Adeegga Tusaha ee LDAP [3]: Isc-DHCP-Server iyo Bind9

Saaxiibbo waad salaaman tihiin !. Halkan waxaan la joognaa qaybtii saddexaad ee taxanaha, maantana waxaa loo hibeyn doonaa kuwa doorbida ama u baahan Bind9 oo ah Server Domain Name Server, iyo Isc-DHCP-Server si otomaatig ah loogu diro cinwaanada IP-ga iyo dhinacyada kale.

Xaaladdan oo kale, waxaan u qaabeyn doonnaa labada adeegba si serverka DHCP uu u cusbooneysiiyo aagagga server-ka DNS. Yaan la isku qaldin adeegga Dinamyc Dsii joog NAme Sku khaldan xalkaan, inkasta oo ay caado tahay in loo yeero DNS firfircoon, tan iyo markii adeegaha DHCP uu si firfircoon u cusbooneysiinayo aagagga DNS ee la tilmaamay.

Kuwa doonaya inay helaan hage faahfaahsan oo ku saabsan sida loo hirgeliyo loona habeeyo DNS, fadlan booqo Sida loo rakibo loona habeeyo Master Primary DNS ah LAN ee Debian 6.0 (I), ama soo degso Qodobbada isugeynta ee rakibidda iyo qaabeynta DNS oo dhan hal

Waxaan kugula talineynaa inaad aqriso labadii qaybood ee hore ee taxanaha kahor intaadan siiwadan

  • Adeegga Tusaha ee LDAP. Hordhac.
  • Adeegga Tusaha ee LDAP [2]: NTP iyo dnsmasq.

Dhinaca kale, Tuulada WWW waxaan ka helaynaa buugaag, buugaag, aalado la socda iyo suugaan kale, side loo sameeyaa? si loo rakibo loona habeeyo adeegyadan. Waxaan sidoo kale u isticmaali karnaa xirmada WebMin rakibidda, qaabeynta iyo maamul u sameynta iyaga iyo adeegyada kale. Waa qalab maamul iyada oo loo marayo webka loo yaqaan 'En Extremo Potente'. Ka taxaddar markaad isticmaaleyso! 🙂 Codsiga waxaa lagala soo bixi karaa Halkan.

Kee baan isticmaali karaa: DNSMasq ama DNS / DHCP?

Mudanayaal, xulitaankani waa mid u yaal shaqsi kasta. DNSMasq waxaa loogu talagalay shabakado yaryar, in kasta oo ay tahay in lagu xisaabtamo in shabakad ka kooban 250 mashiin ama ka yar loo arko mid yar.

Had iyo jeer xusuusnow in shabakad, ay tahay inuu jiro hal adeeg oo awood u leh DHCP.

Tusaale shabakad

Lan: 10.10.10.0/24
Dominio: amigos.cu
Servidor: mildap.amigos.cu
Sistema Operativo Servidor: Debian 6 "Squeeze
Dirección IP del servidor: 10.10.10.15
Cliente 1: debian7.amigos.cu
Cliente 2: raring.amigos.cu
Cliente 3: suse13.amigos.cu
Cliente 4: seven.amigos.cu

Aynu rakibno oo aan qaabeyno 'Bind9'

Inta badan waxa aan qori doonno xiga waa amarro konsollo ah, sidaa darteed waxaan u isticmaali doonnaa qaabkaas horay u socoshada mar kasta oo ay suurogal tahay. By habka, waxaan badbaadin meel. 🙂

Bayaanka keydadka, cusbooneysiinta nidaamka, iyo rakibida Bind9:

~# Nano /etc/apt/sources.list
# Ugu yaraan keydadkaas. Waxaan ku dhawaaqeynaa sida aan haysanno. deynta http: //myhost.mydomain/debian6/squeeze/ tuujin deynta ugu badan ee lagu soo kordhiyo http: //myhost.mydomain/debian6/squeeze-security/ riix / cusbooneysiinta deynta waxtarka ugu weyn http: //myhost.mydomain/debian6/squeeze-updates / isku ururin-cusbooneysiin waxtar weyn

