内容简介:客户端访问www.magedu.com时,本地DNS服务器向根DNS服务器转发,com域实现主从域的搭建。3.启动服务并设置开机启动
目标
客户端访问www.magedu.com时,本地DNS服务器向根DNS服务器转发,com域实现主从域的搭建。
架构图
| 主机IP | 作用 | 版本 |
|---|---|---|
| 192.168.36.6 | 客户端 | centos7 |
| 192.168.36.7 | DNS服务器 | centos6 |
| 192.168.36.17 | 根域 | centos6 |
| 192.168.36.27 | com域 | centos6 |
| 192.168.36.37 | 主dns服务器 | centos6 |
| 192.168.36.47 | 备用dns服务器 | centos6 |
| 192.168.36.67 | www服务器 | centos6 |
基本环境搭建
- 每个主机清空防火墙规则、关闭防火墙、关闭selinux
[root@centos ~]# iptables -F [root@centos ~]# setenforce 0 # 此为临时关闭,若想永久关闭还需要更改配置文件/etc/selinux/conf [root@centos ~]# service iptables stop iptables:将链设置为政策 ACCEPT:filter [确定] iptables:清除防火墙规则: [确定] iptables:正在卸载模块: [确定]
- 客户端dns指定为DNS服务器的IP
[root@CentOS6 ~]# cat /etc/sysconfig/network-scripts/ifcfg-eth0 DEVICE=eth0 ONBOOT=yes BOOTPROTO=static IPADDR=192.168.36.6 NETMASK=255.255.255.0 DNS1=192.168.36.7 NAME="System eth0" [root@CentOS6 ~]# cat /etc/resolv.conf # Generated by NetworkManager search magedu36.com nameserver 192.168.36.7
服务搭建
www服务器上搭建WEB服务
- 安装httpd软件包
[root@centos ~]#yum install -y httpd
- 搭建WEB页面
[root@centos ~]#echo "<h1>www.magedu.com</h1>" >> /var/www/html/index.html
3.启动服务并设置开机启动
[root@centos ~]#systemctl restart httpd [root@centos ~]#systemctl enable httpd Created symlink from /etc/systemd/system/multi-user.target.wants/httpd.service to /usr/lib/systemd/system/httpd.service.
- curl测试WEB网页
[root@centos ~]#curl 192.168.36.67 <h1>www.magedu.com</h1>
DNS主服务器配置
- 安装bind软件包
[root@master ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@master ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
allow-transfer {192.168.36.47;}; # 仅允许192.168.36.47主机获取该主机所有域的数据
[root@master ~]# vim /etc/named.rfc1912.zones
zone "magedu.com" IN { # 解析magedu.com
type master; # 主
file "magedu.com.zone"; # 自定义的域名到IP的正向解析的配置文件
};
[root@master ~]# cd /var/named/
[root@master named]# cp -p named.localhost magedu.com.zone
[root@master named]# vim magedu.com.zon
$TTL 1D
@ IN SOA master admin.magedu.com. (
0 ; serial # 数据库序列号/版本号
1D ; refresh # 主从服务器时间间隔
1H ; retry # 同步间隔
1W ; expire # 未同步过期时间
3H ) ; minimum # 不存在记录,默认缓存时间
NS master
NS slave
master A 192.168.36.37 # 域名指定IP
slave A 192.168.36.47
www A 192.168.36.67
- 启动服务并设置开机启动
[root@master named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@master named]# chkconfig named on [root@master named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@master named]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15433 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS slave.magedu.com. magedu.com. 86400 IN NS master.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 17:47:26 2019 ;; MSG SIZE rcvd: 121
DNS备用服务器配置
- 安装bind软件包
[root@slave ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@slave ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
allow-transfer {none;}; # 不允许任何主机获取该主机所有域的数据
[root@slave ~]# vim /etc/named.rfc1912.zones
zone "magedu.com" IN {
type slave;
masters { 192.168.36.37; };
file "slaves/magedu.com.slave";
};
- 启动服务并设置开机启动
[root@slave named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@slave named]# chkconfig named on [root@slave named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- 检查是否从主服务器上获取数据库文件
[root@slave ~]# ll /var/named/slaves/ 总用量 4 -rw-r--r--. 1 named named 387 4月 23 18:56 magedu.com.slave
- dig测试
[root@slave ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6099 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS master.magedu.com. magedu.com. 86400 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 20:02:31 2019 ;; MSG SIZE rcvd: 121
com域配置
- 安装bind软件包
[root@com ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@com ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
[root@com ~]# vim /etc/named.rfc1912.zones
zone "com" IN {
type master;
file "come.zone";
};
[root@com ~]# cd /var/named/
[root@com named]# cp -p named.localhost come.zone
[root@com named]# vim come.zone
$TTL 1D
@ IN SOA com admin.magedu.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS com
magedu NS masterns
magedu NS slavens
com A 192.168.36.27
masterns A 192.168.36.37
slavens A 192.168.36.47
- 启动服务并设置开机启动
[root@com named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@com named]# chkconfig named on [root@com named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@com named]# dig www.magedu.com @192.168.36.37 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.37 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64848 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS slave.magedu.com. magedu.com. 86400 IN NS master.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 0 msec ;; SERVER: 192.168.36.37#53(192.168.36.37) ;; WHEN: Tue Apr 23 20:06:17 2019 ;; MSG SIZE rcvd: 121 [root@com named]# dig www.magedu.com @192.168.36.47 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.47 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6321 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 86400 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS master.magedu.com. magedu.com. 86400 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: master.magedu.com. 86400 IN A 192.168.36.37 slave.magedu.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 192.168.36.47#53(192.168.36.47) ;; WHEN: Tue Apr 23 20:06:19 2019 ;; MSG SIZE rcvd: 121
- 因com域与根域配置类似,所以将com域的数据库文件scp至根域中
[root@com named]# scp come.zone 192.168.36.17:/var/named/ The authenticity of host '192.168.36.17 (192.168.36.17)' can't be established. RSA key fingerprint is 6a:f4:58:5b:fc:8e:64:69:fd:b8:64:04:89:d3:dc:5d. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.36.17' (RSA) to the list of known hosts. root@192.168.36.17's password: come.zone
根域配置
- 安装bind软件包
[root@gen ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@gen ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
....
