《牛人整理-dns服务器实现与管理》由会员分享,可在线阅读,更多相关《牛人整理-dns服务器实现与管理(25页珍藏版)》请在金锄头文库上搜索。
1、配置DNS 服务器和日常管理福州大学 吴海东 MCSE/MCDBA,CIWSA,MOE讲师 Windows Server 2003: 网络基本架构的实现和管理系列涉及教材:第7章、第8章、第9章今日议题今日议题n课程导入n名称解析与DNS的作用nDNS服务实现与原理nDNS区域及复制nDNS服务器管理与维护nDNS疑难探讨nQ&A1 课程导入n网络服务访问的多种方法nIP地址与名称的区别能否告诉我 张三的电话 号码?让我找找哦,不好 意思,我找不到。不 过,我帮你问其他人 ,请稍等哦,张三的电 话,没有问题 ,我有,是 878933332 名称解析与DNS作用n名称解析的方法n计算机名称Net
2、BIOSn主机名称FQDNn名称解析的顺序n寻求本地缓存n寻求DNS服务器n寻求NetBIOS名称解析nDNS的作用n正向解析n反向解析什么是正向搜索、反向搜索?名称空间: training.nwtraders.msft.DNS Client1DNS Client2DNS Client3DNS Server Authorized for trainingForward zoneTrainingDNS Client1192.168.2.45DNS Client2192.168.2.46DNS Client3192.168.2.47Reverse zone1.168.192.in- addr.ar
3、pa192.168.2.45DNS Client1192.168.2.46DNS Client2192.168.2.47DNS Client3DNS Client2 = ?192.168.2.46 = ?3 DNS服务实现与原理nDNS服务实现n服务器版本n静态地址n管理员权限nDNS工作原理n域名称空间n查询过程:递归查询,迭代查询n根提示n转发器n缓存n动态更新什么是域名称空间?Root DomainRoot DomainSubdomainsSubdomainsSecond-Level DomainSecond-Level DomainTop-Level DomainTop-Level D
4、omainFQDN: southnwtraderscomsaleswesteastorgnetHost: server1递归查询如何工作?Computer1Recursive query for 172.16.64.11A recursive query is a query made to a DNS server, in which the DNS client asks the DNS server to provide a complete answer to the query DNS server checks the forward lookup zone and cache f
5、or an answer to the queryDatabaseLocal DNS Server迭代查询如何工作?An iterative query is a query made to a DNS server in which the DNS client requests the best answer that the DNS server can provide without seeking further help from other DNS servers. The result of an iterative query is often a referral to a
6、nother DNS server lower in the DNS tree Computer1Local DNS SRoot Hint (.).comRecursive query for 172.16.64.11Iterative QueryIterative QueryIterative QueryAsk .comAsk Authoritative Response321根提示如何工作?Root hints are DNS resource records stored on a DNS server that list the IP addresses for the DNS roo
7、t serversmicrosoftCluster of DNS ServersRoot HintsDNS ServerCluster of Root (.) ServerscomComputer1转发器如何工作?A forwarder is a DNS server designated by other internal DNS servers to forward queries for resolving external or offsite DNS domain namesCRoot Hint (.).comIterative QueryIterative QueryIterati
8、ve QueryAsk .comAsk Authoritative ResponseLocal DNS ServerForwarderRecursive query for 172.16.64.11172.16.64.11Recursive QueryDNS缓存如何工作?Caching is the process of temporarily storing recently accessed information in a special memory subsystem for quicker accessWheres Client A?Client1Client2ClientACli
9、entA is at 192.168.8.44Wheres Client A?ClientA is at 192.168.8.44Caching TableHost NameIP AddressTTLclientA.contoso.msft.192.168.8.4428 seconds什么是动态更新?A dynamic update is the process of a DNS client dynamically creating, registering, or updating its records in zones that are maintained by DNS server
10、s that can accept and process messages for dynamic updatesDNS客户端如何使用动态更新功能注册和更新自 己的资源记录?Client sends SOA query 1DNS server sends zone name and server IP address2Client verifies existing registration3DNS server responds by stating that registration does not existClient sends dynamic update to DNS ser
11、ver5 Windows Server 2003Windows XPWindows 2000DNS ServerResource Records1234544 DNS区域及其复制n由名称空间而来n区域的类型n标准主要n标准辅助n存根区域n区域复制n作用n类型n实现什么是DNS区域NwtradersWestSouthSupportSalesTrainingNorthA zone is a portion of the DNS database that contains the resource records with the owner names that belong to the co
12、ntiguous portion of the DNS namespace区域传递如何工作?Secondary ServerPrimary and Master ServerSOA query for a zoneSOA query answeredIXFR or AXFR query for a zoneIXFR or AXFR query answered(zone transfer)A DNS zone transfer is the synchronization of authoritative DNS zone data between DNS servers1234DNS通知机制
13、Secondary ServerPrimary and Master ServerDNS notifyZone transferA DNS notify is an update to the original DNS protocol specification that permits notification to secondary servers when zone changes occurSource ServerDestination Server1234Resource record is updated SOA serial number is updated5 DNS服务
14、器管理与维护n生存时间n老化与清理n测试DNS服务器配置n性能监视什么是老化与清理?ParameterDescriptionExampleNo Refresh IntervalThe time period when the DNS server does not accept refresh attempts7-days (default)Refresh IntervalThe time period when the DNS server does accept refresh attempts7-days (default)Aging is the process that determ
15、ines whether a stale DNS resource record should be removed from the DNS database Scavenging is the process of cleaning and removing outdated or extinct names data from the DNS databaseA refresh attempt is the process of a computer requesting a refresh on its DNS record老化与清理是如何工作的?Jan 1Jan 15Jan 8ScavengeNo-Refresh intervalRefresh intervalTime stampedAging7-days7-days6 DNS的疑难探讨n什么是DNS循环复用n作为一种负载平衡的机制来分担网络资源的访问载荷。当满足查询要求的资源记录有多条时,可以用循环的方式把这些记录返回给客户机。n循环复用的作用n负载平衡n故障并举n如何实现循环复用nDEMO6 DNS的疑难探讨n实现DNS循环复用n对于多宿主名称,本地子网优先取代循环复用。n若启动了循环复用,作为对响应列表进行排序的一种辅选方法,可以使用循环复用来循环使用