: ~ # cusboonaysiinta aqoonta
: ~ # casriyayn casriyeyn ah

: ~ # aptitude rakibi bind9 xidhxidhaan

Aynu qaabeyno oo aan hubino isbeddel kasta:

: ~ # nano /etc/resolv.conf
raadi asxaabta.cu magac-bixiyaha 127.0.0.1 ------------------------------------------ -----
: ~ # nano /etc/bind/named.conf
acl dhoobnaa {127.0.0.0/8; 10.10.10.0/24; }; ku dar "/etc/bind/named.conf.options"; ku dar "/etc/bind/named.conf.local"; ka mid ah "/etc/bind/named.conf.default-zones"; ----------------------------------------------------
: ~ # magacaabay-jeegga -f
: ~ # service bind9 dib u bilaabi

: ~ # bisad /etc/bind/rndc.key
fure "rndc-key" {algorithm hmac-md5; qarsoodi ah "3nG8BU / IEe4lS189SV27ng =="; }; ----------------------------------------------------
: ~ # nano /etc/bind/named.conf.options
xulashooyinka {directory "/ var / cache / bind"; // gudbiyeyaasha {// 0.0.0.0; //}; auth-nxdomain maya; # waafaqsana RFC1035 dhagayso-on-v6 {midkastoo; }; su'aal-weydiin {mired; }; }; fure "rndc-key" {algorithm hmac-md5; qarsoodi ah "3nG8BU / IEe4lS189SV27ng =="; }; kontaroolada {inet 127.0.0.1 u oggolow {localhost; 10.10.10.15; } furayaasha {rndc-key; }; }; ----------------------------------------------------

: ~ # magacaabay-jeegga -f
: ~ # service bind9 dib u bilaabi

------------------------------------
: ~ # nano /etc/bind/named.conf.local
soonaha "amigos.cu" {type master; faylka "amigos.cu.hosts"; u oggolow cusbooneysiinta {fure "rndc-key"; }; }; soonaha "10.10.10.in-addr.arpa" {type master; faylka "10.10.10.rev"; u oggolow cusbooneysiinta {fure "rndc-key"; }; }; ----------------------------------------------------

: ~ # magacaabay-jeegga -f
: ~ # service bind9 dib u bilaabi

: ~ # cp /etc/bind/db.local /var/cache/bind/amigos.cu.hosts
-----------------------------------
: ~ # nano /var/cache/bind/amigos.cu.hosts
; ; Ku xidhnow faylka xogta ee loogu talagalay interface loopback maxaliga ah; $ TTL 604800 @ IN SOA mildap.amigos.cu. xididka.mildap.amigos.cu. (2; Serial 604800; Refresh 86400; Isku day 2419200; Waqtigiisu dhacaa 604800); Kaydka xun TTL; @ IN NS mildap.amigos.cu. ; mildap IN 10.10.10.15 gandalf IN 10.10.10.1 miwww IN A 10.10.10.5 -------------------------------- -----------------

: ~ # magacaabay-hubiyeyaasha asxaabta.cu /var/cache/bind/amigos.cu.hosts
: ~ # service bind9 dib u bilaabi

: ~ # qodo asxaabta.cu ns
: ~ # qodo asxaabta.cu axfr

: ~ # cp /etc/bind/db.127 /var/cache/bind/10.10.10.rev
--------------------------------------
: ~ # nano /var/cache/bind/10.10.10.rev
; ; KU Xidhnow faylka xogta gadaal u xir interface interface loopback; $ TTL 604800 @ IN SOA mildap.amigos.cu. xididka.mildap.amigos.cu. (1; Serial 604800; Refresh 86400; Isku day 2419200; Waqtigiisu dhacaa 604800); Kaydka xun TTL; @ NS mildap.amigos.cu. ; 15 gudaha PTR mildap.amigos.cu. 1 IN PTR gandalf.amigos.cu. 5 IN PTR miwww.amigos.cu. ---------------------------------------------------- --------------------

: ~ # magacaabay-jeeg 10.10.10.in-addr.arpa /var/cache/bind/10.10.10.rev
: ~ # magacaabay-jeegga -f
: ~ # magacaabay-hubinta -p
: ~ # service bind9 dib u bilaabi
===================================
Hadaynaan lahayn qadka internetka
====================================
: ~ # cp /etc/bind/db.root /etc/bind/db.root.original
: ~ # cp / dev / null /etc/bind/db.root

