Avo vakatevera iyo 1, 2da, 3 y 4th chikamu chechinyorwa chino uye kubvunzana kwakaitwa kune kwavo BIND kwakadzosa zvinogutsa mhedzisiro, vatove nyanzvi panyaya iyi. :-) Uye pasina kumwe kunonoka ngatipinde muchikamu chekupedzisira:
- Kugadzirwa kweiyo "Inverse" mhando Main Master Zone faira 10.168.192.in-addr.arpa
- Troubleshooting
- Resumen
Kugadzirwa kweiyo "Inverse" mhando Main Master Zone faira 10.168.192.in-addr.arpa
Zita renzvimbo yacho rinovaunza kwauri, handiti? Uye ndezvekuti maReverse Zones anosungirwa kuve neyakakodzera zita resolution maererano neInternet zviyero. Hatina imwe sarudzo asi kugadzira iyo inoenderana nedomain yedu. Kune izvi isu tinoshandisa se template iyo faira /etc/bind/db.127:
cp /etc/bind/db.127 /var/cache/bind/192.168.10.rev
Isu tinogadzirisa iyo faira /var/cache/bind/192.168.10.rev uye tinoisiya sezvizvi:
; /var/cache/bind/192.168.10.rev; ; SUNGIRA kudzosera data faira kune master zone 10.168.192.in-addr.arpa; SUNGIRA mafaira emafaira e Master Master (Reverse) 10.168.192.in-addr.arpa; $ TTL 604800 @ IN SOA ns.amigos.cu. root.amigos.cu. (2; Serial 604800; Refresh 86400; Edza zvakare 2419200; Expire 604800); Chakaipa Cache TTL; @ IN NS ns. 10 IN PTR ns.amigos.cu. 1 IN PTR gandalf.amigos.cu. 9 IN PTR mail.amigos.cu. 20 IN PTR web.amigos.cu. 100 IN PTR fedex.amigos.cu. ; tinogona zvakare kunyora izere IP kero. Ex :; 192.168.10.1 IN PTR gandalf.amigos.cu.
- Cherekedza kuti sei mune ino kesi isu takasiya nguva mumasekondi sezvazvinogadzirwa nekutadza kana iyo sunga9. Inoshanda zvakafanana. Idzo inguva dzakafanana neidzo dzinoratidzwa mufaira shamwari.cu.host. Kana usina chokwadi, tarisa.
- Ziva zvakare kuti isu tinongozivisa zvinyorwa zvemashure zveavo vane iyo yakapihwa kana "chaiyo" IP paLAN yedu, uye iyo inosarudzika inosarudzika.
- Rangarira kugadzirisa iyo Reverse Zone faira neZVO dzose dzakakodzera IP kero dzakaziviswa muDirect Zone.
- Rangarira kuwedzera iyo Zone Serial Nhamba pese pavanoshandura iyo faira uye vasati vatangazve CHINHU.
Ngatitarisei nzvimbo ichangobva kugadzirwa:
inonzi-checkzone 10.168.192.in-addr.arpa /var/cache/bind/192.168.10.rev
Isu tinotarisa kumisikidzwa:
anonzi-checkconf -z anonzi-checkconf -p
Kana zvese zvikafamba zvakanaka, tinotangazve sevhisi:
sevhisi bind9 restart
Kubva ikozvino zvichienda mberi, nguva dzese patinoshandura mafaira emahara, isu tinongofanirwa kuita:
rndc reload
Kune izvo isu tinozivisa kiyi mu /etc/bind/named.conf.options, Aihwa?
Troubleshooting
Yakanyanya kukosha ndeye chaiyo yezvinyorwa zvemafaira /etc/resolv.conf sezvatakaona muchitsauko chakapfuura. Rangarira kuratidza mairi zvirinani zvinotevera:
tsvaga amigos.cu nameserver 192.168.10.20
Raira dig yeiyo package dnsutil. Pane koni, nyora mirairo yakatangira #:
# kuchera -x 127.0.0.1 ..... ;; MHINDURO CHIKAMU: 1.0.0.127.in-addr.arpa. 604800 IN PTR yemunharaunda. .... # kuchera -x 192.168.10.9 .... ;; MHINDURO CHIKAMU: 9.10.168.192.in-addr.arpa. 604800 IN PTR mail.amigos.cu. .... # host gandalf gandalf.amigos.cu ine kero 192.168.10.1 # host gandalf.amigos.cu gandalf.amigos.cu ine kero 192.168.10.1 # kuchera gandalf; << >> DiG 9.7.2-P3 << >> gandalf ;; sarudzo dzepasirese: + cmd ;; kubatanidza kwapera nguva; hapana maseva anokwanisa kusvikwa # dig gandalf.amigos.cu .... ;; MHINDURO CHIKAMU: gandalf.amigos.cu. 604800 IN A 192.168.10.1 .... Kana ivo vachikwanisa kuenda kuCuba kana Global Internet, uye Vafambisi vakaziviswa nemazvo edza: # dig debian.org .... ;; CHIKAMU CHOMUBVUNZO :; debian.org. IN A ;; MHINDURO CHIKAMU: debian.org. 3600 MUNA 86.59.118.148 debian.org. 3600 IN A 128.31.0.51 .... # host bohemia.cu bohemia.cu ine kero 190.6.81.130 # host yahoo.es yahoo.es ine kero 77.238.178.122 yahoo.es ine kero 87.248.120.148 yahoo.es tsamba inobatwa. ne 10 mx-eu.mail.am0.yahoodns.net. # kuchera -x 77.238.178.122 ;; MHINDURO CHIKAMU: 122.178.238.77.in-addr.arpa. 429 IN PTR w2.rc.vip.ird.yahoo.com.
