Analysis of forward and backward parsing in DNS on Linux system and configuration of master-slave server

I think for Some of the features, we should not be unfamiliar with it. Here's what I'm demonstrating for you is in system installed dns dns forward parsing to dns reverse parsing and the final master-slave server. is also the focus of the experiment. In the display of life, dns Reverse parsing is seldom used, but it is not required but can be understood. So if someone asks you, at least you will, understand.

Lab Environment: two Linux6.0 versions of the operating system virtual machines ( Note the 6.0 version of the Linux system used here )

Experimental Purpose: implement DNS forward parsing, reverse parsing, and master-slave server configuration

Forward parsing

The first is the CD-ROM mount, twoLinuxhave to closeiptablesFirewalls andSElinux. The method given in the figure is temporarily closed. Enter these commands if you want to permanently close them. Permanently shut down the firewallchkconfig--level iptables off(offinstead onThe firewall is turned on). Permanently closedSELinuxEnter configuration file/etc/sysconfig/selinuxwill be inside theSELINUXthe value is changed toDisabledcan be.

650) this.width=650; "title=" Picture 1.png "src=" http://s3.51cto.com/wyfs02/M01/6E/68/wKiom1V6--_ Tyecpaamkim8srvq058.jpg "alt=" wkiom1v6--_tyecpaamkim8srvq058.jpg "/> Looking at the configuration file inside the package is a good idea of what files you want to make changes to.

650) this.width=650; "title=" Picture 2.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/64/wKioL1V6_ Bsjrb5taae-wmxctws450.jpg "alt=" Wkiol1v6_bsjrb5taae-wmxctws450.jpg "/>

650) this.width=650; "title=" Picture 3.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/68/wKiom1V6_ Autznbvaajjvchtaji761.jpg "alt=" Wkiom1v6_autznbvaajjvchtaji761.jpg "/>

go to the zone configuration file /etc/named.rfc1912.zones Press to edit

650) this.width=650; "title=" Picture 4.png "src=" http://s3.51cto.com/wyfs02/M01/6E/64/wKioL1V6_ Cbaldgkaald3gymxe0893.jpg "alt=" Wkiol1v6_cbaldgkaald3gymxe0893.jpg "/>

Pay attention to permission retention when copying files, preventing permissions issues from being used.

650) this.width=650; "title=" Picture 5.png "src=" http://s3.51cto.com/wyfs02/M00/6E/64/wKioL1V6_ Gad8ltzaak6scfcp8q744.jpg "alt=" wkiol1v6_gad8ltzaak6scfcp8q744.jpg "/> into the TTL configuration, after configuration start the service

650) this.width=650; "title=" Picture 6.png "src=" http://s3.51cto.com/wyfs02/M02/6E/64/wKioL1V6_ Hmdn8xwaadmeacphxc899.jpg "alt=" Wkiol1v6_hmdn8xwaadmeacphxc899.jpg "/>

the details of the configuration can be accessed when configured. (serial denotes serial number; refresh indicates the refresh time; retry delay; Span style= "font-family: ' Times New Roman ';" >expire expiry time; minimum h w d mean day )

650) this.width=650; "title=" Picture 7.png "src=" http://s3.51cto.com/wyfs02/M00/6E/68/wKiom1V6_ H-chuxkaaf-ifbnjgs229.jpg "alt=" wkiom1v6_h-chuxkaaf-ifbnjgs229.jpg "/> View initiated protocol port

650) this.width=650; "title=" Picture 8.png "src=" Http://s3.51cto.com/wyfs02/M01/6E/64/wKioL1V6_jvwxSEvAADJo_ Lkaqu025.jpg "alt=" wkiol1v6_jvwxsevaadjo_lkaqu025.jpg "/> when you visit, the only reason is that the DNS is not parsed. Parse by the method in the diagram.

650) this.width=650; "title=" Picture 9.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/68/wKiom1V6_ Kzywvmaaahcap_cwdc418.jpg "alt=" Wkiom1v6_kzywvmaaahcap_cwdc418.jpg "/>

And then start verifying access

650) this.width=650; "title=" Picture 10.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/6E/64/wKioL1V6_ Lsghjkfaag7bhbwd68935.jpg "alt=" Wkiol1v6_lsghjkfaag7bhbwd68935.jpg "/>

Reverse parsing

Enter Zone profile vi/etc/named.rfc1912.zones Configure reverse resolution

650) this.width=650; "title=" Picture 11.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/6E/68/wKiom1V6_ Kzsiwolaaf2tsfencu794.jpg "alt=" Wkiom1v6_kzsiwolaaf2tsfencu794.jpg "/>

Go to vi benet.com.local edit

650) this.width=650; "title=" Picture 12.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/64/wKioL1V6_ Lwjr9h9aacqshoc0tm262.jpg "alt=" Wkiol1v6_lwjr9h9aacqshoc0tm262.jpg "/>

Reload it again, and then verify.

650) this.width=650; "title=" Picture 13.png "src=" http://s3.51cto.com/wyfs02/M01/6E/68/wKiom1V6_T2RsBrJAAF7Jm_ Ihg0643.jpg "alt=" Wkiom1v6_t2rsbrjaaf7jm_ihg0643.jpg "/>

Master Service

when configuring from a server or CD-ROM, install the package, turn off the firewall and shut down SElinux.

650) this.width=650; "title=" Picture 14.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/68/wKiom1V6_ Wdhmjctaamkim8srvq764.jpg "alt=" Wkiom1v6_wdhmjctaamkim8srvq764.jpg "/>

Enter configuration file vi/etc/named.conf Modification

650) this.width=650; "title=" Picture 15.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/6E/64/wKioL1V6_ Wngrz4jaah3nvccnps679.jpg "alt=" Wkiol1v6_wngrz4jaah3nvccnps679.jpg "/>

go to the zone configuration file /etc/named.rfc1912.zones set the slave server.

650) this.width=650; "title=" Picture 16.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/6E/68/wKiom1V6_ Whifyypaaihgg4ntiy740.jpg "alt=" Wkiom1v6_whifyypaaihgg4ntiy740.jpg "/>

The address from the server on the primary server

650) this.width=650; "title=" Picture 17.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/6E/68/wKiom1V6_ Whimb8aaaizg1vwiwu567.jpg "alt=" Wkiom1v6_whimb8aaaizg1vwiwu567.jpg "/>

from the server DNS resolves and then tests the access. If access is not available, you will need to install a bind-utils-9.7.3-8.p3.e16.i686.rpm package.

650) this.width=650; "title=" Picture 18.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/6E/64/wKioL1V6_ Wrzuytfaahizkx6068231.jpg "alt=" Wkiol1v6_wrzuytfaahizkx6068231.jpg "/>

This article from "Bluebird Rogue Regiment @ dan dan" blog, please be sure to keep this source http://9863378.blog.51cto.com/9853378/1661432

Analysis of forward and backward parsing in DNS on Linux system and configuration of master-slave server