: ~ # magacaabay-jeegga -f
: ~ # magacaabay-hubinta -p
: ~ # service bind9 dib u bilaabi

: ~ # rndc dib u dejin
server reload guul

Aynu rakibno oo aan qaabeyno Isc-DHCP-Server

: ~ # aptitude rakibi isc-dhcp-server
--------------------------------------
: ~ # nano / etc / default / isc-dhcp-server
Waa kuwee weji intee le'eg ayuu adeegga DHCP (dhcpd) ugu adeegayaa codsiyada DHCP? # Kala sooc farabadan oo fara badan oo kala bannaan ah, tusaale "eth0 eth1".
ISGUDUB = "eth1"
---------------------------------------

: ~ # cp /etc/dhcp/dhcpd.conf /etc/dhcp/dhcpd.conf.original
---------------------------------------
: ~ # nano /etc/dhcp/dhcpd.conf
fure rndc-key {sir "3nG8BU / IEe4lS189SV27ng =="; algorithm hmac-md5; } aqoonsiga server-ka mildap.amigos.cu; ddns-cusbooneysiin-qaab kumeel gaar ah; ddns-cusbooneysiinta; ddns-domainname "amigos.cu"; ddns-rev-domainname "in-addr.arpa."; iska indhatir cusboonaysiinta macmiilka; awood leh; ikhtiyaar ikhtiyaar ah-magac "amigos.cu"; ikhtiyaarka ntp-server 10.10.10.15; aagga amigos.cu. {aasaasiga ah 10.10.10.15; fure rndc-key; } aagga 10.10.10.in-addr.arpa. {aasaasiga ah 10.10.10.15; fure rndc-key; } subnet 10.10.10.0 netmask 255.255.255.0 {xulashada netbios-magaca-server 10.10.10.15; xulashada netbios-node-type 8; ikhtiyaar ikhtiyaar ah magac-magac-server 10.10.10.15; xulashada router 10.10.10.1; kala duwan 10.10.10.200 10.10.10.250; } -------------------------------------------- -

: ~ # adeeg bilaabid isc-dhcp-server

Hubinta macmiilka

Ilaa hadda labada adeeg si sax ah ayey u shaqeeyaan. Marka aan ka sameyno jeegaga macmiilka. Xaaladdan oo kale, waxaan qaadaneynaa macmiilka debian7.amigos.cu. Waxaan ku xiri doonnaa iyada oo la adeegsanayo borotokoolka ssh:

xididka @ mildap: ~ # ssh debian7
root @ debian7's password: Linux debian7 3.2.0-4-686-pae # 1 SMP Debian 3.2.41-2 i686 [----]

xididka @ debian7: ~ # ifconfig
eth0 Link encap: Ethernet HWaddr 52: 54: 00: 8f: ee: f6 inet addr: 10.10.10.200 Bcast: 10.10.10.255 Mask: 255.255.255.0 [----]

xididka @ debian7: ~ # qodo saaxiibbada.cu axfr
[---] amigos.cu. 604800 SOA mildap.amigos.cu. xididka.mildap.amigos.cu. 3 604800 86400 2419200 604800 friends.cu. 604800 IN NS mildap.amigos.cu. debian7.amigos.cu. 21600 IN TXT "0047c481c633aee670d1f8874855f942e3" debian7.amigos.cu. 21600 IN 10.10.10.200 gandalf.amigos.cu. 604800 IN 10.10.10.1 mildap.amigos.cu. 604800 IN 10.10.10.15 mi www.amigos.cu. 604800 IN 10.10.10.5 amigos.cu. 604800 SOA mildap.amigos.cu. xididka.mildap.amigos.cu. 3 604800 86400 2419200 604800 ;; Waqtiga weydiinta: 5 msec ;; SERVER: 10.10.10.15 # 53 (10.10.10.15) ;; Goorma: Sun Feb 2 17:03:23 2014 ;; Xajmiga XFR: 8 diiwaanka (farriimaha 1, bytes 258)

