Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

Domain name cname jump scheme

2025-03-31 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

Domain name configuration reference

First, the concrete realization of DNS

1. Each business host of the backbone system applies for the host name of the test domain and specifies the alias record. The backbone system business host domain name application form shall be filled out by the business deployment unit and prevent conflicts with the original host name of the test domain.

Serial number

Business system

Hostnam

Alias

IP address

one

Example: web service

Web.test

Web.abc.test

X.X.X.X

two。 Create a new subdomain (for example: abc.test) in the test domain, add the subdomain authorization NS record and the corresponding A record to the DNS server, and the subdomain authoritative address points to the DNS server address of the double active data center platform. And for sub-domain filing, to prevent conflict and occupation.

3. The intelligent DNS of Shuanghuo data center platform is responsible for the authoritative analysis of the new sub-domain of abc.test and the establishment of the corresponding A records of each business host.

4. The headquarters and branch client networks still use the original DNS settings.

Second, the current WAN domain name related information

1. DNS Service IP

Serial number

Data center

Equipment

IP

one

Data Center 1

DNS

X.x.x.x

two

Data Center 2

DNS

X.x.x.x

two。 Domain name relation comparison table

Environment

System

User access domain name

Dual active data center

Production environment

System

Test.test

Test.abc.test

CA (internal) platform

Ca.test

Ca.abc.test

Business platform

Ebp.test

Ebp.abc.test

Service platform service access

Ebps.test

Ebps.abc.test

Test environment

System

Testt.test

Testt.abc.test

CA (internal) platform

Cat.test

Cat.abc.test

Business platform

Ebpt.test

Ebpt.abc.test

III. Reference configuration

1. Root DNS server reference configuration

1) zone test file reference configuration

Abc IN NS ns1.abc.test.

IN NS ns2.abc.test.

Ns1.abc.test. IN A 10.91.193.50

Ns2.abc.test. IN A 10.91.193.58

Test IN CNAME test.abc.test.

Ca IN CNAME ca.abc.test

Ebp IN CNAME ebp.abc.test

Ebps IN CNAME ebps.abc.test

Testt IN CNAME testt.abc.test

Cat IN CNAME cat.abc.test

Ebpt IN CNAME ebpt.abc.test

Modify the named.conf file

Scenario 1: disable Testdomain forwarding in named.conf

Zone "test" in {

Forwarders {}

}

Solution 2: add abc.test domain forwarding to named.conf

Zone "abc.test" in {

Type forward

Forwarders {10.91.193.50 * 10.91.193.58;}

}

two。 Office-side DNS server reference configuration

Add subdomain forwarding to the named.conf file

Zone "abc.test" in {

Type forward

Forwarders {10.91.193.50 * 10.91.193.58;}

}

4. DNS testing

1. Root DNS parsing test

1) Test conclusion

The domain name of the production environment can be resolved normally, and the corresponding A record is not configured in the test environment wide area network GSLB

Test result

AbcdeMacBook-Air:~abc$ dig test.test @ 10.10.8.121

; DiG 9.8.3-P1 test.test @ 10.10.8.121

;; global options: + cmd

;; Got answer:

;;-> > HEADERHEADERHEADERHEADERHEADERHEADERHEADER

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 299

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Share To

Network Security

Wechat

© 2024 shulou.com SLNews company. All rights reserved.

12
Report