… Uye zvakawandisa nemamwe matunhu asiri kunze kweLAN yedu. Bvunza uye tsvaga nezve zvinonakidza zvinhu paInternet.
Imwe yedzakanakisa nzira dzekutarisa mashandiro evhavha sunga9, uye zvakajairika zveimwe sevhisi yakaiswa, iri kuverenga kubuda kweiyo System Log Meseji uchishandisa rairo muswe -f / var / log / syslog mhanya semushandisimudzi.
Zvinonakidza kwazvo kuona kuburitswa kwemurairo iwoyo kana isu tikabvunza yedu yemunharaunda BVUNZA mubvunzo nezve yekunze domain kana inomiririra. Muchiitiko ichocho, zviitiko zvinoverengeka zvinogona kuunzwa:
- Kana isu tisingakwanise kuwana iyo Internet, mubvunzo wedu unozotadza.
- Kana isu tichigona kuwana iyo Internet uye isu TISINA kuzivisa Vafambisi, isu kazhinji hatizowana mhinduro.
- Kana isu tichiwana mukana weInternet uye isu takazivisa Vanoendesa, isu tichawana mhinduro sezvo ivo vachizotungamira kwekubvunza iyo DNS server kana maseva anodikanwa.
Kana isu tiri kushanda pane a LAN Yakavharwa mune izvo zvisingaite neimwe nzira yekuenda kunze kwenyika uye isu hatina Vafambisi vemhando ipi neipi, tinogona kubvisa meseji dzekutsvaga dze Midzi Maseva "Kubvisa" iyo faira /etc/bind/db.root. Kuti tiite izvi, isu tinotanga tachengeta iyo faira nerimwe zita uye tobva tadzima zvese zvirimo. Ipapo isu tinotarisa kumisikidza uye kutangazve sevhisi:
cp /etc/bind/db.root /etc/bind/db.root.original cp / dev / null /etc/bind/db.root inonzi-checkconf -z inonzi-checkconf -p service bind9 restart
Resumen
Parizvino, vanhu, sumo diki kune iyo sevhisi yeDNS. Izvo zvatakaita kusvika zvino zvinogona kutishandira zvakakwana kune redu bhizinesi diki. Zvakare zvemba kana isu tikagadzira chaiwo michina ine akasiyana mashandiro masisitimu uye akasiyana IP kero, uye isu hatidi kureva kwavari neIP asi nemazita. Ini ndinogara ndichiisa CHISUNGWA pamusha wangu wemba kuisa, kumisikidza uye kuyedza masevhisi anoenderana zvakanyanya nebasa reDNS. Ini ndinoshandisa zvakanyanya maDesktops uye chaiwo maSeva, uye ini handifarire kuchengeta faira / etc / maoko mune yega yega michina. Ndakanganisa zvakanyanya.
Kana usati wambogadza uye kumisikidza CHISUNGWA, ndapota usazombomiswa kana chimwe chinhu chikatadza pakuedza kwekutanga uye unofanira kutanga zvekare. Isu tinogara tichikurudzira mune idzi kesi kutanga nekumisikidza yakachena Zvakakodzera kuyedza!
Kune avo vanoda kuwanikwa kwakanyanya muzita rekugadzirisa basa, iro rinogona kuwanikwa nekugadzirisa Sekondari Master server, tinokurudzira kuti uenderere mberi nesu pane inotevera nhanho Sekondari Master DNS yeLAN.
Makorokoto kune avo vakatevera zvese zvinyorwa uye vakawana zvaitarisirwa mhedzisiro!
Pakupedzisira! .. iyo yekupedzisira posvo: D!
Kutenda nekugovana shamwari yangu!
Ndinokutendai!
Inonakidza kwazvo, zvinyorwa zvako, ini ndine chiremera DNS chakamisirwa muhara maBSD ye .edu.mx domain, kusvika parizvino yakandishandira zvakaringana, asi mumwedzi wapfuura ndakaona kurwiswa kwakawanda, kuenda kuseva, chii chingave nzira dzekuzvidzivirira kune An pachena DNS?, uye handizive kana zvichigona kudaro, tenzi akafumurwa kune internet uye yechipiri inoshumira diki lan yemakomputa angangoita makumi matanhatu, ese ari maviri DNS akabatana, kana kugona tsanangura nzvimbo mbiri, imwe yemukati uye imwe yekunze, ndatenda muna tenzi
Iko kusvina bind9 package ine dambudziko rekushanda nesamba, vhezheni 9.8.4 yatovepo mubazi rekumashure rekusvina, iyo vhezheni vhezheni haina dambudziko iri, kune lenny venenux.net inozodzosera pasuru.
