General index yeakateedzana: Computer Networks yeSMEs: Sumo
Mhoro shamwari !. Tichaona mune ino chinyorwa maitiro atingaite sei akakosha maviri masevhisi enetiweki akagadzirwa neiyo DNS uye DHCP pane CentOS - Linux, kunyanya mushanduro yayo 7.2.
- Zvimwe zvinyorwa nezveDNS zvinoreva kuti kuiswa kweiyi sevhisi kwakajeka uye kwakaoma. Ini handibvumirane zvakanyanya neshoko iro. Ini zvirinani kutaura kuti zvishoma fungidziro uye kuti mazhinji ayo mafaera mafaira ane fussy syntax. Neraki, isu tine maturusi ekuti titarise, nhanho nhanho, syntax yefaira rega rega rekumisikidza isu ratinoshandura. Naizvozvo, isu tichaedza kuti kuverenga ichi chinyorwa chive chinonakidza uye chinonakidza sezvinobvira..
Kune avo vanotsvaga mazano ekutanga nezveese masevhisi, tinokurudzira zvakasimba kutanga kutsvaga kwako paWikipedia, zvese mushanduro dzayo dzeSpanish neChirungu. Izvo hazvisi zvishoma chokwadi kuti zvinyorwa muChirungu zvinowanzove zvinowanzo kuve zvakakwana uye zvakabatana. Zvakadaro, Wikipedia inzvimbo yakanaka kwazvo yekutanga.
Kune avo venyu vanonyatsoda kudzidza nezveDNS uye BIND, tinokurudzira kuverenga bhuku «OReilly - DNS uye BIND 4ed"yakanyorwa na Paul albitz y Liu Cricket, kana chinyorwa chakazotevera icho chiripo zvechokwadi.
Takatoburitsa chinyorwa pamusoro wenyaya wakanzi «DNS uye DHCP mune yakavhurikaSUSE 13.2 Harlequin - SME Networks»Kune vanoda nzvimbo yakajeka. Nekudaro, kubva ikozvino zvichienda mberi vachatarisana nezvinyorwa panhau iyi - kwete kune vamwe - zvakanyorwa nekushandiswa kwakawanda kweiyo emulator yeiyo terminal kana koni. Wow, mune yechinyakare dhizaini inoshandiswa neUNIX® / Linux System Administrators.
Kana iwe uchida kuziva zvakawanda nezve izita rekupedzisira remusoro wenyaya ino «SME Networks»Unogona kushanyira iyo peji mune ino blog«SME network: yekutanga yakatemwa«. Mariri iwe unowana zvinongedzo kune zvimwe zvakawanda zvakaburitswa zvinyorwa.
- Mushure mekumisikidzwa kweCentOS 7 Operating System kwapera nemapakeji atinokurudzira, el dhairekitori /usr/share/doc/bind-9.9.4/ Iine huwandu hwakanaka hwemagwaro hwatinokurudzira kuti ubvunze usati watanga kutsvaga paInternet usati watanga kuziva kuti, pazvigunwe zvako uye mumba mako, unogona kuwana zvauri kutsvaga.
Base system yekuisa
General data reiyo dome uye DNS server
Domain zita: desdelinux.fan DNS server zita:dns.desdelinux.fan IP kero: 192.168.10.5 Subnet mask: 255.255.255.0
Kuiswa
Isu tinotanga nekumisikidza nyowani kana yakachena yeiyo CentOS 7 inoshanda sisitimu sekuratidzwa kwenyaya yapfuura «CentOS 7 Hypervisor I - SMB Networks«. Isu tinongoda kuita shanduko dzinotevera:
- In the 22 mufananidzo «SOFTWARE Sarudzo«, Tinokurudzira kusarudza mukoramu yekuruboshwe«Base Nharaunda»Sarudzo inoenderana ne«Zvivakwa server«, Ndichiri mukoramu yekurudyi«Mapulagi eNzvimbo Yakasarudzwa»Sarudza bhokisi rekutarisa«DNS zita server«. Tichaisa iyo DHCP server gare gare.
- Ngatirangarirei kuziviswa kweakawedzera marekodhi sezvakaratidzwa mu 23 mufananidzo, mushure mekumisikidza «NETWORK & TIMA ZITA".
- Mifananidzo yacho inoreva zvikamu izvo zvatichagadzira pane yedu hard drive zvinongopihwa sevatungamiriri. Inzwa wakasununguka kusarudza zvikamu paunofunga, kuita, uye kutonga kwakanaka.
- Pakupedzisira, mu Mufananidzo 13 «NETWORK & TEAM ZITA», isu tinofanirwa kushandura hunhu zvinoenderana neyakajairwa paramende yedomain yakaziviswa uye sevha yeDNS, tisingakanganwe kudoma zita revaenzi - mune iyi nyaya «DNS«- mushure mekugadziriswa kwenetiweki kwapera. Zvakanaka kuita ping -kubva kune imwe inomiririra- kune yakatarwa IP kero mushure mekunge network yashanda:
Iko kune mashoma chaizvo uye ari pachena shanduko atinofanirwa kuita zvine chekuita nechinyorwa chakapfuura.
Chekutanga kutarisa uye kugadzirisa
Mushure mekunge taisa iyo yekushandisa system isu tinofanirwa kuongorora anotevera mafaera zvirinani, uye kune izvi isu tinotanga musangano kuburikidza neSSH kubva pakombuta yedu sysadmin.desdelinux.fan:
buzz @ sysadmin: ~ $ ssh 192.168.10.5 buzz@192.168.10.5 password: Kupinda kwekupedzisira: Sat Jan 28 09: 48: 05 2017 kubva 192.168.10.1 [buzz @ dns ~] $
Basa riri pamusoro rinogona kutora nguva yakareba kupfuura zvakajairwa, uye zvinonyanya kukonzerwa nekuti hatisati tave neDNS pane iyo LAN. Tarisa zvakare gare gare kuti DNS iri kushanda.
[buzz @ dns ~] $ katsi / nezvimwe / mauto 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 :: 1 localhost localhost.localdomain localhost6 localhost6.localdomain6 [buzz @ dns ~] $ katsi / nezvimwe / zita remubati DNS [buzz @ dns ~] $ katsi / nezvimwe / sysconfig / network-zvinyorwa / ifcfg-eth0 TYPE=Ethernet BOOTPROTO=none DEFROUTE=yes IPV4_FAILURE_FATAL=no IPV6INIT=no IPV6_AUTOCONF=yes IPV6_DEFROUTE=yes IPV6_PEERDNS=yes IPV6_PEERROUTES=yes IPV6_FAILURE_FATAL=no NAME=eth0 UUID=946f5ac9-238a-4a94-9acb-9e3458c680fe DEVICE=eth0 ONBOOT=yes IPADDR=192.168.10.5 PREFIX=24 GATEWAY=192.168.10.1 DNS1=127.0.0.1 DOMAIN=desdelinux.fan [buzz @ dns ~] $ katsi /etc/resolv.conf # Yakagadzirwa neNetworkManager kutsvaga desdelinux.fan nameserver 127.0.0.1
Iko kurongeka kukuru kunopindura kusarudzo dzedu. Ziva kuti kunyangwe pane server Tsvuku Hat 7 - CentOS 7, inogadzirirwa nekutadza apo NetworkManager kuitira kuti uyu ndiye iye anotarisira network maratidziro, vangave vari wired kana waya (WiFi), VPN kubatana, PPPoE kubatana, uye chero imwe netiweki yekubatanidza.
[buzz @ dns ~] $ sudo systemctl mamiriro networkmanager [sudo] password ye buzz: ● networkmanager.service Yakatakurwa: haina-kuwanikwa (Chikonzero: Hakuna faira rakadai kana dhairekitori) Inoshanda: haishande (yakafa) [buzz @ dns ~] $ sudo systemctl mamiriro NetworkManager ● NetworkManager.service - Network Manager Yakatakura: yakatakura (/usr/lib/systemd/system/NetworkManager.service; inogoneswa; mutengesi preset: inogoneswaInoshanda: inoshanda (ichimhanya) kubvira Sat 2017-01-28 12:23:59 EST; 12min apfuura Main PID: 705 (NetworkManager) CGroup: /system.slice/NetworkManager.service └─705 / usr / sbin / NetworkManager --no-daemon
Red Hat - CentOS zvakare inobvumidza iwe kuti ubatanidze uye ubvise network mapindiro uchishandisa echinyakare mirairo kana e kana pasi. Ngatimhanyei pane server koni:
[midzi @ dns ~] # ifdown eth0 Mudziyo 'eth0' wakabudirira kubviswa. [midzi @ dns ~] # ifup eth0 Kubatanidza kumisikidzwa zvinobudirira (D-Bus inoshanda nzira: / org / freedesktop / NetworkManager / ActiveConnection / 1)
- Tinokurudzira usashandure marongero ekumisikidza ayo CentOS 7 inopa nekuremekedza NetworkManager.
