Gadzira maseva eLinux Maitiro ekuaisa iwo?

Vida Bytes

14 maminitsi

Munyaya ino yakanzi Gadzira maseva eLinux, mushandisi anogona kuziva maitiro ekuita chiitiko ichi, anofanirwa kungotorwa nezviri nyore uye zvinonzwisisika zvemukati.

Gadzira-linux-server-1

Gadzira maseva eLinux

Iwo manejimendi ekumisikidza uye nekuisa maseva eLinux, DNS inomiririra Domain Name System, inoreva nzira yemazita asiri chaiwo emaitiro, basa rayo rinodaidzwa kunzi DNS server, iyo inotungamira kune IP kero yakasarudzwa nemushandisi.

Icho chiitiko chakakosha uye chinangwa chayo ndechekuchengetedza iyo Internet, ibasa rakakosha pane maseva.

Kubva pandima ino, tinozivisa mushandisi wezvinhu zvese zvine chekuita nekugadziriswa uye kuiswa kweLinux maseva.

Iyo / etc / inomisikidza faira

Mukugadzirisa maseva eLinux, iwe unozoziva iyo inomiririra faira iri yekombuta, inoshandiswa neiyo sisitimu yekushandisa kuchengetedza ruzivo ruripo pakati penzvimbo dzeInternet ne IP kero, inoreva imwe yemaitiro akasiyana ayo anoshandiswa nehurongwa hwekushandisa pamwe nepfungwa. yekugadzirisa mazita echizinda, tafura inozivikanwa se / etc / hosts, ndeyemafaira ari paLinux masisitimu.

Ndokunge, kana mushandisi asina DNS server, kana kukundikana izvo, iyo DNS server haina kuwanikwa, iyo faira /nezvimwe / vatambi vane kugona kududzira IP kero mumazita vachishandisa yavo faira.

Izvi zvinoreva kuti iyo system inobvunza iyo faira isati yaenda kune iyo DNS server, uye kana iyo domain yawanikwa chete, inogona kuturikirwa pasina kuenda kune DNS server.

Izvo zvinowanikwa nekugadzirisa sezvakaratidzwa pazasi: 127.0.0.1 google.com. Ipapo iwe unofanirwa kuenda kubhurawuza, nyora google.com uye iwe unogona kuona mhedzisiro, mune iyo kana iwe uine iyo Apache server mune iyo system, uye yemunharaunda server yakagadziriswa, kuti iwe ugone kuona iyo index peji revha local, Panzvimbo pekuratidza peji reGoogle.

Tinokurudzira ichi chinyorwa chinonakidza chine chekuita nekomputa:  Mhando dzemaseva.

Iwe une sarudzo yekuti iwe unogona kufambisa google.com kune imwe kero yeIP inowanikwa chero kupi uye woona mhedzisiro kuve nechokwadi.

Basa refaira iri ndere kuturikira dzakasiyana IP kero mumazita, zvisinei, pane yakabatana network uko kune yakabatana server iripo.

Mazita echizinda

Kana iwe ukashanyira webhusaiti, unofanirwa kunyora iyo FQDN, zvinoreva kuti izere zita rezita, kana kukundikana izvo, iro zita rezita seizvi: likegeeks.com kana www.google.com.

Inofanira kunge ichizivikanwa kuti dura rega rega rinogadzirwa nezvikamu zvemasimba, uye poindi inoitisa kupatsanura zvinhu izvi.

Chinyorwa com, chinoreva chikamu chechikamu chepamusoro nhanho; Google ndiyo yechipiri-chikamu domeini chikamu, nepo www iri yechitatu-chikamu dura chikamu.

Chokwadi ndechekuti kana iwe ukashanyira chero webhusaiti, bhurawuza chinyararire inowedzera nguva kusvika kumagumo, haisi kuoneka, saka dura chairo rinoratidzwa www.google.com, rinofanirwa kutorwa mupfungwa kuti nguva inozoonekwa mushure. Com , panguva ino inonzi midzi midzi.

Vazhinji vachabvunza mubvunzo, nei iri dura remidzi kana poindi yakawedzerwa pairi, zvinongova nekuti poindi iyi inoshumirwa nemidzi yemazita maseva, pane angangoita gumi nematanhatu emazita emazita maseva kutenderera pasirese, kuti basa ravo huropi hwe internet.

Midzi nameservers yakatumidzwa seinotevera: a.root-server.net, b.root-server.net.

Wepamusoro-soro mazita emadunhu (TLD)

Inofanirwa kuburitswa kuti Top Level Domains (TLDs) akapatsanurwa muzvikamu zvine chekuita nenzvimbo kana zvinoshanda zvinhu.

Gadzira-linux-server-2

Kune angangoita anodarika mazana masere epamusoro-soro madomeni pawebhu, tinovaratidza pazasi:

Generic epamusoro-chikamu maseru akadai se: org, .com, .net. Edu, pakati pevamwe.

