Yekutanga Master DNS yeLAN pane Debian 6.0 (III)

fico

7 maminitsi

Iko kuyedza kukuru kuderedza muzvinyorwa zvidiki zvishanu iyo Ruzivo rweKapfuura, Kuisirwa, Kugadziriswa, uye Kusikwa kweZones uye Kuongorora kweKUSUNGA, kuitira kuti inzwisiswe nenhamba huru kwazvo yevaverengi rinova iro donzo redu rakakosha. .

Avo vakave nemoyo murefu wekunyatsoverenga iyo 1 y 2da Kune chikamu chechinyorwa chino, vakagadzirira kuenderera mberi nekumisikidza uye kumisikidzwa kweDomain Name Server yeLAN.

Kune Nyowani, uye nevaya vasina kunyatso kujekerwa nezve iwo akapfupikiswa mazano akapihwa muzvikamu zvakapfuura, tinokurudzira kuti iwe uverenge uye udzidze usati waenderera. Vanowanzoita Vanofungidzirwa Kupererwa! kudzoka kana iwe usina kuverenga zvakanaka.

Tichaona pazasi:

  • LAN main data
  • Minimum host magadzirirwo
  • Kugadziriswa kune /etc/resolv.conf faira
  • Kugadziriswa kune /etc/bind/named.conf faira
  • Kugadziriswa kune /etc/bind/named.conf.option faira
  • Kugadziriswa kune /etc/bind/named.conf.local faira

 LAN main data

LAN Domain Name: amigos.cu LAN Subnet: 192.168.10.0/255.255.255.0 BIND Server IP: 192.168.10.10 Server NetBIOS Zita: ns

Kunyangwe zviri pachena, yeuka kushandura iyo yapfuura data yako.

Minimum host magadzirirwo

Izvo zvakakosha kuti uve nemafaira akagadziriswa nenzira kwayo / etc / network / interfaces y/ etc / maoko kuwana yakanaka DNS kuita. Kana rese data rakaziviswa panguva yekuisirwa, hapana shanduko ichave inodikanwa. Zviri mukati meumwe neumwe wavo zvinofanirwa kuve zvinotevera:

# zvirimo mukati me / etc / network / interfaces faira # Iyi faira inotsanangura maratidziro enetiweki anowanikwa pane yako system # uye nemashandisirwo acho. Kuti uwane rumwe ruzivo, tarisa nzvimbo (5). # Iyo loopback network interface auto lo iface lo inet loopback # Iyo yekutanga network interface inobvumira-hotplug eth0 iface eth0 inet static kero 192.168.10.10 netmask 255.255.255.0 network 192.168.10.0 nhepfenyuro 192.168.10.255 gedhi 192.168.10.2 # dns- * sarudzo dziri inoitwa ne resolutionvconf package, kana yakaiswa dns-nameservers 192.168.10.10 dns-search amigos.cu # zvemukati / etc / inomiririra 127.0.0.1 localhost 192.168.10.10 ns.amigos.cu ns # Iyi mitsara inotevera inodikanwa kune IPv6 inokwanisa mauto :: 1 ip6-localhost ip6-loopback fe00 :: 0 ip6-localnet ff00 :: 0 ip6-mcastprefix ff02 :: 1 ip6-allnodes ff02 :: 2 ip6-allrouters

Kugadziriswa kune /etc/resolv.conf faira

Kuti mibvunzo yedu uye macheki zvishande nemazvo, zvakafanira kuti tizivise munzvimbo yekumisikidza iyo inomiririra, inova nzvimbo yedu yekutsvaga uye ichave yedu yemuno DNS. Pasina iwo ari pamusoro parameter padiki, chero ipi mhinduro yeDNS inokundikana. Uye ichi chikanganiso chinoitwa nevakawanda vanotanga. Saka ngatigadzirise iyo faira /etc/resolv.conf uye isu tinoisiya iine zvinotevera zvirimo:

# zvemukati zve /etc/resolv.conf tsvaga shamwari.cu nameserver 192.168.10.10

Pakombuta patakaisa iyo DNS server isu tinogona kunyora:

tsvaga amigos.cu nameserver 127.0.0.1

Mune zvirimo pamusoro, chirevo nameservers 127.0.0.1, inoratidza kuti kubvunza kuchaitwa ku localhost.