Isu tinonyatso kuzivisa marekodhi atiri kuzoshandisa nekuvandudza iyo inoshanda sisitimu kana zvichidikanwa:
[buzz @ dns ~] $ su Pasiwedhi: [root @ dns buzz] # cd /etc/yum.repos.d/ [midzi @ dns yum.repos.d] # ls -l yakazara 28 -rw-r-r--. 1 mudzi midzi 1664 Dec 9 2015 CentOS-Base.repo -rw-r - r--. 1 mudzi midzi 1309 Dec 9 2015 CentOS-CR.repo -rw-r - r--. 1 mudzi midzi 649 Dec 9 2015 CentOS-Debuginfo.repo -rw-r - r--. 1 mudzi midzi 290 Dec 9 2015 CentOS-fasttrack.repo -rw-r - r--. 1 mudzi mudzi 630 Dec 9 2015 CentOS-Media.repo -rw-r - r--. 1 mudzi mudzi 1331 Zvita 9 2015 CentOS-Sources.repo -rw-r - r--. 1 mudzi mudzi 1952 Dec 9 2015 CentOS-Vault.repo
Izvo zvine hutano kuverenga zvirimo mumavambo ekuzivisa mafaira kubva kuCentOS yakakurudzirwa marekodhi. Shanduko dzatinoita pano dzakakonzerwa nekuti hatina mukana wekupinda muInternet, uye tinoshanda pamwe nenzvimbo dzemunzvimbo dzakachengetedzwa kubva kuWWW Village, nevatinoshanda navo vanoita kuti hupenyu hwedu hureruke. 😉
[midzi @ dns yum.repos.d] # mkdir yekutanga [midzi @ dns yum.repos.d] # mv CentOS- * yepakutanga / [midzi @ dns yum.repos.d] # nano centos-repos.repo [centos-base] name=CentOS-$releasever baseurl=http://10.10.10.1/repos/centos/7/base/ gpgcheck=0 enabled=1 [centos-updates] name=CentOS-$releasever baseurl=http://10.10.10.1/repos/centos/7/updates/x86_64/ gpgcheck=0 enabled=1 [root @ dns yum.repos.d] # yum chenesa zvese Akatakura plugins: fastestmirror, langpacks Kuchenesa matura: centos-base centos-inogadziridza Kuchenesa zvese [midzi @ dns yum.repos.d] # yum kugadzirisa Akatakura plugins: fastestmirror, centos-base langpacks | 3.4 kB 00:00 centos-inogadziridza | 3.4 kB 00:00 (1/2): centos-base / yepakutanga_db | 5.3 MB 00:00 (2/2): centos-inogadziridza / primary_db | 9.1 MB 00:00 Kusarudza magirazi anomhanyisa Hapana mapakeji akaratidzirwa ekuvandudza
Meseji «Kwete (pane) mapakeji akaratidzirwa ekuvandudza» - «Hapana mapakeji akaratidzirwa ekuvandudza»Inoratidza kuti, nekuzivisa akanyanya-epamusoro-soro marekodhi anowanikwa kwatiri panguva yekumisikidzwa, chaizvo mapakeji azvino uno akaiswa.
Nezve iyo SELinux mamiriro uye iyo firewall
Tichatarisa chinyorwa ichi - zvakanyanya - pakuitwa kweDNS uye DHCP masevhisi, chinova ndicho Chinangwa Chayo chikuru.
Kana paine muverengi akasarudza Security Policy panguva yekumisikidza, sezvakaratidzwa mu 06 mufananidzo yechinyorwa chinyorwa «CentOS 7 Hypervisor I - SMB Networks»Inoshandiswa pakuiswa kweiyi DNS - DHCP server, uye iwe ukaona kuti iwe hauzive maitiro ekugadzirisa zvakanaka SELinux neCentOS Firewall, tinokurudzira kuti uite zvinotevera:
Chinja iyo faira / etc / sysconfig / selinux uye shanduka SELINUX = kumanikidza kubudikidza SELINUX = kudzima
[midzi @ dns ~] # nano / etc / sysconfig / selinux # Iyi faira inodzora nyika yeSELinux pane ino system. # SELINUX = inogona kutora imwe yeaya matatu maitiro: # kumanikidza - SELinux chengetedzo mutemo unomanikidzwa. # bvumidza - SELinux anodhinda yambiro pane kumanikidza. # akaremara - Hapana SELinux mutemo yakatakurwa. SELINUX = akaremara # SELINUXTYPE = inogona kutora imwe yeaya matatu maitiro: # yakanangwa - Maitiro akanangwa anochengetedzwa, # mashoma - Kuchinja kwemitemo yakanangwa. Maitiro akasarudzwa chete ndiwo pr $ # mls - Multi Level Security chengetedzo. SELINUXTYPE = yakanangwa
Wobva wamhanya inotevera mirairo
[midzi @ dns ~] # setenforce 0
[midzi @ dns ~] # sevhisi firewalld kumira Kudzoreredza ku / bin / systemctl mira firewalld.service [midzi @ dns ~] # systemctl kudzima firewalld Yakabviswa symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service. Yakabviswa symlink /etc/systemd/system/basic.target.wants/firewalld.service.
Kana iwe urikushandisa sevha yeDNS yakatarisana neInternet, haufanirwe kuita zviri pamusoro, asi gadzirisa mamiriro eSELinux uye iyo Firewall nemazvo. Maona "Kugadziriswa kweSeva neGNU / Linux, nemunyori Joel Barrios Dueñas" kana zvinyorwa zveCentOS pachayo - Red Hat
Isu tinogadzirisa CHINHU - chakatumidzwa
- El dhairekitori /usr/share/doc/bind-9.9.4/ Iine huwandu hwakanaka hwemapepa atinokurudzira kubvunza usati watanga kutsvaga paInternet usati watanga kuziva kuti, pazvigunwe zvako uye mumba mako, unogona kuwana zvauri kutsvaga
Mukuparadzira kwakawanda iyo sevhisi yeDNS yakaiswa kuburikidza neBIND package inoidaidzwa ainzi (Zita Daemon). MuCentOS 7 yakaiswa yakaremara nekutadza, zvinoenderana nezvakabuda murairo unotevera, uko unoti chinzvimbo chayo ndeche «remara«, Uye kuti nyika ino yakatsanangurwa neayo« mutengesi »- mutengesi preset. Nezve rekodhi, SUNGIRA iri Mahara Software.
Kugonesa iri zita sevhisi
[midzi @ dns ~] # systemctl chinzvimbo chinonzi ● named.service - Berkeley Internet Name Domain (DNS) Yakatakura: yakatakura (/usr/lib/systemd/system/named.service; remara; mutengesi preset: akaremaraInoshanda: isingashande (yakafa) [midzi @ dns ~] # systemctl inogonesa inonzi Yakagadzirwa symlink kubva /etc/systemd/system/multi-user.target.wants/named.service to /usr/lib/systemd/system/named.service. [midzi @ dns ~] # systemctl kutanga kutumidzwa [midzi @ dns ~] # systemctl chinzvimbo chinonzi ● named.service - Berkeley Internet Name Domain (DNS) Yakatakura: yakatakura (/usr/lib/systemd/system/named.service; akwanise; mutengesi preset: akaremara) Active: kushanda (kumhanya) kubvira Sat 2017-01-28 13:22:38 EST; 5min apfuura Maitiro: 1990 ExecStart = / usr / sbin / akatumidzwa zita -u anonzi $ OPTIONS (code = exited, status = 0 / SUCCESS) Maitiro: 1988 ExecStartPre = / bin / bash -c kana [! "$ DISABLE_ZONE_CHECKING" == "hongu"]; ipapo / usr / sbin / named-checkconf -z /etc/named.conf; zvimwe maungira "Kuongorora mafaira enzvimbo akaremara"; fi (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Main PID: 1993 (inonzi) CGroup: /system.slice/named.service 1993 / usr / sbin / inonzi -u inonzi Jan 28 13:22:45 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa './NS/IN': 2001: 500: 2f :: f # 53 Jan 28 13:22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa './ DNSKEY / IN ': 2001: 500: 3 :: 42 # 53 Jan 28 13:22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa' ./NS/IN ': 2001: 500: 3 :: 42 # 53 Jan 28 13:22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa './DNSKEY/IN': 2001: 500: 2d :: d # 53 Jan 28 13:22:47 dns inonzi [1993 ]: kukanganisa (network isingasvikike) kugadzirisa './NS/IN': 2001: 500: 2d :: d # 53 Jan 28 13:22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa './DNSKEY/ IN ': 2001: dc3 :: 35 # 53 Jan 28 13:22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa' ./NS/IN ': 2001: dc3 :: 35 # 53 Jan 28 13: 22:47 dns inonzi [1993]: kukanganisa (network isingasvikike) kugadzirisa './DNSKEY/IN': 2001: 7fe :: 53 # 53 Jan 28 13:22:47 dns inonzi [1993]: error (network unreachable) res olving './NS/IN': 2001: 7fe :: 53 # 53 Jan 28 13:22:48 dns inonzi [1993]: yakachengetedzwa-makiyi-zone: Haikwanise kutora DNSKEY set '.': yakatemwa [root @ dns ~] # systemctl restart inonzi [midzi @ dns ~] # systemctl chinzvimbo chinonzi ● named.service - Berkeley Internet Name Domain (DNS) Yakatakura: yakatakura (/usr/lib/systemd/system/named.service; inogoneswa; mutengesi preset: akaremara) Active: kushanda (kumhanya) kubvira Sat 2017-01-28 13:29:41 EST; 1s apfuura Maitiro: 1449 ExecStop = / bin / sh -c / usr / sbin / rndc stop> / dev / null 2> & 1 || / bin / kuuraya -TERM $ MAINPID (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Maitiro: 1460 ExecStart = / usr / sbin / akatumidzwa zita -u anonzi $ OPTIONS (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Maitiro: 1457 ExecStartPre = / bin / bash -c kana [! "$ DISABLE_ZONE_CHECKING" == "hongu"]; ipapo / usr / sbin / named-checkconf -z /etc/named.conf; zvimwe maungira "Kuongorora mafaira enzvimbo akaremara"; fi (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Main PID: 1463 (inonzi) CGroup: /system.slice/named.service ser1463 / usr / sbin / inonzi -u inonzi Jan 28 13:29:41 dns inonzi [1463]: yakachengetedzwa-kiyi-zone: jenareta faira rapera nguva: kubvisa jenareta faira Jan 28 13:29:41 dns inonzi [1463]: yakagadzirirwa-makiyi-zone: akatakura serial Jan 2 28 13:29:41 dns inonzi [1463]: zone 0.in-addr.arpa/IN: yakatakura serial 0 Jan 28 13:29:41 dns inonzi [1463]: zone localhost.localdomain / IN: inotakurika serial 0 Jan 28 13:29:41 dns inonzi [1463]: zone 1.0.0.127.in-addr.arpa/IN: yakatakura serial 0 Jan 28 13:29:41 dns inonzi [1463]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 .6.ip0.arpa / IN: yakatakura serial 28 Jan 13 29:41:1463 dns inonzi [0]: zone localhost / IN: dzakatakurwa serial 28 Jan 13 29 : 41: 1463 dns inonzi [28]: nzvimbo dzese dzakatakurwa Jan 13 29: 41: 1463 dns dzakatumidzwa [28]: inomhanya Jan 13 29:41:1 dns systemd [XNUMX]: Yakatanga Berkeley Internet Name Domain (DNS).
