DNS Subdomain authorization and Views view in Linux

Have you ever seen a 4-paragraph domain? Most people open the site only to see 3 segments of the domain name, such as Www.baidu.com, but the multi-domain name is the real existence of

When we use the dig command to parse the NS records of the www.baidu.com, there will be four domain names.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4C/wKiom1X5ZTSx9NmeAABM6Efm0nk320.jpg "style=" float: none; "title=" 323.png "alt=" Wkiom1x5ztsx9nmeaabm6efm0nk320.jpg "/>

This domain name, in fact, Baidu is a large number of DNS domain in a subdomain of a host, and now, we come to discuss a sudden field

When your company has many departments, sales department, Production department, finance department, so many departments to the company's only DNS server resolution, then your DNS server will be busy, so you can assign each department a subdomain server, The DNS requests of the respective departments are sent to the subdomain DNS of the respective department to resolve, reduce the primary DNS server pressure, and optimize the logical management structure. Below, we'll show you how to implement DNS subdomain authorization

Lab Environment:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4D/wKiom1X5ev3R-Ig6AABf_wBvRDc116.jpg "title=" 328. PNG "alt=" wkiom1x5ev3r-ig6aabf_wbvrdc116.jpg "/>

Parent domain DNS Server/etc/named.conf configuration file:

When doing subdomain authorization Notice dnssec-valadition and dnssec-enable must be disabled, note is disabled is not commented out----Because the comment off the default or open, otherwise the parent domain and the subdomain will not be able to parse each other situation

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/73/4A/wKioL1X5fQjCQJc1AAFrhJ8UXYw273.jpg "style=" float: none; "title=" 324.png "alt=" Wkiol1x5fqjcqjc1aafrhj8uxyw273.jpg "/>

Parent domain Magedu.zone File:

The last two lines define where the subdomain DNS server is, where our ns2 are actually nonexistent, and the experimental words don't matter.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/73/4D/wKiom1X5etHTAKSvAADE1KHmcxM676.jpg "style=" float: none; "title=" 325.png "alt=" Wkiom1x5ethtaksvaade1khmcxm676.jpg "/>

Subdomain DNS Server/etc/named.conf configuration file:

Defines the zone of the ops.magedu.com

The following magedu.zone is defined when a host within a subdomain is queried for a host under the parent domain (magedu.com) without having to look for the root, but instead directly looking for the parent domain server, specifying the parent domain as the forwarder, the concept of the forwarder we have in the <<linux DNS principle in Detail > Described in >

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4A/wKioL1X5fQjTy4nAAAF7c0i867w021.jpg "style=" float: none; "title=" 326.png "alt=" Wkiol1x5fqjty4naaaf7c0i867w021.jpg "/>

Subdomain Ops.magedu.zone File:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4D/wKiom1X5etLyQFVWAABySGTZ9vA629.jpg "style=" float: none; "title=" 327.png "alt=" Wkiom1x5etlyqfvwaabysgtz9va629.jpg "/>

Test:

Querying subdomains through subdomains:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/73/4E/wKiom1X5fiPQtTj3AAHbUZan_pA931.jpg "style=" float: none; "title=" 329.png "alt=" Wkiom1x5fipqttj3aahbuzan_pa931.jpg "/>

Querying the host in the parent domain through the subdomain: (found not to find root, but directly to the parent domain DNS server, this is the benefits of specifying forwarders, save a lot of traffic)

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4B/wKioL1X5gFqhtL5GAAGycf6E8pM969.jpg "style=" float: none; "title=" 330.png "alt=" Wkiol1x5gfqhtl5gaagycf6e8pm969.jpg "/>

Querying hosts within a subdomain through the parent domain:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/73/4E/wKiom1X5fiTxh_knAAG_J9LItfQ444.jpg "style=" float: none; "title=" 331.png "alt=" Wkiom1x5fitxh_knaag_j9litfq444.jpg "/>

This article is from the "After Tomorrow" blog, please be sure to keep this source http://leeyan.blog.51cto.com/8379003/1695506

DNS Subdomain authorization and Views view in Linux