Configure the Dynamic DNS service in Linux
In network management, DNS service management is a basic task. As the number of users expands, it is not easy to manually modify the DNS regional database files. The Research on
";FILE://is tcbuu.cn to the zone file name, and the file will be used in the following textallow-update {key myddns;};FILE://indicates that a user using key Myddns as a key can dynamically update the area "tcbuu.cn"};Zone "1.22.10.in-addr.arpa" in {Type master;File "Tcbuu.cn.arpa";//reverse zone filename tcbuu.cnallow-update {key myddns;};FILE://indicates that a user using key Myddns as a key can dynamically update the area "1.22.10.in-addr.arpa"};
Multiple zones can be defined in/etc/named.con
Bindkeys-file "/etc/named. iscdlv. key ";
Managed-keys-directory "/var/named/dynamic ";
Pid-file "/run/named. pid"; // The default storage location of the PID file of the named service.
Session-keyfile "/run/named/session. key"; // path where the TSIG session key is stored, keep the default value.
};
Logging {// set the log statement
Channel default_debug {
File "data/named. run ";
Severity
creation of objects, which is insecure. When this happens, any authorized user can gain ownership of these objects.
The A record and PTR record of the client in DNS are updated in the DHCP processing process, which is described in detail. When both the client and server are windows, security dynamic updates can be installed by default. When other users need support, security
This router does not support static domain name resolution services because the intranet has changed routers. So you can only set up a DNS service yourself.The DNS server software chooses bind, and directly yum installs bind on-line. The other two package bind-libs,bind-utils are updated directly:Yum-y Install bindThe installation process is not released.After lo
Set up the DNS service in linux and set up the linuxdns Service
I will not elaborate on the theoretical knowledge too much here.
Need to Know: http://baike.baidu.com/subview/22276/15346050.htm? Fr = aladdin
Go to build
Software used: Vmware workstation 10 rhel6.3 (64-bit)
Operating system used:
[Root @ wang ~] # Uname-
Linux wang 2.6.32-279. el6.x86 _ 64 #1 SMP W
bit of this stuff. Therefore, ldns goes to the Domain Name Server for help.
! Export image_1cqdvfa3bgjl1igd1e2bc1u1oan33.png-698.3kb] [1]
# DNS port number
> DNS port: 53
# DNS Cache service establishment
### Preparations
> Rpm-Qa | grep-W bind-chroot ==> two software packages must be installed.
### Main configuration
Article Title: Detailed description of Dynamic DNS service configuration in Linux. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.
In network management, DNS
This document describes the configuration process. 1. The core idea of configuring a dynamic DNS server is to run multiple binds on the DNS server. each BIND provides resolution for users from different regions, therefore, each BIND should have different configuration files and domain files, and listen on different ports respectively. When receiving a
Namedmanager is a web-based DNS management system that you can use to add, adjust, and remove Zones/records data for DNS. it uses bind as the underlying DNS service, providing a modern Ajax web interface that supports IPV4 and IPV6. The application is stable and does not have any problems using the production environme
Summary
This article describes how to configure a dynamic DNS server using IPtables.
1. Core Ideas
The core idea of configuring a dynamic DNS server is to run multiple binds on the DNS server. Each BIND provides resolution for users from different regions, therefore, each B
client computers makes it difficult to manage manually updating their A resource records and PTR resource records.
The workaround for keeping the latest DNS in a DHCP environment is DNS dynamic update, as described in RFC 2136.
DNS dynamic update enables
DNS Service delegation Environment: Two DNS servers (one parent domain, one table domain), one client Objective: To facilitate maintenance when there are too many subdomains Steps: 1. Open "Start" → "Administrative Tools" → "Server Manager" in the parent domain DNS server and click "Add Roles". : 650) this.width=650; "
the attack packets, those are normal access traffic, so that the normal access to pass the traffic and block the attack packets. This allows the DNS server to not be overloaded by an attack.
The FortiGate IPs has an anti DDoS attack capability of more than 100,000 PPS per second.
Figure I: FortiGate anti-DDoS configuration
2, for the regular large-scale DDoS attacks, such as the Storm audio and video software launched by the baofeng.com of a large
Centos7 configure YUM to install the DNS Service
1. Configure the DNS address
vim
/etc/resolv
.conf
nameserver192.168.1.100
# Note: the address here is the address of your local DNS server.
2. Install dns
yum
install
bindbind-utils
3. Start the
normal access traffic are used to block attack packets. In this way, the DNS server will not be overloaded by attacks.
FortiGate IPS can defend against DDoS attacks that exceed 0.1 million PPS per second.
Figure 1: Anti-DDoS configuration of FortiGate
2. for regular large-scale DDoS attacks, such as a large number of DNS queries on baofeng.com initiated by storm audio and video software, FortiGate c
changed or renewed any installed network connection. For example, when a computer is started orThis update will occur when the ipconfig/Renew command is run.
Use ipconfigThe/registerdns command can be manually forced on the DNS.
The computer is turned on.
Problem Analysis:
As we all know, the DHCP service can be used to automatically obtain IP addresses. In-company computers, because few computers use DH
Bind is a set of software that implements the DNS service (official site: isc.org), which contains server-side programs named (provided by the BIND package, listening sockets: 53/tcp, 53/UDP), and client Tools host, Nslookup, Dig (provided by the Bind-utils package). To ensure the security of the server, bind also provides a "sandbox mechanism", bind-chroot is to replace the original filesystem's Root "/" w
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.