zone "." IN { # 修改根域,让其在本地文件查找
type master;
file "root.zone";
};
[root@gen named]# mv come.zone root.zone
[root@gen named]# vim root.zone
$TTL 1D
@ IN SOA ns admin.magedu.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS ns
com NS comns
ns A 192.168.36.17
comns A 192.168.36.27
[root@gen named]# chgrp named root.zone # 修改组为named [root@gen named]# ll root.zone -rw-r-----. 1 root named 192 4月 23 18:22 root.zone
- 启动服务并设置开机启动
[root@gen named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@gen named]# chkconfig named on [root@gen named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@gen ~]# dig www.magedu.com @192.168.36.27 ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com @192.168.36.27 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20620 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 71917 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 86400 IN NS masterns.com. magedu.com. 86400 IN NS slavens.com. ;; ADDITIONAL SECTION: masterns.com. 86400 IN A 192.168.36.37 slavens.com. 86400 IN A 192.168.36.47 ;; Query time: 1 msec ;; SERVER: 192.168.36.27#53(192.168.36.27) ;; WHEN: Tue Apr 23 22:16:22 2019 ;; MSG SIZE rcvd: 125
DNS服务器配置
- 安装bind软件包
[root@main ~]# yum install -y bind
- 编辑配置文件
注释ipv监听端口、访问控制列表
[root@main ~]# vim /etc/named.conf
// listen-on port 53 { 127.0.0.1; };
// allow-query { localhost; };
dnssec-enable no; # 将安全相关的转发设置改为no
dnssec-validation no;
修改本地域指向根域的库文件 [root@main ~]# vim /var/named/named.ca . 3600000 NS A.ROOT-SERVERS.NET. A.ROOT-SERVERS.NET. 3600000 A 192.168.36.17
- 启动服务并设置开机启动
[root@main named]# service named restart 停止 named: [确定] Generating /etc/rndc.key: [确定] 启动 named: [确定] [root@main named]# chkconfig named on [root@main named]# chkconfig named --list named 0:关闭 1:关闭 2:启用 3:启用 4:启用 5:启用 6:关闭
- dig测试
[root@main ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58392 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 72483 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 72493 IN NS master.magedu.com. magedu.com. 72493 IN NS slave.magedu.com. ;; ADDITIONAL SECTION: slave.magedu.com. 72493 IN A 192.168.36.47 master.magedu.com. 72493 IN A 192.168.36.37 ;; Query time: 8 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Apr 23 22:23:43 2019 ;; MSG SIZE rcvd: 121
DNS客户端测试
最终测试
[root@CentOS6 ~]# dig www.magedu.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6 <<>> www.magedu.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52502 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;www.magedu.com. IN A ;; ANSWER SECTION: www.magedu.com. 72434 IN A 192.168.36.67 ;; AUTHORITY SECTION: magedu.com. 72444 IN NS slave.magedu.com. magedu.com. 72444 IN NS master.magedu.com. ;; ADDITIONAL SECTION: slave.magedu.com. 72444 IN A 192.168.36.47 master.magedu.com. 72444 IN A 192.168.36.37 ;; Query time: 0 msec ;; SERVER: 192.168.36.7#53(192.168.36.7) ;; WHEN: Tue Apr 23 14:24:33 2019 ;; MSG SIZE rcvd: 121
[root@CentOS6 ~]# curl www.magedu.com <h1>www.magedu.com</h1>
至此,已完成DNS互联网的架构功能。
以上就是本文的全部内容,希望本文的内容对大家的学习或者工作能带来一定的帮助,也希望大家多多支持 码农网
猜你喜欢:
- 『互联网架构』软件架构-解密电商系统-互联网BAT商品详情缓存架构(82)
- 『互联网架构』软件架构-分布式架构(14)
- 『互联网架构』软件架构-电商系统架构(上)(69)
- 『互联网架构』软件架构-电商系统架构(中)(70)
- 『互联网架构』软件架构-电商系统架构(下)(71)
- 『互联网架构』软件架构-电商系统架构发展历程(68)
本站部分资源来源于网络,本站转载出于传递更多信息之目的,版权归原作者或者来源机构所有,如转载稿涉及版权问题,请联系我们。
利用Python进行数据分析 原书第2版
Wes McKinney / 徐敬一 / 机械工业出版社 / 2018-7 / 119
本书由Python pandas项目创始人Wes McKinney亲笔撰写,详细介绍利用Python进行操作、处理、清洗和规整数据等方面的具体细节和基本要点。第2版针对Python 3.6进行全面修订和更新,涵盖新版的pandas、NumPy、IPython和Jupyter,并增加大量实际案例,可以帮助你高效解决一系列数据分析问题。 第2版中的主要更新包括: • 所有的代码,包括把Py......一起来看看 《利用Python进行数据分析 原书第2版》 这本书的介绍吧!