Mushure mekugonesa sevhisi ainzi uye isu tinoitanga kekutanga, kuburitswa kwemirairo systemctl chinzvimbo chakatumidzwa inoratidza kukanganisa. Patinotangazve sevhisi pazasi, iyo ainzi inogadzira ese mafaera ekumisikidza ayo, nekumisikidza, anodikanwa kuti ishandiswe nemazvo. Naizvozvo, kana tichiita iwo murairo zvakare systemctl chinzvimbo chakatumidzwa hapachina zvikanganiso zvinoratidzwa.
- Anodiwa, anodhura, uye anodhira Reader: kana iwe uchida kutsvaga-zvishoma- ndeipi nzira inotungamira kumagumo egomba retsuro, ndapota dzikama uverenge zvakadzama zvabuda zvemutemo wega wega. 😉 Chokwadi chinyorwa chinoita senge chakareba, asi usarambe kuti chinowana mukutsanangurwa uye kujekesa.
Isu tinoshandura iyo faira /etc/named.conf
Vazhinji muverengi vanotaura vanotaura -Handizvitaure- Iyo mania iyo vanochengetedza akasiyana Linux kugoverwa vane, yekutsvaga system yekugadzirisa mafaira mumafolda ane mazita akasiyana zvichienderana nedistro. Vari kutaura chokwadi. Asi chii chatingaite isu, vashoma vashandisi vanoshandisa izvi kugovera, isu? Chinja! 😉
Nenzira, muFreeBSD, UNIX® dombo «Iyo Yekutanga», iyo faira iri /usr/local/etc/namedb/named.conf; ndichiri muDebian, pamusoro pekuparadzaniswa mumafaira mana named.conf, named.conf.options, named.conf.default-zones, uye inonzi.conf.local, iri mufaira / etc / bind /. Ivo avo vanoda kuziva kuti yakavhurikaSUSE inoisa kupi, verenga «DNS uye DHCP mune yakavhurikaSUSE 13.2 Harlequin - SME Networks«. Vaverengi ndizvozvo! 😉
Uye sezvatinoita nguva dzose: tisati tachinja chero chinhu, isu tinochengeta iyo yekutanga gadziriso faira pasi peimwe zita.
[midzi @ dns ~] # cp /etc/named.conf /etc/named.conf.original
Kuita kuti hupenyu huve nyore, pane kugadzira kiyi TSIG yesimba reDNS rekugadziriswa neDHCP, tinoteedzera iyo imwechete kiyi rndc.key Chemhondoro dhcp.key.
[midzi @ dns ~] # cp /etc/rndc.key /etc/dhcp.key
[midzi @ dns ~] # nano /etc/dhcp.key
kiyi "dhcp-kiyi" {algorithm hmac-md5; chakavanzika "OI7Vs + TO83L7ghUm2xNVKg =="; };
Saka kuti ainzi Unogona kuverenga iyo faira ichangoteedzerwa, isu tinoshandura varidzi veboka rayo:
[midzi @ dns ~] # chown midzi: inonzi /etc/dhcp.key [midzi @ dns ~] # ls -l /etc/rndc.key /etc/dhcp.key -rw-r -----. 1 mudzi wakatumidzwa 77 Jan 28 16:36 PM /etc/dhcp.key -rw-r -----. 1 mudzi unonzi 77 Jan 28 13:22 /etc/rndc.key
Diki diki senge yapfuura ndiyo inogona kutipengesa kuedza kuyedza, ikozvino ... dambudziko riripi ...? uine zvimwe zvipikisheni, izvo zvatisinganyore nekuda kwekuremekedza Vanokudzwa.
Zvino kana - pakupedzisira! - isu tinoshandura iyo faira /etc/named.conf. Shanduko kana kuwedzerwa kwatakaita, zvine chekuita neyekutanga, zviri mu ushingi. Tarisa zvakanaka kuti vashoma sei.
[midzi @ dns ~] # nano /etc/named.conf
// // named.conf // // Yakapihwa neRed Hat kusunga package kugadzirisa iyo ISC BIND inonzi (8) DNS // server seye caching chete nameserver (seyehosthost DNS inogadzirisa chete). // // Ona / usr / share / doc / bind * / sampuli / semuenzaniso anonzi mafaera ekugadzirisa. //
// Yekushandisa Kudzora Rondedzero ichizivisa kuti ndeapi maratidziro anozokwanisa kubvunza
// yangu inonzi server
acl akatarisa {
127.0.0.0 / 8;
192.168.10.0 / 24;
};
sarudzo {
// Ini ndinozivisa kuti iyo inonzi daemon inoteererawo iyo interface
// eth0 iyo ine IP: 192.168.10.5
teerera-pachiteshi 53 {127.0.0.1; 192.168.10.5; };
teerera-pa-v6 chiteshi 53 {:: 1; }; dhairekitori "/ var / named"; dump-file "/var/named/data/cache_dump.db"; nhamba-faira "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt";
// Vafambisi chirevo
// vatungamiri {
// 0.0.0.0;
// 1.1.1.1;
//};
// kumberi kutanga;
// Ini ndinongobvumidza mibvunzo kune yangu ine mired ACL
bvumidza-mubvunzo {mired; }; // Kuti utarise neiyo dig command desdelinux.fan axfr // kubva kuSysAdmin workstation uye localhost chete // Hatina varanda DNS maseva. Hatichida...kusvika zvino.
tendera-chinja {localhost; 192.168.10.1; };
/ * - Kana iwe urikuvaka iyo AUTHORITATIVE DNS server, usabvumire kudzokorora. - Kana iwe uri kuvaka RECURSIVE (caching) DNS server, iwe unofanirwa kugonesa kudzokorora. - Kana yako inodzokorodza DNS server iine yeruzhinji IP kero, UNOFANIRA kugonesa kupinda kutonga kudzora mibvunzo kune vako vepamutemo vashandisi. Kukundikana kuita izvi kunokonzeresa kuti server yako ive chikamu chekukura kweDNS kukwidziridzwa. Kutevedzera BCP38 mukati medandemutande rako kunogona kudzora kwakanyanya kurwisa pamusoro * /
// Tinoda AUTHORITY server yeLAN yedu - SME
kudzokorora kwete;
dnssec-inogonesa hongu; dnssec-kusimbisa hongu; / * Nzira kune ISC DLV kiyi * / bindkeys-faira "/etc/named.iscdlv.key"; akachengetedzwa-makiyi-dhairekitori "/ var / akatumidzwa / simba"; pid-faira "/run/named/named.pid"; chikamu-keyfile "/run/named/session.key"; }; kutema {channel default_debug {file "data / named.run"; kuomarara kwakasimba; }; }; nzvimbo "." IN {mhando zano; faira "named.ca"; }; inosanganisira "/etc/named.rfc1912.zones"; inosanganisira "/etc/named.root.key";
// Isu tinosanganisira iyo TSIG kiyi yeanoshandura DNS meseji // neDHCP
sanganisira "/etc/dhcp.key";
// Kuzivisa kwezita, mhando, nzvimbo, uye kugadzirisa mvumo
// yeiyo DNS Marekodhi Nzvimbo Dzese // Dzese Nzvimbo Dziri MASTERS
nzvimbo"desdelinux.fani" {
mhando tenzi;
faira "dynamic/db.desdelinux.fani";
tendera-gadziriso {kiyi dhcp-kiyi; };
};
nzvimbo "10.168.192.in-addr.arpa" {
mhando tenzi;
faira "simba / db.10.168.192.in-addr.arpa";
tendera-gadziriso {kiyi dhcp-kiyi; };
};
Isu tinotarisa syntax
[midzi @ dns ~] # inonzi-checkconf [midzi @ dns ~] #
Sezvo iwo wekuraira pamusoro usinga dzore chero chinhu, syntax yacho iri OK. Nekudaro, kana isu tikateedzera iwo iwo murairo, asi nesarudzo -z, chinobuda chichava:
[midzi @ dns ~] # inonzi-checkconf -z zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded 0. .ip1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.arpa/IN: loaded serial 6 zone 0.in-addr.arpa/IN: loaded serial 1.0.0.127 zone 0.in-addr.arpa/IN: loaded serial 0 zone desdelinux.fan/IN: kurodha kubva kune master file dynamic/db.desdelinux.fan zvatadza: file not found zone desdelinux.fan/IN: haina kurodha nekuda kwekukanganisa. _default/desdelinux.fan/IN: file not found zone 10.168.192.in-addr.arpa/IN: loading from master file dynamic/db.10.168.192.in-addr.arpa yakundikana: file not found zone 10.168.192.in- addr.arpa/IN: haina kurodha nekuda kwekukanganisa. _default/10.168.192.in-addr.arpa/IN: faira harina kuwanikwa
Ehezve iwo zvikanganiso zvinoitika nekuti hatisati tagadzira iyo DNS Kunyoresa Nzvimbo Dzedu domain.
