1、操作系统专题训练 北方工业大学操作系统专题训练实验报告学 生 姓 名 依力夏提江艾买尔 学 号 12101020129 班 级 计12-1 实验名称Linux操作系统DNS服务配置和管理实验序号实验一实验日期2015年4月15日实验人依力夏提江艾买尔一、实验目的配置和使用DNS服务器、DNS客户端,能够独立的担当Linux操作系统下DNS的管理员二、实验内容1 下载、安装DNS系统2 配置DNS服务器3 掌握DNS测试工具使用方法三、实验设计与过程1. 查看DNS服务相关组件是否安装在终端中输入: rpm qa |grep bind 如果反馈出多条信息,则说明相关组件已安装,如果没有或仅有一条
2、信息,则需要将相关组件安装。2. 查看DNS服务器当前状态在终端中输入: # service named status3. 配置 named.conf 文件在终端中输入# ifconfig查看下当前系统所使用的IP地址,然后在目录 /etc 下找到 named.conf 文件,修改named.conf文件中options部分代码行为,listen-on port 53 当前使用的IP地址;allow-query any;4. 配置 named.rfc1912.zones 文件配置/etc/named.rfc1912.zones 文件,添加正反解析区域。配置如下:zone IN type mas
3、ter; file .zone; allow-update none; ; zone 95.5.10.in-addr.arpa IN type master; file ;allow-update none; ; 5. 配置 .zone 文件在目录 /var/named/ 下编写.zone 正向解析文件, 即实现域名到IP的对应。配置如下:$TTL 86400 IN SOA . . ( 2002103000 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS . localhost IN
4、 A 127.0.0.1 www IN A 本机IP地址6. 配置文件在目录 /var/named/ 下编写 反向解析文件, 即实现IP到域名的对应。配置如下: $TTL 86400 IN SOA . . ( 2002103000 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS . 本机IP最后一个数 IN PTR .7. 配置resolv.conf文件指定域名服务器的IP和搜索顺序。配置如下: search nameserver 本机IP地址8. 重启DNS服务器 在终端中输入#
5、service named restart9. 测试DNS服务器在终端中输入# nslookup命令,待提示符变为 后,输入本机的IP地址并回车。如能显示name=即正向解析成功;在 提示符后输入回车,如能显示Address:本机IP地址,即反向解析成功。四、关键问题的解决方案 刚开始的时候对Linux系统不是很熟悉,在找相关配置文件的时候比较慢,但随着多次做实验,对实验环境越来越熟悉就没有这个问题了;在测试DNS服务器的时候,开始输入#nslookup命令无法出现正常结果,经过上网查询和询问老师知道了是未修改named.conf文件中本机的ip地址,改过之后就能正常输出了。5、实验过程截图
6、本实验相关截图 Named.conf文件的配置信息以及本机相关信息: 测试DNS过程与结果:配置文件:/ named.conf/ Provided by Red Hat bind package to configure the ISC BIND named(8) DNS/ server as a caching only nameserver (as a localhost DNS resolver only)./ See /usr/share/doc/bind*/sample/ for example named configuration files./options listen-on
7、 port 53 10.5.95.118; ; listen-on-v6 port 53 :1; ; directory /var/named; dump-file /var/named/data/cache_dump.db; statistics-file /var/named/data/named_stats.txt; memstatistics-file /var/named/data/named_mem_stats.txt; allow-query any; ; recursion yes; dnssec-enable yes; dnssec-validation yes; dnsse
8、c-lookaside auto; /* Path to ISC DLV key */ bindkeys-file /etc/named.iscdlv.key; managed-keys-directory /var/named/dynamic;logging channel default_debug file data/named.run; severity dynamic; ;zone . IN type hint; file named.ca;include /etc/named.rfc1912.zones;include /etc/named.root.key;/ named.rfc
9、1912.zones:/ Provided by Red Hat caching-nameserver package / ISC BIND named zone configuration for zones recommended by/ RFC 1912 section 4.1 : localhost TLDs and address zones/ and http:/www.ietf.org/internet-drafts/draft-ietf-dnsop-default-local-zones-02.txt/ (c)2007 R W Franks/ / See /usr/share/
10、doc/bind*/sample/ for example named configuration files./zone IN type master; file .zone; allow-update none; ; zone 95.5.10.in-addr.arpa IN type master; file ;allow-update none; ;.zone $TTL 86400 IN SOA . . ( 2002103000 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS
11、.localhost IN A 127.0.0.1 www IN A 10.5.95.109 $TTL 86400 IN SOA . . ( 2002103000 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS . 109 IN PTR .6、实验结果与分析在终端输入rpm-qa|grep bind 就会显示三个确定,表示安装完成。在终端输入service named status会显示服务器正在运行的字样在终端输入ifconfig会显示当前服务器的IP地址在终端中输入#nslook
12、up命令,带提示符变为后,输入本机的IP地址并回车。显示name= .就正向解析成功。7、实验体会 这个实验最主要的问题就是yum install bind,来安装dns服务器。把安装文件放到正确的文件里面。后面的步骤按实验指导书一步一步的输入就OK了。实验名称Linux操作系统Mail服务配置和管理实验序号实验二实验日期2015年4月29日实验人依力夏提江艾买尔一、实验目的通过本部分的实验,可以使学生掌握邮件服务器的配置和维护工作,使邮件服务器能够正常运行,使学生胜任相关的服务管理工作。二、实验内容1 安装Postfix发信服务器2 熟悉Postfix的配置方法3 安装Dovecot收信服务
13、器4 熟悉Dovecot的配置方法三、实验设计与过程1. 查看DNS服务相关组件是否安装rpm qa | grep bind2. 修改DNS服务器(10.5.95.xxx)上mx邮件交换记录,确保客户机能解析邮件服务器地址2.1 修改DNS区域文件# vi /var/named/.zone$TTL 86400 IN SOA . .( 2002103000; Serial 28800; Refresh 14400; Retry 3600000; Expire 86400 ) ; Minimum IN NS . IN MX 10 .dns IN A 10.5.95.xxxmail IN A 10.
14、5.95.xxxwww IN A 10.5.95.xxx# vi /var/named/$TTL 86400 IN SOA . . ( 2002103000 ; Serial 28800 ; Refresh 14400 ; Retry 3600000 ; Expire 86400 ) ; Minimum IN NS .xxx IN PTR .xxx IN PTR .xxx IN PTR .2.2 重启服务# service named restart2.3 客户机测试能否解析# host -t mx 10.5.95.xxx /查询目标域的MX记录Using domain server:Name
15、: 10.5.95.xxxAddress: 10.5.95.xxx#53Aliases: mail is handled by 10 . # host 10.5.95.xxx /查看邮件服务器的解析结果Using domain server:Name: 10.5.95.xxxAddress: 10.5.95.xxx #53Aliases: has address 10.5.95.xxx3. 搭建postfix发信服务器3.1 查看是否已安装postfix软件包# rpm qa | grep postfix3.2 修改主配置文件# vi /etc/Postfix/main.cfalias_dat
16、abase = hash:/etc/aliasesalias_maps = hash:/etc/aliasescommand_directory = /usr/sbinconfig_directory = /etc/postfixdaemon_directory = /usr/libexec/postfixdata_directory = /var/lib/postfixdebug_peer_level = 2html_directory = no#inet_interfaces = localhostinet_protocols = allmail_owner = postfixmailq_
17、path = /usr/bin/mailq.postfixmanpage_directory = /usr/share/manmydestination = $myhostname, localhost.$mydomain, localhostnewaliases_path = /usr/bin/newaliases.postfixqueue_directory = /var/spool/postfixreadme_directory = /usr/share/doc/postfix-2.6.6/README_FILESsample_directory = /usr/share/doc/pos
18、tfix-2.6.6/samplessendmail_path = /usr/sbin/sendmail.postfixsetgid_group = postdropunknown_local_recipient_reject_code = 550myhostname = mydomain = myorigin = $mydomainmydestination = $mydomainhome_mailbox = Maildir/ 3.3 检查并启动服务# postfix check# service postfix start# chkconfig postfix on# netstat -t
19、ulnp | grep :25 /发信使用SMTP协议tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 3564/master tcp 0 0 :25 :* LISTEN 3564/master 3.4 新建邮箱用户 # useradd test1 # echo 123456| passwd -stdin test1 # useradd test2 # echo 123456| passwd -stdin test2 3.5 测试发信功能# su test1# Mail test2 /发送邮件Subject: Hello /邮件主题Hello, world! /邮件内容.
20、 /.表示邮件结束3.6 验证邮件是否发送成功# ls /home/test2/Maildir/new/1398492202.V803Ibf420M# cat /home/test2/Maildir/new/1398492202.V803Ibf420MReturn-Path: X-Original-To: test2Delivered-To: test2Received: from localhost (unknown 10.5.95.xxx) subject:Test mailMessage-Id: Date: From: test1To: undisclosed-recipients:;
21、Hello, world! 4.搭建dovecot收信服务器4.1 安装软件包# yum install dovecot 4.2 修改配置文件# vi /etc/dovecot/dovecot.conf# Protocols we want to be serving.#protocols = imap pop3 lmtpprotocols = pop3# A comma separated list of IPs or hosts where to listen in for connections. # * listens in all IPv4 interfaces, : listens
22、 in all IPv6 interfaces.# If you want to specify non-default ports or anything more complex,# edit conf.d/master.conf.#listen = *, :listen = *# Base directory where to store runtime data.#base_dir = /var/run/dovecot/# Greeting message for clients.#login_greeting = Dovecot ready.# Space separated lis
23、t of trusted network ranges. Connections from these# IPs are allowed to override their IP addresses and ports (for logging and# for authentication checks). disable_plaintext_auth is also ignored for# these networks. Typically youd specify your IMAP proxy servers here.#login_trusted_networks =# Sepac
24、e separated list of login access check sockets (e.g. tcpwrap)#login_access_sockets = # Show more verbose process titles (in ps). Currently shows user name and# IP address. Useful for seeing who are actually using the IMAP processes# (eg. shared mailboxes or if same uid is used for multiple accounts)
25、.#verbose_proctitle = no# Should all processes be killed when Dovecot master process shuts down.# Setting this to no means that Dovecot can be upgraded without# forcing existing client connections to close (although that could also be# a problem if the upgrade is e.g. because of a security fix).#shu
26、tdown_clients = yes# If non-zero, run mail commands via this many connections to doveadm server,# instead of running them directly in the same process.#doveadm_worker_count = 0# UNIX socket or host:port used for connecting to doveadm server#doveadm_socket_path = doveadm-server# Dictionary server set
27、tings# Dictionary can be used to store key=value lists. This is used by several# plugins. The dictionary can be accessed either directly or though a# dictionary server. The following dict block maps dictionary names to URIs# when the server is used. These can then be referenced using URIs in format# proxy:.dict #quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext #expire = sql
copyright@ 2008-2022 冰豆网网站版权所有
经营许可证编号:鄂ICP备2022015515号-1