Dnsmasq le Directory e sebetsang - Marang-rang a SME

Kakaretso ea li-series: Li-network tsa likhomphutha tsa li-SME: Selelekela

Lumelang metsoalle!. Ho utloisisa le ho latela ka nepo sengoloa sena ke bohlokoa ho bala ba tlileng pele ho eona:

Ba hlalosa likhopolo-taba le tse sebetsang tseo re ke keng ra lebisa ho tsona. Re tla fetola kabo selemong sena ho Debian 8.6 "Jessie" mme re tla tsoelapele ka mekhahlelo e tšoanang eo re e sebelisang ho TLAMA le Active Directory®.

  • Tsamaiso e hlalositsoeng posong ena e sebetsa hape bakeng sa CentOS 7. Faele ea phetolo / etc / dnsmasq e ts'oana. Kea e phatlalatsa hobane ke nka ho sa hlokahale ho etsa sengoloa se arohaneng sa Dnsmasq le Active Directory® e ipapisitse le CentOS. Ka lehlohonolo, litsamaiso tse amanang le litokomane le tlhophiso li ts'oana. 😉
  • Dnsmaq ke popo ea Simon Kelley

Meeli mabapi le ts'ebeliso ea Dnsmasq

Ka lebaka la bohlokoa ba eona re pheta LIPOLELO e ts'ehetsang Dnsmasq -run monna dnsmasq- e bonts'ang hantle feela e latelang:

LIPOLELO

  • Litekanyetso tsa mantlha tsa meeli ea lisebelisoa hangata li na le boits'oaro, 'me li loketse ho sebelisoa lisebelisoa tsa mofuta oa router. khomarela li-processor tse liehang le memori e tlase. Ho Hardware ho feta  khonahala, ho ka etsahala ho eketsa meeli, le ho tšehetsa tse ling tse ngata bareki. Lintlha tse latelang li sebetsa ho dnsmasq-2.37: liphetolelo tse fetileng ha li joalo ba hloella hantle haholo.
  • Dnsmasq e khona ho ts'ehetsa DNS le DHCP bonyane sekete (1,000) bareki. Linako tsa ho hira ha lia lokela ho ba khutšoane haholo (ka tlase ho e le 'ngoe nako). Boleng ba –dns-forward-max bo ka eketsoa: qala ka palo ea bareki le ho e eketsa haeba DNS. Hlokomela hore ts'ebetso ea DNS e boetse e ipapisitse le li-server DNS e kaholimo. Boholo ba cache ea DNS bo ka eketsoa: moeli E hlokahala ke mabitso a 10,000 mme ea mantlha (150) e tlase haholo. Ho romella SIGUSR1 ho dnsmasq ho etsa tlhahisoleseling ea bitacore eo e na le thuso bakeng sa ho hlophisa boholo ba polokelo. Bona karolo ea LITLHAHISO bakeng sa lintlha.
  • Seva ea TFTP e hahelletsoeng e khona ho ts'ehetsa phetisetso e ngata lifaele tse tsoa hongtem call khetha () ho ts'ehetsa palo e kholo ea li-file-handles. Haeba moeli o behiloe holimo haholo ka -tftp-max o tla fokotsoa mme moeli oa 'nete o tla koaloa ha o qala. Hlokomela hore liphetisetso tse ling lia khonahala ha faele e ts'oanang e romelloa hore na ha trans e ngoe le e ngoe e fetisoaferencia e romela faele e fapaneng. Ho a khonahala ho sebelisa dnsmasq ho hana papatso ea webo u sebelisa lenane la li-server tse tsebahalang haholo, kaofela li rarolla ho 127.0.0.1 kapa 0.0.0.0 ho / etc / hosts kapa ho file e eketsehileng ea mabotho. Lenane le ka e be telele haholo. Dnsmasq e lekiloe ka katleho ka mabitso a milione. Saese eo ea faele e hloka 1GHz CPU le khakanyo60MB pheleu.
  • Dnsmasq e khona ho ts'ehetsa DNS le DHCP bonyane sekete (1,000) bareki.

Ha re kenye le ho hlophisa Jessie le Dnsmasq

Re tla qala ho tsoa ho sethala se secha se hloekileng sa seva ho ipapisitsoe le Debian 8 "Jessie". Ka mantsoe a mang, sistimi e sebetsang ntle le sebopeho sa graphical kapa sephutheloana se seng se kentsoe. Meeli ea marang-rang e tla tšoana le e sebelisitsoeng sengoloeng TLAMA le Active Directory®:

Lebitso la domain name mordor.fan LAN Network 10.10.10.0/24 ================================== == ========================================= Servers IP Aterese Morero (Li-server tse nang le OS Windows ) ============================================== = ==============================
sauron.mordor.fan. 10.10.10.3 Active Directory® 2008 SR2
mamba.mordor.fan. 10.10.10.4 Windows File Server
dns.mordor.fan 10.10.10.5 DnsMasq Server ho Jessie
bblack.mordor.fan. 10.10.10.6 Proxy, heke le firewall ho Kerios troll.mordor.fan. 10.10.10.7 Blog e ipapisitse le ... ha e hopole shadowftp.mordor.fan. 10.10.10.8 FTP seva e ntšo.mordor.fan. 10.10.10.9 Tšebeletso e felletseng ea e-mail blackspider.mordor.fan. 10.10.10.10 Tšebeletso ea WWW palantir.mordor.fan. 10.10.10.11 Qoqa ka Openfire bakeng sa Windows Real CNAME ============================= sauron ad-dc mamba fileserver darklord proxyweb troll blog shadowftp ftpserver blackelf mail blackspider www palantir mollo o bulehileng

Litlhophiso tsa seva ea dns.mordor.fan ea pele

motso @ dns: ~ # nano / etc / hostname
dns

motso @ dns: ~ # nano / joalo-joalo / mabotho
127.0.0.1 localhost 10.10.10.5 dns.mordor.fan dns # Melao e latelang ea lakatseha bakeng sa mabotho a nang le bokhoni ba IPv6 :: 1 localhost ip6-localhost ip6-loopback ff02 :: 1 ip6-allnodes ff02 :: 2 ip6-allrouters

motso @ dns: ~ # nano / etc / network / interfaces
# Faele ena e hlalosa marang-rang a marang-rang a fumanehang ho sistimi ea hau # le hore na o ka e kenya tšebetsong joang. Bakeng sa tlhaiso-leseling e batsi, sheba likarolo (5). mohloli /etc/network/interfaces.d/ * # Sebopeho sa marang-rang sa loopback auto lo iface lo inet loopback # Sebopeho se ka sehloohong sa marang-rang se lumella-hotplug eth0 iface eth0 inet static address 10.10.10.5 netmask 255.255.255.0 network 10.10.10.0 e phatlalatsoang 10.10.10.255. 10.10.10.1 heke ea 127.0.0.1 # dns- * likhetho li kengoa tšebetsong ka sephutheloana sa resolutionvconf, haeba e kentsoe dns-nameservers XNUMX dns-search mordor.fan

Ha re kenye Dnsmasq le htop

motso @ dns: ~ # aptitude kenya dnsmasq htop

Kamora ho kenya package htop re ka sheba CPU le ts'ebeliso ea memori ea lisebelisoa. E ne e ja feela li-megabyte tse 71 tsa RAM. Haeba re batla ho fokotsa ts'ebeliso le ho feta, re ka kenya package SSMTP bonolo MTA- eo le eona e hloekisang sephutheloana Mohlala4 hore kamehla Debian e kenya ka boiketsetso le hore ehlile ha re e hloke ho latela ts'ebeliso eo re tla e fa seva sena:

motso @ dns: ~ # aptitude kenya ssmtp
motso @ dns: ~ # aptitude purge ~ c
motso @ dns: ~ # bohloeki bo hloekile
motso @ dns: ~ # boikoetliso bo ikhethileng
motso @ dns: ~ # systemctl reboot

Kamora ho qala komporo hape, ts'ebeliso e ka tsela e latelang: Dnsmasq le Directory e sebetsang

 

E tlase, na? Ha re tsoeleng pele.

