?第一、實現(xiàn)智能DNSnn大概的過程：nt安裝配置模板－－》 視圖（相當(dāng)于shell里的條件判斷）－－》視圖根據(jù)一個acl列表（對不同地域的IP進(jìn)行歸類命名）進(jìn)行讀取不同的區(qū)域文件nn做準(zhǔn)備：nt主機(jī)

?第一、實現(xiàn)智能DNSnn大概的過程：nt安裝配置模板－－》 視圖（相當(dāng)于shell里的條件判斷）－－》視圖根據(jù)一個acl列表（對不同地域的IP進(jìn)行歸類命名）進(jìn)行讀取不同的區(qū)域文件nn做準(zhǔn)備：nt主機(jī)名nt關(guān)閉防火墻,Selinuxnt同步時間nn1、對各個線路的IP進(jìn)行歸類nn安裝ripe-dbase-client-v3nn下載網(wǎng)通的IPnwhois3 -h whois.apnic.net -l -i mb MAINT-CNCGROUP > /tmp/test/cncnn下載電信的IPnwhois3 -h whois.apnic.net -l -i mb MAINT-CHINANET > /tmp/test/chinann這些文件需要二次處理nnn這里實現(xiàn)模擬，寫兩個IP的aclnn網(wǎng)絡(luò)使用 <=10.1.1.120n# vim /var/named/chroot/var/named/data/acl_cncnacl cnc{n10.1.1.1;n10.1.1.20;n10.1.1.73;n10.1.1.100;n10.1.1.104;n192.168.20/24;n}; //《－－－別忘記;nn中國電信的IPn# vim /var/named/chroot/var/named/data/acl_chinanacl china{n10.1.1.146;n10.1.1.168;n10.1.1.187;n};nnn2、配置DNSn安裝模板文件 caching-nameservernn先把原來的文件重命名n# mv named.conf named.conf.bkn# mv named.caching-nameserver.conf named.confnnnoptions {n listen-on port 53 { any; }; //<---###n listen-on-v6 port 53 { ::1; };n directory "/var/named";n dump-file "/var/named/data/cache_dump.db";n statistics-file "/var/named/data/named_stats.txt";n memstatistics-file "/var/named/data/named_mem_stats.txt";ntn allow-query { any; }; //<---###ntforwarders { 10.1.1.1; };n};nlogging {n channel default_debug {n file "data/named.run";n severity dynamic;n };n};nn//視圖n//view localhost_resolver {n// match-clients { localhost; };n// match-destinations { localhost; };n// recursion yes;n// include "/etc/named.rfc1912.zones";n//};nninclude "data/acl_cnc";ninclude "data/acl_china";nnview "cnc_resolver" {n match-clients { cnc;10.1.1.19; };n zone "upl.com" in {n type master;n file "data/master.cnc.upl.com.zone";n };n};nnview "china_resolver" {n match-clients { china;10.1.1.21; };n zone "upl.com" in {n type master;n file "data/master.china.upl.com.zone";n };n};nnview "other" {n match-clients { any; };n zone "upl.com" in {n type master;n file "data/master.other.upl.com.zone";n };n};nn//////////////////////////////////////////////nif [ con_1 ];thenntcommand1;nelif [ con_2 ];thenntcommand2;nelsentcommand3;nfinn/////////////////////////////////////nn編寫不同的區(qū)域文件：n# vim /var/named/chroot/var/named/data/master.china.upl.com.zonen$TTL 86400n@ IN SOA upl.com. root. (n 2010080401n 60n 30n 1Dn 1Hn