- Kuti uwane rumwe ruzivo nezve kuraira inonzi-checkconf, mhanya murume anonzi-checkconf, usati watsvaga chero rumwe ruzivo paInternet. Ini ndinokuvimbisa iwe kuti ichachengetedza yakanaka nguva yenguva.
Isu tinogadzira iyo Direct Zone faira desdelinux.fan
... kwete pasina zvishoma dzidziso yekutanga. 😉
Se template yekugadzira iyo data dhata faira, tinogona kutora iyo /var/named/named.empty, or the /usr/share/doc/bind-9.9.4/sample/var/named/named.empty. Ose akafanana.
[midzi @ dns ~] # katsi /var/named/named.empty $ TTL 3H @ IN SOA @ rname.invalid. (0; serial 1D; zorodza 1H; edza zvakare 1W; kupera 3H); shoma kana Yakashata yeku caching nguva yekurarama NS @ A 127.0.0.1 AAAA :: 1
Nguva yehupenyu - Nguva yekurarama TTL SOA rekodhi
Ngatitorei mabharanzi kuti titsanangure iyo TTL - Nguva yekurarama kubva kunyoresa SOA - Kutanga kwechiremera Yenzvimbo yaTenzi. Zvinonakidza kuziva zvadzinoreva kana tichida kugadzirisa chero hunhu hwavo.
$ TTL: Nguva yehupenyu - Nguva yekurarama kune ese marekodhi ari mufaira anotevera kuziviswa (asi anotungamira chero imwe $ TTL kuzivisa) uye hauna chirevo chakajeka cheTTL.
Serial: Serial nhamba yeiyo Zone dhata. Nguva dzese isu patinogadzirisa manyore DNS rekodhi munzvimbo, isu tinofanirwa kuwedzera iyo nhamba ne1, kunyanya kana tiine varanda kana vechipiri maseva. Nguva yega yega kana yechipiri kana yemuranda DNS server inobata tenzi wayo server, inobvunza iyo serial nhamba yeatenzi data. Kana iyo serial nhamba yemuranda iri shoma, saka iyo data yenzvimbo iyoyo pane sevha yemuranda yave yechinyakare, uye muranda anoita zone yekuchinjisa kuti azvigadzirise pachayo.
dzozorodza: Inotaurira server yevaranda iyo nguva yenguva iyo yainofanira kutarisa kana data rayo riripamazuva nekuremekedza tenzi.
edza zvakare: Kana iyo tenzi server isingawanikwe - nekuti yakarwara, ngatiti - kumuranda mushure menguva yenguva dzozorodza, edza zvakare Inotaurira muranda kuti angamirira kwenguva yakareba sei asati aedza kubata tenzi wake zvakare.
anofa: Kana muranda asingakwanise kubata natenzi wake kwenguva yakati anofaZvino kana hukama hwevaranda-tenzi zone hwakamisikidzwa, uye sevha yemuranda haina imwe sarudzo kunze kwekupedzisa nzvimbo iri mubvunzo. Kupera kwenguva kwenzvimbo nemuranda DNS server zvinoreva kuti icharega kupindura mibvunzo yeDNS ine chekuita nenzvimbo iyoyo, nekuti data riripo rakanyanyisa kusashanda.
- Izvo zviri pamusoro zvinotidzidzisa isu zvisina kunangana uye takatakurwa neakanyanya kujairika njere - zvishoma zvakajairika zvepfungwa- kuti kana isu tisingade varanda eDNS maseva ekushanda kweSME yedu, isu hatiite iyo, kunze kwekunge ichinyatso kudikanwa. Ngatigarei tichiedza kuenda kubva pane yakapusa kuenda kune yakaoma.
miniminimum: Mumashanduro pamberi pa SUNGIRA 8.2, rekodhi yekupedzisira SOA Iyo zvakare inoratidza iyo Yekupedzisira Hupenyu - Default nguva yekurarama, uye Negative Cache Hupenyu - Negative caching nguva yekurarama yeZoni. Ino nguva inoreva kumhinduro dzese dzisina kunaka dzakapihwa nemvumo sevha yeZoni.
Zone faira /var/named/dynamic/db.desdelinux.fan
[mudzi @ dns ~] # nano /var/named/dynamic/db.desdelinux.fan $TTL 3H @ IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. ( 1 ; serial 1D ; refresh 1H ; edzazve 1W ; expire 3H ); Minimum or ; Negative caching nguva yekurarama; @ IN NS dns.desdelinux.fan. @ IN MX 10 email.desdelinux.fan. @ IN TXT "DesdeLinux, blog yake yakatsaurirwa kune software yemahara "; Sysadmin in A 192.168.10.1 AD-DC IN A 192.168.10.3 FILESERVER IN A 192.168.10.4 DNS IN A 192.168.10.5 PROXYWEB IN A 192.168.10.6 BVERSER IN A 192.168.10.7 mail IN A 192.168.10.8
Isu tinotarisa /var/named/dynamic/db.desdelinux.fan
[mudzi @ dns ~] # yakanzi-checkzone desdelinux.fan /var/named/dynamic/db.desdelinux.fan mapazi desdelinux.fan/IN: loaded serial 1 OK
Isu tinogadzira Reverse Zone faira 10.168.192.in-addr.arpa
- Iyo SOA rekodhi yeZoni ino yakafanana neiyo yeDirect Zone isina kufunga nezve MX rekodhi..
[midzi @ dns ~] # nano /var/named/dynamic/db.10.168.192.in-addr.arpa $TTL 3H @ IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. ( 1 ; serial 1D ; refresh 1H ; edzazve 1W ; expire 3H ); Minimum or ; Negative caching nguva yekurarama; @ IN NS dns.desdelinux.fan. ; 1 IN PTR sysadmin.desdelinux.fan. 3 IN PTR ad-dc.desdelinux.fan. 4 IN PTR fileserver.desdelinux.fan. 5 IN PTR dns.desdelinux.fan. 6 IN PTR proxyweb.desdelinux.fan. 7 IN PTR blog.desdelinux.fan. 8 IN PTR ftpserver.desdelinux.fan. 9 IN PTR tsamba.desdelinux.fan. [midzi @ dns ~] # inonzi-checkzone 10.168.192.in-addr.arpa /var/named/dynamic/db.10.168.192.in-addr.arpa nzvimbo 10.168.192.in-addr.arpa/IN: yakatakura serial 1 OK
Tisati tatangazve iyo inonzi isu tinotarisa kumisikidzwa kwayo
- Kusvikira tave nechokwadi chekuti mafaira ekumisikidza ane mazita anonzi.conf, uye mafaera ayo enzvimbo haana kugadziridzwa nemazvo, tinokurudzira kuti titangise zita rainzi daemon. Kana isu tikaita izvi uye tobva tachinja faira rezoni, isu tinofanirwa kuwedzera serial nhamba yenharaunda yakagadziridzwa na1.
- Ngatitarisei pa "." panoperera domaini nemazita ekugamuchira.
[midzi @ dns ~] # inonzi-checkconf [midzi @ dns ~] # inonzi-checkconf -z zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded 0. .ip1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.arpa/IN: loaded serial 6 zone 0.in-addr.arpa/IN: loaded serial 1.0.0.127 zone 0.in-addr.arpa/IN: loaded serial 0 zone desdelinux.fan/IN: loaded serial 1 zone 10.168.192.in-addr.arpa/IN: loaded serial 1
Zvese zviripo zvinonzi configuration
Kuti uwane kujekeswa, uye kunyangwe chinyorwa chikave chakareba, tinopa kuburitsa kwakazara kwemurairo anonzi-checkconf -zp:
[midzi @ dns ~] # inonzi-checkconf -zp
zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded 0. .ip1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.arpa/IN: loaded serial 6 zone 0.in-addr.arpa/IN: loaded serial 1.0.0.127 zone 0.in-addr.arpa/IN: loaded serial 0 zone desdelinux.fan/IN: loaded serial 1 zone 10.168.192.in-addr.arpa/IN: loaded serial 1 sarudzo {bindkeys-file "/etc/named.iscdlv.key"; session-keyfile "/run/named/session.key"; dhairekitori "/ var / zita"; dump-file "/var/named/data/cache_dump.db"; teerera-pachiteshi 53 { 127.0.0.1/32; 192.168.10.5/32; }; teerera-pa-v6 chiteshi 53 { ::1/128; }; yakachengetedzwa-kiyi-dhairekitori "/var/named/dynamic"; memstatistics-faira "/var/named/data/named_mem_stats.txt"; pid-faira "/run/named/named.pid"; nhamba-faira "/var/named/data/named_stats.txt"; dnssec-gonesa hongu; dnssec-kusimbiswa hongu; recursion no; bvumira-mubvunzo {"wakatarisa"; }; bvumira-kutamisa {192.168.10.1/32; }; }; acl "yakatarisa" {127.0.0.0/8; 192.168.10.0/24; }; kutema miti {chiteshi "default_debug" {faira "data/named.run"; dynamic kuomarara; }; }; kiyi "dhcp-kiyi" {algorithm "hmac-md5"; chakavanzika "OI7Vs+TO83L7ghUm2xNVKg=="; }; nzvimbo "." IN { type hint; faira "named.ca"; }; zone "localhost.localdomain" IN {type master; faira "inamed.localhost"; bvumira-update {"hapana"; }; }; zone "localhost" IN {type master; faira "inamed.localhost"; bvumira-update {"hapana"; }; }; nzvimbo "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" MU { type master; faira "inonzi.loopback"; bvumira-update {"hapana"; }; }; zone "1.0.0.127.in-addr.arpa" IN { type master; faira "inonzi.loopback"; bvumira-update {"hapana"; }; }; zone "0.in-addr.arpa" IN {type master; faira "inonzi.empty"; bvumira-update {"hapana"; }; }; nzvimbo"desdelinux.fan" {type master; faira "dynamic/db.desdelinux.fan"; bvumira-update {kiyi "dhcp-kiyi"; }; }; nzvimbo "10.168.192.in-addr.arpa" {type master; faira "dynamic/db.10.168.192.in-addr.arpa "; bvumira-update {kiyi "dhcp-kiyi"; }; }; makiyi akachengetwa { "." kiyi yekutanga 257 3 8 "AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF FVQU6fGGCWZZRZZZRZQR58QZQR0QZQRQZQR0QZQR8QGQRQW0GQGQGZQRQGQR2QGQGQR37QGQGZZRWGZQ9QW496F5QW2F6F6F68FGZQRDQ 0g 1NfnfL9MTJRkxoX bfDaUeVPQuYEhg7NZWAJQ6VnMVDxP/VHL3M/QZxkjf5/Efucp2gaD F8dsV6DoBQzgul6sGIcGOYl0OyQdXfZ7relSQPQGWRWRWRWRWRWRWRWRWR57QRWRWRWRWRWRWRWRWRWR25QRHWRWDGWRWDGWRWDZ8RelSQRHWMRWDGWRD fwhYB1N4knNnulq QxA +Uk7ihz1="; };
- Kutevera maitiro ekugadzirisa iyo anonzi.conf Zvinoenderana nezvatinoda uye tarisa, uye gadzira yega zone zone uye woitarisa, isu tinopokana kuti isu tichafanirwa kutarisana nematambudziko makuru ekugadzirisa. Mukupedzisira tinoona kuti mutambo wemukomana, une pfungwa zhinji uye syntax yekukakavara. 😉
Iwo macheki akadzosa zvinogutsa mhedzisiro, saka tinogona kutangazve iyo BIND - ainzi.
