talimalo ns.fromlinux.fan
ns.fromlinux.fan ei ai le tuatusi 172.16.10.30

sandra @ komipiuta: ~ $ talimalo 172.16.10.30
30.10.16.172.in-addr.arpa igoa igoa faʻailoga ns.fromlinux.fan.

sandra @ komepiuta feaveaʻi: ~ $ talimalo 172.16.10.10
10.10.16.172.in-addr.arpa igoa igoa faʻasino mai linux.fan.

sandra @ komipiuta: ~ $ talimalo - SRV _xmpp-server._tcp.fromlinux.fan
_xmpp-server._tcp.desdelinux.fan ei ai le SRV faamaumauga 0 0 5269 mai le linux.fan.

sandra @ komepiuta feaveaʻi: ~ $ talimalo - SRV _xmpp-client._tcp.fromlinux.fan
_xmpp-client._tcp. mai le linux.fan ei ai le SRV faamaumauga 0 0 5222 mai le linux.fan.

sandra @ komepiuta feaveaʻi: ~ $ talimalo - SRV _jabber._tcp.fromlinux.fan
_jabber._tcp.desdelinux.fan ei ai le SRV faamaumauga 0 0 5269 mai le linux.fan.

sandra @ komipiuta: ~ $ talimalo - ili.
Taumafai "ili" ;; - >> HEADER << - opcode: QUERY, tulaga: NOERROR, id: 57542 ;; fuʻa: qr aa rd; QUERY: 1, TALI: 3, PULEGA: 0, FAʻAALIGA: 1 ;; FESILI FESILI:; ili. I SE TASI ;; TALI Vaega: ili. 10800 I SOA ns.fan. aʻa.fan. 1 86400 3600 604800 10800 ili. 10800 I NS ns.fan. ili 10800 I LE 172.16.10.30 ;; VAEGA FAAOPOOPO: ns.fan. 10800 IN A 172.16.10.30 Mauaina 111 bytes mai le 172.16.10.30 # 53 i le 0 ms
  • Sa matou setiina ma le loto i ai le tuatusi 172.16.10.250  I luga o le komepiuta feaveaʻi, e siaki ai UMA mea e ala ile DNS AXFR fesili, talu ai na faʻatulagaina Sone e faʻatagaina -e aunoa ma se password- lenei ituaiga fesili mai lena IP.
sandra @ komipiuta: ~ $ dig desdelinux.fan axfr
; << >> DiG 9.9.5-9 + deb8u6-Debian << >> mai le linux.fan axfr ;; filifiliga a le lalolagi: + cmd mai le linux.fan. 10800 I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. 1 86400 3600 604800 10800 mai le linux.fan. 10800 I NS ns.fromlinux.fan. mai linux.fan. 10800 I MX 10 meli.fromlinux.fan. mai linux.fan. 10800 IN TXT "v = spf1 a: mail.desdelinux.fan -all" mai linux.fan. 10800 I LE 172.16.10.10 _jabber._tcp.fromlinux.fan. 10800 IN SRV 0 0 5269 mai le linux.fan. _xmpp-client._tcp.fromlinux.fan. 10800 IN SRV 0 0 5222 mai le linux.fan. _xmpp-server._tcp.fromlinux.fan. 10800 IN SRV 0 0 5269 mai le linux.fan. chat.fromlinux.fan. 10800 I CNAME mai linux.fan. meli.fromlinux.fan. 10800 I CNAME mai linux.fan. ns.fromlinux.fan. 10800 I LE 172.16.10.30 www.desdelinux.fan. 10800 I CNAME mai linux.fan. mai linux.fan. 10800 I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. 1 86400 3600 604800 10800 ;; Taimi ole fesili: 0 msec ;; SERVER: 172.16.10.30 # 53 (172.16.10.30) ;; WHEN: Sun Apr 30 10:37:10 EDT 2017 ;; Tele XFR: 13 faʻamaumauga (feʻau 1, bytes 428)

