from the server. This is where the server plays a redundant role. The TCP protocol is used to ensure the integrity of the transmission data between master and slave.1) in order to ensure that the master-slave real synchronization, the first step to synchronize time first.2) Configure the master configuration file from the server650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M01/44/5C/wKioL1PhjPDwFKkHAAD_KQHB6ks963.jpg "title=" 14.1. Resolve the main configuration from the server Pro/con
First download bind from http://download.chinaunix.net/download/0001000/6.shtml, I downloaded is bind-9.3.2.tar.gz
The files I downloaded are placed in the/OPT/SRC directory
Go to directory to decompress
[root@linux src] #tar zxvf bind-9.3.2.tar.gz
into a directory just extracted
[Root@linux src]# CD bind-9.3.2
Compiling configuration
[Root@linux bind-9.3.2]#./configure--prefix=/opt/app/named--enable-threads #--enable-threads to unlock multithreaded processing capabilities
[Root@linux bind-9.3.
;};Access control directives: allow those clients to do recursive queries;allow-query{address_match_element;..};Access control directives: Allow those hosts to parse queries within the region;allow-update {address_match_element;..};Access control directives: Allow those hosts to send zone change notifications to the current server;};After configuring the configuration file for bind, it is necessary to use named-checkconf to detect the correct writing format of the file;After the detection, the c
. adams)
3 H; refresh
15 M; retry
1 W; expiry
1D); minimum
In ns xiaocui.com.
In a 192.168.1.10
Www in a 192.168.1.100
Create a reverse resolution file for xiaocui.com.
# Vi xiaocui.com. rev
Add the following content:
$ TTL 86400
@ In soa xiaocui.com. root.xiaocui.com .(
20031001; Serial
7200; Refresh
3600; Retry
43200; Expire
86400); Minimum
In ns xiaocui.com.
10 in ptr xiaocui.com.
100 in ptr www.xiaocui.com.
After updating the configuration file and resource file, run the
In the company's operations, DNS is still important, not only the name resolution requires DNS, some important services, such as load balancing, HTTP virtual host will also use it. I had previously developed a BIND DNS management system with Perl, but it had to run on the same server as bind DNS and did not support cluster operations. To accommodate Docker and distributed deployment, I have re-developed a set of Bind DNS Web management systems with Python Django.1. System Features:
Supports
"title=" Picture 3.png "alt=" Wkiol1np9gpatox9aangqdpupjy496.jpg "/>Vim Named.rfc1912.zones Compile zone file650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M02/26/27/wKiom1Np9kGQZVuIAAGQa03xGEI958.jpg "title=" Picture 4.png "alt=" Wkiom1np9kgqzvuiaagqa03xgei958.jpg "/>cd/var/named/chroot/var/named/Cp-p Named.localhost Abc.com.zone A zone in the Zone profile, where a configuration file is required (-p to indicate a copy of the permission)Vim Abc.com.zone Edit a new zone file650) this.wid
)
Dynamically modify records in DDNS Mode
According to the dlz test, the throughput of the dlz mode is 20 to 30 times lower than the default Bind mode. Therefore, I decided to adopt the default Bind mode.
2. function implementation:
Without using the dlz database mode, the system design and development are complex. I use the following methods to implement related functions:
View Management: File Operations + rndc
Domain Management: File O
For details about how to configure DNS in linux, see Linux Enterprise Application-Linux server application. 1. Note that. the conf configuration file contains "/var/named". You must grant all the file permissions in "/var/named" to named. The command is as follows: "# chown named. named/var/named /*".
2. IN "/var/log/messages", we found a prompt similar to "IN: has no NS records" to check whether the zone file is incorrectly edited, for example,/var/named/peng.com. the zone configuration is a
port 53 of the server ), it will trigger the server's named process. It is equivalent to entering a command in the shell environment. Then, through the 127.0.0.1 channel and port 953, get a rndckey (/etc/rndc. to access the database under/var/named.
};
Zone "." IN {----- zone definition (Region definition, partial definition, can be understood as the local method) IN: indicates that the network type is internet.
Type hint; ----- type is the root pr
stores the data files in this directory without the need to use absolute paths.