Kodhi yenyika yepamusoro-nhanho madomeni, anoti: .us, .ca, nevamwe vazhinji, vari emakodhi erudzi, mune ino United States neCanada.

Iwo matsva epamusoro-soro madomeni kubva kumakemikari akadai se: Linux, .Microsoft, .CompanyNamey.

Zvigadziriso zvepamusoro-chikamu maseru sedomain.

Subdomains

Mune zviitiko izvi, kana iwe ukangopinda webhusaiti, semuenzaniso google.com, iyo email ndiyo subdomain yegoogle.com.

Iwo chete maseva ezita e mail.google.com, vanoziva nezve kuvapo kwemauto ese ari pasi payo, ndosaka Google ichiziva kuti pane kana kuti kwete subdomain kana tsamba, mazita emaseva ivo havana kana zano Izvi pamudzi.

Mhando dzeseva dzeDNS

Mune komputa nharaunda, pane matatu marudzi eDNS maseva, akadai se:

  • Primary DNS maseva ndeaavo vane iyo dhata yekumisikidza mafaira uye vanopindura DNS mibvunzo.
  • Sekondari maSeva eDNS ndiwo anoita sekopi yekuchengetedza uye ane basa rekugovera mutoro; maseva ekutanga anoziva kuti mazita echipiri aripo aanotumira matsva.
  • DNS server caching, mashandiro eaya chete macache mhinduro dzese dzakaburitswa kubva kuDNS, zvekuti iyo yekutanga kana yechipiri DNS server haifanire kubvunzwa zvakare.
  • Inogona kutarisirwa kuti sisitimu iite zviitiko nyore, senge cached server.

Gadzira-linux-server-3

Kugadzira iyo Linux DNS server

Mumusika mune akati wandei maLinux mapakeji ayo anopa kushandisa iyo DNS mashandiro, zvisinei, isu tichaenda kutaura nezve SUNGIRA DNS server, inoshandiswa mune mazhinji eeseva eDNS mumativi ese epasi.

Muchiitiko chekuti mushandisi anoshandisa kugovera kunobva paRed Hat, senge maCentOs, nzira yekuisa pasuru iri inotevera: $ dnf -y install bind.

Kana iwe uchireva kune maDebian masisitimu akadai seUbuntu: $ apt-tora kuisa bind9.

Mukugadzirisa maseva eLinux, inoratidza muverengi kana chirongwa chekumisikidza chapera, sevhisi inogona kutanga uye kutumirwa kumhanya chaipo painotanga: $ systemctl kutanga kunzi; $ systemctl inogonesa inonzi.

 Kugadzira BIND

Zvinoburitswa kuti kumisikidzwa kwebasa kunogona kuwanikwa mu /etc/named.conf faira.

Pane zvimwe zvirevo izvo BIND zvinoshandisa mufaira senge:

  • Sarudzo: Izvo zvinoshandiswa kugadziriswa kwepASI kwepasi.
  • Kucheka matanda: Inogona kuvezwa, uye inogona zvakare kufuratirwa.
  • Nzvimbo: Inonzi iyo DNS zone.
  • Sanganisira: Inoshandiswa kuisa imwe faira mune inonzi .conf sarudzo.
  • Unogona kuona kubva pane sarudzo sarudzo, dhairekitori rinoshanda rinopihwa BIND kuva dhairekitori: / var / named.
  • Izvo zvinofanirwa kutarisirwa mupfungwa kuti kuziviswa kwenzvimbo kunobvumidza kukamura nzvimbo yeDNS, senge google.com dura, iro zvakare rine ma subdomains, inozivikanwa tsamba mail.google.com, pamwe ne analytics.google.com, kuwedzera kubva kune mamwe subdomains.
  • Izvo zvakakosha kuti uzive kuti chimwe nechimwe cheizvi zvitatu: iyo domeini uye subdomains, ine nzvimbo inotsanangurwa neiyo zone chirevo.

Gadzira-linux-server-4

Kutsanangura nzvimbo yekutanga

Kana tangoziva mhando dzemaseva eDNS aripo senge ekutanga uye echipiri maseva eDNS, pamwe neecache.

Iwo ekutanga uye echipiri maseva anoonekwa seane chiremera mumhinduro dzavo, izvo zvinosiyana kubva kune caching server.

Ikozvino, kudzora nzvimbo yekutanga mufaira, zvinotevera zvinogona kushandiswa: zone «likegeeks.com» {; mhando tenzi; faira likegeeks.com.db; };.

Kune ruzivo rwevashandisi, iyo faira iyo ine data reruzivo rinoenderana nenzvimbo iyo iyo / var / inonzi dhairekitori iri, nekuti iri dhairekitori rinoshanda uko sarudzo dziripo.