Chinyorwa chakanaka kwazvo.
Ichi ndicho chete chinyorwa chinoita zvese zvakanyatsotsanangurwa ..
Izvo zvinofanirwa kucherechedzwa kuti iyo acl yekupfira haishande sezvo nenzira imwecheteyo ichajowa kubva kune yemukati network, mhinduro ichave yekuramba kunongedzera kune vatengi, uye kugadzira yakaoma acl iyo inodzivirira kuiswazve kwemazita (chimwe chinhu zvakafanana ne static dns)
ZANO RINOKOSHA:
zvingave zvakanaka imwe yekumisikidza maitiro ekugadzira iyo dns firita yezvinhu panzvimbo peye firewall
Ndatenda nekupindura @PICCORO !!!.
Ini ndinozivisa pakutanga kwenyaya dzangu dzese kuti handizvione senge nyanzvi. Zvishoma pane iyo DNS nyaya. Pano isu tose tinodzidza. Ini ndichafunga nezvekurumbidza kwako kana uchiisa DNS yakatarisana neInternet uye kwete yeyakajairika uye yakapusa LAN.
ANONAKA DZIDZISO !!! Kwaive kubatsira kukuru kwandiri sezvo ini ndichangotanga mune ino server kutendeuka, zvese zvakashanda zvakanaka. Ndatenda uye rambai muchitsikisa dzakadai dzinoshamisa dzidzo !!!
Fico, zvakare ndinokukwazisai pamusoro peichi chinhu chakakura.
Ini handisi nyanzvi BIND9, ndiregererewo kana ndakanganisa nezve chirevo, asi ndinofunga wakakundikana kutsanangura nzvimbo yekutsvagisa kutsvaga mune rakanzi.conf.local faira
Zvinonyadzisa kuti Fico haakwanise kukupindura izvozvi.
Kwaziso nekutenda, Elav, uye heino ndiri kupindura. Senguva dzose, ndinokurudzira kuti uverenge zvishoma ... 🙂
Mutsamba: https://blog.desdelinux.net/dns-maestro-primario-para-una-lan-en-debian-6-0-iii/
Ini ndinonyora zvinotevera:
Kugadziriswa kune /etc/bind/named.conf.local faira
Mune ino faira tinoshambadza nzvimbo dzemunharaunda medu. Isu tinofanirwa kusanganisira iyo Forward uye Reverse Zones seashoma. Rangarira kuti mune yekumisikidza faira /etc/bind/named.conf.options isu yatinotaura mune dhairekitori ratinogashira maZones mafaira tichishandisa dhairekitori rairo. Mukupedzisira, iyo faira inofanirwa kunge iri seinotevera:
// /etc/bind/named.conf.local
//
// Ita chero gadziriso yemuno pano
//
// Funga kuwedzera iyo 1918 matunhu pano, kana asina kushandiswa mune yako
// sangano
// zvinosanganisira "/etc/bind/zones.rfc1918";
// Mazita emafaira munzvimbo yega yega ari
// mutengi kuravira. Takasarudza shamwari.cu.hosts
// uye 192.168.10.rev nekuti ivo vanotipa kujeka kwavo
// zvirimo. Hapasisina chakavanzika 😉
//
// Mazita emaZoni HAASI ARBITRARY
// uye inoenderana nezita renzvimbo yedu
// uye kune iyo LAN subnet
// Master Main Zone: «Direct» mhando
nzvimbo «amigos.cu» {
mhando tenzi;
faira "amigos.cu.hosts";
};
// Master Main Zone: «Inverse» mhando
nzvimbo "10.168.192.in-addr.arpa" {
mhando tenzi;
faira "192.168.10.rev";
};
// Kuguma kwezita.conf.local faira
Zvakanaka, zvinonakidza kutumira kwako nezve dns, zvakandibatsira kutanga pachidzidzo, ndatenda. Ini ndinojekesa kuti ini ndiri newbie mune izvi. Asi ndichiverenga ruzivo rwako rwakaburitswa ini ndakaona kuti runoshanda nemakero akasarudzika munzvimbo dzeneti yemukati. Mubvunzo wangu ndewokuti, iwe ungaita sei neinternet network ine simba IP kero, yakapihwa dhcp server, kugadzira mafaera eiyo huru tenzi zone yerudzi "akananga" uye "reverse"?
Ini ndichave ndinotenda nekuda kwechiedza chaunogona kupa pane nyaya yakasimudzwa. Ndatenda. Fv
Ndatenda nekupindura, @fabian. Iwe unogona kutarisa zvinotevera zvinyorwa, izvo zvandinovimba zvichakubatsira iwe kuita netiweki ine simba kero:
https://blog.desdelinux.net/servicio-de-directorio-con-ldap-2-ntp-y-dnsmasq/
https://blog.desdelinux.net/servicio-de-directorio-con-ldap-3-isc-dhcp-server-y-bind9/
Reply with quote