Ha re bontše hore Dnsmasq le eona e sheba Microsft® DNS

Ho leka lits'ebetso tse ka bang teng tsa Dnsmasq khomphuteng ea hau dns.mordor.fan, Re tlameha ho kenyelletsa polelo e bonts'ang hore Microsoft DNS ea seva e botsoa sauron.mordor.fan. Re ka e etsa ho kenyelletsa le taelo seva = / mordor.fan / 10.10.10.3 sebakeng sa polokeho dnsmasq.conf - joalo ka ha re tla bona hamorao- kapa re eketsa mola nameserver 10.10.10.3 sebakeng sa polokeho /etc/resolv.conf. Ha re ntse re sa hlophisa Dnsmasq ho latela litlhoko tsa rona, re khetha tsela ea bobeli:

motso @ dns: ~ # nano /etc/resolv.conf
sebaka sa marang-rang.fan
nameserver 127.0.0.1
nameserver 10.10.10.3

Joale re ka rarolla lipotso tsa DNS

Ka phetolo ea kamehla ea Dnsmasq e fanoeng ke file ea eona ea mantlha /etc/dnasmq.conf, le ka se phatlalatsoang faeleng /etc/resolv.conf ho tsoa ho seva ka boeona «dns«, Moreki ofe kapa ofe ea hokahantsoeng le LAN -me ea phatlalalitseng e le seva ea DNS dns.mordor.fan- O ka rarolla lipotso tsa DNS ka litšenyehelo tsa Microsoft® DNS bakeng sa hona joale…

  • Ho bohlokoa haholo ho lekola lebelo la karabelo la Dnsmasq ha u bonts'a boemo ba eona joalo ka Tsamaiso ka ho kenyelletsa feela IP 10.10.10.3 faeleng ea hau /etc/resolv.conf.

Ho tloha mosebetsing le ts'ehetsong ea thepa eohle eo ke ngolang ka eona, kea matha:

buzz @ sysadmin: ~ $ katse /etc/resolv.conf 
# E hlahisitsoe ke NetworkManager domain mordor.fan nameserver 10.10.10.5

buzz @ sysadmin: ~ $ nslookup
> dns
Seva: 10.10.10.5 Aterese: 10.10.10.5 # 53 Lebitso: dns.mordor.fan Aterese: 10.10.10.5

> sauron
Seva: 10.10.10.5 Aterese: 10.10.10.5 # 53

Karabo e senang matla:
Lebitso: sauron.mordor.fan Aterese: 10.10.10.3

> 03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan
Seva: 10.10.10.5 Aterese: 10.10.10.5 # 53 03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan canonical name = sauron.mordor.fan. Lebitso: sauron.mordor.fan Aterese: 10.10.10.3

> 10.10.10.3
Seva: 127.0.0.1 Aterese: 127.0.0.1 # 53 3.10.10.10.in-addr.arpa name = sauron.mordor.fan.

> 10.10.10.9
Seva: 127.0.0.1 Aterese: 127.0.0.1 # 53 9.10.10.10.in-addr.arpa name = blackelf.mordor.fan.

> 10.10.10.5
Seva: 127.0.0.1 Aterese: 127.0.0.1 # 53 5.10.10.10.in-addr.arpa name = dns.mordor.fan.

> imeile
Seva: 10.10.10.5 Aterese: 10.10.10.5 # 53 Karabo e se nang matla: mail.mordor.fan canonical name = blackelf.mordor.fan. Lebitso: blackelf.mordor.fan Aterese: 10.10.10.9> exit

buzz @ sysadmin: ~ $

Ha re shebeng lintlha tse latelang ka hloko:

  • dns.mordor.fan e araba lipotso tsa DNS ka kotloloho tseo e ka li rarollang ho latela litlhophiso tsa hajoale tsa Dnsmasq. Haeba u sa khone ho li rarolla, e sebetsa joalo ka Tsamaiso mme o botsa IP 10.10.10.3 haeba e ka araba potso eo. Ha o botsoa IP ea lisebelisoa «dns«, O araba ka kotloloho. Ha Dnsmasq e botsoa hore na ke mang «sauron",?, na fetisetsa ho ea 10.10.10.3 Ha o khone ho araba ka kotloloho hobane ha u so e ngolise- ea khutlisetsang karabo e nepahetseng eo e seng ea matla.
  • Ha a botsoa hore na ke mang «03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan"?, na fetisetsa hape 'me lekhetlong lena o fumana Karabo e Laoloang ke Microsoft® DNS.
  • Lebelo le phahameng la karabelo ea Dnsmasq bakeng sa mofuta ofe kapa ofe oa lipotso.

Ke lintlha tse nyane tse etsang hore lerato le be leholo ;-).

Liphapang tsa mantlha lipakeng tsa Dnsmasq le BIND li kopantsoe le Active Directory®

Ha re tsamaiseng lipotso tse 'maloa tsa DNS litlalehong SOA y NS ea domain motlatsi, ho e 'ngoe le e' ngoe ea mabitso a amehang:

buzz @ sysadmin: ~ $ host -t SOA mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: 
mordor.fan e na le rekoto ea SOA sauron.mordor.fan. motsamaisi.mordor.fan. 56 900 600 86400 3600 XNUMX

buzz @ sysadmin: ~ $ host -t SOA mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: 
mordor.fan e na le rekoto ea SOA sauron.mordor.fan. motsamaisi.mordor.fan. 56 900 600 86400 3600 XNUMX

buzz @ sysadmin: ~ $ moamoheli -t NS mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: 
mordor.fan lebitso la sauron.mordor.fan.

buzz @ sysadmin: ~ $ moamoheli -t NS mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: 
mordor.fan lebitso la sauron.mordor.fan.

Likarabo lia ts'oana - e leng tse utloahalang - hobane kamehla ho araba sauron.mordor.fan. pele ho potso ea DNS mabapi le lirekoto SOA o NSle hoja bonahala o araba eng dns.mordor.fan. Leha ho le joalo e fapane le se bonoang sengoloeng TLAMA le Directory e sebetsang® moo re neng re tlositse ts'ebetso ea Microsoft® DNS ka botlalo. Sehloohong seo lipotso tsohle tsa DNS mabapi le Domino Namespace motlatsi TLHOKOMELISO e ba arabile, hobane re e hlophisitse ka tsela eo, le hobane BOTSOANG bo araba lipotso SOA y NS ntle le ho lumella morero Monghali - LekhobaHo fetisoa ha libaka, jj. Ka hona ke seva e felletseng ea DNS - e thata.

Mohlomong tsena ke liphapang tse kholo lipakeng tsa DNS ea Dnsmasq le BIND ... empa TLAMA- ho ka lula ho e-na le ntho e le 'ngoe kapa tse ling tse ngata- ha e na seva ea DHCP e hokahanang hantle le seva ea DNS ka mokhoa o le mong lerato, mme ntle le tlhoko ea linotlolo tsa TSIG, lifaele tsa phetolo, database tsa Zone, jj, joalo ka ha re bone lingoliloeng tse fetileng.

