Ni ọjọ kan Mo dojuko iṣẹ ṣiṣe ti fifun ọkan ninu awọn alabara mi ni ẹtọ lati ṣatunkọ awọn igbasilẹ PTR ti subnet / 28 ti a yàn fun u. Emi ko ni adaṣe fun ṣiṣatunṣe awọn eto BIND lati ita. Nitorinaa, Mo pinnu lati mu ọna ti o yatọ - lati ṣe aṣoju si alabara nkan kan ti agbegbe PTR ti subnet / 24.
Yoo dabi - kini o le rọrun julọ? A kan forukọsilẹ subnet bi o ṣe nilo ati taara si NS ti o fẹ, bi a ti ṣe pẹlu subdomain kan. Ṣugbọn rara. Kii ṣe pe o rọrun (botilẹjẹpe ni otitọ o jẹ ipilẹṣẹ gbogbogbo, ṣugbọn intuition kii yoo ṣe iranlọwọ), iyẹn ni idi ti Mo n kọ nkan yii.
Ẹnikẹni ti o ba fẹ lati ro ero rẹ fun ara rẹ le ka
Tani o fẹ ojutu ti a ti ṣetan, kaabo si ologbo.
Ni ibere ki o ma ṣe idaduro awọn ti o fẹran ọna-daakọ, Emi yoo firanṣẹ apakan ti o wulo ni akọkọ, ati lẹhinna apakan imọran.
1. Iwa. Agbegbe Aṣoju /28
Jẹ ká sọ pé a ni subnet 7.8.9.0/24. A nilo lati ṣe aṣoju subnet 7.8.9.240/28 si onibara DNS 7.8.7.8 (ns1.client.domain).
Lori DNS ti olupese o nilo lati wa faili kan ti o ṣe apejuwe agbegbe iyipada ti subnet yii. Jeki o sele 9.8.7.ni-addr.arpa.
A asọye lori awọn titẹ sii lati 240 to 255, ti o ba ti wa ni eyikeyi. Ati ni ipari faili a kọ nkan wọnyi:
255-240 IN NS 7.8.7.8
$GENERATE 240-255 $ CNAME $.255-240maṣe gbagbe lati mu agbegbe tẹlentẹle sii ati ṣe
rndc reloadEyi pari apakan olupese. Jẹ ki a tẹsiwaju si DNS onibara.
Ni akọkọ, jẹ ki a ṣẹda faili kan /etc/bind/master/255-240.9.8.7.in-addr.arpa akoonu wọnyi:
$ORIGIN 255-240.9.8.7.in-addr.arpa.
$TTL 1W
@ 1D IN SOA ns1.client.domain. root.client.domain. (
2008152607 ; serial
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
@ IN NS ns1.client.domain.
@ IN NS ns2.client.domain.
241 IN PTR test.client.domain.
242 IN PTR test2.client.domain.
245 IN PTR test5.client.domain.
Ati ni lorukọ.conf ṣafikun apejuwe ti faili tuntun wa:
zone "255-240.9.8.7.in-addr.arpa." IN {
type master;
file "master/255-240.9.8.7.in-addr.arpa";
};B tun ilana dipọ.
/etc/init.d/named restartGbogbo. Bayi o le ṣayẹwo.
#> host 7.8.9.245
245.9.8.7.in-addr.arpa is an alias for 245.255-240.9.8.7.in-addr.arpa.
245.255-240.9.8.7.in-addr.arpa domain name pointer test5.client.domain.Jọwọ ṣe akiyesi pe kii ṣe igbasilẹ PTR nikan ni a fun, ṣugbọn tun CNAME. Bó ṣe yẹ kó rí nìyẹn. Ti o ba n iyalẹnu idi, lẹhinna kaabọ si ori ti o tẹle.
2. Ilana. Bi o ṣe n ṣiṣẹ.
O ti wa ni soro lati tunto ati yokokoro a dudu apoti. O rọrun pupọ ti o ba loye ohun ti n ṣẹlẹ ninu inu.
Nigba ti a ba ṣe aṣoju subdomain ni agbegbe kan domain, lẹhinna a kọ nkan bii eyi:
client.domain. NS ns1.client.domain.
ns1.client.domain. A 7.8.7.8A sọ fun gbogbo eniyan ti o beere pe a ko ṣe iduro fun aaye yii ati sọ ẹniti o ni iduro. Ati gbogbo awọn ibeere fun klient.domain àtúnjúwe si 7.8.7.8. Nigbati o ba n ṣayẹwo, a rii aworan atẹle (a yoo fi ohun ti alabara ni silẹ nibẹ. Ko ṣe pataki):
# host test.client.domain
test.client.domain has address 7.8.9.241Awon. a sọ fun wa pe iru igbasilẹ A wa ati ip rẹ jẹ 7.8.9.241. Ko si alaye ti ko wulo.