Isu tinotangazve iyo inonzi uye tarisa mamiriro ayo
[midzi @ dns ~] # systemctl yekutanga zita rakatumirwa [midzi @ dns ~] # systemctl chinzvimbo chinonzi
Kana isu tikawana chero rudzi rwemhosho mukubuda kwemutemo wekupedzisira, isu tinofanirwa kutangazve iyo named.basa uye tarisa yako chinzvimbo. Kana zvikanganiso zvikashaikwa, sevhisi yakatanga zvinobudirira. Zvikasadaro, isu tinofanirwa kuita ongororo yakakwana yemafaira ese akagadziridzwa uye akagadzirwa, uye dzokorora maitiro
Mhedzisiro yekubuditsa chinzvimbo chinofanirwa kuve:
[midzi @ dns ~] # systemctl chinzvimbo chinonzi ● named.service - Berkeley Internet Name Domain (DNS) Yakatakura: yakatakura (/usr/lib/systemd/system/named.service; inogoneswa; mutengesi preset: akaremara) Anoshanda: inoshanda (inomhanya) kubva kuSun 2017-01-29 10:05:32 EST; 2min 57s ago Process: 1777 ExecStop=/bin/sh -c /usr/sbin/rndc stop > /dev/null 2>&1 || / bhini / kuuraya -TERM $ MAINPID (code = yakabuda, mamiriro = 0 / SUCCESS) Maitiro: 1788 ExecStart = / usr / sbin / zita -u zita $ OPTIONS (code = yakabuda, mamiriro = 0 / SUCCESS) Maitiro: 1786 ExecStartPre =/bin/bash -c kana [! "$DISABLE_ZONE_CHECKING" == "hongu" ]; ipapo /usr/sbin/named-checkconf -z /etc/named.conf; zvimwe echo "Kutarisa mafaera enzvimbo kwakadzimwa"; fi (code=exited, status=0/SUCCESS) Main PID: 1791 (yakatumidzwa) CGroup: /system.slice/named.service └─1791 /usr/sbin/named -u inonzi Jan 29 10:05:32 dns yakatumidzwa [1791]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial Jan 0 29 10:05:32 dns inonzi [1791]: zone 10.168.192.in-addr.arpa/IN: loaded serial Ndira 1 29 10:05:32 dns zita[1791]: nzvimbo 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN : loaded serial 0 Jan 29 10:05:32 dns zita[1791]: zone desdelinux.fan/IN: loaded serial Jan 1 29 10:05:32 dns zita[1791]: zone localhost.localdomain/IN: loaded serial Jan 0 29 10:05:32 dns zita[1791]: zone localhost/IN: loaded siriyo 0 Ndira 29 10:05:32 dns ine zita[1791]: nzvimbo dzese dzakatakurwa Jan 29 10:05:32 dns inonzi [1791]: kumhanya Jan 29 10:05:32 dns systemd [1]: Yakatanga Berkeley Internet Name Domain (DNS). Jan 29 10:05:32 dns inonzi [1791]: zone 10.168.192.in-addr.arpa/IN: kutumira kunozivisa (serial 1)
Macheki
Iwo macheki anogona kumhanyisa pane imwechete server kana pamushini wakabatana neLAN. Isu tinosarudza kuzviita kubva kuchikwata sysadmin.desdelinux.fan kwatakapa mvumo yakajeka yekuita Zone Transfers. Iyo faira /etc/resolv.conf yechikwata icho chinotevera:
buzz @ sysadmin: ~ $ katsi /etc/resolv.conf # Yakagadzirwa neNetworkManager kutsvaga desdelinux.fan nameserver 192.168.10.5 buzz@sysadmin:~$ dig desdelinux.fan axfr ; <<>> DiG 9.9.5-9+deb8u1-Debian <<>> desdelinux.fan axfr ;; sarudzo dzepasi rose: +cmd desdelinux.fan. 10800 IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. 1 86400 3600 604800 10800 desdelinux.fan. 10800 IN NS dns.desdelinux.fan. desdelinux.fan. 10800 IN MX 10 email.desdelinux.fan. desdelinux.fan. 10800 IN TXT"DesdeLinux, Blog rako rakatsaurirwa kuMahara Software" ad-dc.desdelinux.fan. 10800 IN A 192.168.10.3 blog.desdelinux.fan. 10800 IN A 192.168.10.7 dns.desdelinux.fan. 10800 IN TO 192.168.10.5 fileserver.desdelinux.fan. 10800 IN A 192.168.10.4 ftpserver.desdelinux.fan. 10800 IN A 192.168.10.8 mail.desdelinux.fan. 10800 IN A 192.168.10.9 proxyweb.desdelinux.fan. 10800 IN A 192.168.10.6 sysadmin.desdelinux.fan. 10800 IN TO 192.168.10.1 desdelinux.fan. 10800 IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. 1 86400 3600 604800 10800 ;; Nguva yekubvunza: 0 msec ;; SERVER: 192.168.10.5#53(192.168.10.5);; KANA: Sun Jan 29 11:44:18 EST 2017 ;; XFR saizi: 13 zvinyorwa (mameseji 1, bytes 385) buzz @ sysadmin: ~ $ dig 10.168.192.in-addr.arpa axfr ; <<>> DiG 9.9.5-9+deb8u1-Debian <<>> 10.168.192.in-addr.arpa axfr ;; pasi rose zvingasarudzwa: +cmd 10.168.192.in-addr.arpa. 10800 IN SOA dns.desdelinux.fan.10.168.192.in-addr.arpa. root.dns.desdelinux.fan.10.168.192.in-addr.arpa. 1 86400 3600 604800 10800 10.168.192.in-addr.arpa. 10800 IN NS dns.desdelinux.fan. 1.10.168.192.in-addr.arpa. 10800 IN PTR sysadmin.desdelinux.fan. 3.10.168.192.in-addr.arpa. 10800 IN PTR ad-dc.desdelinux.fan. 4.10.168.192.in-addr.arpa. 10800 IN PTR fileserver.desdelinux.fan. 5.10.168.192.in-addr.arpa. 10800 IN PTR dns.desdelinux.fan. 6.10.168.192.in-addr.arpa. 10800 IN PTR proxyweb.desdelinux.fan. 7.10.168.192.in-addr.arpa. 10800 IN PTR blog.desdelinux.fan. 8.10.168.192.in-addr.arpa. 10800 IN PTR ftpserver.desdelinux.fan. 9.10.168.192.in-addr.arpa. 10800 IN PTR tsamba.desdelinux.fan. 10.168.192.in-addr.arpa. 10800 IN SOA dns.desdelinux.fan.10.168.192.in-addr.arpa. root.dns.desdelinux.fan.10.168.192.in-addr.arpa. 1 86400 3600 604800 10800 ;; Nguva yekubvunza: 0 msec ;; SERVER: 192.168.10.5#53(192.168.10.5);; KANA: Sun Jan 29 11:44:57 EST 2017 ;; XFR saizi: 11 zvinyorwa (mameseji 1, bytes 352) buzz@sysadmin:~$ dig IN SOA desdelinux.fan buzz@sysadmin:~$ dig IN MX desdelinux.fan buzz@sysadmin:~$ dig IN TXT desdelinux.fan buzz @ sysadmin: ~ $ inomiririra dns dns.desdelinux.fan has address 192.168.10.5 buzz @ sysadmin: ~ $ inomiririra sysadmin sysadmin.desdelinux.fan ine kero 192.168.10.1 ... Uye chero mamwe macheki atinoda
- Parizvino, isu tine hwaro hweDNS server mune yedu SME network. Isu tinovimba iwe wakanakidzwa nemaitiro ese, anga ari akapusa, handiti? 😉
Isu tinoisa uye tinogadzirisa DHCP
[midzi @ dns ~] # yum gadza dhcp
Akatakura plugins: fastestmirror, centos-base langpacks | 3.4 kB 00:00:00 centos-inogadziridza | 3.4 kB 00:00:00 Kurodha magirazi anomhanya kubva kune yakachengetwa hostfile Kugadzirisa kutsamira -> Kumhanya yekutengesa bvunzo ---> Package dhcp.x86_64 12: 4.2.5-42.el7.centos inofanira kuiswa -> Kugadzirisa kutsamira. yakamisikidzwa Kugadziriswa Kwekutsamira ============================================= =========================== ============================================= ============================================= ====================== Kuisa: dhcp x86_64 12: 4.2.5-42.el7.centos-base 511k Transaction Summary ==== ============================================= ============================================= ============================ Isa 1 Package Yese saizi yekurodha: 511k Yakaiswa saizi: 1.4 M Izvi zvakanaka here [y / d / N]: y Kudhanilodha mapakeji: dhcp-4.2.5-42.el7.centos.x86_64.rpm | 511 kB 00:00:00 Kumhanya kuita transaction cheki Kumhanyisa transaction bvunzo Chiitiko chekutengesa chakabudirira Kumhanyisa kutengeserana Kuisa: 12: dhcp-4.2.5-42.el7.centos.x86_64 1/1 Kuongorora: 12: dhcp-4.2.5-42. el7.centos.x86_64 1/1 Yakaiswa: dhcp.x86_64 12: 4.2.5-42.el7.centos Yakaitwa!