  • Ke nahana hore hajoale, Babali ba Ratehang ba tla be ba hlokometse hore ha ke hloee HO TLAMA kapa ho khetha Dnsmasq ho feta Binding. Lipuisano tsa nakong e tlang ka eona ke tšenyo ea nako e felletseng, hobane e amana haholo le litlhoko, litlhoko, litakatso, likhetho le .... tharollo ka 'ngoe e na le botle ba eona ;-).
  • Maemong a ts'oanang, e-re motho e mong le e mong a kenye le ho hlophisa software eo ba e ratang le eo ba tsebang haholoanyane ka eona. le hore tsohle li sebetsa kamoo ho lebelletsoeng.

Melemo ea motswako Dnsmasq + Active Directory®

Ka kopanelo ena re na le likarabo tse felletseng tsa lipotso tsa DNS le mokhoa o sebetsang oa ho hira liaterese tsa IP bakeng sa SME LAN ea rona. Joalokaha re tla bona hamorao, e sebetsa hantle bakeng sa boemo bofe kapa bofe mabapi le hore na komporo e hokahane le Microsoft® Active Directory® Domain Controller kapa che. Ntle le moo, re na le seva ea DNS le DNS Tsamaiso par bokhabane, hammoho le seva ea DHCP e potlakileng haholo. Le bohle ba nang le tlhoko e nyane ea lisebelisoa. O batla tse ling?

Na ho ka etsahala Dnsmasq + BIND?

Ka sebele ho joalo. Le ha ke khothaletsa hore li kenngoe likhomphutha tse fapaneng hore ho se ke ha ba le ho thulana ka lebaka la boema-kepe bo ratoang haholo ba 53 ba ts'ebeletso ea DNS. Mohlomong 'me re tla bona ho hong ka eona ha re fihla Samba 4-based AD-DC. Ke mang ea tsebang?

Malebela ka Dnamasq

  • Lifaele tsa bohlokoa tsa mosebetsi bakeng sa Dnsmasq ho fana ka lits'ebeletso tsa DHCP le DNS ho LAN ke: /etc/dnsmasq.conf, / joalo / mabotho, /var/lib/misc/dnsmasq.leasesle /etc/resolv.conf. Faele dnsmasq.lease e thehiloe ha o hira aterese ea hau ea pele ea IP.
  • Faele e 'ngoe ea mosebetsi eo u ka e sebelisang ke / joalo-joalo / ethers. Haeba faele e joalo e teng, taelo li-ether e phatlalalitsoeng faeleng ea config, e bolella Dnsmasq hore e e bale. E bohlokoa haholo ha re pheta Liaterese tsa MAC / mabitso a baeti ka sepheo se itseng.
  • Tšebeletso ea DNS e ka holofala ka botlalo ka ho sebelisa taelo sekepe = 0 ho dnsmasq.conf.
  • Tšebeletso ea DHCP bakeng sa marang-rang a le mong kapa a mang a marang-rang a ka holofatsoa ke litaelo - ngoe bakeng sa mola o mong le o mong- no-dhcp-interface = eth0, no-dhcp-interface = eth1, joalo joalo. E na le thuso haholo ha re le ka pela sehlopha se nang le li-interface tsa 2 -or more- network mme re batla hore ts'ebeletso ea DHCP e fanoe ke e mong oa bona kapa ke mang. Ehlile, haeba re tima ts'ebeletso ea DHCP bakeng sa likarolo tsohle, re tla tlohela tšebeletso ea DNS feela. Haeba re tima lits'ebeletso ka bobeli, hobaneng re hloka Dnsmasq? 😉
  • Ho tsebisa ho li-server tse ling tsa DNS Domain Name seo Che li phatlalatsoa kapa li kantle ho LAN - joalo ka ha e le taba ea Microsoft DNS- re e etsa ka taelo seva = / domain name / seva ea DNS IP sebakeng sa polokeho /etc/dnsmasq.conf. Mohlala: seva = / mordor.fan / 10.10.10.3.
  • Ho bolella Dnsmasq hore lipotso mabapi le libaka tsa lehae li arajoa feela ho tsoa faeleng / joalo / mabotho kapa ka DHCP ea hau, re tlameha ho eketsa taelo sebakeng sa lehae = / localnet / faeleng e ka sehloohong ea tlhophiso ea hau. Mohlala: sebakeng sa heno / / mordor.fan /.
  • Ho hlophisa faele hantle /etc/resolv.conf - rarolla Re khothaletsa ho bala buka ea eona ea matsoho u sebelisa taelo motho resolutionv.conf. Haeba u kenya Debian 8.6 "Jessie" u tla fumana hore e ngotsoe hantle ka Sepanishe.
  • Dnsmasq ha e sebelise lifaele tsa Zones ho araba lipotso tse otlolohileng kapa tse fapaneng.
  • Ho tseba moelelo oa tšimo ka ngoe «e khethehileng»Seo se sebelisoa phatlalatsong ea SRV Resource Record, o lokela ho botsa TLAMA le Active Directory®. Phetolelo ea litlaleho tsa SRV faeleng /etc/dnsmasq.conf E ka tsela e latelang:
    moamoheli = , , , ,

Babali ba batlang ho tseba haholoanyane, ka kopo bala file ea mantlha ka hloko /etc/dnsmasq.conf kapa litokomane tse teng bukaneng / usr / share / doc / dnsmasq-base.

motso @ dns: ~ # ls -l / usr / share / doc / dnsmasq-base /
Kakaretso ea 128 -rw-r-r-- 1 motso motso 883 Mots'eanong 5 2015 copyright -rw-r - r-- 1 motso motso 36261 5 Mots'eanong 2015 1 changelog.archive.gz -rw-r - r-- 11297 motso 5 Mots'eanong 2015 1 changelog.Debian.gz -rw-r - r-- 26014 motso oa 5 Mots'eanong 2015 1 changelog.gz -rw-r - r-- 2084 motso oa motso 5 Mots'eanong 2015 1 DBus-interface. Gz -rw- r - r-- 4297 motso motso 5 Mots'eanong 2015 2 doc.html drwxr-xr-x 4096 motso motso 19 Feb 17 52:1 mehlala -rw-r - r-- 9721 motso motso 5 Mots'eanong 2015 1 FAQ.gz -rw -r-r-- 4180 motso motso 5 Mots'eanong 2015 1 README.Debian -rw-r-r-- 12019 motso motso 5 Mots'eanong oa 2015 XNUMX setup.html

Ha re hlophiseng Dnsmasq le Resolver

Re tla nka e le tataiso ea pele - ho fetola mabitso le ba bang, ehlile - file ea tlhophiso e sebelisitsoeng sengoloeng «Dnsmasq ho CentOS 7.3".