The following text indicates that if your DNS server is a version earlier than bind 8.1, and is separated from the client through the firewall, You Need To // query-source address * port 53; remove the preceding // (remove comments ). We use software version 9.2, so we do not need to change this setting.
B) controls
Controls {
Inet 127.0.0.1 allow {localhost;} keys {rndckey ;};
};
Controls and the final
An error occurred while constructing the dns secondary Domain Name Server under redhat9-Linux Enterprise Application-Linux server application information. For details, refer to the following. The primary dns can work normally.
Secondary dns configuration file
Zone "huing.com" IN {
Type slave;
File "slaves/huing.com. zone ";
Masters {192.168.137.100 ;};
};
Zone "137.168.192.in-addr. arpa" IN {
Type slave;
File "slaves/huing. local ";
Masters {192.168.137.100 ;};
};
Include "/etc/
successfully, no problem!!!2. subdomain Authorization, the following sub-domain authorization, in the primary server's Zone resolution library file to add the sub-domain will be granted:[[email protected] named]# vim tanjie.com.zone...................................ops in NS ns1.opsops in NS NS2.OPSNS1 . opsin a 192.168.1.12ns2.opsin a 192.168.1.19[[email protected] named]# RNDC reloadserver Reload suc Cessful3. on the subdomain server, configure
synchronization:
1. Time Synchronization;
2. The BIND version has the same master and slave; the master is low, and the slave is high;
Main zone definition:
CD/var/named/
Vim 127.16.100.zone
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M01/44/86/wKioL1Ph4SqR5_70AAC_qUy7jPk669.jpg "Title =" .png "alt =" wkiol1ph4sqr5_70aac_quy7jpk669.jpg "/>
Create a Slave region:
The version of the downloaded BIND is the same as that of the primary region, or the version is later than that o
Build the bind server in linux, compile and install bind [root @ YYzs tmp] # tar xvf bind-9.6.1.tar.gz [root @ YYzs tmp] # cd bind-9.6.1 [root @ YYzs bind-9.6.1] #. /configure? -- Prefix =/usr/local/named? -- Enable-threads // enable multi-thread processing capability [root @ YYzs bind-9.6.1] # make [root @ YYzs bind-9.6.1] # make install // because the installer does not automatically create a master configuration file, so we need to manually create // enter/usr/local/named to create the etc di
A zone may have primary DNS, from DNS, subdomain DNS, this section with the primary DNS authorization subdomain for example explained. Subdomain Authorization configuration process:1. Edit the primary DNS forward zone file[[emailprotected]named]#vimdove.com.zone #编辑主DNS正向区域文件 $TTL 600@IN soadove.com.admin.dove.com. ( 2015041802 #由于有从DNS服务器, Therefore, each modification of the serial number must be added one NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;NBSP;2H 5M 3D
172.16.3.1Mail in A 172.16.3.3www in A 172.16.3.4QQ in A 172.16.3.5Liang in A 172.16.3.20Hong in CNAME MailMain reverse parsing:[Email protected] named]# Vim/var/named/172.16.3.zone$TTL 3600$ORIGIN 3.16.172.in-addr.arpa.@ in SOA ns.ning.com. Ning.qq.com. (201408042H10M7D7D)In NS ns.ning.com.In NS ns2.ning.com.-----------Specify from the server zone name1 in PTR ns.ning.com.In PTR ns2.ning.com.------------Specifies the IP address from the server3 in PTR mail.ning.com.4 in PTR www.ning.com.5 in P
First download BIND from http://www.isc.org/products/BIND/, I downloaded is bind-9.3.1rc1.tar.gz
The files I downloaded are placed in the/root directoryGo to directory to decompress[Root@linux Root] #tar XFZ bind-9.3.1rc1.tar.gzinto a directory just extracted[Root@linux root]# CD Bind-9.3.1rc1Compiling configuration[Root@linux bind-9.3.1rc1]#./configure--prefix=/usr/local/named--enable-threads #--enable-threads to unlock multithreaded processing capabilities[Root@linux Bind-9.3.1rc1] #make[Root
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.