Mukumisikidza maseva eLinux, inoratidza kuti inofanirwa kutorwa mupfungwa kuti server software kana iyo inomiririra pani inozvigadzira ino faira ine zita, kuitira kuti kana dura iri example.org, iyo faira ichatumidzwa zita / var / named / muenzaniso.org.db.

Muchiitiko chekuti mhando yacho inoita senge tenzi, zvinoreva kuti iri munzvimbo yekutanga.

Gadzira-linux-server-5

Tsanangudzo yenzvimbo yechipiri

Tsananguro yenzvimbo yechipiri yakafanana zvikuru neinonzi primary zone, inongova nekushandurwa kushoma, ngatione: zone «likegeeks.com» {; mhando muranda; masters Primary Nameserver IP Kero Pano; ; faira segeeks.com.db uye};.  

Iyo domain munzvimbo yechipiri yakafanana neayo enzvimbo dzekutanga, inofanirwa kunge iri mhando yevaranda, zvinoreva kuti inzvimbo yechipiri, sarudzo yemasters inoshanda kunyora akasiyana ma IP kero yezita rekutanga server, kupedzisa zvingango taura kuti iyo faira ndiyo yekuisa nzira yemafaira ekutanga ezoni.  

Kutsanangura caching zone

Mukugadzirisa maseva eLinux, tinokuratidza tsananguro yenzvimbo dzekuchengetera nzvimbo, zvinogona kunzi chinhu ichi chakakosha, zvisinei, hachifanirwe kuzadzikiswa kuve nenzvimbo yekuchengetedza, iyo inobatsira kudzikisira mibvunzo yakaitwa kuseva yeDNS.

  • Kuti utsanangure chinonzi caching zone chii, matatu matunhu echikamu anodikanwa, neanotevera mune yekutanga odha:
  • nzvimbo "." IN {mhando zano; faira "root.hint"; };.
  • Mune yekutanga pane nguva, nekuti iwo midzi nameservers, mhando inoratidzwa se: hint;  zvinoreva kuwanikwa munzvimbo ye cache, nepo iyo faira "midzi.hints"; zvinoreva iyo faira ine midzi midzi.
  • Iyo yazvino midzi nameserver inogona kuwanikwa kubva http://www.internic.net/zones/named.root.

Munzvimbo yechipiri inotsanangurwa nefaira rinoratidzwa pazasi: /etc / named.rfc1912.zones, Uye zvakare, ine /etc/named.conf, kuburikidza neiyo "sanganisira" rairo inoiswa nekumisikidza, senge:

  • Zoni "localhost" IN {mhando tenzi; faira "localhost.db"; };.
  • Pakupedzisira munzvimbo yechitatu kutsvaga kwakatarisana kweiyo localhost kunowanikwa.
  • Nzvimbo "0.0.127.in-addr.arpa" IN {Type master; Faira "127.0.0.rev"; }; -.
  • Izvo zvakakosha kuti uzive kuti kuisa idzi nharaunda nhatu mu /etc/named.conf, ivo vanobatsira iyo system kuti ishande seyaka caching DNS server, iyo ruzivo rwemafaira inofanirwa kunyorerwa mune anotevera likegeeks.com.db, localhost. db uye 127.0.0.rev.

Gadzira-linux-server-6

DNS rekodhi mhando

Iwo mafaera ari mune dhatabhesi ndeemhando dzemhando dzakadai se: SOA, NS, A, PTR, MX, CNAME, uye TXT.

Tevere, tinozvipira isu kuti titaure mhando yega rekodhi, isu tinotanga ne:

SOA: kutanga kwechiremera rekodhi

Iyo SOA rekodhi mhando inonyora DNS zvinyorwa zvesaiti neinotevera: example.com. 86400 IN SOA ns1.example.com. mail.example.com. (2017012604; serial 86400; zorodza, masekonzi 7200; edza zvakare, masekondi 3600000; kupera, masekonzi 86400; mashoma, masekondi ).

Inogona kuonekwa kuti mutsara wekutanga unotanga neiyo domain example.com. uye inopera nenguva, yakafanana nedudziro yedunhu mu /etc/named.conf faira.

Iyo inofanirwa kutariswa kuti mafaera ari edhisheni yeDNS akaomesesa zvakanyanya.

Muchikamu chino kumisikidza maseva eLinux, tinokuratidza mazwi anotevera:

  • IN inomirira kunyoresa Internet.
  • SOA, shandura kutanga kwechiremera rekodhi.
  • Ns1.example.com., Inoreva kune iro zita rezita server.
  • Mail.host.com.es, ndiyo email @, inotsiviwa nenguva, uye imwe nguva inoiswa kupedzisa.