sandra @ komipiuta: ~ $ eli 10.16.172.in-addr.arpa axfr
; << >> DiG 9.9.5-9 + deb8u6-Debian << >> 10.16.172.in-addr.arpa axfr ;; filifiliga i le lalolagi atoa: + cmd 10.16.172.in-addr.arpa. 10800 I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. 1 86400 3600 604800 10800 10.16.172.in-addr.arpa. 10800 I NS ns.fromlinux.fan. 10.10.16.172.in-addr.arpa. 10800 IN PTR mai le linux.fan. 30.10.16.172.in-addr.arpa. 10800 I PTR ns.fromlinux.fan. 10.16.172.in-addr.arpa. 10800 I SOA ns.fromlinux.fan. aʻa.fromlinux.fan. 1 86400 3600 604800 10800 ;; Taimi ole fesili: 0 msec ;; SERVER: 172.16.10.30 # 53 (172.16.10.30) ;; WHEN: Sun Apr 30 10:37:27 EDT 2017 ;; Fua ole XFR: 5 faamaumauga (feau 1, bytes 193)

sandra @ komepiuta feaveaʻi: ~ $ ping ns.fromlinux.fan
PING ns.fromlinux.fan (172.16.10.30) 56 (84) bytes o faʻamatalaga.

Na saʻo le taliina o fesili manaʻomia DNS. Matou te siakiina foi o le Shorewall galue saʻo ma na te le taliaina ping mai komupiuta fesoʻotaʻi i le Initaneti.

Aotelega

  • Na matou vaʻaia le auala e faʻapipiʻi ai ma faʻatulaga ai - faʻatasi ai ma filifiliga masani ma aupito maualalo - o se Pule DNS faʻavae e faʻavae i luga ole NSD. Matou te faʻamaonia o le syntax o faila sone e tali tutusa lava ma le BIND. I luga o le Initaneti o loʻo iai tusitusiga sili ona lelei ma atoatoa ile NSD.
  • Na matou ausia le manulauti o le faʻaalia o le faʻaaliga o faʻamaumauga a le SRV e fesoʻotaʻi ma le XMPP.
  • Matou te fesoasoani i le faʻapipiʻiina ma laʻititi le faʻavasegaina o le Shorewall-based firewall.

Le tilivaina atu

Prosody IM ma tagata faʻaoga i le lotoifale.


O mataupu o le tusitusiga e tausisi ia tatou mataupu silisili o amio lelei faʻatonu. E lipotia se mea sese kiliki iinei.

8 manatu, tuʻu lau

Tuʻu lau faamatalaga

o le a le lomia lou tuatusi imeli.

*

*

  1. E tali atu mo faʻamatalaga: Miguel Ángel Gatón
  2. Faamoemoega o faʻamatalaga: Pulea le SPAM, faʻamatalaga pulega.
  3. Tulaga faʻatulafonoina: Lau maliega
  4. Fesoʻotaʻiga o faʻamatalaga: O faʻamatalaga o le a le fesoʻotaʻi atu i isi vaega vagana i tulafono faʻatulafonoina.
  5. Teuina o faʻamatalaga: Faʻamaumauga tuʻufaʻatasia e Occentus Networks (EU)
  6. Aia Tatau: I soo se taimi e mafai ai ona e faʻatapulaʻaina, toe maua ma aveʻese au faʻamatalaga.

  1.   fracielarevalo malo
    faia 5 tausaga

    Talofa uo o le linux nuu sili ona lelei aʻoga Na ou taumafai e faʻapipiʻi le dns ae fai mai e le maua lenei faʻatonuga peʻa iai seisi auala e faʻafetai ai mo faʻamatalaga

    Tali ia fracielarevalo
  2.   Alberto malo
    faia 5 tausaga

    Fesili?…. O le a e le faʻaaogaina SAMBA e avea ma domain control mo SME network?

    Tali ia Alberto
  3.   Feterika malo
    faia 5 tausaga

    fracielarevalo: Manatua o le tusitusiga e faʻavae i luga o le faʻapipiʻiina o le NSD luga o le Debian operating system "Jessie", ae le o le CentOS.

