智能DNS:
根據客戶端來源IP的地址,來爲某一個解析請求返回一個設定好的解析結果
view將同一種應用對不同的用戶呈現出不同的結果
任何時候,使用了view,所有的zone都必須在view中
#service named stop
#ls
#vim /etc/named.conf
options {
directory "/var/named";
};
view localnet {
match-clients { 192.168.0.0/24; }; 對來源網絡進行匹配
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.loacal";
};
zone "magedu.com" IN {
type master;
file "magedu.com.zone";
};
zone "0.168.192.in-addr.arpa" IN {
type master;
file "192.168.0.zone";
};
};
view external { 聲明一個外部網絡
match-clients { 172.16.0.0/16; };
zone "magedu.com" IN {
type master;
file "magedu.com.external";
};
};
key "rndckey" {
algorithm hmac-md5;
secret "4HkEGKVmpXQKwIN3214PVQ==";
};
contorls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndckey"; };
};
#named-checkconf
#cd /var/named/
#ls
#vim magedu.com.zone
$TTL 600
$ORIGIN magedu.com.
@ IN SOA ns1.magedu.com. (
2011112402
1H
10M
7D
1H )
IN NS ns1
IN NS ns2
IN MX 10 mail
IN MX 20 mail2
ns1 IN A 192.168.0.181
ns2 IN A 192.168.0.182
mail IN A 192.168.0.254
mail2 IN A 192.168.0.1
www IN A 192.168.100.1
pop3 IN A 192.168.0.254
ftp IN A 192.168.0.254
tech.magedu.com. IN NS ns.tech.magedu.com
ns.tech.magedu.com. IN A 192.168.0.183
market.magedu.com. IN NS ns.market.magedu.com
ns.market.magedu.com. IN A 192.168.0.184
#cp magedu.com.zone magedu.com.external
#vim magedu.com.external
$TTL 600
$ORIGIN magedu.com.
@ IN SOA ns1.magedu.com. (
2011112402
1H
10M
7D
1H )
IN NS ns1
IN NS ns2
IN MX 10 mail
IN MX 20 mail2
ns1 IN A 192.168.0.181
ns2 IN A 192.168.0.182
mail IN A 172.16.0.254
mail2 IN A 172.16.0.1
www IN A 172.16.100.1
pop3 IN A 172.16.0.254
ftp IN A 172.16.0.254
tech.magedu.com. IN NS ns.tech.magedu.com
ns.tech.magedu.com. IN A 192.168.0.183
market.magedu.com. IN NS ns.market.magedu.com
ns.market.magedu.com. IN A 192.168.0.184
#service named restart
#tail /var/log/messages 報錯,magedu.com.external沒權限
#ll
#chgrp named magedu.com.external
#ll
#!se 調用最近一次的se開頭的命令
#!ta 調用最近一次的ta開頭的命令
之後就是測試了
再加一個view,用來解釋其他網絡傳過來的地址
#vim /etc/named.conf
options {
directory "/var/named";
};
view localnet {
match-clients { 192.168.0.0/24; }; 對來源網絡進行匹配
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.loacal";
};
zone "magedu.com" IN {
type master;
file "magedu.com.zone";
};
zone "0.168.192.in-addr.arpa" IN {
type master;
file "192.168.0.zone";
};
};
view external { 聲明一個外部網絡
match-clients { 172.16.0.0/16; };
zone "magedu.com" IN {
type master;
file "magedu.com.external";
};
};
view unknownet { 聲明一個外部網絡
match-clients { any; };
zone "magedu.com" IN {
type master;
file "magedu.com.any";
};
};
key "rndckey" {
algorithm hmac-md5;
secret "4HkEGKVmpXQKwIN3214PVQ==";
};
contorls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndckey"; };
};
#cp magedu.com.zone magedu.com.any
#vim magedu.com.any
$TTL 600
$ORIGIN magedu.com.
@ IN SOA ns1.magedu.com. (
2011112402
1H
10M
7D
1H )
IN NS ns1
IN NS ns2
IN MX 10 mail
IN MX 20 mail2
ns1 IN A 192.168.0.181
ns2 IN A 192.168.0.182
mail IN A 192.168.0.254
mail2 IN A 192.168.0.1
www IN A 172.16.100.1
#rndc reload
#rndc status
#chgrp named magedu.com.any