DNS Subdomain authorization and Views view in Linux

Source: Internet
Author: User
Tags dnssec domain server subdomain

Have you ever seen a 4-paragraph domain? Most people open the site only to see 3 segments of the domain name, such as Www.baidu.com, but the multi-domain name is the real existence of

When we use the dig command to parse the NS records of the www.baidu.com, there will be four domain names.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4C/wKiom1X5ZTSx9NmeAABM6Efm0nk320.jpg "style=" float: none; "title=" 323.png "alt=" Wkiom1x5ztsx9nmeaabm6efm0nk320.jpg "/>

This domain name, in fact, Baidu is a large number of DNS domain in a subdomain of a host, and now, we come to discuss a sudden field

When your company has many departments, sales department, Production department, finance department, so many departments to the company's only DNS server resolution, then your DNS server will be busy, so you can assign each department a subdomain server, The DNS requests of the respective departments are sent to the subdomain DNS of the respective department to resolve, reduce the primary DNS server pressure, and optimize the logical management structure. Below, we'll show you how to implement DNS subdomain authorization


Lab Environment:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4D/wKiom1X5ev3R-Ig6AABf_wBvRDc116.jpg "title=" 328. PNG "alt=" wkiom1x5ev3r-ig6aabf_wbvrdc116.jpg "/>

Parent domain DNS Server/etc/named.conf configuration file:

When doing subdomain authorization Notice dnssec-valadition and dnssec-enable must be disabled, note is disabled is not commented out----Because the comment off the default or open, otherwise the parent domain and the subdomain will not be able to parse each other situation

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/73/4A/wKioL1X5fQjCQJc1AAFrhJ8UXYw273.jpg "style=" float: none; "title=" 324.png "alt=" Wkiol1x5fqjcqjc1aafrhj8uxyw273.jpg "/>

Parent domain Magedu.zone File:

The last two lines define where the subdomain DNS server is, where our ns2 are actually nonexistent, and the experimental words don't matter.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/73/4D/wKiom1X5etHTAKSvAADE1KHmcxM676.jpg "style=" float: none; "title=" 325.png "alt=" Wkiom1x5ethtaksvaade1khmcxm676.jpg "/>

Subdomain DNS Server/etc/named.conf configuration file:

Defines the zone of the ops.magedu.com

The following magedu.zone is defined when a host within a subdomain is queried for a host under the parent domain (magedu.com) without having to look for the root, but instead directly looking for the parent domain server, specifying the parent domain as the forwarder, the concept of the forwarder we have in the <<linux DNS principle in Detail > Described in >

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4A/wKioL1X5fQjTy4nAAAF7c0i867w021.jpg "style=" float: none; "title=" 326.png "alt=" Wkiol1x5fqjty4naaaf7c0i867w021.jpg "/>

Subdomain Ops.magedu.zone File:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4D/wKiom1X5etLyQFVWAABySGTZ9vA629.jpg "style=" float: none; "title=" 327.png "alt=" Wkiom1x5etlyqfvwaabysgtz9va629.jpg "/>

Test:

Querying subdomains through subdomains:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4E/wKiom1X5fiPQtTj3AAHbUZan_pA931.jpg "style=" float: none; "title=" 329.png "alt=" Wkiom1x5fipqttj3aahbuzan_pa931.jpg "/>

Querying the host in the parent domain through the subdomain: (found not to find root, but directly to the parent domain DNS server, this is the benefits of specifying forwarders, save a lot of traffic)

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4B/wKioL1X5gFqhtL5GAAGycf6E8pM969.jpg "style=" float: none; "title=" 330.png "alt=" Wkiol1x5gfqhtl5gaagycf6e8pm969.jpg "/>

Querying hosts within a subdomain through the parent domain:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4E/wKiom1X5fiTxh_knAAG_J9LItfQ444.jpg "style=" float: none; "title=" 331.png "alt=" Wkiom1x5fitxh_knaag_j9litfq444.jpg "/>




This article is from the "After Tomorrow" blog, please be sure to keep this source http://leeyan.blog.51cto.com/8379003/1695506

DNS Subdomain authorization and Views view in Linux

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.