A re se keng ra lebala mohato o latelang:

[motso @ dns ~] # mv /etc/dnsmasq.conf /etc/dnsmasq.conf.original

Liaterese tsa IP tse sa fetoheng

Liaterese tsa li-server kapa lisebelisoa tse hlokang IP e tsitsitseng - ka bobeli IPv4 e le IPv6- li phatlalalitsoe faeleng / joalo / mabotho:

[motso @ dns ~] # nano / jj / mabotho
. 127.0.0.1 sysadmin.mordor.fan 6 sauron.mordor.fan 1 mamba.mordor.fan 6 dns.mordor.fan 6 darklord.mordor.fan 02 troll.mordor.fan 1. 6 shadowftp.mordor.fan 02 blackelf.mordor.fan 2 blackspider.mordor.fan 6 palantir.mordor.fan

Ha re thehe file ea /etc/dnsmasq.conf

[motso @ dns ~] # nano /etc/dnsmasq.conf
# ----------------------------------------------------- ------------------ # DIKGETHO TSA KAKARETSO # ---------------------------- - -------------------------------------- domain-hlokahala # Se ke oa fetisa mabitso ntle le domain part bogus-priv # Se ke oa fetisa liaterese sebakeng se se nang sebaka sa ho atolosa libaka tsa mabotho # Eketsa domain ho iketsa interface = eth0 # Interface.  HLOKOMELA Interface # except-interface = eth1 # SE KE oa mamela taelo ena e tiileng ea NIC # Order eo u ka kopang file ea /etc/resolv.conf # Kenyelletsa likhetho tse ling tse ngata tsa phetolo # ka faele kapa ka ho fumana sebopeho # lifaele tse ling tse fumanehang bukaneng # conf-file = / etc / dnsmasq.more.conf conf-dir = / etc / dnsmasq.d # E amanang le Domain Name domain = mordor.fan # Domain Name # Time Server ke 10.10.10.1. 10.10.10.1 address = / time.windows.com / XNUMX # E romela khetho e se nang letho ea boleng ba WPAD.  E hlokahala ho # Windos 7 le hamorao bareki ho itšoara hantle.  ;-) dhcp-option = 252, "\ n" # Faele moo re tla phatlalatsa LIHOSO tse tla "thibeloa" addn-hosts = / jj / banner_add_hosts # Buisana le Microsoft® DNS seva "sauron" haeba re # e lumella run server = / mordor.fan / 10.10.10.3 # Lipotso tse mabapi le libaka tsa lehae li tla arajoa # ho tloha / joalo-joalo / mabotho kapa ka DHCP ea lehae / / mordor.fan / # dns "le" sauron "ka tatellano eo seva = / 10.10.10.in-addr.arpa / 10.10.10.5 server = / 10.10.10.in-addr.arpa / 10.10.10.3 # ------- - ------------------------------------------------- --------- # REGISTROSCNAMEMXTXT # ------------------------------- --------- 10.10.0.7 troll.mordor.fan troll # cname = ALIAS, REAL_NAME cname = ad-dc.mordor.fan, sauron.mordor.fan cname = fileserver.mordor.fan, mamba.mordor.fan cname = proxyweb.mordor.fan, lefifi .mordor.fan cname = blog.mordor .fan, troll.mordor.fan cname = ftpserver.mordor.fan, shadowftp.mordor.fan cname = mail.mordor.fan, blackelf.mordor.fan cname = www.mordor.fan, blackspider.mordor.fan lebitso = opendire .mordor.fan, palantir.mordor.fan # MX RECORDS # Returns a MX record with the name "mordor.fan" destined # for the blackelf.mordor.fan team and priority of 10 mx-host = mordor.fan, mail. mordor.fan, 10 # Sebaka sa mantlha sa ho rekota MX se entsoeng # ho sebelisoa khetho ea localmx e tla ba: TXT litlaleho. 

dhcp-lease-max = 222 # Boholo ba liaterese tsa ho hira
                        # ka ho sa feleng ke 150
# IPV6 Range # dhcp-range = 1234 ::, ra-feela # Likhetho tsa RANGE # OPTIONS dhcp-option = 1,255.255.255.0 # NETMASK dhcp-option = 3,10.10.10.253 # ROUTER GATEWAY dhcp-option = 6,10.10.10.5. 15 # Basebeletsi ba DNS dhcp-option = 19,1, mordor.fan # DNS Lebitso la Domain dhcp-option = 28,10.10.10.255 # khetho ip-fetisetsa ON dhcp-option = 42,10.10.10.1 # BROADCAST dhcp-option = 40. 41,10.10.10.3 # NTP # dhcp-option = 44,10.10.10.3, MORDOR # NIS Lebitso la Domain # dhcp-option = 45,10.10.10.3 # NIS Server # dhcp-option = 73,10.10.10.3 # WINS # dhcp-option = 46,8 # Litaba tsa NetBIOS # dhcp-option = XNUMX # Seva ea Meno # dhcp-option = XNUMX # NetBIOS node dhcp-e nang le matla # Authoritative DHCP ho subnet # ------------- - ------------------------------------------------- --- # ----------------------------------------------- --------------------- # HO KENYA mohatla -f / var / log / syslog kapa journalctl -f # -------------- ------------------------------------------------- ---- lipotso tsa ho kena-kenana # ----------- ------------------------- # Re A le litlaleho tsa SRV tse tsamaellanang le Directory Directory # --------------------------------------------- --------------------------
# Litlaleho A
address = / gc._msdcs.mordor.fan / 10.10.10.3 aterese = / DomainDnsZones.mordor.fan / 10.10.10.3 address = / ForestDnsZones.mordor.fan / 10.10.10.3

Rekoto ea # CNAME ea Microsoft DNS Zone _msdcs.mordor.fan
cname=03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan,sauron.mordor.fan

Lirekoto tsa # SRV
# moamoheli = , , , ,

# Khatiso ea Lefatše # Microsoft DNS libaka _msdcs.mordor.fan
srv-host = _ldap._tcp.gc._msdcs.mordor.fan, saur.mordor.fan, 3268,0,0 srv-host = _ldap._tcp.Default-Pele-Pele-Site-Lebitso._sites.gc._msdcs.mordor .fan, saure.mordor.fan, 3268,0,0
# Mordor.fan ea libaka tsa Microsoft DNS
srv-host = _gc._tcp.mordor. .3268,0,0

# LDAP e fetotsoeng le ea lekunutu ea Directory e sebetsang
# Sebaka sa Microsoft DNS _msdcs.mordor.fan
srv-host=_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.dc._msdcs.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.18d3360d-8fdb-40cf-a678-d7c420b6d775.domains._msdcs.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.pdc._msdcs.mordor.fan,sauron.mordor.fan,389,0,0
# Microsoft DNS libaka tsa mordor.fan
srv-host=_ldap._tcp.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.DomainDnsZones.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.Default-First-Site-Name._sites.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.mordor.fan,sauron.mordor.fan,389,0,0
srv-host=_ldap._tcp.ForestDnsZones.mordor.fan,sauron.mordor.fan,389,0,0

#
# KERBEROS e fetotsoe ebile e le lekunutu ho tsoa ho Sisteme e sebetsang
srv-host=_kerberos._tcp.Default-First-Site-Name._sites.mordor.fan,sauron.mordor.fan,88,0,0
srv-host=_kerberos._tcp.mordor.fan,sauron.mordor.fan,88,0,0
srv-host=_kpasswd._tcp.mordor.fan,sauron.mordor.fan,464,0,0
srv-host=_kerberos._udp.mordor.fan,sauron.mordor.fan,88,0,0
srv-host=_kpasswd._udp.mordor.fan,sauron.mordor.fan,464,0,0

# BOFELO ba file ea /etc/dnsmasq.conf
# ----------------------------------------------------- ------------------

Ha re theheng file ea / etc / banner_add_host

[motso @ dns ~] # nano / jj /banner_add_hosts
127.0.0.1 windowsupdate.com 127.0.0.1 ctldl.windowsupdate.com 127.0.0.1 ocsp.verisign.com 127.0.0.1 csc3-2010-crl.verisign.com 127.0.0.1 www.msftncsi.com 127.0.0.1 ipv6.msftncsi.com 127.0.0.1 teredo.ipv6.microsoft.com 127.0.0.1 ds.download.windowsupdate.com 127.0.0.1 download.microsoft.com 127.0.0.1 fe2.update.microsoft.com 127.0.0.1 crl.microsoft.com 127.0.0.1 www .download.windowsupdate.com 127.0.0.1 win8.ipv6.microsoft.com 127.0.0.1 spynet.microsoft.com 127.0.0.1 spynet1.microsoft.com 127.0.0.1 spynet2.microsoft.com 127.0.0.1 spynet3.microsoft.com 127.0.0.1. 4 spynet127.0.0.1.microsoft.com 5 spynet127.0.0.1.microsoft.com 15 office127.0.0.1client.microsoft.com 127.0.0.1 addons.mozilla.org XNUMX crl.verisign.com

[root @ dns ~] # dnsmasq - tlhahlobo
dnsmasq: tlhahlobo ea syntax e lokile.

[root @ dns ~] # systemctl qala hape dnsmasq.service 
[motso @ dns ~] # systemctl boemo ba dnsmasq.service

Ha re fetoleng faele /etc/resolv.conf - Resolver

motso @ dns: ~ # nano /etc/resolv.conf 
domain name ho.fan search ho ho.fan

Hobaneng ha re se na mela e tloaelehileng e phatlalalitsoeng faeleng rarolla? Hobane re phatlalatsa ho dnsmasq.conf litaelo tse latelang:

# Buisana le Microsoft® DNS seva "sauron" haeba re # e lumella hore e sebetse
seva = / mordor.fan / 10.10.10.3

Lipotso tse mabapi le libaka tsa lehae li tla arajoa # ho tsoa ho / jj / mabotho kapa ka DHCP
sebakeng sa heno / / mordor.fan /

Lipotso tse mabapi le PTR kapa Reverse rekoto li tla arajoa # ke "dns" le "sauron" server ka tatellano eo
seva = / 10.10.10.in-addr.arpa / 10.10.10.5 seva = / 10.10.10.in-addr.arpa / 10.10.10.3

Lipotso tse tsoang sysadmin.mordor.fan

Faele /etc/resolv.conf ea sehlopha sena ke:

buzz @ sysadmin: ~ $ katse /etc/resolv.conf
# E hlahisitsoe ke NetworkManager search mordor.fan nameserver 10.10.10.5
buzz @ sysadmin: ~ $ host -t Ho spynet4.microsoft.com
spynet4.microsoft.com e na le aterese 127.0.0.1

buzz @ sysadmin: ~ $ host -t Ho www.download.windowsupdate.com
www.download.windowsupdate.com e na le aterese 127.0.0.1

Buzz@sysadmin: ~ $ cheka dns
buzz @ sysadmin: ~ $ cheka dns.mordor.fan
;; KAROLO EA POTSO :; dns.mordor.fan. HO A ;; KAROLO EA KARABO: dns.mordor.fan. 0 KA A 10.10.10.5

buzz @ sysadmin: ~ $ moamoheli -t SRV _ldap._tcp.gc._msdcs
buzz @ sysadmin: ~ $ moamoheli -t SRV _ldap._tcp.gc._msdcs.mordor.fan
_ldap._tcp.gc._msdcs.mordor.fan e na le rekoto ea SRV 0 0 3268 sauron.mordor.fan.

buzz @ sysadmin: ~ $ cheka _ldap._tcp.gc._msdcs.mordor.fan
;; KAROLO EA POTSO :; _ldap._tcp.gc._msdcs.mordor.fan. HO A ;; KAROLO EA KARABO: _ldap._tcp.gc._msdcs.mordor.fan. 0 KA A 10.10.10.3

buzz @ sysadmin: ~ $ cheka mordor.fan axfr
buzz @ sysadmin: ~ $ cheka 10.10.10.in-addr.arpa axfr

Mme ka tsela eo, re hloka lipuisano tse kae

Dnsmasq + Active Directory® + Microsoft® Windows Bareki

E nchafatsa Microsoft® Windows Client

supa.mordor.fan aterese ea IP e hiriloeng:

motso @ dns: ~ # katse /var/lib/misc/dnsmasq.leases 
1488006009 00:0c:29:d6:14:36 10.10.10.115 seven 01:00:0c:29:d6:14:36

Ha re rehe lebitso la «Supa»-Se sa kopantsoeng le Directory Directory Domain- ke«eucalyptus«. Kamora phetoho le ho qala bocha re hlahloba:

motso @ dns: ~ # katse /var/lib/misc/dnsmasq.leases 
1488006633 00:0c:29:d6:14:36 10.10.10.115 eucaliptus 01:00:0c:29:d6:14:36

Nalane ea liphetoho e ka bonoa ho tsoa "sysadmin":

buzz @ sysadmin: ~ $ host -t A tse supileng
seven.mordor.fan e na le aterese ea 10.10.10.115

Kamora hore lebitso le fetohe

buzz @ sysadmin: ~ $ host -t A tse supileng
ba supileng ha ba na rekoto ea A

buzz @ sysadmin: ~ $ host -t Eucaliptus
eucaliptus.mordor.fan e na le aterese 10.10.10.115

Lipotso tse tsoang ho moreki eucaliptus.mordor.fan

Microsoft Windows [Mofuta oa 6.1.7601]
Tokelo ea Copyright (c) 2009 Microsoft Corporation. Litokelo tsohle li sirelelitsoe.

C: \ Basebelisi \ buzz> nslookup
Sesebelisoa sa kamehla: dns.mordor.fan Aterese: 10.10.10.5

> sauron
Seva: dns.mordor.fan Aterese: 10.10.10.5 Lebitso: sauron.mordor.fan Aterese: 10.10.10.3

> mordor.fan
Seva: dns.mordor.fan Aterese: 10.10.10.5 Lebitso: mordor.fan Aterese: 10.10.10.3

> Eucalyptus
Seva: dns.mordor.fan Aterese: 10.10.10.5 Lebitso: eucaliptus.mordor.fan Aterese: 10.10.10.115

> 03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan
Server: dns.mordor.fan Aterese: 10.10.10.5 Lebitso: sauron.mordor.fan Aterese: 10.10.10.3 Aliases: 03296249-82a1-49aa-a4f0-28900f5d256b._msdcs.mordor.fan

> seta mofuta = SRV
> _
Seva: dns.mordor.fan Aterese: 10.10.10.5 _kerberos._udp.mordor.fan Sebaka sa ts'ebeletso sa SRV: pele = 0 weight = 0 port = 88 svr hostname = sauron.mordor.fan sauron.mordor.fan aterese ea inthanete = 10.10.10.3. XNUMX

> _ldap._tcp.18d3360d-8fdb-40cf-a678-d7c420b6d775.domains._msdcs.mordor.fan
Seva: dns.mordor.fan Aterese: 10.10.10.5 _ldap._tcp.18d3360d-8fdb-40cf-a678-d7c420b6d775.domains._msdcs.mordor.fan Sebaka sa ts'ebeletso sa SRV: pele = 0 weight = 0 port = 389 svr hostname = sauron .mordor.fan sauron.mordor.fan inthanete aterese = 10.10.10.3

> tsoa

C: \ Basebelisi \ buzz>

Ngoliso ea bareki ba Windows ho Microsoft® DNS

Bareki ba Windows ha ba ea ikopanya le Active Directory® Domain

Re tlameha ho lekola hore na liaterese tsa IP tse hirisitsoeng ke bareki ba fapaneng ba Windows ba tsoang Dnsmasq li ngolisitsoe ka nepo ho Microsoft® DNS. E ka susumetsa tsela eo re bulelang Lintlafatso tsa Matla - Lintlafatso tse matla Libakeng tsa Microsoft® DNS tsa Active Directory®. Re qala ho tloha tlhophisong ea kamehla ea Microsoft DNS e lumellang feela Sireletseho ea Matla a Sireletsehileng - Lintlafatso tse matla -> Li sireletsehile feela, Sebakeng ka seng sa eona.

Hlokomela hore moreki ea nang le hona joale FQDN eucalyptus.mordor.fan Che e khomaretse Active Directory Domain (kapa Samba4 AD-DC), 'me ke khethollo ho molao oa Microsoft oa hore «Ke bareki feela ba ngolisitsoeng ho My Domain ba tla ba le tumello ka My Update Mechanism - eo ke e tsebang feela ho ingolisa ho My DNS«. Ka lehlohonolo Samba4 AD-DC e re ruta ho hong ka eona.

eucalyptus.mordor.fan e hiriloe IP 10.10.10.115:

buzz @ sysadmin: ~ $ host -t Eucaliptus
eucaliptus.mordor.fan e na le aterese 10.10.10.115

Ha re fetoleleng mabitso ho «mahogany«, Ha re qalelle Windows 7, 'me re bone hore na ho etsahalang ha re kopa mabitso«eucalyptus»Le«mahogany»Ho e 'ngoe le e' ngoe ea DNS, pele ho Microsoft DNS ebe ho Dnsmasq:

buzz @ sysadmin: ~ $ host -t Eucaliptus.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: 

Host eucaliptus.mordor.fan ha e fumanehe: 3 (NXDOMAIN)

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: 

Host mahogany.mordor.fan ha e fumanehe: 3 (NXDOMAIN)

buzz @ sysadmin: ~ $ host -t Eucaliptus.mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: 

Host eucaliptus.mordor.fan ha e fumanehe: 3 (NXDOMAIN)

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: 

mahogany.mordor.fan e na le aterese 10.10.10.115

Re ka fetola lebitso la mofani oa Windows 7 eo Che e khomaretse Domain motlatsi ea Active Directory® makhetlo a mangata kamoo re batlang, hore Microsoft® DNS e se ke ea tseba ka liphetoho tsena kapa hore moreki ea joalo o teng. Na ho ka etsahala hore ebe ke hobane feela re khethile khetho  Lintlafatso tse matla -> Li sireletsehile feela Sebakeng ka seng sa Micorosft DNS?.

E le hore Monghali Microsoft® DNS a tsebe ka liphetoho, re tlameha ho khetha Lintlafatso tse matla -> Ho hloka molato le ho sireletseha. Khetho ena, Babali ba Ratehang, e fana ka maikutlo a ts'oaetso e kholo ea ts'ireletso ea Lebitso lefe kapa lefe la Lebitso la Domain le hlomphuoang, ekaba Microsft® kapa UNIX® / Linux. Microsoft® DNS e lemosa ka ts'oaetso hobane qetellong ha se letho ntle le TLHOKOMELISO e ntlafalitsoeng le e ikemetseng ho re fa «Ts'ireletso bakeng sa Lefifi«. Haeba ho se joalo, hobaneng u khothaletsa ho boloka ho tummeng ngodiso Litlhophiso tsohle tsa DNS tsa Microsoft® DNS le lirekoto tsa hau ha re ntse re kenya tšebetsong Active Directory®?. Ntle le ho ts'ehetsa lintlafatso tse sa sireletsehang ho Microsoft® DNS, ho hlokahala phetoho e latelang ho phetolo ea karete ea netweke ea moreki ea Windows 7:

 

Ha re hlahlobe:

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Mabitso: caoba.mordor.fan e na le aterese 10.10.10.115

buzz @ sysadmin: ~ $ moamoheli 10.10.10.115 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: 115.10.10.10.in-addr.arpa domain name pointer mahogany.mordor.fan.

buzz @ sysadmin: ~ $ host -t A mahogany 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Mabitso: caoba.mordor.fan e na le aterese 10.10.10.115

buzz @ sysadmin: ~ $ moamoheli 10.10.10.115 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: 115.10.10.10.in-addr.arpa domain name pointer mahogany.mordor.fan.

E joale. Ke khokahano e ntle hakaakang bakeng sa li-server tse peli tsa DNS tse sa lumellaneng ka tsela efe kapa efe!

Bareki ba Windows ba Ikopantse le Active Directory® Domain

Ha re kopantseng moreki mahogany.mordor.fan ho Domain, empa eseng pele o tlosa phetoho eo re e entseng phetisong ea karete ea hau ea marang-rang, haeba ka nako e 'ngoe re e entse ho lekola ntlha ea khaolo e fetileng. Tlosa hape kenyelletso ea «mahogany»Ho Microsoft® DNS, 'me u khutlisetse li-Updates tsa Dynamic ntlheng eo li tsoang ho eona «Ho sireletseha feela«. Ka tsela eo, ho nepahetse ho qala bocha ts'ebeletso ea Microsoft® DNS.

Kamora ho kenella ho Domain, mme leha o entse boiteko bohle, moreki «mahogany»Ha e ea ngolisoa ho Microsoft® DNS. Re bile ra phatlalatsa ho dnsmasq.conf ea nakoana- hore seva ea pele ea DNS ke 10.10.10.3.

Microsoft Windows [Mofuta oa 6.1.7601]
Tokelo ea Copyright (c) 2009 Microsoft Corporation. Litokelo tsohle li sirelelitsoe.

C: Basebelisi sumanuman> ipconfig / all

Windows IP Configuration Host Lebitso. . . . . . . . . . . . : MAHOGANY Mathomo a Sehlomathiso sa Dns. . . . . . . : mordor.fan Mofuta oa Node. . . . . . . . . . . . : Tsela ea Hybrid IP e nolofalitsoe. . . . . . . . : Ha ho projeke ea WINS e nolofalitsoeng. . . . . . . . : Ha ho Lethathamo la Patlo ea Suffix ea DNS. . . . . . : adapter ea mordor.fan Ethernet Khokahano ea Sebaka sa Lehae: Khokahanyo e ikhethileng ea DNS. : mordor.fan Tlhaloso. . . . . . . . . . . : Intel (R) PRO / 1000 MT Network Connection Aterese ea Sebaka. . . . . . . . . : 00-0C-29-D6-14-36 DHCP e nolofalitsoe. . . . . . . . . . . : Ee Autoconfiguration Enabled. . . . : Ee Aterese ea IPv6 ea lehae. . . . . : fe80 :: 352a: b954: 7eba: 963e% 12 (E khethiloeng) Aterese ea IPv4. . . . . . . . . . . : 10.10.10.115 (E khethiloeng) Subnet Mask. . . . . . . . . . . : 255.255.255.0 Khiro e Fumanehile. . . . . . . . . . : Moqebelo oa la 25 Hlakola, 2017 8:19:05 AM Ho hira hoa Fela. . . . . . . . . . : Moqebelo oa la 25 Hlakola, 2017 4:20:36 PM Default Gateway. . . . . . . . . : 10.10.10.253 Server ea DHCP. . . . . . . . . . . : 10.10.10.5 DHCPv6 IAID. . . . . . . . . . . : 251661353 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-3B-69-81-00-0C-29-D6-14-36