    Alberto: E tatau ona e alu mai le faigofie i le faigata. Mulimuli ane o le a tatou vaʻaia Samba 4 o se AD-DC, o lona uiga, o le Active Directory - Domain Controler. Onosai. Ou te fautua atu ia e faitau i le tusitusiga talu ai, aemaise le palakalafa o loʻo faapea mai: O le faʻamaoniga auala i le fanau mai o le ARPANET, le Initaneti, ma isi vave Wide Area Networks poʻo Local Area Networks faʻavae i luga ole LDAP, Directory Service, poʻo Microsoft LSASS, poʻo le Active Directory, poʻo Kerberos? taʻua ni nai.

    Manatua o tala uma e fesoʻotaʻi ma o se faasologa. Ou te manatu e le aoga tele le amataina o leisi auala, o lona uiga, mai se Active Directory ma toe foʻi i le PAM. E pei ona o le a e vaʻaia, o le tele o ituaiga o faʻamaoniga faʻaiʻuina i le PAM i lau Linux desktop. Faʻalelei tali e pei o le tasi tatou ufiufi ma le PAM tatau ona tusia. Afai ua malamalama i le mafuaʻaga, e tatau ona faitau ma suʻesuʻeina.

    Talofa ma faʻafetai ia te oulua uma mo le faʻaaliga.

    Tali atu ia federico
  4.   IWO malo
    faia 5 tausaga

    O le isi tusitusiga sili na tusia e le tusitala, pei ona masani ai, e iai lava taimi e fou ai ma aoga tele mo i tatou e mafaufau ia tatou lava o "sysadmins".
    Nei o aʻu tusi:
    1- Faʻaogaina o le NSD ae leʻo le FUAFUAGA e pei o le pule a le DNS
    2- Faʻaofi i le DNS sone faila faʻamaumauga a le SRV e fesoʻotaʻi ma le 'auʻaunaga Instant Messaging e talafeagai ma XMPP.
    3- Faʻaaogaina ole Shorewall Firewall ma se fesoʻotaʻiga fesoʻotaʻiga.
    O lenei pou e avea o se "faʻavae" mo aʻu (e pei ona ia faʻaalia ma le agamalu ma o le naunautaʻiga o le tusitala i le atoa SME faasologa) pe a fai i le lumanaʻi ou te manaʻomia le faʻatinoina o se tali tutusa.

    Tali ia IWO
  5.   pili malo
    faia 5 tausaga

    O le au faʻafiafiaina vaega toe fesoasoani ia matou faʻateleina lo matou malamalama i le itu o fesoʻotaʻiga mo SMEs. Faʻafetai tele lava mo se lelei saofaga, le afioʻaga, aʻu lava ma ou te manatu o le tele numera o sysadmin faʻafetai lava mo lena taua taua ... I taimi ua tuanaʻi sa i ai nisi isi vavalalata ma le matafaga, ae suʻesuʻe i se tulaga aoga i le auala ou te faia ai oe sa fai lava si faigata, o lenei faʻasologa o fesoʻotaʻiga mo SMEs o se paionia i faʻamaumauga i vaega eseese e tatau ona tago ai le sysadmin, malamalama o le tele o faʻamaumauga i lenei tulaga o le lautele gagana o le Igilisi. ..

    Aua le taofi, faʻamalo ma tatou agaʻi i luma !!!

    Tali atu ile pili
  6.   Feterika malo
    faia 5 tausaga

    Lagarto: Faʻafetai tele lava mo lau tala ma le faʻafetai. Ou te taumafai e tuʻuina atu i le faʻasologa le tulaga maualalo o loʻo manaʻomia e le Sysadmin. Ioe, o le suʻesuʻeina o oe lava ma le manaʻoga o le tagata lava ia i mataupu taʻitasi e talanoaina o le a faʻalagolago i se tikeri.

    Tatou faaauau pea i luma !!!

    Tali atu ia federico
  7.   GhostXxX malo
    faia 5 tausaga

    Talofa i le alalafaga nuu;). Ou te fou i le OS.opte po tuua faʻamalama i taimi ua tuanaʻi ma ou te naunau e aʻoaʻo i le tele ou te mafaia..aulelei tusitusiga .. sili alofa

    Tali ia GhostXxX
  8.   Feterika malo
    faia 5 tausaga

    Faʻafetai Ghost mo le auai i le Community ma mo manatu

    Tali atu ia federico