DNS網(wǎng)通電信互通解決方案實施步驟:1.電信和網(wǎng)通各一臺服務(wù)器2.使用BIND9做智能DNS,自動根據(jù)客戶端IP來判斷,網(wǎng)通的用戶解析出網(wǎng)通的IP,電信的解析出電信IP.3.將其中一臺服務(wù)器做成反向代

DNS網(wǎng)通電信互通解決方案


實施步驟:
1.電信和網(wǎng)通各一臺服務(wù)器
2.使用BIND9做智能DNS,自動根據(jù)客戶端IP來判斷,網(wǎng)通的用戶解析出網(wǎng)通的IP,電信的解析出電信IP.
3.將其中一臺服務(wù)器做成反向代理,這樣數(shù)據(jù)就可以同步了,不需要為同步數(shù)據(jù)麻煩.
注意:
如果你想讓自己的服務(wù)器不同線路訪問不同的服務(wù)器,
或者某個區(qū)域訪問自己區(qū)域的服務(wù)器使用該view功能就可以實現(xiàn)
比如:國外的訪問國外服務(wù)器 國內(nèi)訪問國內(nèi)服務(wù)器.
測試做的域名
www.sc-linux.com
電信IP218.6.242.216
網(wǎng)通IP61.182.49.7
電信用戶PING www.sc-linux.com會解析到218.6.242.216
網(wǎng)通用戶PING www.sc-linux.com會解析到61.182.49.7
批注:該功能主要是解決了北京某門戶網(wǎng)站的南北互不相訪的問題.
于2006-4-4日,北京 by mingfor.com.
配置步驟：
1、 軟件列表
BIND 9.3.2
ftp://ftp.isc.org/isc/bind9/9.3.2/bind-9.3.2.tar.gz
2、 安裝BIND 9
安裝BIND9：
# tar zxvf bind-9.3.2.tar.gz
# cd bind-9.3.2
# ./configure
--prefix=/usr/local/named
--disable-ipv6
# make && make install
建立BIND用戶：
# groupadd bind
# useradd -g bind -d /usr/local/named -s /sbin/nologin bind
創(chuàng)建配置文件目錄：
# mkdir –p /usr/local/named/etc
# chown bind:bind /usr/local/named/etc
# chmod 700 /usr/local/named/etc
創(chuàng)建主要的配置文件：
# vi /usr/local/named/etc/named.conf
===========================named.conf=======================
acl "trust-lan" { 127.0.0.1/8; 192.168.0.0/16;};
options {
directory "/usr/local/named/etc/";
pid-file "/var/run/named/named.pid";
version "0.0.0";
datasize 40M;
allow-transfer {
"trust-lan";};
recursion yes;
allow-notify {
"trust-lan";
};
allow-recursion {
"trust-lan";
};
auth-nxdomain no;
forwarders {
202.99.160.68;
202.99.168.8;};
};
logging {
channel warning
{ file "/var/log/named/dns_warnings" versions 3 size 1240k;
severity warning;
print-category yes;
print-severity yes;
print-time yes;
};
channel general_dns
{ file "/var/log/named/dns_logs" versions 3 size 1240k;
severity info;
print-category yes;
print-severity yes;
print-time yes;
};
category default { warning; };
category queries { general_dns; };
};
zone "." {
type hint;
file "named.root";
};
acl "CNC" {
58.16.0.0/16;
58.17.0.0/17;
58.17.128.0/17;
58.18.0.0/16;
58.19.0.0/16;
58.20.0.0/16;
58.21.0.0/16;
58.22.0.0/15;
58.240.0.0/15;
58.242.0.0/15;
58.244.0.0/15;
58.246.0.0/15;
58.248.0.0/13;
60.0.0.0/13;
60.8.0.0/15;
60.10.0.0/16;
60.11.0.0/16;
60.12.0.0/16;
60.13.0.0/18;
60.13.128.0/17;
60.14.0.0/15;
60.16.0.0/13;
60.24.0.0/14;
60.30.0.0/16;
60.31.0.0/16;
60.208.0.0/13;
60.216.0.0/15;
60.218.0.0/15;
60.220.0.0/14;
61.48.0.0/13;
61.133.0.0/17;
61.134.96.0/19;
61.134.128.0/17;
61.135.0.0/16;
61.137.128.0/17;
61.138.0.0/17;
61.138.128.0/18;
61.139.128.0/18;
61.148.0.0/15;
61.156.0.0/16;
61.159.0.0/18;
61.161.0.0/18;