Mutsara wechipiri, pane iyo serial nhamba iyo inoshandiswa kuzivisa kuzita server iyo nguva iyo iyo faira inogadziridzwa, zvinoreva kuti kana shanduko ikaitwa kune ruzivo rweyoni, izvi zvinofanirwa kuwedzerwa. Nhamba, zvinoreva kune serial nhamba ine fomati YYYYMMDDxx kuisa xx uye kutanga na2.

Mutsara wechitatu, unoreva frequency yavanogadziridzwa nawo mumasekondi, inoratidza kuwanda kwekuti maseva echipiri eDNS anofanira kubvunza kune huru server, kutanga kutsvaga kwekuvandudzwa.

Mutsetse wechina, inoreva muyero wekudzosera mumasekondi, ndiyo nguva yainotora iyo yechipiri DNS server mushure mekunge yaedza kubatanidza kune yekutanga DNS server, uye haigone kusvika pairi.

Mutsara wechishanu ndiyo mutemo wekupera, mune chiitiko icho chechipiri server isingakwanise kubatana kune yekutanga server kuti iite kugadzirisa, saka, iwe unofanirwa kukanzura kukosha mushure mekuratidzwa kwenhamba yemasekondi.

Chekupedzisira, mutsetse 6, inoratidzira iyo caching maseva ayo asingakwanise kubatanidza kune yekutanga DNS server, ivo vanomirira pamberi pekupinda kupera, ndiwo mutsetse uri mukutarisira kudzikamisa nguva yekumirira.

NS: Zita server zvinyorwa

Aya marekodhi anogona kushandiswa neNS server kudonongodza nameservers enzvimbo yakati, NS zvinyorwa zvinogona kunyorwa nenzira dzinotevera:

  • IN NS ns1.example.com. IN NS ns2.example.com.
  • Iwe haufanire kunge uine 2 NS zvinyorwa, zvisinei, zviri nani kuve ne backup nameservers.
  • A uye AAAA: Kero zvinyorwa.
  • Iwe unofanirwa kunyoresa A, iri basa rekumaka zita reGadhi kukero ye IP: tsigiro IN A 192.168.1.5. Muchiitiko chekuti mushandisi ave nemubati pa suppor.example.com kukero ye IP 192.168.1.5, inogona kunyorwa senge iri munyaya yambotaurwa.

PTR: pointer zvinyorwa

Iyo PTR rekodhi inoshandiswa kuita yakapesana zita resolution, inodzosera iyo IP kero, uye inodzosera iyo inomiririra zita. Izvo zvakapesana zvakakwana nezvinoitwa neRejista; 192.168.1.5 IN PTR support.example.com. mune ino kesi, izere zita revaenzi rinoiswa nekuisa chiteshi chakazara.

MX: Marekodhi ekuchinjana tsamba

Rudzi urwu rweMX rekodhi runoreva mafaera ari pane server server, seizvi: example.com. MUMX 10 tsamba, zvinogona kuoneka kuti domeini rinopera nenguva, nhamba yegumi inoreva kukosha kweseva yetsamba, mune nyaya yekuti pane akasiyana maseva etsamba, iyo nhamba diki zvinoreva kuti haina kukosha zvishoma. 

CNAME: Canonical Zita Rekodhi

Rudzi rweCNAME zvinyorwa ndeavo vanopa mukana wakanangana nemazita evaiti.

Semuenzaniso, zvinonongedzerwa kuve nyaya yekuti iwe une saiti ine zita rekutambira chero chinhu -bignameis.example.com, nekuti iyo sisitimu yewebhu webhu, une mukana wekugadzira iyo www kana CNAME rekodhi alias yemukuru.

Kugadzira rekodhi reCNAME unogona kushandisa zita rekuti www.example.com:

  • chero-bignameis IN A 192.168.1.5.
  • www IN CNAME chero-bignameis.

Mutsara wekutanga unopa ruzivo kune server yeDNS nezve iko kunowanikwa ma alias, nepo mutsetse wechipiri uchitsanangura ma alias anoratidza www.

TXT zvinyorwa

Chero mhando yemavara inogona kuiswa mune zvinyorwa zveTXT, senge ruzivo rwekuonana kana rumwe ruzivo urwo mushandisi anoda kuti vanhu vazive pavanobvunza server yeDNS.

Saizvozvo, iwe une sarudzo yekushandisa RP rekodhi, kuisa ruzivo rwekubatana: example.com. IN TXT »INFO YAKO INOENDA APA».

DNS TTL kukosha

Muchikamu chino /etc/named.conf kumucheto wekumusoro kune $ TTL yekupinda, inoitirwa kuzivisa CHISUNGWA nezvehupenyu hwese rekodhi.

Iko kukosha kunotorwa mumasekondi semasekondi 14400 (maawa mana), iyo sevha yeDNS inochengetedza nzvimbo yako kweanosvika maawa mana uyezve wobvunza iyo DNS server zvakare.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Actualidad Blog
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako