Scribd Logo
Upload

Welcome to Scribd!

  • DNS

    Uploaded by

    Truc Pham
    23 views20 pages

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    23 views20 pages

    DNS

    Uploaded by

    Truc Pham

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 20

    CU HNH DNS SERVER V CLIENT TRIN KHAI C S H TNG DNS TRN WINDOWS SERVER 2003

    PHN 1: CU HNH DNS SERVER V CLIENT


    I.Phn gii tn trong Windows Server 2003: Thc t mi Mng yu cu 1 c ch phn gii nhng tn my tnh ra nhng a ch IP. Nhu cu ny ny sinh t vic mi ngi v cc ng dng c khuynh hng kt ni n cc My tnh mng bng 1 ci tn c th. Trong khi cc dch v mng tng thp hn li s dng nhng a ch xc nh Host. Vi nhng l do trn, c 2 h thng t tn cho my tnh cng tn ti trong Windows Server 2003 l: NetBIOS v DNS. Bi v 2 h thng t tn ny khng lin quan vi nhau, nn n yu cu nhng c ch ring bit phn gii tn ra a ch IP 1. So snh DNS v NetBIOS: DNS l h thng t tn c u tin trong Windows Server 2003. Khi so snh vi NetBIOS th n a tnh chuyn i, s an ton v tnh tng thch cao cp hn vi Internet. Mc d DNS yu cu cu hnh trc khi n c th hot ng, n vn l 1 phn quan trng trong nhng h thng domain Active Directory v th n c s dng trong hu ht cc Mng Windows Server 2003. Tuy nhin, NetBIOS vn c s dng nh l phng php Backup vic phn gii tn, c bit bi v khng cn cu hnh NetBIOS vn phn gii tn cho cc my tnh c t trong cng 1 phn on mng. Ngoi ra, NetBIOS tng thch vi cc c tnh Windows c hn, nh vic truy xut cc Mng Windows thng qua My Network Place hay kt ni n nhng ti nguyn chia s thng qua cc a ch Universal Naming Convention (UNC) v d \\PC01\Share1. Trong h thng mng Windows Server 2003, vic phn gii tn s dng DNS u tin hn NetBIOS. S u tin ny c x l bi dch v DNS Client, ci m n chu trch nhim trong vic nh hng phn gii tn. Dch v DNS Client u tin s c gng phn gii tn thng qua DNS, nu tht bi th dch v DNS Client s ph thuc tn NetBIOS. 2. So snh cc loi Computer name: Khi bn ci t Windows Server 2003 ln my tnh, u tin l bn phi t cho my tnh 1 ci tn. Tn ny bn c th thay i trong ca s System Properties, y l dng c bn cho c DNS host name v NetBIOS name ca n. c bit, 1 tn c th nh server1 c t cho my tnh th n c coi nh l 1 host name trong DNS. Quy nh khng c t qu 15 k t th c s dng nh 1 NetBIOS name DNS th phn bit r rng t NetBIOS trong khng gian tn DNS c phn cp. Mi DNS host name n thun l 1 phn ca tn y , n c gi l Fully Qualified Domain Name (FQDN), trong n ch r c Host name v Domain ca n. V d 1 FQDN l www.nhatnghe.com. NetBIOS th khng phn cp nh vy, mi tn NetBIOS phi duy nht trn mng

    + NetBIOS name: 1 NetBIOS name c s dng duy nht xc nh 1 dch v NetBIOS lng nghe trn a ch IP u tin, m n l phm vi ca 1 adapter. 1 NetBIOS name duy nht c phn gii ra a ch IP ca 1 Server thng qua Broadcast, Windows Internet Name Service (WINS) hay Lmhosts file. 1 NetBIOS computer name l 15 k t mc d NetBIOS service name l 16 k t. Mc nh, 15 k t u tin ca NetBIOS service name ging vi Host name. K t th 16 c dng xc nh c th 1 dch v NetBIOS + Host name: Thut ng Host name in hnh m ch n phn u tin ca 1 FQDN. V d, phn u tin ca 1 FQDN pc10.dom5.com l pc10. 1 Host name cng thng m ch n 1 computer name + Primary DNS Suffix: Mi my tnh trong 1 mng Windows Server 2003 c th c t 1 Primary DNS Suffix dng trong phn gii tn v ng k tn. Primary DNS Suffix c ch r tab Computer Name trong phn My Computer Properties. Primary DNS Suffix cng c bit n nh l Primary Domain Name hay Domain Name. V d, 1 FQDN pc10.dom5.com c Primary DNS Suffix l dom5.com + Connection-specific DNS Suffix: l 1 DNS Suffix c t cho 1 adapter. Connection-specific DNS Suffix cng c bit n nh l 1 Adapter DNS Suffix. V d, 1 Connection-specific DNS Suffix c th l subnet2.dom5.com + FQDN: l 1 DNS name m n duy nht xc nh 1 my tnh trong Mng. in hnh, n l s lin kt ca Host name, Primary DNS Suffix. V d, FQDN c th l PC10.dom5.com + Full Computer Name: l 1 dng ca FQDN. My tnh c th c xc nh bi nhiu FQDN, nhng ch FQDN lin kt Host name v Primary DNS Suffix i din cho 1 Full Computer Name *** Bng bn di so snh s khc nhau gia NetBIOS name v DNS name

    3. So snh cc trnh t phn gii tn: + 2 dng phn gii tn chnh trong Windows Server 2003 a ra nhng phng php khc nhau phn gii computer name.

    + Vi DNS, nhng phng php phn gii tn nh sau: - Tm kim tn trong b m (cache) DNS Client . Tn c th c lu li t nhng cu truy vn (query) trc hoc c ti ra t nhng file Host cha trong th mc Windows\System32\Drivers\ETC. - DNS Server truy vn + Vi phn gii tn NetBIOS, nhng phng php phn gii tn nh sau: - Tm kim tn trong b m NetBIOS cc b - WINS truy vn - Truy vn cc b thng qua cc gi tin NetBIOS broadcast - Tm kim tn trong file Lmhosts cha trong th mc Windows\System32\Drivers\ETC 4. Xc nh khi no cn thit dng DNS: DNS cn cho h thng mng trong nhng hon cnh sau + H thng mng l h thng Domain s dng Windows Server 2003 v Windows 2000: Khi cc my tnh l thnh vin thuc h thng Domain s dng Windows Server 2003 v Windows 2000, DNS cn phi c cu hnh. Active Directory c tng hp cht ch vi DNS, v DNS c s dng bi Active Directory nh l cng tc d tm chnh n (Locator Service) (1 Locator Service gip Client trong h thng Domain tm kim cc trm hoc cc dch v cha bit r trong Domain. + DNS cho vic truy cp Internet hoc Intranet: Bn phi s dng DNS khi bn cn kt ni n cc my tnh trong H thng mng hoc Internet bng cch ch r cc DNS Host name. 5. Xc nh khi no cn thit dng NetBIOS + H thng Mng Windows Server 2003 h tr NetBIOS tng thch ngc vi cc phin bn Windows trc v tng thch vi cc ng dng NetBIOS. Nhng domain s dng Windows NT c xem l tt nht cho cc my Workgroup s dng Windows 95, Windows 98, Windows ME v Windows NT workstation s dng NetBIOS name v giao thc NetBIOS. + Phn gii tn NetBIOS cng cn thit cho cc my Client s dng cc ng dng hay cc dch v yu cu phi c Phn gii tn NetBIOS. V d 1 trong cc dch v l dch v Computer Browser, c bt ln truy cp mng thng qua biu tng Microsoft Network trong Windows Explorer + Cui cng, phn gii tn NetBIOS c yu cu trong h thng mng khi m DNS cha c cu hnh hon chnh. V d 1 my tnh trong h thng mng cha c DNS Server, trong trng hp ny th cc gi tin broadcast NetBIOS l cn thit gii quyt vn Computer Names. 6. V hiu NetBIOS: + Mc nh NetBIOS c bt trong Windows Server 2003. Tuy nhin nu bn c trin khai DNS v trong h thng khng c cc Windows i c trc Windows 2000 th bn c th tt NetBIOS + u im chnh khi tt NetBIOS l ci thin mc bo mt cho h thng mng. NetBIOS nh

    l 1 dch v lu tr thng tin v ti nguyn Mng , ci m c tp hp nhiu Trm thng qua truy vn Broadcast-Based. V th, cc thng tin ny c th b khai thc bi cc k xu. 1 u im khc khi tt NetBIOS l lm cho vic qun l tr nn n gin hn bng cch rt ngn s lng t tn, ci m bn phi cu hnh, bo tr v h tr. + Bt li khi tt NetBIOS l vic truy cp mng bng biu tng Microsoft Windows Network (My Network Place -> Entire Network) s b v hiu. Bt li khc khi tt NetBIOS l lm gim kh nng chu li. Nu DNS b cu hnh sai th vic phn gii tn s tht bi. Cui cng, 1 s h thng mng s dng phn mm ca hng th 3 yu cu phi c NetBIOS. T nhng l do trn, trc khi bn tt NetBIOS, bn phi thit lp h thng mng kim tra li + tt NetBIOS, bn lm theo cc bc sau (ti xin ni vn tt): M ca s Network Connections Chut phi ln Local Area Network, sau click Properties Hp thoi Local Area Network Properties xut hin Trong danh sch thnh phn, bn chn Internet Protocol (TCP/IP), sau click Properties Hp thoi Internet Protocol (TCP/IP) Properties xut hin Click vo Advanced Hp thoi Advanced xut hin Click vo tab WINS Click vo Disable NetBIOS over TCP/IP Click OK 2 ln, sau click Close II. DNS trong h thng mng Windows Server 2003: DNS cho php bn nh v c cc my tnh v cc ti nguyn khc bng tn trn 1 lin kt mng IP. Trc khi cu hnh DNS, cc host name c t chc trong 1 khng gian tn phng v c phn gii bng cc Host file c nh. Bng vic cung cp 1 cu trc c th bc v t dng ha phng php lu tr v phn gii cc Host name, DNS gii quyt nhiu vn v qun l v nhng kh khn lin quan n vic t tn Host trn Internet 1. Kho st DNS: DNS cho php nhiu ngi v nhiu chng trnh kt ni n cc Host IP bng vic ch r 1 tn v d nh pc10.dom5.com. DNS cung cp 1 tiu chun cho vic t tn Host v nh v cc Host IP c ch r bng tn + Khng gian tn DNS (DNS namespace): H thng t tn trong DNS l nn tng cu trc c th bc v logic gi Khng gian tn DNS. Khng gian tn DNS c 1 gc duy nht c th cha nhiu Subdomain. Ln lt, mi Subdomain c th c nhiu Subdomain con hn. V d, 1 gc (chui trng) trong khng gian tn Internet c nhiu tn domain top-level, 1 trong s l COM. Domain COM v d c 1 subdomain cho cng ty Lucerne Publishing l lucernepublishing.com. Tip theo n c c 1 subdomain khc cho sn xut l mfg.lucernepublishing.com. Nh vy cng c th tao ra nhiu H thng Mng ring v s dng khng gian tn DNS ring cho chnh n, ci m khng c thy trn Internet. + Domain Names: Mi nt trong cy domain DNS c nhn bit bi 1 FQDN. FQDN l 1 DNS domain name c nh 1 cch r rng ch ra v tr tng i ca n n Root ca 1 Domain Tree. V d,

    FQDN ca server sn xut trong domain lucernepublishing.com c xy dng l mfgserver.lucernepublishing.com, l s lin kt ca Host Name (mfgserver) vi Primary DNS Suffix (lucernepublishing.com) v du chm (.). Du chm l 1 tiu chun tch ra gia top-level domain vi 1 chui rng tng ng n root. (Trong cch dng hng ngy, du chm thng xuyn c b, nhng n s c thm vo bi dch v DNS Client trong thi gian truy vn thc s) + Khng gian tn Domain Internet (Internet Domain namespace): - DNS root (mc cao nht) ca 1 Internet Domain Namespace c qun l bi Internet Corporation for Assigned Names and Numbers (ICANN). ICANN sp xp vic phn cng nhng nh danh m phi l duy nht trn ton cu Internet hot ng, gm c cc Internet Domain Names, s a ch IP, thng s giao thc v s Port - Nm di Root DNS Domain l cc Top-Level Domain, cng c qun l bi ICANN. C 3 dng Top-Level Domain tn ti: * Organizational Domains (Domain theo t chc): Cc domain ny c tn dng m 3 k t ch ra chc nng hay hot ng chnh ca cc t chc c cha bn trong DNS domain. 1 s Organizational Domain c th s dng rng ri, mc d s khc ch c s dng cho cc t chc nm trong nc M. a s t chc M c cha bn trong 1 trong s cc Organizational Domain ny. * Geographical domains (Domain theo v tr a L): Cc domain ny c tn dng m 2 k t tiu biu cho m nc v vng c thit lp bi International Organization for Standardization (ISO) 3166, v d nh uk (United Kingdom) hay vn (Vietnam). Cc domain ny ni chung c s dng bi cc t chc nm bn ngoi nc M, nhng khng phi l iu kin tt yu. * Reverse domains (Domain ngc): y l cc domain c bit, c tn in-addr.arpa, c dng nh x a ch IP thnh tn (chuyn n phn gii ngc) - Vo thng 11/2000, ICANN cng b b sung 7 Top-Level Domain: * .aero * .aero * .biz * .coop * .info * .museum * .name * .pro

    - Nm di Top-Level Domain, ICANN v cc t chc khc nh Network Solutions or Nominet (Anh) y quyn cc domain cho nhng t chc khc nh Microsoft (microsoft.com) hay Carnegie Mellon University (cmu.edu). Cc t chc ny kt ni n Internet, t tn cho cc Host nm trong domain ca h v s dng cc DNS server qun l vic nh x tn ra a ch IP trong khng gian tn ca h. Cc t chc ny cng y quyn cc Subdomain cho ngi dng hay khch hng. V d cc ISP khi nhn c s y quyn t ICANN c th y quyn cc Subdomain cho khch hng.

    + Khng gian tn Domain ring (Private Domain Namspace): - Ngoi nhng Top-Level Domain trn Internet, cc t chc cng c th c 1 khng gian tn ring: 1 khng gian tn DNS da trn vic thit lp cc root server ring khng ph thuc vo khng gian tn DNS trn Internet. Bn trong 1 khng gian tn ring, bn c th t tn, to ra cc root server hay cc server v 1 s Subdomain nu nh bn cn. Khng gian tn ring khng c nhn thy v khng th phn gii c trn Internet. 1 v d v tn domain ring l mycompany.local. 2. Cc thnh phn DNS: DNS da vo cu hnh thch hp ca cc DNS server, cc Zone, cc Resolver v cc Resource Record. + DNS Server: L 1 my tnh chy chng trnh cc chng trnh qun l DNS nh DNS Server Service hay Berkeley Internet Name Domain (BIND). DNS Server cha 1 d liu thng tin DNS v 1 s thnh phn trong cu trc DNS Domain Tree v gii quyt cc truy vn phn gii tn bi cc Client. Khi truy vn, DNS Server c th cung cp cc thng tin yu cu, cung cp 1 li gi n Server khc server khc c th gip vic gii quyt cu truy vn hay thm ch p li cc thng tin khng c sn hay khng tn ti. 1 DNS Server c thm quyn i vi 1 zone nu n ng k t chc zone nh 1 Primary hay Secondary DNS Server. Mt DNS Server c thm quyn i vi 1 Domain khi n da vo cc Resource Record cc b cu hnh, ngc li vi thng tin lu, tr li cu truy vn v cc Host nm trong domain . Nh vy, cc server quyt nh phn chia DNS namespace ca n. Cc server c th c thm quyn i vi 1 hay nhiu cp phn cp domain. V d, cc DNS Server root trn Internet ch c thm quyn i vi Top-Level Domain chng hn .COM v khng c thm quyn i vi cc Subdomain chng hn lucernepublishing.com. Cc server c thm quyn i vi .COM th c thm quyn ch vi 1 tn lucernepublishing.com, v khng c thm quyn i vi cc Third-Level domain chng hn example.lucernepublishing.com. Tuy nhin, bn trong khng gian tn ca Lucerne Publishing, server c thm quyn i vi example.lucernepublishing.com th cng c thm quyn i vi widgets.example.lucernepublishing.com. + DNS Zones: 1 DNS Zone l 1 phn k nhau ca 1 khng gian tn cho 1 server c thm quyn. 1 server c th c thm quyn i vi 1 hoc nhiu zone, v 1 zone c th cha 1 hoc nhiu domain k nhau. V d, 1 server c th thm quyn i vi cc zone ca c microsoft.com v lucernepublishing.com v trong mi cc zone ny c th cha 2 hay nhiu domain. Cc domain k nhau chng hn .com, lucernepublishing.com v example.lucernepublishing.com c th tr thnh cc zone ring bit thng qua qu trnh y quyn, bi trch nhim i vi 1 subdomain bn trong khng gian tn DNS c phn cng cho cc thc th ring bit. Cc Zone File cha ng cc Resource Record cho cc Zone i vi 1 server c thm quyn. Trong nhiu s thc thi DNS Server, d liu zone c ct gi trong cc file vn bn. Tuy nhin, i vi cc server chy trn cc h thng Domain Controllers Windows 2000 hay Windows Server 2003 cng c th cha ng cc thng tin zone trong Active Directory. + DNS Resolvers: 1 DNS Resolver l 1 cng tc s dng giao thc DNS truy vn thng tin t

    cc DNS Server. DNS Resolver s lin lc cc DNS Server xa hoc cc chng trnh DNS Server ang chy trn my tnh cc b. Trong Windows Server 2003, chc nng ca DNS Resolver c thi hnh bi dch v DNS Client. Ngoi hot ng ca DNS Resolver, dch vu DNS Client cn cung cp b sung chc nng nh x b m DNS. + Resource Records: Cc Resource Record l cc danh sch c s d liu c s dng tr li cc cu truy vn t DNS Client. Mi DNS Server cha nhiu Resource Record n dng tr li cho cc thnh phn khng gian tn DNS ca n. Resource Record c m t r rng cc dng record chng hn nh Host Address (A), Alias (CNAME), v Mail Exchanger (MX) (Chng ta s hiu cch tao Resource Record nh th no phn sau) 3. DNS truy vn cc cng vic nh th no: Khi 1 DNS Client cn phn gii 1 tn bng phn mm, n s truy vn cc DNS phn gii tn. Mi mt cu truy vn Client gi i cha 3 thnh phn thng tin sau: + 1 DNS domain name, ni r nh l 1 FQDN. (Dch v DNS Client s thm vo cc Suffix cn thit to ra 1 FQDN nu n khng c chng trnh nguyn thy cung cp) + 1 kiu cu truy vn xc nh, trong n xc nh dng Resource Record hay xc nh kiu cu truy vn hot ng + 1 lp xc nh i vi DNS Domain name (i vi dch v DNS Client, lp ny lun lun c xc nh ging nh lp Internet [IN]) V d, 1 tn c xc nh nh FQDN i vi 1 Host Computer ring bit chng hn nh hosta.example.microsoft.com v kiu cu truy vn c th c ch r ging nh tm kim 1 Resource Record A bng tn . Bn c th ngh n 1 cu truy vn DNS ging nh vic Client hi Server 1 cu hi 2 phn chng hn nh: Bn c bt k 1 ci Resource Record A no cho 1 my tnh c tn hostname.example.microsoft.com khng? Khi Client nhn c 1 cu tr li t Server, Client s c Resource Record A nhn c v hc a ch IP ca my tnh m lc u n hi. + Cc phng php phn gii DNS: Cu truy vn DNS gii quyt bng nhiu cch khc nhau. V c bn, DNS Client s lin h vi DNS Server, DNS Server sau s dng c s d liu Resource Record ca n tr li 1 cu truy vn. Tuy nhin, bng cch u tin n tham kho b m ca n, i khi DNS Client s nhn c cu tr li m khng cn lin h vi DNS Server. Mt cch khc cu truy vn DNS c phn gii l thng qua Recursive (Chng ta s hiu Recursive phn sau). Vic s dng qu trnh ny, 1 DNS Server c th thay mt cho yu cu ca Client truy vn cc DNS Server khc m phn gii FQDN. Khi DNS Server nhn c cu tr li th n s gi cu tr li li cho Client. Mt phng php cui cng phn gii 1 cu truy vn DNS l thng qua Iterative (Chng ta cng s hiu Iterative phn sau). Thng qua qu trnh ny, Client s c gng t n lin h vi cc DNS Server b sung phn gii 1 tn. Khi Client lm nh vy, n s s dng cu truy vn ring v b sung da vo cu tr li tham kho t DNS Server + Cc bc truy vn DNS: Ni chung, qu trnh truy vn DNS xy ra trong 2 phn: - 1 tn truy vn bt u ti 1 my tnh Client v c chuyn n dch v DNS Client phn

    gii - Khi cu truy vn khng th phn gii cc b, DNS s b truy vn phn gii 1 tn Nhng qu trnh ny s c gii thch chi tit nh sau: Phn 1: Phn gii cc b (The Local Resolver): Hnh bn di s miu t khi qut mc nh qu trnh truy vn DNS, trong 1 Client c cu hnh to ra cc cu truy vn Recursive n 1 Server. Trong kch bn ny, nu dch v DNS Client khng th gii quyt cu truy vn t thng tin b m cc b th Client to ra duy nht 1 cu truy vn n 1 DNS Server, DNS Server s chu trch nhim tr li cu truy vn i din cho Client. Trong hnh, Cc cu truy vn v cc cu tr li c k hiu ln lt bng cc ch Q v A. Cc cu truy vn c s cao ch c th c to ra khi cu truy vn trc khng thnh cng. V d, Q2 ch xut hin khi Q1 khng thnh cng

    Qu trnh truy vn bt u khi 1 DNS Domain Name c s dng trong 1 chng trnh trn my tnh cc b. Trong v d hnh trn, 1 trnh duyt WEB gi 1 tn FQDN l www.microsoft.com. Yu cu sau s c chuyn n dch v DNS Client (DNS Resolver Cache) phn gii tn ny bng cch s dng thng tin b m cc b. Nu tn truy vn c phn gii, cu truy vn c tr li th qu trnh s kt thc. B m phn gii cc b c th cha thng tin tn c cha trong 2 source : - Nu 1 Host File c cu hnh cc b, 1 s nh x Host Name sang a ch t file s c ti vo trong b m khi dch v DNS Client c khi ng v sau Host File s c cp nht - Resource Record thu c bn trong cu tr li ngc li t cc cu truy vn DNS trc s c b sung vo b m v gi li trong 1 khong thi gian. Nu cu truy vn khng ging vi cc mc bn trong b m, qu trnh phn gii s tip tc vi vic Client truy vn 1 DNS Server phn gii tn. Phn 2: Truy vn 1 DNS Server: dch v DNS Client s dng 1 server trong danh sch c sn

    bng cch u tin. Danh sch ny cha tt c cc Preferred v Alternate DNS Server c cu hnh Network Connections mi h thng. u tin Client s truy vn 1 DNS Server c ch r Preferred DNS Server trong hp thoi Internet Protocol (TCP/IP) Properties. Nu khng c sn Preferred DNS Server th Alternate DNS Server s c s dng. ***Hnh bn di l 1 danh sch mu v Preferred v Alternate DNS Server

    Khi 1 DNS Server nhn c 1 cu truy vn, u tin n s xem n c th tr li cu truy vn 1 cch c thm quyn hay khng bng cch n kim tra thng tin c bn c cha bn trong Zone cu hnh cc b. Nu cu truy vn ng vi 1 Resource Record tng ng bn trong thng tin Zone cc b, Server s tr li 1 cch c thm quyn v s dng thng tin ny phn gii 1 tn truy vn Nu khng c thng tin Zone cc b c sn cho tn truy vn, Server sau s kim tra xem n c th phn gii c tn bng cch s dng thng tin b m cc b t cc cu truy vn trc hay khng. Nu thch hp, Server s tr li vi cc thng tin ny. 1 ln na, nu Preferred Server c th tr li vi 1 cu tr li r rng t b m ca n gii quyt yu cu ca Client, truy vn kt thc.

    Cu hnh DNS Server v Client + Tm hiu RECURSIVE: - Nu tn truy vn khng tm thy cu tr li ng ti Preferred Server ca n (hoc t b m hoc t thng tin Zone) qu trnh truy vn tip tc theo 1 cch c lp ty theo lc cu hnh DNS Server. Mc nh khi cu hnh, DNS Server s thc hin RECURSION phn gii tn. Ni chung, RECURSIVE trong DNS l qu trnh 1 DNS Server tin hnh truy vn cc DNS Server khc i din cho cu truy vn ban u ca Client. Trn thc t, qu trnh ny chuyn 1 DNS Server nguyn thy thnh 1 DNS Client - Nu RECURSIVE b tt trn DNS Server, Client s thc hin cc cu truy vn ITERATIVE bng cch s dng ROOT HINT. INTERATIVE s tham kho qu trnh 1 DNS Client to ra cc cu truy vn lp i lp li n cc DNS Server khc nhau. + ROOT HINTS: - thc hin Recursive chnh xc, u tin DNS Server cn bit t u s bt u tm kim cc tn trong khng gian tn domain DNS. Thng tin ny c cung cp trong mu cc Root Hint, 1 danh sch Resource Record s b c dng bi dch v DNS nh v cc server c thm quyn i vi Root ca khng gian tn cy domain DNS. - Mc nh, cc DNS Server chy Windows Server 2003 s dng 1 file Root Hints cu hnh trc l cache.dns, c cha trong th mc WINDOWS\System32\Dns trn my server.Ni dung File ny c ti trc vo b nh Server khi dch v c khi ng v cha ng thng tin con tr n cc server gc trong khng gian tn DNS. Hnh bn di cho chng ta thy 1 file Root Hints mc nh.

    Trong Windows Server 2003, file Root Hints cha sn a ch ca cc Server trong khng gian tn Internet DNS. Bi vy nu bn s dng dch v DNS Server trong Windows Server

    2003 phn gii tn trn nn Internet th file Root Hints khng cn phi cu hnh bng tay. Tuy nhin, nu bn s dng dch v DNS cho 1 h thng mng ring, bn c th chnh sa hoc thay th file ny vi cc Record tng t m tr vo DNS server gc ca mnh. Hn na, i vi 1 my tnh m lm hosting cho 1 DNS Server gc, bn khng phi s dng Root Hint cht no. Trong kch bn ny, Windows Server 2003 t ng b i file Cache.dns dng cho Root hints. + V d v Truy vn (Query Example): V d sau y s minh ha v cch chy mc nh ca 1 cu truy vn DNS. Trong v d, Client truy vn Preferred DNS Server ca n, sau DNS Server s thc hin Recursion bng cch truy vn DNS Server cp cao hn. Trong v d, DNS Client v tt c DNS Server gi thit c b m rng. Trong v d hnh bn di, 1 client u trn Internet cn truy vn 1 tn example.lucernepublishing.com ra 1 a ch IP

    Khi dch v DNS Client trn my Client bt u qu trnh truy vn, sau y l nhng s kin c th xy ra: - Client lin h vi NameServer1 vi cu truy vn example.lucernepublishing.com - NameServer1 trong cc Zone v b m ca n tr li nhng khng tm thy, v th n lin h vi 1 server c thm quyn trn Internet (l 1 root Server) vi cu truy vn v example.lucernepublishing.com - Server ti root Internet khng bit cu tr li, v vy n s p li bng 1 s cp n 1 server c thm quyn trn domain .com - NameServer1 lin h vi 1 server c thm quyn trn domain .com vi cu truy vn v example.lucernepublishing.com - Server c thm quyn trn domain .com khng bit cu tr li chnh xc v th n s p li bng vic cp n 1 server c thm quyn trn domain lucernepublishing.com - NameServer1 lin h vi 1 server c thm quyn trn domain lucernepublishing.com vi cu truy vn v example.lucernepublishing.com - Server c thm quyn trn domain lucernepublishing.com bit cu tr li. N s p li vi a ch IP yu cu - NameServer1 s tr li cu truy vn ca Client vi a ch IP tng ng tn

    example.lucernepublishing.com + Cc kiu p li cu truy vn: Cc cu truy vn c th p li nhng cu tr li khc nhau ti Client. Ph bin nht bao gm: * Mt cu tr li c thm quyn (Authoritative Answer) * Mt cu tr li r rng (Positive Answer) * Mt cu tr li cp n server khc (Referal Answer) * Mt cu tr li ph nh (Negative Answer) * Authoritative Answer: l cu tr li xc thc p li cho Client t 1 server c quyn trc tip i vi tn truy vn * Positive Answer: l cu tr li cha Resource Record truy vn ph hp vi tn truy vn v kiu Record c ghi r trong thng bo truy vn ban u * Referal Answer: l cu tr li cha Resource Record b sung khng ghi r tn hay kiu trong cu truy vn. Kiu tr li ny c p li cho Client nu qu trnh Recursion khng c h tr t DNS Server. Cc record ny c ngha ging nh li gi gip tr li Client c th s dng tip tc truy vn bng cch dng Iteration. V d, nu cu truy host name l www v khng c Resource Record A nhng ch c CNAME cho tn ny c tm thy trong Zone, DNS Server c th bao gm thng tin CNAME ny khi p li cho Client. Nu Client c th thc hin Iteration, n c th to ra thm cc cu truy vn s dng thng tin cp ny c gng phn gii tn 1 cch y cho chnh n. * Negative Answer t server c th ch ra 1 trong 2 kt qu c th gp phi khi server c gng x l v phn gii cu truy vn theo Recursive mt cch y v c thm quyn: + 1 server c thm quyn thng bo tn truy vn khng tn ti trong khng gian tn DNS + 1 server c thm quyn thng bo tn truy vn tn ti nhng khng c kiu record xc nh cho tn Sau khi p li cho cu truy vn. Resolver chuyn kt qu cu truy vn (thuc dng Positive hoc Negative) ngc li cho chng trnh yu cu v b m tr li. + B m lm vic nh th no C dch v DNS Client v dch v DNS Server u c b m. B m cung cp 1 cch ci thin hiu sut DNS v thc cht lm gim vic trao i cu truy vn cc DNS lin quan trong h thng mng. * B m DNS Client: - Cn c gi l b m DNS Resolver. Mi khi dch v DNS Client khi ng, tt c cc nh x t host name sang a ch IP c cha bn trong file c tn Hosts c ti trc bn trong b m DNS Resolver. File Hosts ny cha trong th mc WINDOWS\System32\Drivers\etc. - Mi khi bn thm 1 mc vo trong file Hosts th ngay lp tc n c ti vo trong b m DNS Resolver - Ngoi nhng mc trong file Hosts, b m DNS Resolver cng bao gm nhng mc m Client nhn c trong cc li p li cu truy vn t DNS Server. B m DNS Resolver s trng rng mi khi dch v DNS Client b ngng li * B m DNS Server: - Khi cc DNS Server to nhng cu truy vn Recursive i din cho cc Client, n s lu tm cc Resource Record. Cc record lu li ny cha thng tin thu nhn trong qu trnh tr li cu truy vn i din cho 1 Client. Sau , khi cc Client ni khc to cc cu truy vn mi, n

    s yu cu thng tin ging cc Resource record lu th DNS Server c th s dng thng tin lu tr li cc cu truy vn ny - B m DNS Server s b xa mi khi dch v DNS Server b ngng li. Ngoi ra, bn c xa b m DNS Server bng tay trong giao din DNS bng cch Chut phi ln biu tng Server bn Console Tree v click vo Clear Cache. Cui cng, nu bn c ci t Windows Support Tools, bn c th xa b m server ti Command Line bng cch g lnh Dnscmd /clearcache * Cc gi tr thi gian sng (Time To Live Values): - 1 gi tr Time To Live (TTL) p dng cho tt c cc Resource Record lu d trong b m DNS Resolver hay b m DNS Server. TTL i vi 1 Resource Record lu khng ht hn, DNS Resolver hay Server c th tip tc s dng Record tr li cc cu truy vn. Mc nh, TTL l 3600 giy (1 gi) nhng tham s ny c th iu chnh li ti Zone v Record Level. III. Trin khai cc DNS Server: 1. Ci t dch v DNS Server: - Mc nh tt c cc my tnh chy Windows Server 2003 v Windows XP c dch v DNS Client ci t v ang chy. Tuy nhin, dch v DNS Server mc nh cha c ci t. ci t dch v DNS Server trn my tnh chy Windows Server 2003, u tin bn cn phi thm DNS Server role thng qua trang Manage Your Server hoc vo Control Panel ci t - Mi ln bn thm role ny, bng iu khin DNS s xut hin trong Administrative Tools. Bng iu khin DNS l cng c chnh cu hnh v kim tra cc DNS Server, zone, domain, v Resource Record - ci t 1 DNS Server, bn lm theo cc bc sau: + B a Windows Server 2003 vo CD-ROM + Kim tra li xem bn t a ch tnh cho my tnh cha. + Vo Start -> Setting -> Control Panel + Double Click vo Add Or Remove Program + Trong hp thoi Add Or Remove Program bn click vo Add/Remove Windows Components + i 1 cht hp thoi Add/Remove Windows Components xut hin + Bn ko thanh cun xung v Double Click vo Networking Services + Hp thoi Networking Services xut hin, bn check vo chn DNS v click Next ci t + Qu trnh ci t hon tt, m bng iu khin DNS bn vo Start -> Programs -> Administrative Tools v click chn DNS 2. To cc ZONE: - Cc Zone c to 1 trong 2 loi: Forward Lookup v Reverse Lookup. Trong Forward Lookup Zones, DNS Server nh x cc FQDN ra cc a ch IP. Trong Reverse Lookup Zones, DNS Server nh x cc a ch IP ra cc FQDN. Forward Lookup Zones theo cch s tr li nhng cu truy vn phn gii cc FQDN ra a ch IP v ngc li i vi Reverse Lookup Zones. *** CH : Bn c th to 1 Root Server trong 1 khng gian tn DNS bng cch t tn Zone vi 1 du chm "." .Khi bn thc hin cng vic ny th bn khng th cu hnh Server y cc cu truy vn sang 1 Name Server khc. - tao Forward v Reverse Lookup Zones, bn c th s dng chc nng Configure a DNS Server Wizard. Bn cng c th to 1 cc zone mi bng cch dng bng iu khin DNS. lm nh vy, bn chut phi ln th mc Forward Lookup Zones hoc Reverse Lookup Zones v sau chn New Zone ging hnh bn di. Qu trnh ny bt u New Zone Wizard

    3. Cc loi Zone: - New Zone Wizard cho php bn cu hnh cc Server Role trn mi zone ca n. Nhng Role bao gm: + Primary: Trong loi zone ny, d liu zone cung cp d liu ngun nguyn bn cho tt c domain trong zone. D liu zone c th c sao lu t zone ny sang 1 Secondary Zone. + Secondary: Loi zone ny l 1 Zone sao lu c thm quyn cho Primary Zone hoc cho cc Secondary Zone khc. + Stub: Server ny ng k t chc 1 Stub zone, Stub Zone l s sao chp 1 zone ch cha cc Resource Record cn thit xc nh cc DNS Server c thm quyn i vi Master Zone. 4. Tm hiu cc loi Server: - Cc loi Server DNS m ch ni cc loi Zone m Server ang ng k t chc hay trong trng hp Server l Catching-only. Sau y m t 1 s c tnh quan trng ca cc loi server khc nhau: + Primary Servers: - 1 Primary Server c to khi 1 Primary Zone c thm vo thng qua New Zone Wizard, Configure A DNS Server Wizard hay cc cng c command-line - Primary Server cho 1 zone ng vai tr nh 1 v tr trung tm cp nht ca Zone. Vi Windows Server 2003, bn c th trin khai cc Primary Zone 1 trong 2 cch: bng cc Standard Primary Zone hay Primary Zone tch hp vi Active Directory * Standard Primary Zones: i vi Standard Primary Zone, ch 1 server duy nht c th ng k v ti bn copy chnh ca Zone. Nu bn to 1 zone v gi n nh 1 Standard Primary Zone, khng c primary server no b sung cho zone c cho php. M hnh Primary Standard Primary hm n 1 ch hng ring bit. V d, nu Primary Server cho 1 zone khng c sn trong h thng mng, khng c s thay i zone c th c to ra. Ch nhng cu truy vn i vi cc tn khng b nh hng v c th tip din lin tc min l cc Secondary Server ca zone c sn tr li chng. * Active Directory-Integrated Zones: Khi bn trin khai 1 Active Directory-Integrated Zone th d liu zone c lu tr v ti to (replicate) trong Active Directory. S dng 1 Active Directory-Integrated Zone lm tng kh nng chu li v mc nh chuyn mi Domain Controller trong domain chy mt DNS Server thnh 1 Primary Server. cu hnh 1 Primary Zone nh 1 Active Directory-Integrated Zone th DNS Server nguyn bn trn zone no c to phi l 1 Active Directory Domain Controller. Qu trnh trin khai 1 Active Directory-Integrated

    Zone s c bn lun phn sau. + Secondary Servers: - Thit k DNS khuyn co rng c t nht 2 DNS Server c s dng cho Host mi zone. i vi cc Standard Primary Zone th 1 Secondary Server c yu cu cho php Zone hin ra cc DNS Server khc trong h thng mng. - Cc Secondary Server cung cp 1 cch thc d ra cc lung traffic cu truy vn trong nhng vng ca h thng mng, ni m 1 zone b truy vn v s dng 1 cch nng n. Ngoi ra, nu 1 Primary Server b cht, th 1 Secondary Server s m nhn vic phn gii tn cho n khi Primary Server sn sng tr li. - Cc Server t nhng Secondary Server thu nhn thng tin zone c gi l cc Master. 1 Master c th l Primary Server hay 1 Secondary Server khc. Bn ch r cc Master Server ca Secondary Server khi Secondary Zone ca Server c to ra thng qua New Zone Wizard, Configure A DNS Server Wizard hoc cc cng c command-line + Stub Servers: Cc Stub DNS Server ng k t chc cc stub zone: rt ngn nhng bn copy ca 1 zone m n cha ng 1 danh sch tn cc server c thm quyn i vi master zone ca n. 1 DNS Server ng k t chc 1 stub zone c gng gii quyt cc cu truy vn v cc tn my tnh trong master zone bng cch truy vn tn cc server lit k. Stub Zone thng c s dng nht cho php 1 zone cha gi 1 danh sch cp nht tn cc server sn sng s dng trong 1 zone con. +Catching-Only Servers: - Catching-Only Servers khng ng k t chc bt k zone no v khng c thm quyn vi bt k domain thng dng no. Thng tin m n cha ng b gii hn nhng th c lu tr khi gii quyt cc cu truy vn. - Trong vic xc nh khi no s dng loi server ny, ch rng khi n c khi ng ban u n khng c thng tin lu tr. Thng tin thu c trong thi gian m Client yu cu c gii quyt. Tuy nhin, nu bn ang tha thun vi 1 lin kt WAN tc chm gia cc site th la chn ny c th l l tng v mi khi b m c xy dng, lu lng gia 2 bn lin kt WAN s gim bt. Cc cu truy vn DNS cng c gii quyt nhanh hn, ci thin hiu sut cc ng dng mng. Ngoi ra, Catching-Only Server khng thc hin Zone Transfer, Zone Transfer c th cng l mng chuyn su trong mi trng WAN. Cui cng, 1 Catching-Only DNS Server c th c gi tr ti 1 site ni m chc nng DNS c cn 1 cch cc b, nhng vic qun tr cc domain v cc zone v tr ny khng d dng - Mc nh, dch v DNS Server hot ng nh 1 Catching-Only Server. Do Caching-Only Server yu cu 1 t hay khng cu hnh - ci t 1 Catching-Only Server, ta hon thnh cc bc sau: 1- Ci t DNS Server Role trn my tnh Server. 2- Khng cu hnh DNS Server ti bt k zone no. 3- Kim tra rng Server Root Hints c cu hnh v cp nht chnh xc. 5. To cc Resource Record: - Cc zone mi ch cha ng 2 Resource Record l: the start-of-authority (SOA) tng ng vi zone v name server (NS) tng ng vi DNS Server cc b to ra cho zone. Sau khi bn to 1 zone, bn phi b sung thm cc Resource Record cho n. Mc d 1 s Record c th c thm vo 1 cch t ng th nhng ci khc (v d nh MX v CNAME) cn c thm vo bng tay. - thm 1 Resource Record cho 1 zone bng tay, bn chut phi ln biu tng zone trong

    bng iu khin DNS v t menu c m ra, chn Resource Record thch hp m bn mun to ra ging nh hnh bn di

    - thm 1 Resource Record cho 1 zone, bn lm theo cc bc sau: 1- M bng iu khin DNS 2- Bn Console Tree, chut phi ln zone thch hp v chn Other New Records Hp thoi Resource Record Type xut hin 3- Trong danh sch Select A Resource Record Type, chn loi Resource Record bn mun thm vo 4- Click Create Record 5- Trong hp thoi New Resource Record, nhp thng tin cn thit hon thnh Resource Record 6- Sau khi bn ch r tt c nhng thng tin cn thit cho Resource Record, click OK thm vo Record mi cho zone 7- Click Done tr li bng iu khin DNS + Cc loi Record: Cc Resource Record ph bin nht bn cn to ra bng tay bao gm: - Host (A) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV) * Host (A): Host (A) resource records to nn phn ln cc Resource Record trong 1 c s d liu zone. Cc record ny c s dng trong 1 zone lin kt cc DNS Domain Name ca cc my tnh (hay cc host) ra a ch IP ca chng. Chng c th c thm vo 1 zone bng nhiu cch: - Bn c th to bng tay 1 resource record A cho 1 my tnh client c a ch tnh bng cch s dng bng iu khin DNS hay cng c h tr Dnscmd ti command-line - My tnh chy Windows 2000, Windows XP hay Windows Server 2003 s dng dch v DHCP Client ng k ng v cp nht cc resource record A ca chnh n trong DNS khi 1

    s cu hnh IP thay i xut hin. - DHCP cho php cc my tnh client chy cc phin bn h iu hnh c ca Microsoft c th c cc resource record A ca chng ng k v cp nht bng proxy nu n bao gm IP thu t 1 DHCP Server iu kin (ch c dch v DHCP cung cp vi Windows Server 2003 hin thi mi h tr chc nng ny) Mi khi to ra trong bng iu khin DNS, 1 resource record A s nh x host name server1.lucernepublishing.com ra a ch IP 172.16.48.1 c m t di dng vn bn nm trong zone file lucernepublishing.com.dns nh sau: * Alias (CNAME): cc Alias (CNAME) resource record i khi c gi l canonical name. Nhng record ny cho php bn dng nhiu hn 1 tn ch ra 1 host ring bit. V d, cc tn server ni ting (ftp, www) c ng k s dng cc resource record CNAME . Cc record ny nh x 1 host name ch r 1 dch v nht nh (v d nh ftp.lucernepublishing.com) ra 1 resource record A hin ti ca 1 my tnh ng k t chc dch v (v d nh serverboston.lucernepublishing.com) - Resource Record CNAME c khuyn dng trong cc tnh hung sau: * Khi 1 host ch r trong 1 resource record A trong cng 1 zone cn c i tn * Khi 1 tn cng loi i din cho 1 server ni ting v d nh www cn phi chuyn sang 1 nhm nhng my tnh ring bit (vi mi resource record A ring bit) m n cung cp dch v ging nhau (v d nh 1 nhm cc Web Server d tha) - Mt khi to trong bng iu khin DNS th 1 resource record CNAME nh x 1 b danh ftp.lucernepublishing.com ra name fpt1.lucernepublishing.com v c m t di dng vn bn trong zone file lucernepublishing.com.dns nh sau: * Mail exchanger (MX): resource record Mail exchanger (MX) c dng bi cc trnh ng dng email nh v tr 1 Mail Server bn trong 1 zone. N cho php 1 domain name v d nh lucernepublishing.com, c ch r trong 1 a ch email v d nh joe@lucernepublishing.com, c nh x ra 1 resource record A ca 1 my tnh ng k t chc Mail Server trong domain. Do , loi record ny cho php 1 DNS Server x l 1 a ch email bn trong mail server no - Thng thng, nhiu MX Record c to ra cung cp 1 kh nng chu li v x l li cho mail server khc khi m Preferred server c lit k khng c sn. Mi server s c 1 gi tr u tin, gi tr cng thp th u tin cng cao. - Mt khi to trong bng iu khin DNS th cc resource record MX s c m t di dng vn bn trong zone file lucernepublishing.com.dns nh sau

    * Pointer (PTR): Resource record Pointer (PTR) ch c s dng trong Reverse Lookup Zones h tr vic phn gii ngc, phn gii ngc l thc hin cc cu truy vn phn gii cc a ch IP ra cc host name hay cc FQDN. Phn gii ngc c thc hin trn cc zone nm su trong domain in-addr.arpa. Resource record PTR c thm vo zone bng tay v cc phng php t ng ging khi c s dng thm resource record A - Mt khi to trong bng iu khin DNS th 1 resource record PTR nh x a ch IP 172.16.48.1 ra host name server1.lucernepublishing.com s c m t di dng vn bn trong 1 zone file nh sau:

    * Service location (SRV): Resource record Service location (SRV) c s dng ch ra v tr cc dch v c bit trong 1 domain. Cc trnh ng dng Client l SRV-aware c th s dng DNS gi ra 1 SRV Resource Record cho 1 ng dng server c ni r - Windows Server 2003 Active Directory l 1 v d v SRV-aware application. Dch v Netlogon s dng cc SRV records nh v cc Domain Controller trong 1 domain bng cch tm dch v Lightweight Directory Access Protocol (LDAP) trong domain - Nu 1 my tnh cn nh v 1 domain controller ca tn min lucernepublishing.com, DNS Client s gi 1 cu truy vn SRV cho tn: DNS Server sau s tr li cho client tt c record ging vi cu truy vn 6. Xem v xa DNS Server Cache : Ni dung ca DNS Server Cache ch c th xem trong DNS console. xem ni dung Cache. Bn m DNS, chn menu View v chn Advanced nh hnh di y

    Khi thit lp qua ch View Advanced th 1 folder mi s xut hin bn DNS console tree l Cache Lookups c hin th nh hnh bn di:

    xa DNS Server cache, bn chut phi ln biu tng DNS Server v chn Clear Cache nh hnh di. Ngoi ra bn c th restart DNS Server service hay dng ln dnscmd /clearcache

    Xin tm dng ti y. Thng ti tip tc. Rt mong nhn c s ng h ca cc bn.

    You might also like