   Li-server tsa DNS. . . . . . . . . . . : 10.10.10.3
                                       10.10.10.5
   NetBIOS ka Tcpip. . . . . . . . : Adapter ea Tunnel e nolofalitsoeng isatap.mordor.fan: Media State. . . . . . . . . . . : Phatlalatso e ikhethileng ea "Media Suffix" e amanang le media. : mordor.fan Tlhaloso. . . . . . . . . . . : Adapter ea Sebaka sa Microsoft ISATAP. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP E nolofalitsoe. . . . . . . . . . . : Ha ho nolofatso ea Autoconization e nolofalitsoeng. . . . : Yes adapter ea Tunnel Khokahano ea Sebaka sa Lehae * 9: Media State. . . . . . . . . . . : Phatlalatso e ikhethileng ea "Media Suffix" e amanang le media. : Tlhaloso. . . . . . . . . . . : Adapter ea Tunnel ea Microsoft Teredo Aterese. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP E nolofalitsoe. . . . . . . . . . . : Ha ho nolofatso ea Autoconization e nolofalitsoeng. . . . : Mme ho jwalo

C: \ saruman>

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: Host caoba.mordor.fan ha e fumanoe: 3 (NXDOMAIN)

Buzz@sysadmin: ~ $ host -t Ho mahogany.mordor.fan
mahogany.mordor.fan e na le aterese 10.10.10.115
  • Tsela feela eo moreki a ngolisitsoeng ho eona «mahogany»Ho Microsft® DNS e ntse e fetola karete ea hau ea marang-rang joalokaha ho bontšitsoeó setšoantšong se fetileng, ke hore, e hlakisa hore: sehlomathiso sa DNS bakeng sa khokahano ke mordor.fan, hore e ngolisa aterese ea khokahano ho DNS, le hore e sebelisa sehlomathiso sa DNS se tsebahalang ha e ngolisa khokahano..
buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Mabitso: caoba.mordor.fan e na le aterese 10.10.10.115

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan
mahogany.mordor.fan e na le aterese 10.10.10.115
Ha re fetoleng lebitso ho tloha "mahogany" ho "cedar"
buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Likhetho: Host caoba.mordor.fan ha e fumanoe: 3 (NXDOMAIN)

buzz @ sysadmin: ~ $ host -t Ho cedar.mordor.fan 10.10.10.3
U sebelisa domain domain: Lebitso: 10.10.10.3 Aterese: 10.10.10.3 # 53 Mabitso: cedro.mordor.fan e na le aterese 10.10.10.115

buzz @ sysadmin: ~ $ host -t A mahogany.mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Likhetho: Host caoba.mordor.fan ha e fumanoe: 3 (NXDOMAIN)

buzz @ sysadmin: ~ $ host -t Ho cedar.mordor.fan 10.10.10.5
U sebelisa domain domain: Lebitso: 10.10.10.5 Aterese: 10.10.10.5 # 53 Mabitso: cedro.mordor.fan e na le aterese 10.10.10.115

Le tsohle tse tloaelehileng, joalo ka bareki ba Microsoft® le Microsoft® DNS joalo ka lintho tse lokelang ho ba.

Ha re sebetseng le Microsoft® DHCP le Microsoft® DNS

Babali ba Ratehang, khaolo ena ha e tsoane le moelelo oa blog e nehetsoeng ho Free Software. Sheba thuso ea Microsoft®. Ha ba lumele?. 😉

CONCLUSIONS

Ho na le mekhoa e mengata ea ho sebetsa Microsoft® DNS ha re e etsa hore e phelisane ka har'a SME Network le Dnsmasq. Har'a bona re tla bua feela ka tse latelang:

  • Emisa ka botlalo tšebeletso ea Microsoft® DNS khomphuteng moo e sebetsang teng, ho bontša kamora moo hore qalo ea ts'ebeletso e holofetse. Lekola phetolo ea karete ea marang-rang ea moreki e mong le e mong oa Microsoft® khetho ea ho ingolisa aterese ea khokahano ho DNS. Tlosa faeleng /etc/dnsmasq.conf Tataiso seva = / mordor.fan / 10.10.10.3. Lintlha:
    • Leha lipotso tse mabapi le lirekoto ha li arajoe SOA y NS, marangrang a tla sebetsa ka nepo, hammoho le kopano ea bareki ba fapaneng - Microsoft® le Linux- ho Active Directory® Domain.
    • Ho na le monyetla oa hore ho SME LAN ho tla ba le lebitso le le leng la Domain Name Server - e motona e motona - mme e tla ba Dnsmasq. ;-). Ka lehlakoreng le leng, monyetla oa ho se lumellane lipakeng tsa lirekoto tsa DNS tse bolokiloeng ho Microsoft® DNS le tse fumanehang ka Dnsmasq oa felisoa.
  • Tlohela Microsoft® DNS e matha ho araba feela lipotso tsa DNS mabapi le lirekoto tsa SOA le NS. Hlokomelas:
    • Fetola phetoho ea karete ea marang-rang ea mofani e mong le e mong oa Windows, u sa hlahlobe khetho ea ho ngolisa aterese ea khokahanyo ho DNS.
    • Rea nahana hore tharollo ena ke tšenyo ea lisebelisoa.
  • Lokisa lits'ebeletso joalo ka ha re bone ho sengoloa sohle, se bonts'ang tharollo ho feta kamoo re ratang filosofi ea Microsoft® - eseng FreeBSD / Linux- Ok?.

Kakaretso

  • Tlhahiso ea Microsoft® DNS e koetsoe haholo. Ha e siee sebaka sa litharollo tse ling tse sa lumellaneng le filosofi ea eona ea hermetic.
  • Mme oa Tlhaho o re ruta hore re teng bokahohleng bo fapaneng. Ntho e tloaelehileng ke ho ba le LAN e tsoakaneng, e lebisang ho Free Software, hape e ruile bophelong le mefuta-futa.
  • Ho bonahala eka ho Microsoft®, bareki ba sa keneng le Philosophy ea Hae ke Balateli, ka hona ha baa lokela ho itšoenya ka ho ba nahanela.
  • Ho thata hakaakang ho sebetsa le Software ea Botho! Nka mpa ka qeta hanyane mosebetsi ke theha Free Software ebe ke lokoloha e le kannete, e mpe!

"Morero o Molemo ka ho Fetisisa oa 'Nete ke Tloaelo."


Litaba tsa sengoloa sena li latela melao-motheo ea rona ea melao ea boitšoaro ea bongoli. Ho tlaleha phoso tlanya mona.

Maikutlo a 11, siea ea hau

Siea maikutlo a hau

aterese ya hao ya imeile ke ke ho phatlalatswa.

*

*

  1. E ikarabella bakeng sa data: Miguel Ángel Gatón
  2. Morero oa data: Laola SPAM, tsamaiso ea maikutlo.
  3. Molao: Tumello ea hau
  4. Puisano ea data: Lintlha li ke ke tsa tsebisoa batho ba boraro ntle le ka tlamo ea molao.
  5. Polokelo ea data: Database e hapiloeng ke Occentus Networks (EU)
  6. Litokelo: Nako efe kapa efe o ka fokotsa, oa hlaphoheloa mme oa hlakola tlhaiso-leseling ea hau.