Bawo ni o ṣe le ṣe ohun kanna pẹlu subnet kan?
Nitori olupin DNS wa ti forukọsilẹ ni RIPE, lẹhinna nigba ti o ba beere adirẹsi IP PTR kan lati nẹtiwọọki wa, ibeere akọkọ yoo tun jẹ si wa. Awọn kannaa jẹ kanna bi pẹlu awọn ibugbe. Ṣugbọn bawo ni o ṣe tẹ subnet sinu faili agbegbe kan?
Jẹ ki a gbiyanju lati tẹ sii bi eleyi:
255-240 IN NS 7.8.7.8Ati... iyanu ko ṣẹlẹ. A ko gba eyikeyi ibeere redirection. Ohun naa ni pe dipọ ko paapaa mọ pe awọn titẹ sii wọnyi ninu faili agbegbe yiyipada jẹ awọn adirẹsi IP, ati paapaa diẹ sii ko loye titẹsi ibiti. Fun u, eyi jẹ diẹ ninu iru subdomain aami. Awon. fun dè nibẹ ni yio je ko si iyato laarin "255-240"Ati"onítara wa". Ati pe fun ibeere lati lọ si ibiti o nilo lati lọ, adirẹsi ti o wa ninu ibeere yẹ ki o dabi eyi: 241.255-240.9.8.7.ni-addr.arpa. Tabi bii eleyi ti a ba lo subdomain ohun kikọ kan: 241.onibara wa.9.8.7.in-addr.arpa. Eyi yatọ si deede: 241.9.8.7.ni-addr.arpa.
Yoo nira lati ṣe iru ibeere bẹ pẹlu ọwọ. Ati pe paapaa ti o ba ṣiṣẹ, ko yeye bi o ṣe le lo ni igbesi aye gidi. Lẹhinna, lori ìbéèrè 7.8.9.241 DNS ti olupese naa tun dahun si wa, kii ṣe ti alabara.
Ati pe eyi ni ibi ti wọn wa sinu ere CNAME.
Ni ẹgbẹ olupese, o nilo lati ṣe inagijẹ fun gbogbo awọn adirẹsi IP ti subnet ni ọna kika ti yoo firanṣẹ ibeere naa si DNS alabara.
255-240 IN NS ns1.client.domain.
241 IN CNAME 241.255-240
242 IN CNAME 242.255-240
и т.д.
Eleyi jẹ fun awọn lile ṣiṣẹ =).
Ati fun ọlẹ, apẹrẹ ti o wa ni isalẹ dara julọ:
255-240 IN NS ns1.client.domain.
$GENERATE 240-255 $ CNAME $.255-240Bayi beere alaye ni 7.8.9.241 ati bẹbẹ lọ 241.9.8.7.ni-addr.arpa lori olupin DNS ti olupese yoo yipada si 241.255-240.9.8.7.ni-addr.arpa ati lọ si alabara DNS.
Ẹgbẹ alabara yoo nilo lati mu iru awọn ibeere bẹ. Nitorinaa, a ṣẹda agbegbe kan 255-240.9.8.7.ni-addr.arpa. Ninu rẹ, a le, ni opo, gbe awọn titẹ sii yiyipada fun eyikeyi ip ti gbogbo subnet / 24, ṣugbọn wọn yoo beere wa nikan nipa awọn ti olupese n firanṣẹ si wa, nitorina a kii yoo ni anfani lati mu ṣiṣẹ ni ayika =).
Lati ṣapejuwe, Emi yoo tun funni ni apẹẹrẹ ti awọn akoonu ti faili agbegbe yiyipada lati ẹgbẹ alabara:
$ORIGIN 255-240.9.8.7.in-addr.arpa.
$TTL 1W
@ 1D IN SOA ns1.client.domain. root.client.domain. (
2008152607 ; serial
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
@ IN NS ns1.client.domain.
@ IN NS ns2.client.domain.
241 IN PTR test.client.domain.
242 IN PTR test2.client.domain.
245 IN PTR test5.client.domain.
Nítorí pé a lo CNAME ní ẹ̀gbẹ́ olùpèsè ni a fi ń gba àwọn dátà wọ̀nyí ní ìdáhùn sí ìbéèrè kan: Àdírẹ́sì IP àwọn ìkọsílẹ̀ méjì, kì í ṣe ọ̀kan.
#> host 7.8.9.245
245.9.8.7.in-addr.arpa is an alias for 245.255-240.9.8.7.in-addr.arpa.
245.255-240.9.8.7.in-addr.arpa domain name pointer test5.client.domain. Maṣe gbagbe lati tunto ACL ni deede. Nitoripe ko ṣe oye lati mu agbegbe PTR fun ararẹ ati pe ko dahun si ẹnikẹni lati ita =).
orisun: www.habr.com