Mushure mekunge isu tave ne BUNGO redu rakamisikidzwa nenzira kwayo tinogona kuita chero DNS mhinduro kubva kune yedu Yekugamuchira, ingave iyo server pachayo sunga9 kana imwe yakabatana nenetiweki uye ndeyayo imwechete subnet uye ine imwechete network maski. Kuti udzidze zvakawanda nezve iyo faira, mhanya murume resolution.conf.

Kugadziriswa kune /etc/bind/named.conf faira

Kudzikamisa mibvunzo kune YEDU kusungira kuitira kuti vangopindura kune yedu subnet uye kudzivirira kurwiswa Kunyorera, isu tinozivisa mufaira anonzi.conf iyo Yekushandisa Kudzora Rondedzero kana ACL (Yekushandisa Kudzora Rondedzero) uye isu tinoidaidza kutenderera. Iyo fairaanonzi.conf inofanira kunge iri seinotevera:

// /etc/bind/named.conf // Iyi ndiyo yekutanga yekumisikidza faira yeSEBENZA DNS server inonzi. // // Ndokumbirawo kuti muverenge /usr/share/doc/bind9/README.Debian.gz neruzivo pane iyo // chimiro cheBHINJI kumisikidza mafaera muDebian, * PASI * paunogadzirisa // iyi faira yekumisikidza. // // Kana iwe uri kungo wedzera nzvimbo, ndapota ita izvozvo mu /etc/bind/named.conf.local // // Zvataurwa muchiSpanish ndezvedu // Tinosiya zvakatangira muChirungu // CHENJERA kutevedzera nekuteedzera // USASIYA MABHUKU MABHUKU PAKUPEDZISIRA KWEMAZWI OSE // // Ruzivo rwekudzora Runyoro: // Inobvumidza mibvunzo kubva kunzvimbo yemuno uye kubva kune yedu subnet // Mune iyo faira inosanganisirwa inonzi.conf.options isu tichareva nezvazvo . acl mired {127.0.0.0/8; 192.168.10.0/24; }; inosanganisira "/etc/bind/named.conf.options"; sanganisira "/etc/bind/named.conf.local"; inosanganisira "/etc/bind/named.conf.default-zones"; // kuguma kwefaira /etc/bind/named.conf

Ngatitarisei BIND yekumisikidza parizvino uye titangise sevhisi:

inonzi-checkconf -z service bind9 restart

Kugadziriswa kune /etc/bind/named.conf.options faira

Muchikamu chekutanga "mikana"Tichazivisa chete iyo vanoendesa mberi, uye ndivanaani vachazogona kutarisa BONDE redu. Ipapo tinozivisa kiyi kana anokosha kuburikidza iyo yatinogona kudzora iyo sunga9, uye pakupedzisira kubva kumubati isu tinogona kuzvidzora. Kuti tizive kuti ndeipi kiyi kana kiyi, isu tinofanira kuita kati /etc/bind/rndc.key. Isu tinoteedzera zvinobuda nekuzvinamatira mufaira yakanzi.conf.options. Mukupedzisira, yedu faira inofanirwa kutaridzika seiyi:

// /etc/bind/named.conf.options sarudzo {// CHENJERA KUKOPA UYE PASTE, FUNGA ... // Dhijitari dhairekitori kuti uwane yedu Zones mafaira dhairekitori "/ var / cache / bind"; // Kana paine firewall pakati pako nemazita mazita aunoda // kutaura nawo, ungangoda kugadzirisa iyo firewall kubvumidza akawanda // madoko kuti ataure. Ona http://www.kb.cert.org/vuls/id/800113 // Kana yako ISP yakapa imwe kana anopfuura IP kero kune akatsiga // nameservers, iwe ungangoda kuvashandisa sevatambi. // Uncomment inotevera block, uye isa maadress anotsiva // iyo yese-0 chinobata. // vanotungamira {// 0.0.0.0; // 0.0.0.0; //} // Vafambisi. Handina dudziro irinani // Kero dzacho dzinobva kumaseva eeceniai.net.cu // Kana ICHIKOSHA ichiwana mukana weInternet HAZVIDIWI kuti uzvizivise, kunze kwekunge uine LAN yakaoma kunzwisisa ine maDNS maseva anoita seVapfuuri vekunze // kweiyo subnet yako IP kero renji. Muchiitiko icho // iwe unofanirwa kuzivisa iyo IP (s) yeavo maseva. // Yevanotungamira mibvunzo ndeye Cascade. vanoendesa mberi {169.158.128.136; 169.158.128.88; }; // Mune yakanyatsogadziriswa LAN, Yese DNS mibvunzo // inofanirwa kuitwa kune yemuno DNS server pane iyo LAN, // KWETE kumaseva ari kunze kweLAN. // Kunyanya kana iwe uine mukana weInternet, // ingave yeNyika kana yepasi rose. Kune iyo // isu tinoshambadza Vanoendesa-auth-nxdomain kwete; # tevedzera RFC1035 teerera-pa-v6 {chero; }; // Dzivirira pakudzivirira kubvunza-kubvunza {mired; }; }; // Zviri mukati mefaira / etc / bind / rndc-key // yakawanikwa kuburikidza nekati / etc / bind / rndc-key // Yeuka kuchichinja kana tadzokorodza kiyi "rndc-kiyi" {algorithm hmac-md5; chakavanzika "dlOFESXTp2wYLa86vQNU6w =="; }; // Kubva kumubati watinotonga uye kuburikidza nematanho api makuru {inet 127.0.0.1 tendera {localhost; } makiyi {rndc-kiyi; }; }; // yekupedzisira faira /etc/bind/named.conf.options

Ngatitarisei BIND yekumisikidza parizvino uye titangise sevhisi:

inonzi-checkconf -z service bind9 restart

Isu tafunga kuisa se // Comments izvo zvakakosha izvo zvinogona kushanda sereferenzi yekubvunzurudza mune ramangwana.

Icho chokwadi chekuzivisa Vanoendesa Mberi, chinoshandura yedu BIND Yemunharaunda server muCaché server, ichichengetedza yayo Yekutanga Tenzi mashandiro. Kana isu tikakumbira wekutambira kana wekunze domain, mhinduro -kana iri yakanaka- inochengetwa mudura rayo, kuitira kuti patinoibvunza zvakare kune mumwechete iyeye host kana kune imwecheteyo yekunze nzvimbo, tinowana nekukurumidza mhinduro kwete kutarisa kumashure kune maDNS ekunze.

Kugadziriswa kune /etc/bind/named.conf.local faira

Mune ino faira tinoshambadza nzvimbo dzemunharaunda medu. Isu tinofanirwa kusanganisira iyo Forward uye Reverse Zones seashoma. Rangarira izvo mune yefaira refaira/etc/bind/named.conf.options Isu tinozivisa mune dhairekitori ratinogashira maZones mafaira tichishandisa dhairekitori rairo. Mukupedzisira, iyo faira inofanirwa kunge iri seinotevera:

// /etc/bind/named.conf.local // // Ita chero gadziriso yemuno pano // // Funga kuwedzera nzvimbo dze1918 pano, kana dzikasashandiswa musangano rako // sanganisira "/ etc / bind /zones.rfc1918 "; // Mazita emafaira munzvimbo yega yega ndeye // kuravira kwevatengi. Isu takasarudza amigos.cu.hosts // uye 192.168.10.rev nekuti vanotipa kujekesa pane avo // zvirimo. Hapachina chakavanzika // // Mazita eZones HAASI ARBITRARY // uye anoenderana nezita renzvimbo yedu // neLAN subnet // Main Master Zone: mhando "Direct" zone "amigos.cu" {mhando tenzi; faira "amigos.cu.hosts"; }; // Master Main Zone: mhando "Inverse" zone "10.168.192.in-addr.arpa" {type master; faira "192.168.10.rev"; }; // Kuguma kwezita.conf.local faira

