I-PowerDNS Recursor 4.6 isivele ikhishiwe futhi lezi yizindaba zayo

Darkcrizt

Imizuzu ye-4

I ukukhishwa kwenguqulo entsha ye-PowerDNS Recursor 4.6 lapho okunye ukuthuthukiswa, ukulungiswa kweziphazamisi kanye nezici ezintsha ikakhulukazi zenziwe, lapho i-Zone to cache igqama khona, isibonelo, kanye nekhono lokuthulula okufakiwe kwenqolobane, phakathi kwezinye izinto.

Kulabo abangajwayele i-PowerDNS, kufanele wazi ukuthi yilokhoobhekene nokuxazululwa kwegama okuphindwayo. Isikhombi se-PowerDNS kusekelwe kusisekelo sekhodi efanayo ne-PowerDNS Authoritative Server, kepha amaseva e-PowerDNS Recursive and Authoritative DNS aguquka ngemijikelezo ehlukene yentuthuko futhi akhishwa njengemikhiqizo ehlukile.

Iseva inikeza amathuluzi okuqoqwa kwezibalo okude, isekela ukuqalisa phansi okusheshayo, inenjini eyakhelwe ngaphakathi yokuxhuma abashayeli ngolimi lwesiLua, isekela ngokugcwele i-DNSSEC, i-DNS64, i-RPZ (izindawo zenqubomgomo yokuphendula), futhi inika amandla ukufakwa kuhlu emnyama.

Imiphumela yokulungiswa ingarekhodwa njengamafayela wendawo ye-BIND. Ukuqinisekisa ukusebenza okuphezulu, izindlela zesimanje zisetshenziselwa ukuxhumana okuphindaphindwayo ku-FreeBSD, Linux, ne-Solaris (i-kqueue, i-epoll, / dev / poll), kanye nokuhlaziya iphakethe le-DNS elisebenza kahle elikwazi ukucubungula amashumi ezinkulungwane zezicelo ezifanayo.

Izici ezintsha eziyinhloko ze-PowerDNS Recursor 4.6

Kule nguqulo entsha umsebenzi "Zone to cache", okuvumela ukuthi ubuyise ngezikhathi ezithile indawo ye-DNS bese ufaka okuqukethwe kuyo kunqolobane, pUkuze i-cache ihlale isesimweni "esishisayo". futhi iqukethe idatha ehlotshaniswa nendawo. Umsebenzi ungasetshenziswa nanoma yiluphi uhlobo lwezindawo, okuhlanganisa izindawo eziyimpande. Ukukhishwa kwendawo kungenziwa kusetshenziswa i-DNS AXFR, i-HTTP, i-HTTPS noma ukulayisha kusuka kufayela lendawo.

Okunye okusha okuvelele yilokho ungeze ukwesekwa kokubethela amakholi kumaseva e-DNS kusetshenziswa i-DoT (I-DNS nge-TLS). Ngokuzenzakalelayo, i-DoT inikwe amandla uma imbobo engu-853 icacisiwe yesidluliseli se-DNS noma uma amaseva e-DNS esohlwini ngokusobala ngepharamitha yamachashazi ukuya ku-auth-names.

Ukuqinisekiswa kwesitifiketi kusazokwenziwa, kanye nokushintshela ku-DoT ngokuzenzakalelayo lapho kusekelwa iseva ye-DNS (lezi zici zizonikwa amandla ngemva kokugunyazwa kwekomiti lokumisa).

Kubuye kuqhakanjiswe lokho ikhodi yokusungula ukuxhumana kwe-TCP ephumayo yabhalwa kabusha futhi wengeze amandla okusebenzisa kabusha ukuxhumana. Ukuze usebenzise kabusha uxhumo lwe-TCP (kanye ne-DoT), ukuxhumeka akusavaliwe ngokushesha ngemva kokuba isicelo sesicutshunguliwe, kodwa kushiywa kuvuliwe isikhashana (ukuziphatha kulawulwa ukulungiselelwa kwe-tcp-out-max-idle-ms ).

Of ezinye izinguquko lokhoezigqamayo:

  • Uhlu lwamamethrikhi aqoqiwe futhi athunyelwa ngaphandle lunwetshiwe ngezibalo kanye nolwazi lwezinhlelo zokuqapha.
  • Kunikezwe amandla okususa okufakiwe kwenqolobane lapho izicelo zezaziso ezingenayo zifika.
  • Isici sokulandelela umcimbi wokuhlola sengeziwe ukuze kunikezwe ulwazi oluningiliziwe ngesikhathi sokwenziwa kwesigaba ngasinye sokulungiswa.

Okokugcina, uma ufuna ukwazi okwengeziwe ngakho, ungabheka imininingwane yalokhu kukhishwa okusha ku isixhumanisi esilandelayo. 

Thola i-PowerDNS Recursor 4.6

Kulabo kini abanentshisekelo yokuthola i-PowerDNS Recursor 4.4, kufanele nazi ukuthi ikhodi yomthombo iyatholakala kwi-GitHub.

Ukuze uthole ikhodi, vele uvule ukuphela bese uthayipha umyalo olandelayo:

git clone https://github.com/PowerDNS/pdns.git

Leli khosombe liqukethe imithombo ye-PowerDNS Recursor, PowerDNS Authoritative Server, ne-dnsdist (enamandla i-DNS load balancer). Zontathu lezi zingakhiwa ngaleli khosombe.

Izinhlobo ezahlukahlukene zingakhiwa ngosizo lwe-pdns-builder, esebenzisa inqubo yokwakha esekwe ku-Docker. Ukuqala ngalokhu, sebenzisa le miyalo empandeni yale ndawo yokugcina:

git submodule init
git submodule update
./builder/build.sh

Endabeni yalabo abangabasebenzisi be-Ubuntu, bangenza ukwakhiwa ngokuthayipha imiyalo elandelayo:

sudo apt install autoconf automake ragel bison flex
sudo apt install libcurl4-openssl-dev luajit lua-yaml-dev libyaml-cpp-dev libtolua-dev lua5.3 autoconf automake ragel bison flex g++ libboost-all-dev libtool make pkg-config libssl-dev virtualenv lua-yaml-dev libyaml-cpp-dev libluajit-5.1-dev libcurl4 gawk libsqlite3-dev
apt install libsodium-dev
apt install default-libmysqlclient-dev
apt install libpq-dev
apt install libsystemd0 libsystemd-dev
apt install libmaxminddb-dev libmaxminddb0 libgeoip1 libgeoip-dev
autoreconf -vi

Futhi ukwenza inguqulo ehlanzeke kakhulu, sebenzisa:

./configure --with-modules="" --disable-lua-records
make
# make install

Ngendlela efanayo, ungathinta imibhalo bese uthola amaphakheji we-PowerDNS akhiwe ngaphambilini (i-deb ne-rpm) atholakala ekhoselweni lekhodi yesoftware. Bangakwazi ukubonisana nayo ngokuya kusixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.