[midzi @ dns ~] # nano /etc/dhcp/dhcpd.conf
# # DHCP Server Configuration faira. # ona /usr/share/doc/dhcp*/dhcpd.conf.example # ona dhcpd.conf(5) peji remunhu # ddns-update-style interim; ddns-updates on; ddns-domainname "desdelinux.fan."; ddns-rev-domainname "in-addr.arpa."; ignore client-updates; authoritative; option ip-forwarding off; option domain-name "desdelinux.fan"; # sarudzo ntp-servers 0.pool.ntp.org, 1.pool.ntp.org, 2.pool.ntp.org, 3.pool.ntp.org; sanganisira "/etc/dhcp.key" ;zone desdelinux.fan. {yekutanga 127.0.0.1; kiyi dhcp-kiyi; } nzvimbo 10.168.192.in-addr.arpa. {yekutanga 127.0.0.1; kiyi dhcp-kiyi; } yakagovaniswa-network redlocal { subnet 192.168.10.0 netmask 255.255.255.0 { sarudzo routers 192.168.10.1; sarudzo subnet-mask 255.255.255.0; sarudzo nhepfenyuro-kero 192.168.10.255; sarudzo domain-zita-servers 192.168.10.5; sarudzo netbios-zita-servers 192.168.10.5; range 192.168.10.30 192.168.10.250; } } # END dhcpd.conf
[midzi @ dns ~] # dhcpd -t
Internet Systems Consortium DHCP Server 4.2.5 Kodzero Copyright 2004-2013 Internet Systems Consortium. Kodzero dzose dzakachengetedzwa. Zveruzivo, ndokumbira ushanyire https://www.isc.org/software/dhcp/ Kwete kutsvaga LDAP sezvo ldap-server, ldap-port uye ldap-base-dn zvisina kutaurwa mufaira reiyo
[midzi @ dns ~] # systemctl inogonesa dhcpd
Yakagadzirwa symlink kubva /etc/systemd/system/multi-user.target.wants/dhcpd.service to /usr/lib/systemd/system/dhcpd.service.
[midzi @ dns ~] # systemctl kutanga dhcpd
[midzi @ dns ~] # systemctl mamiriro dhcpd
● dhcpd.service - DHCPv4 Server Daemon Yakatakurwa: yakatakura (/usr/lib/systemd/system/dhcpd.service; inogoneswa; mutengesi preset: yakaremara) Inoshanda: inoshanda (inomhanya) kubvira dom 2017-01-29 12:04:59 ITS T; 23s ago Docs: murume: dhcpd (8) murume: dhcpd.conf (5) Main PID: 2381 (dhcpd) Mamiriro: "Kutumira mapaketi ..." CGroup: /system.slice/dhcpd.service └─2381 / usr / sbin / dhcpd -f -cf /etc/dhcp/dhcpd.conf -user dhcpd -group dhcpd --no-pid Jan 29 12:04:59 dns dhcpd [2381]: Internet Systems Consortium DHCP Server 4.2.5 Ndira 29 12 : 04: 59 dns dhcpd [2381]: Copyright 2004-2013 Internet Systems Consortium. Jan 29 12:04:59 dns dhcpd [2381]: Kodzero dzose dzakachengetedzwa. Jan 29 12:04:59 dns dhcpd [2381]: Kuti uwane ruzivo, ndokumbira ushanyire https://www.isc.org/software/dhcp/ Jan 29 12:04:59 dns dhcpd [2381]: Kwete kutsvaga LDAP kubvira ldap -server, ldap-port uye ldap-base-dn hazvina kutaurwa mufaira refaira Jan 29 12:04:59 dns dhcpd [2381]: Akanyora zvibvumirano 0 kuti abhadhare faira. Jan 29 12:04:59 dns dhcpd [2381]: Kuteerera paLPF / eth0 / 52: 54: 00: 12: 17: 04 / redlocal Jan 29 12:04:59 dns dhcpd [2381]: Kutumira paLPF / eth0 / 52: 54: 00: 12: 17: 04 / redlocal Jan 29 12:04:59 dns dhcpd [2381]: Kutumira paSocket / kudonha / kudonhedza-net Jan 29 12:04:59 dns systemd [1]: Yatanga DHCPv4 Server Daemon.
Chii chasara kuitwa?
Zvakareruka. Tanga Windows 7 kana mumwe mutengi neFree Software uye tanga kuyedza uye kutarisa. Takazviita nevatengi vaviri: minomwe.desdelinux.fan y shandisa-desktop.desdelinux.fan. Iwo macheki aive anotevera:
buzz @ sysadmin: ~ $ inomiririra manomwe minomwe.desdelinux.fan has address 192.168.10.30 buzz@sysadmin:~$ host nomwe.desdelinux.fan minomwe.desdelinux.fan has address 192.168.10.30 buzz@sysadmin:~$ dig IN TXT nomwe.desdelinux.fan .... ;; CHIKAMU MUBVUNZO: ;nomwe.desdelinux.fan. IN TXT ;; MHINDURO CHIKAMU: nomwe.desdelinux.fan. 3600 IN TXT"31b7228ddd3a3b73be2fda9e09e601f3e9"....
Isu tinodana zita timu "manomwe" ku "LAGER" uye kutangazve. Mushure mekutanga iyo nyowani LAGER, isu tinotarisa:
buzz @ sysadmin: ~ $ inomiririra manomwe Nzvimbo yechinomwe haina kuwanikwa: 5 (YAKADZIDZWA) buzz@sysadmin:~$ host nomwe.desdelinux.fan gamuchira vanomwe.desdelinux.fan haina kuwanikwa: 3(NXDOMAIN) Buzz@sysadmin: ~ $ inomiririra lager lager.desdelinux.fan has address 192.168.10.30 Buzz@sysadmin:~$host lager.desdelinux.fan lager.desdelinux.fan has address 192.168.10.30 buzz@sysadmin:~$ dig IN TXT lager.desdelinux.fan .... ;; CHIKAMU MUBVUNZO: ;lager.desdelinux.fan. IN TXT ;; MHINDURO CHIKAMU: lager.desdelinux.fan. 3600 IN TXT"31b7228ddd3a3b73be2fda9e09e601f3e9"....
Nezve iyo suse-desktop mutengi:
buzz @ sysadmin: ~ $ host suse-dektop Host suse-dektop haina kuwanikwa: 5 (YAKADZIDZWA) buzz @ sysadmin: ~ $ host suse-desktop shandisa-desktop.desdelinux.fan has address 192.168.10.33 buzz@sysadmin:~$ host suse-desktop.desdelinux.fan shandisa-desktop.desdelinux.fan has address 192.168.10.33 buzz @ sysadmin: ~ $ inomiririra 192.168.10.33 33.10.168.192.in-addr.arpa domain name pointer suse-desktop.desdelinux.fan. buzz @ sysadmin: ~ $ inomiririra 192.168.10.30 30.10.168.192.in-addr.arpa domain name pointer LAGER.desdelinux.fan.
buzz @ sysadmin: ~ $ dig -x 192.168.10.33 .... ;; MUBVUNZO CHIKAMU: ;33.10.168.192.in-addr.arpa. IN PTR ;; MHINDURO CHIKAMU: 33.10.168.192.in-addr.arpa. 3600 IN PTR shandisa-desktop.desdelinux.fan. ;; CHIKAMU CHIKAMU: 10.168.192.in-addr.arpa. 10800 IN NS dns.desdelinux.fan. ;; CHIKAMU CHIKAMU: dns.desdelinux.fan. 10800 IN TO 192.168.10.5 .... buzz@sysadmin:~$ dig IN TXT shandisa-desktop.desdelinux.fani.... ;shandisa-desktop.desdelinux.fan. IN TXT ;; MHINDURO CHIKAMU: suse-desktop.desdelinux.fan. 3600 IN TXT "31b78d287769160c93e6dca472e9b46d73" ;; CHIKAMU CHIKAMU: desdelinux.fan. 10800 IN NS dns.desdelinux.fan. ;; CHIKAMU CHIKAMU: dns.desdelinux.fan. 10800 IN TO 192.168.10.5 ....