Kuti utarise kumisikidza BIND kusvika zvino:

anonzi-checkconf -z

Iwo wekutanga rairo rinodzosera kukanganisa kusvikira mafaera ezoni asipo. Chinhu chikuru ndechekuti inotiyambira kuti maZones akaziviswa muzita.conf.local haazotakuri, nekuti maDNS anorekodha mafaera asipo, izvo ichokwadi izvozvi. Tinogona kuenderera mberi.

Ngatitangisei sevhisi kuitira kuti shanduko dzifunge:

sevhisi bind9 restart

Sezvo isu tisingade kuita yega yega positi yakareba kwazvo, isu tichagadzirisa nyaya yekugadzira maNzvimbo eZenzvimbo mafaera mune inotevera 4th chikamu. Kusvikira ipapo shamwari!


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Miguel Ángel Gatón
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako

  1.   st0mt4il akadaro
    inoita 11 makore

    Thanks murume!

    Nhasi zvakaoma kuona zvakatumirwa zvemhando iyi pa internet!

    Ndinokutendai!

    Pindura ku st0rmt4il
    1.    phico akadaro
      inoita 11 makore

      Ndatenda zvikuru nemhinduro yako .. Zvinofadza kuverenga zvinhu zvakadaro .. 😉

      Pindura Fico
  2.   dasht0 akadaro
    inoita 11 makore

    Yakanaka chinyorwa!
    Ndatenda fico, Elav, KZ, zvakadaro… DesdeLinux nokuti zviripo

    Pamwechete, plugin inogona kuitiswa iyo inobvumidza iwe kurodha pasi zvinyorwa se pdf (HumanOS maitiro)
    Reply with quote
    Steppe

    Pindura kuna dasht0
    1.    federico akadaro
      inoita 11 makore

      Ndinokutendai mose nekuda kwemashoko enyu. Tinodzidza ZVESE zvavo.
      Kurodha pasi kwezvinyorwa muPDF hakusanganise zvakataurwa neshamwari neshamwari, izvo zvinozadzisa iyo posvo uye zvinobatsira kwazvo. Kupa gwara pasina zvataurwa hazviite kupihwa hupamhi hwenyaya. UNIX / Linux yakafara zvakanyanya kudzikisira zviitiko zvevanhu vese.

      Pindura kuna federico
      1.    dasht0 akadaro
        inoita 11 makore

        Zvakanakisa zvinyorwa!
        Zviripachena kuti makomendi anowirirana neruzivo rwezvinyorwa, ivo vanotokarakadza zvinhu zvingasara kana izvo zvinogona kuwedzerwa, asi ini ndinochengeta pfungwa yangu yekuti zvingave zvakanaka kana chinyorwa chikachengetedzwa sepdf, zvirinani kwandiri
        Kumbundira kubva kuCuba uye kuramba uchikunda

        Pindura kuna dasht0
  3.   elpapineo akadaro
    inoita 9 makore

    Kumhanya:
    anonzi-checkconf -z
    Ndinonzwa se:
    /etc/bind/named.conf.options 30:XNUMX: isingazivikanwe sarudzo 'kutonga'

    Pindura kune elpapineo
    1.    elpapineo akadaro
      inoita 9 makore

      Ini ndinozvipindura: unofanirwa kuisa chikamu chekutonga kunze kwechikamu chesarudzo.

      Ini ndinodawo kupa chimwe chinhu: kana pachinzvimbo chekuteedzera nekunamatira mune inonzi.conf.options faira

      kiyi "rndc-kiyi" {
      algorithm hmac-md5;
      chakavanzika "dlOFESXTp2wYLa86vQNU6w ==";
      };

      Isu tinoita:

      sanganisira "/etc/bind/rndc.key";

      in named.conf faira ini ndinofunga rinoshanda zvakare.

      Thanks.

      Pindura kune elpapineo