xididka @ debian7: ~ # qod 10.10.10.in-addr.arpa axfr
[----] 10.10.10.in-addr.arpa. 604800 SOA mildap.amigos.cu. xididka.mildap.amigos.cu. 2 604800 86400 2419200 604800 10.10.10.in-addr.arpa. 604800 IN NS mildap.amigos.cu. 1.10.10.10.in-addr.arpa. 604800 IN PTR gandalf.amigos.cu. 15.10.10.10.in-addr.arpa. 604800 IN PTR mildap.amigos.cu. 200.10.10.10.in-addr.arpa. 21600 EE PTR debian7.amigos.cu. 5.10.10.10.in-addr.arpa. 604800 IN PTR miwww.amigos.cu. 10.10.10.in-addr.arpa. 604800 SOA mildap.amigos.cu. xididka.mildap.amigos.cu. 2 604800 86400 2419200 604800 ;; Waqtiga weydiinta: 5 msec ;; SARE: 10.10.10.15 # 53 (10.10.10.15) ;; Goorma: Sun Feb 2 17:04:42 2014 ;; Xajmiga XFR: 7 diiwaanka (farriimaha 1, bytes 235)

Oo waxaan ku fulin karnaa jeegag badan inta aan rabno ama aan u baahanahay.

Waana intaas maanta. Qaybta xigta waxay noqon doontaa Ku rakib oo isku xir serverka OpenLDAP. Dhowaan waan idin arki doonaa saaxiibo!


Nuxurka maqaalka wuxuu u hogaansamayaa mabaadi'deena anshaxa tifaftirka. Si aad u soo sheegto khalad guji Halkan.

6 faallooyin, ka tag taada

Ka tag faalladaada

cinwaanka email aan la daabacin doonaa. Beeraha loo baahan yahay waxaa lagu calaamadeeyay la *

*

*

  1. Masuul ka ah xogta: Miguel Ángel Gatón
  2. Ujeedada xogta: Xakamaynta SPAM, maaraynta faallooyinka.
  3. Sharci: Oggolaanshahaaga
  4. Isgaarsiinta xogta: Xogta looma gudbin doono dhinacyada saddexaad marka laga reebo waajibaadka sharciga ah.
  5. Kaydinta xogta: Macluumaadka ay martigelisay Shabakadaha Occentus (EU)
  6. Xuquuqda: Waqti kasta oo aad xadidi karto, soo ceshan karto oo tirtiri karto macluumaadkaaga.

  1.   ka fogaansho dijo

    Iyo hal dhejis dheeri ah oo loogu talagalay calaamadaha, waa inaad tixgelisaa daabacaadda buugga pdf ee Free Reach-style. Slds.

    1.    federico dijo

      Waad mahadsantahay, laakiin qorista buug sida kan Maestro José Barrios Dueñas ma ahan meel aan gaaro. Buuggaas, oo lagu beddelay qaab Debian ah, waan raacay wuuna ka baxsan yahay jaantusyada. Waxay ubaahantahay aqoon iyo waqti badan in la qoro wax kuugu soo dhowaada.

      Ma ogid inta shaqo ee aan ku bixiyo faallooyinka ku saabsan xiriirkayga gaabiska ah ee Tuulada WWW. 🙂

      Salaan

  2.   federico dijo

    ... waan ka xumahay, waxaa iska leh Master Joel Barrios Dueñas. Haa hada. Marwalba waan wareersanahay. Sanadihii. 🙂

  3.   Waqti dheer 3000 dijo

    Cashar aad ufiican. Jidka agtana, waxaan sameyn doonaa tijaabooyin si aan u awoodo inaan sameeyo server ciyaarta F2P ee gaarka loo leeyahay sida Gunbound (si hufan, ku dhowaad dhammaan Softnyx's) sida kan oo kale, laakiin GNU / Linux >> http://hackzvip.obolog.com/video-tutorialcomo-crear-servidor-gunbound-season-2-565871

  4.   Jose Luis Gonzalez sawir qaade dijo

    Wax ku darsasho aad u wanaagsan. Waan sugi doonaa Openldap ...

  5.   Julio C.Carballo dijo

    Saaxiib aad ufiican waxaan isku dayi doonaa inaan ku faafiyo jawi aan wax soo saar lahayn

    Salaan