  1.   Zodiac Carburus a re

    Sengoloa se monate seo u se ngotseng, Federico!

  2.   Julio Leon a re

    Sengoloa se makatsang moratuoa oa ka. Kakaretso ke XD e ntle ka ho fetisisa
    Litekanyetso;

  3.   mokholutsoane a re

    Ha ke nahane hore ke bone tataiso e felletseng le e qaqileng ea sysadmin marang-rang (ka puo ea Sepanishe), mosebetsi oo u o etsang ho Networks bakeng sa li-SME ke ho rala.

    Le ha mosebetsi o le boima ebile o fihlella lintlha tseo e le taba ea lihora tse ngata, ke lumela hore o theha sebaka sa ts'upiso se tla sebelisoa joalo ka ha se tsejoa ke palo e kholo ea SysAdmin e nang le senotlolo ho tichere ea lingoliloeng tsa hau mesebetsi e mengata eo a tobanang le eona letsatsi le letsatsi.

    Ha e le dnsmasq le bukana e sebetsang, ke nahana hore ha ke so ka ka ba le monyetla oa ho sebetsa le tsona ka bobeli, empa ka laboratoring ea ka, bosieo ba moreki oa windows, tsohle li bonahala li lokile, 'me ha ho makatse ka mohato ona o motle oa mohato.

    Pholosa poleloana ea hau «Ho thata hakae ho sebetsa le Software ea Botho!. Nka mpa ka qeta hanyane mosebetsi ke hlophisa Free Software 'me ka lokoloha e le kannete, re e senye! » the humanization ea software ea mahala.

    Kea u lebohela FIco… Re fetela pele.

  4.   federico a re

    Zodiac: Mantsoe a hau ke tšusumetso ea ho lula u ngola. Se ke oa tsilatsila, lihora tse ngata tse ntle - ho hlokahala litheko ho ngola sengoloa se bonolo joalo ka sena.

    Julio León: Kea u lumelisa le uena, Julio ea ratehang. Rea ts'epa mme o tla tsoelapele le rona tseleng ea ho tseba ho se hokae ka Free Software.

    Lagarto: Matsatsi le lihora tse sebelisitsoeng li bohlokoa haholo ha ke bala litlhaloso tse kang tse leng posong ena. Ke moputso o motle ka ho fetisisa bakeng sa mosebetsi oa rona. Ke fetisitse sehokela sa sengolo ho Simon Kelley ka boeena mme o ne a le mosa ho nkaraba.

    Ke batla ho nka monyetla ka sebaka sena ho bolela hore tokollong ea DNS le DHCP re qala - ka leano - ho tloha mohahong ho ea bonolo. Dnsmasq ke tharollo e sebetsang bakeng sa li-network tsa SME, 'me ho bonolo haholo ho e sebelisa ho feta sehlopha sa BIND + Isc-Dhcp-Server. Taba ena e kanna ea utloahala e le botekgeniki ho babali ba bangata. Ka nako le tloaelo ba tla hlokomela hore ha ho joalo. Ke habohlokoa hore u ithute Melao-motheo ea Sesebelisoa sa Lisebelisoa, e leng sehlooho se ka kenyelletsang lingoloa tse 6 tse ngotsoeng ka lits'ebeletso tsa DNS le DHCP, re sa lebale NTP.

    Re thoholetsa bohle… Re fetela pele!

  5.   IWO a re

    Ke leboha Federico ka sengoloa se seng se setle se nang le makolopetso a makatsang le khopolo e pharalletseng ka Dnsmasq, sesebelisoa seo re seng re se bone se thusa haholo bakeng sa sysadmins.

    SEHOLO se seng le se seng se amanang le ho kenya faele ea hau ea phetolo /etc/dnsmasq.conf ea libaka tsa "_msdcs.mordor.fan" tsa Microsoft DNS ka lirekoto tsa eona tsa SRV tse sebelisang lits'ebeletso: _gc, _ldap, _kerberos le _kpasswd ka sepheo ke ho sebelisa Microsoft DNS ("server = / mordor.fan / 10.10.10.3" statement) ho tlatselletsa le Dnsmasq ("local = / mordor.fan /" statement) ho rarolla lipotso tsa DNS.

    MOHOLO hape ke mohlala o ntlafalitsoeng hore bakeng sa Microsoft DNS ho ngolisa bareki ba Windows ka liphetoho tsa IP ho LAN, o tlameha ho khetha ho hlophisong ea DNS, "Lintlafatso tsa Matla" joalo ka "Ho hloka molato le ho sireletseha" le hore na seo se bolela eng kotsing ea polokeho ea Server efe kapa efe ea Domain Name e hlomphuoang, ekaba Microsoft kapa UNIX / Linux. Ntle le ho hlokahala phetoho molemong oa karete ea marang-rang ea bareki ba Windows.
    Ha ho na letho leo ka poso e ngoe le e ngoe e ncha u phahamisang setopo! Re emetse ka cheseho lihlooho tse latelang!

    1.    federico a re

      Ke leboha haholo ka tlhahlobo le maikutlo a hau, IWO. Sengoliloeng se seng le se seng seo ke se phatlalatsang, ke lula ke emetse maikutlo a hau, kaha a tšehetsoa ke mosebetsi, tsebo le boits'oaro ba hau. Ke lebohela IWO. Re tla u bona sehloohong se latelang

  6.   sethoto a re

    Mosebetsi o motle haholo, joalo ka ha ho lula ho romelloa mahakoe ana a li-sysmine. Ke leboha sekete!

  7.   crespo88 a re

    Fa DNS ea Microsoft monyetla, ha ua e tlohella hore e hlahe. Ha re tsebe hore na o ntse a phela kapa o na le lihlong tse setseng. Sengoloa se babatsehang.

  8.   HO2Gi a re

    Lehakoe le joalo ka lona ha ho le leng, le bolokiloeng lipapatsong hore le ka botsoa. Sengoloa se babatsehang.

  9.   federico a re

    Ke leboha HO2Gi bakeng sa tekolo ea hau. Ke u khothaletsa - 'me ka kakaretso ho E MONG LE E MONG- etela https://blog.desdelinux.net/redes-computadoras-las-pymes-introduccion/. E ile ea hlophisoa hape ka index ea tsohle tse phatlalalitsoeng le lihlooho tse tla tšohloa. Lumelisang 'me u tsoele pele le rona.

  10.   Paul Andrew Flemmer a re

    Tokomane e ntle haholo joalo ka e fumanehang ka https://blog.desdelinux.net/bind-active-directory/
    Ke batla feela ho etsa tlhahiso, ka kopo e nke e le nyatso e hahang; Ho etsa mohlala oa phetolo, ho ka be ho bile betere haeba sebakeng sa ho sebelisa marang-rang a 10.10.10.0/24 e ne e sebelisitse e le ngoe moo block e ngoe le e ngoe e nang le linomoro tse fapaneng, joalo ka marang-rang a 192.168.1.0/24.
    Sena se tla e hlakisa lintlha tseo liaterese tsa marang-rang li kenang ho tsona, joalo ka ha o tlameha ho eketsa boleng ba mofuta ".in-addr.arpa"
    Kea le leboha ka ho arolelana tsebo e ngata ea boleng bo holimo.
    Mekhoa e metle.

bool('nete)