Ngatimhanyeiwo anotevera mirairo
[mudzi @ dns ~] # dig desdelinux.fan axfr ; <<>> DiG 9.9.4-RedHat-9.9.4-29.el7_2.4 <<>> desdelinux.fan axfr ;; sarudzo dzepasi rose: +cmd desdelinux.fan. 10800 IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. 6 86400 3600 604800 10800 desdelinux.fan. 10800 IN NS dns.desdelinux.fan. desdelinux.fan. 10800 IN MX 10 email.desdelinux.fan. desdelinux.fan. 10800 IN TXT"DesdeLinux, Blog rako rakatsaurirwa kuMahara Software" ad-dc.desdelinux.fan. 10800 IN A 192.168.10.3 blog.desdelinux.fan. 10800 IN A 192.168.10.7 dns.desdelinux.fan. 10800 IN TO 192.168.10.5 fileserver.desdelinux.fan. 10800 IN A 192.168.10.4 ftpserver.desdelinux.fan. 10800 IN A 192.168.10.8 LAGER.desdelinux.fan. 3600 IN TXT"31b7228ddd3a3b73be2fda9e09e601f3e9"LAGER.desdelinux.fan. 3600 IN A 192.168.10.30 email.desdelinux.fan. 10800 IN A 192.168.10.9 proxyweb.desdelinux.fan. 10800 IN A 192.168.10.6 suse-desktop.desdelinux.fan. 3600 IN TXT"31b78d287769160c93e6dca472e9b46d73"shandisa-desktop.desdelinux.fan. 3600 IN A 192.168.10.33 sysadmin.desdelinux.fan. 10800 IN TO 192.168.10.1 desdelinux.fan. 10800 IN SOA dns.desdelinux.fan. root.dns.desdelinux.fan. 6 86400 3600 604800 10800
Mukubuda pamusoro, isu takasimbisa pa ushingi ari TTL - mumasekondi- emakomputa ane IP kero dzakapihwa neDHCP sevhisi avo vane chirevo chakajeka cheTTL 3600 chakapihwa neDHCP. Fixed IPs inotungamirwa neiyo $ TTL ye3H -3 maawa = 10800 masekondi- yakaziviswa mune iyo SOA rekodhi yeiyo yega zone faira.
Ivo vanogona kutarisa iyo reverse zone nenzira imwecheteyo.
[midzi @ dns ~] # chera 10.168.192.in-addr.arpa axfr
Mimwe mirairo inonakidza kwazvo ndeiyi:
[mudzi @ dns ~] # yakanzi-journalprint /var/named/dynamic/db.desdelinux.fan.jnl [midzi @ dns ~] # yakatumidzwa-journalprint /var/named/dynamic/db.10.168.192.in-addr.arpa.jnl [midzi @ dns ~] # journalctl -f
Manual modification yeZones mafaira
Mushure mekunge DHCP yapinda mukutamba kwekuvandudza zvine simba mafaira ezone eiyo ainziKana pane imwe nguva isu tichifanira kugadzirisa manzwi faira renzvimbo, isu tinofanirwa kuita inotevera maitiro, asi kwete tisati taziva zvishoma nezve kushanda kweichi chinoshandiswa rndc yezita server kudzora.
[midzi @ dns ~] # murume rndc
....
chando [nzvimbo [kirasi [maonero]]]
Simudzira zvigadziriso kunzvimbo ine simba. Kana pasina nzvimbo yakatsanangurwa, saka nzvimbo dzese dzinomiswa. Izvi zvinobvumidza zvinyorwa zvemanyore kuti zviitwe kunzvimbo inowanzo gadziridzwa neyekuvandudza kwesimba. Izvo zvakare zvinokonzeresa shanduko mujenali faira kuti iwiriraniswe mune tenzi faira. Zvese zvine simba zvekuvandudza maitiro zvicharambwa apo nzvimbo yacho yakaomeswa nechando.
nyungudika [nzvimbo [kirasi [maonero]]]
Ita kuti zvigadziriswe kunzvimbo yakaoma nechando. Kana pasina nzvimbo yakatsanangurwa, saka ese matunhu echando anogoneswa. Izvi zvinokonzeresa kuti server itore zvekare nzvimbo kubva ku diski, uye inogonesa zvakare masimba ekuvandudza mushure mekunge mutoro wapedza. Mushure mekunyungudutswa kwenzvimbo, zvine simba zvekugadzirisa hazvicharambwi. Kana iyo zone yachinja uye iyo ixfr-kubva-misiyano sarudzo iri kushandiswa, saka jenareta faira ichagadziriswa kuratidza shanduko munzvimbo. Zvikasadaro, kana iyo zoni yashanduka, chero riripo ramagazini faira rinobviswa ....
Chii, iwe waifunga kuti ndaizonyora bhuku rese? ... chidimbu uye vanoenda nemotokari. Zvasara ndinozvisiira imi. 😉
Chaizvoizvo:
- rndc yakaoma [nzvimbo [kirasi [maonero]]], inomisa iyo yekuvandudza ine simba yenzvimbo. Kana imwe isina kutaurwa, ese anotonhora. Iwo wekuraira unobvumidza manyorerwo ekugadzirisa enzvimbo yakaoma nechando kana nzvimbo dzese. Chero chipi chinogadziridza chine simba chinorambwa chichigwamba.
- rndc nyungudika [nzvimbo [kirasi [maonero]]], inogonesa inogadziridza ane simba pane yaimbove chando nzvimbo. Iyo DNS server inodzoreredza iyo zone faira kubva ku disk, uye zvine simba zvinowedzerwazve zvinogoneswa mushure mekuregedza kwapera.
Chenjedzo dzinotorwa kana isu tichigadzirisa faira renzvimbo? Zvakafanana nekunge taive tichigadzira iyo, tisingakanganwe kuwedzera serial nhamba na1 kana Serial usati wachengeta iyo faira neshanduko dzekupedzisira.
Muenzaniso:
[midzi @ dns ~] # rndc inotonhora desdelinux.fan
[mudzi @ dns ~] # nano /var/named/dynamic/db.desdelinux.fan
Ini ndinoshandura iyo faira renzvimbo chero chikonzero, chakakosha kana kwete. Ini ndinochengetedza shanduko
[midzi @ dns ~] # rndc nyungudika desdelinux.fan
A zone reload uye nyoro yakatangwa. Tarisa matanda kuti uone mhedzisiro.
[midzi @ dns ~] # journalctl -f
Jan 29 14:06:46 dns zita[2257]: nzvimbo yekunyungudutsa 'desdelinux.fan/IN': kubudirira
Jan 29 14:06:46 dns zita[2257]: nzvimbo desdelinux.fan/IN: zone serial (6) isina kuchinjwa. nzvimbo inogona kutadza kuendesa kuvaranda.
Jan 29 14:06:46 dns zita[2257]: nzvimbo desdelinux.fan/IN: loaded serial 6
Iko kukanganisa mune yapfuura kuburitsa, iyo inoratidzwa yakatsvuka paconsole, kuri nekuda kwekuti ini "ndakanganwa" kuwedzera serial nhamba na1. Dai ndakanga ndatevera maitiro nenzira kwayo, zvabuda zvaizove
[midzi @ dns ~] # journalctl -f -- matanda anotanga neSun 2017-01-29 08:31:32 EST. -- Jan 29 14:06:46 dns zita[2257]: nzvimbo desdelinux.fan/IN: loaded serial Jan 6 29 14:10:01 dns systemd[1]: Yakatanga Chikamu 43 chemudzi wemushandisi. Ndira 29 14:10:01 dns systemd[1]: Kutanga Chikamu 43 chemudzi wemushandisi. Ndira 29 14:10:01 dns CROND[2693]: (mudzi) CMD (/usr/lib64/sa/sa1 1 1) Ndira 29 14:10:45 dns yakanzi[2257]: yakagamuchira chiteshi chekudzora chiteshi 'chando desdelinux.fan' Jan 29 14:10:45 dns zita[2257]: nzvimbo inotonhora 'desdelinux.fan/IN': kubudirira Jan 29 14:10:58 dns yakatumidzwa[2257]: yakagamuchira control channel command 'thaw desdelinux.fan' Jan 29 14:10:58 dns zita[2257]: thawing zone 'desdelinux.fan/IN': kubudirira Jan 29 14:10:58 dns zita[2257]: zone desdelinux.fan/IN: faira rejenari harichashandi: kubvisa faira rejenari Jan 29 14:10:58 dns zita[2257]: zone desdelinux.fan/IN: loaded serial 7
- Muverengi shamwari, ndinodzokorora kuti iwe unofanirwa kunyatso verenga kubuda kwemirairo. Kune chimwe chinhu vashanduri vayo vakashandisa rakawandisa basa kuronga wega murairo, kunyangwe zviite nyore.
Resumen
Parizvino tataura nezve kuitwa kweDNS - DHCP peya, yakakosha uye yakakosha masevhisi ekuita kwakanaka kweSME Network, zvichireva kupihwa kwemasimba ane kero kuburikidza neDHCP uye nekugadziriswa kwemakomputa nemazita echisimba kuburikidza neDNS.
Isu tinovimba zvakanyanya kuti makanakidzwa nemaitiro ese sezvatakaita. Kunyangwe zvingaite senge zvakaoma kushandisa koni yacho, zviri nyore uye zvinodzidzisa kuita basa muUNIX® / Linux nerubatsiro
Vanondiregerera pane chero kusanzwisisika kwekufunga kwemafungiro, akagadzirwa, akanyorwa, akaongororwazve, akanyorwa zvakare, uye akaburitswa mumutauro weShakespeare, kwete Cervantes. 😉
Kunotevera kuendesa
Ini ndinofunga zvakati wandei zvakafanana - pamwe nedzidziso yekuwedzera pane DNS marekodhi - asi muDebian. Hatigone kukanganwa kugovera ikoko, handiti?
