Holyzone 力尊信通 SE Club

 找回密码
 立即注册
搜索
热搜: 活动 交友 discuz
楼主: Demeter.Luo

Forward Zone和Delegation Zone

  [复制链接]

5

主题

43

帖子

152

积分

注册会员

Rank: 2

积分
152
发表于 2016-11-18 23:13:10 | 显示全部楼层 |阅读模式
本帖最后由 Demeter.Luo 于 2016-11-18 23:14 编辑

今晚楼主接到一个紧急电话,要求电话支持客户,真是收获不小。同时,也感谢IB群里面给我解答的两位大神~~


一、Forward Zone
1、概念
When you want to forward queries for data in a particular zone,
define the zone as a forward zone and specify one or more name servers
that can resolve queries for the zone. For example, define a forward zone
so that the NIOS appliance forwards queries about a partner’s internal site
to a name server, which the partner hosts, configured just for other partners to access.
#配置infoblox作为某个特点域的转发DNS服务器时


2、配置
请参考“NIOS_AdminGuide”手册Chapter 'Configuring  DNS Zones'下的“Configuring a Forward Zone”版块。


3、易混点
Info上配置forward zone(譬如abc.com)后,
  1)、客户端是否能从info上拿到abc.com的NS记录?
          答案是NO!
  2)、客户端解析abc.com的RR记录时,Name Server看到的源地址IP是谁的?
           答案是,DNS query源地址是Info的!
  3)、具体DNS数据流
       ·客户端——>Info
       ·Info——>External Name Server
       ·Info<——External Name Server
       ·客户端<——Info






二、Delegation Zones
1、概念
Instead of a local name server, remote name servers maintain delegated zone data.
When the local name server receives a query for a delegated zone,
it either responds with the NS record for the delegated zone server (if recursion is disabled on the local server)
or it queries the delegated zone server on behalf of the resolver (if recursion is enabled).
For example, there is a remote office with its own name servers,
and you want it to manage its own local data.
On the name server at the main corporate office, define the remote office zone as delegated,
and then specify the remote office name servers as authorities for the zone.
You can delegate a zone to one or more remote name servers,
which are typically the authoritative primary and secondary servers for the zone.
If recursion is enabled on the local name server, it queries multiple delegated name servers based on their round-trip times.
#配置infoblox做子域委派


2、配置
请参考“NIOS_AdminGuide”手册Chapter 'Configuring  DNS Zones'下的“Configuring a Delegation”版块。


3、易混点
Info上配置forward zone(譬如abc.com)后,
  1)、客户端是否能从info上拿到abc.com的NS记录?
          答案是YES!
  2)、客户端解析abc.com的RR记录时,Name Server看到的源地址IP是谁的?
           答案是,DNS query源地址是Client的!
  3)、具体DNS数据流
       ·客户端——>Info
       ·Info——>客户端(NS记录)
       ·客户端——>External Name Server
       ·客户端<——External Name Server

回复

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

QQ|Archiver|手机版|Holyzone 力尊信通 SE Club  

GMT+8, 2017-5-27 16:12 , Processed in 0.034710 second(s), 21 queries .

Powered by Discuz! X3.2

© 2001-2013 Comsenz Inc.

快速回复 返回顶部 返回列表