Ndatenda zvikuru nebasa renyu rinorumbidzwa mukunyora zvinyorwa zvine zvibereko zvakadaro. Zvichabatsira zvakanyanya kwandiri
Uye ndinokutendai zvikuru, Cristian, nekunditevera uye nekutarisa kwako kwenyaya iyi. Kubudirira!
Mushure mekuita kekutanga kutarisa iyi nyowani nyowani naFederico, hunyanzvi hwehunyanzvi hwakaonekwa mune yese «PYMES» akateedzana zvakare anoonekwa; pamusoro peiyo huru dudziro inoratidza dura rako pane maviri eakakosha masevhisi (DNS uye DHCP) yechero network. Pane ino chiitiko uye zvakasiyana nezvandakambotaura, ndine yechipiri komiti yakamirira mushure mekuita zvataurwa mune ino positi.
Hapana zvataurwa, pa '400 !!! Fico ndinokutendai nekuti iwe unonyatso ziva kuti ndakaverenga zvako zvinyorwa uye isu hatigone kukumbira zvimwe. Iwe unotanga nesangano rakanakisa, kubva pakuisa nekumisikidza wega desktop yemushandisi, nzvimbo yekushandira ndiyo hwaro, ipfungwa yekuve yeavo network masevhisi aunotsanangudza chaizvo. Wanga uchikwira uye kunyangwe chiri chokwadi kuti danho riri kuwedzera, ichokwadi kuti iwe wakanyora uye ukaburitsa kune avo vari vashoma pane avo vari kutanga, kune avo vanga vakaita seni kwenguva uye kune avo vemberi.
Nekufamba kwenguva ndasvika pamhedziso yekuti ndinoziva vazhinji vakatosvika, iyo dzidziso, izvo zvinotibhadharira zvakanyanya kuwana izvo zvakapusa chokwadi chekusada kuverenga, nekuti kuitisa kwatova nyore kwazvo kana tichiziva zvatiri kuita, nei ???, iyo mibvunzo, kupi kwekuwana uye maitiro ekubuda mukukanganisa kunopa kwakanyanya musoro kana isu tisingatozive kwavanobva, yakakosha iyo redundancy.
Nekuda kweichi chikonzero, ini handidi kuti iwe usiye shure izvo zvinhu zvefungidziro zvaunosanganisira nezve DNS zvinyorwa mune inotevera bhuku sekuzivisa kwawakaita, ndoda kana zvasvika kune anodikanwa uye anodikanwa DEBIAN.
NDATENDA ZVAKANAKA uye isu takamirira.
Yakanaka sekugara Fico! Ini ndinomirira iyo Debian vhezheni, ndanga ndichitamba zvese neiyo distro kwemakore.
Wong: Maonero ako mushure mekuverenga akakosha zvakanyanya. Ini ndakamirira makomendi ako kana iwe ukaedza izvo zvirimo, nekuti ndinoziva kuti ndiwo maitiro aunofarira kuzviita. 😉
Crespo: Semazuva ese, makomendi ako akagamuchirwa kwazvo. Ndiri kuona kuti iwe watora mutsetse wakawanda wandakasimudza mukuumbwa kwezviteedzano izvi. Ndinovimba kuti, kufanana newe, vazhinji vakatozviona. Ndatenda nekutaura kwako.
Dhunter: Zvakanaka kukuverengera zvakare! Haufanire kumirira kwenguva refu. NeMuvhuro kwazvino- kana pamberi- inenge yapera kuburitswa. Usafunge kuti zviri nyore kwandiri kuvhara matatu akasiyana distros, asi Anoremekedzwa Reader, anozvibvunza. Kwete Debian neUbuntu chete, asi Iwo Matatu Akatemerwa maSMEs.
Kana iwe wakaburitsa, imhaka yekuti iwe unokwanisa, tinokutsigira uye tinoziva kuti iwe unotevera iwo mutsara.
Sekuhwina, ini ndinotarisira kusunungurwa kwaDebian nemeno akapinza. Zvingave zvakanaka kana iwe ukavhara zvishoma nezve NTP. Sl2 uye kumbundira kukuru. Dai vadzidzisi vangu vakandidzidzisa zvese zvakadaro, HAHAJJA, Platinum Degree, HAHAJJA.
Iyo nhanho yezvidimbu mune zvekuraira zvinobuda zvakakosha kuratidza kukosha kwayo. Vanotaura zvakawanda. Ichokwadi kuti zvidiki zvinyorwa zvinonongedza danho iri reruzivo, nekuti vanofunga kuti angave akareba uye anorema zvinyorwa zvekuverenga. Zvakanaka, chikamu chebasa reSysAdmin kuverenga izvo zvinorema uye zvakadzama zvabuda, kwete mukutarisana nedambudziko chete, asiwo pamberi pekutarisa.
Mhoro Federico, ini ndakanga ndavimbisa kare, kunyora zvimwe zvirevo mushure mekunyatsoongorora iyo posvo iri mubvunzo; Zvakanaka, hezvino vanoenda zvinotevera:
- Hunyanzvi hukuru panzvimbo yekugadzira iyo TSIG kiyi yeiyo inesimba DNS kugadzirisa neDHCP, kuteedzera imwechete rndc.key kiyi se dhcp.key, izvi zvinoita kunge "zvakapusa" zvinoratidza kuti chinangwa hachisi chehunyanzvi chete yeiyo HOWTO-INSTALL-DNS - & - DHCP asi ichitidzidzisa kufunga, 5 NYENZO DZEMUNYORI.
-Inonakidza kwazvo muDNS yekumisikidza faira, ine zita.conf, kuvapo kwemutsara «bvumira-kutamisa { localhost; 192.168.10.1; };» kuedza iyo Domain «desdelinux.fan" chete kubva paSysAdmin workstation uye localhost (iyo DNS server pachayo), uye pamusoro pekuisa kiyi yeTSIG yekuvandudza DNS kubva kuDHCP.
- Yakanaka kwazvo kugadzirwa kwenzvimbo dzakananga uye dzakapoterera dzeDNS pamwe neiyo "yakadzama" tsananguro yemhando dzadzo dzezvinyorwa, pamwe nekuitwa kwemirairo "# inonzi-checkconf -zp" kutarisa syntax yese yeakatumidzwa pamberi payo hard reset, pamwe chete nemienzaniso yekumhanya "dig" kuraira kuti uone mhando dzakasiyana dzeDNS zvinyorwa.
. Mukugadziriswa kweDHCP (uchishandisa iyo /etc/dhcp/dhcpd.conf faira):
- Maitiro ekuwedzera edu enetiweki nerawo renji kune inesimba IP kero yekupa, iyo tsananguro yezita-server, nezvimwe; pamwe nemaitiro ekuudza DHCP kuti ivandudze iyo DNS zvinyorwa kuburikidza nekushandisa iyo "ddns- ..." mitsara mukugadzirisa kwayo.
. Kana zvese zvave kutoshanda, 5 STARS KUNE MUNYORI, mukuita kwemurairo "# dig desdelinux.fan axfr» kutarisa TTL yemakomputa eLAN ane static IPs uye ayo ane dynamic IPs akapihwa.
. Chekupedzisira, KUKURU, kugadzirisa nemaoko mafaira eZone nekuaomesa nechando kutanga ne "# rndc kumisa desdelinux.fan", wobva wagadzira shanduko uye pakupedzisira kudzisunungura ne "# rndc thaw desdelinux.fani"
. Uye ZVAKANAKIRA, ZVESE ZVAKAITWA KUBVA TERMINAL.
Chengetedza iyo Fico.
Hello,
Ik kom net kijken. Ik heb totaal geen control meer pamusoro mijn eigen komputa pane mobiel.
Het zit m dus ook mu het dns mu dhcp. Ik weet echt niet hoe ik dit moet oplossen en het kan verwijderen. Misschien dat iemand mij wilt kubatsira? Dit is namelijk buiten mij om geinstalleerd. Walgelijk gedrag vind ik het.
Wong: chirevo chako chinopedzisa chinyorwa. Kunyanya, zvinoratidza kuti wakanyatsoidzidza. Zvikasadaro, haugone kupindura nedanho rezita raunoita iwe. Ingo wedzera izvo tendera-chinja Iyo inoshandiswa kunyanya patinenge tine DNS Muranda uye isu tinobvumidza kuchinjirwa kwenzvimbo kubva kuna tenzi kwachiri. Ini ndinoishandisa nenzira iyoyo nekuti iri nyore-kushandisa nzira yekuita zvisina ngozi macheki kubva kune imwechete komputa. Ndatenda zvikuru nekuongorora kwako kwe5. Kwazisai! uye ini ndicharamba ndakakumirira muzvinyorwa zvangu zvinotevera.
Mhoro Federico. Ndinoziva ndanonoka, asi ndinoda kukubvunza mubvunzo.
Maitiro aya achandibatsira here kana ndichida kunongedza dura kune yangu vps server?
Yese maminetsi gumi nemashanu ndinowana aya mameseji mameseji:
DHCPREQUEST pane eth0 kusvika pachiteshi 67 (xid =…)
DHCPACK kubva (xid =…)
inosungirwa ku - kuvandudzwa mumasekondi 970.
Uye kubva pane zvandinonzwisisa ndinofanira kugadzira A rekodhi nedomain yangu uye ip ye server yangu yakatsaurirwa.
* Ndinokorokotedza uye ndinokutendai nechinyorwa chino, handizive kana chiri icho chandaitsvaga asi ndakachiwana chinonakidza uye chakatsanangurwa. Pamusoro pezvo ini ndinotora kurudziro ye "DNS uye BIND" iyo ini ndanga ndichitoita makuhwa zvishoma uye zvinoita kunge zvinonakidza kwazvo.
Kwaziso kubva kuArgentina!
ndokumbira undibate kuburikidza valdestoujague@yandex.com