sexta-feira, 15 de janeiro de 2016

Home » » Linux - instalação do PowerDNS em Ubuntu

Linux - instalação do PowerDNS em Ubuntu

Julio  janeiro 15, 2016    No comments
--- update 2016-04-21
http://idroot.net/tutorials/how-to-install-powerdns-on-ubuntu-14-04/
http://www.unixmen.com/how-to-install-powerdns-on-ubuntu-14-04/
http://www.servermom.org/install-powerdns-dns-server-ubuntu/

--- install poweradmin
http://www.unixmen.com/install-poweradmin-a-web-based-control-panel-for-powerdns-in-linux/

--- powerdns admin outra interface grafica - avaliar pois é mais recente

https://github.com/ngoduykhanh/PowerDNS-Admin

---- atualizado mas tosco não visualiza direto as zonas ptr
https://pdnsmanager.lmitsystems.de/quickstart/

--- rascunho, artigos incompletos

http://ds9a.nl/powerdns-denic.pdf


http://www.unixmen.com/how-to-install-powerdns-on-ubuntu-14-04/
(esta fatando campo na tabela records)



--- menos completo--
http://idroot.net/tutorials/how-to-install-powerdns-on-ubuntu-14-04/
(esta fatando campo na tabela records)

https://wiki.sabayon.org/index.php?title=En:PowerDNS_with_Poweradmin_Interface

--- avaliar powerdns
https://en.wikipedia.org/wiki/PowerDNS
--- frontends
http://blog.jasonantman.com/2012/09/some-powerdns-links-and-interesting-features/

--- instalacao poweradmin (atualiza link download poweradmin)
http://www.unixmen.com/install-poweradmin-a-web-based-control-panel-for-powerdns-in-linux/


http://www.uptimemadeeasy.com/networking/dns/install-a-complete-open-source-dns-server-in-minutes/


https://www.howtoforge.com/installing-powerdns-with-mysql-backend-and-poweradmin-on-debian-squeeze
https://www.howtoforge.com/installing-powerdns-with-mysql-backend-and-poweradmin-on-debian-squeeze-p2

---- dynamic updates no powerdns
https://doc.powerdns.com/md/authoritative/dnsupdate/    <-- 4="" br="" para="" versao="">
https://doc.powerdns.com/3/authoritative/dnsupdate/

http://jpmens.net/2012/06/21/powerdns-with-support-for-rfc-2136-dynamic-dns/   <-bem br="" explicado="">
 --- este é meio confuso
http://blog.towo.eu/allowing-your-users-to-manage-their-dns-zone/

https://www.howtoforge.com/installing-powerdns-with-mysql-backend-and-poweradmin-on-fedora-12-p2

--- erro  - problemas nas tabelas nao criadas:
---verificar se todas as tabelas foram criadas....atualizar doc.
 https://doc.powerdns.com/md/authoritative/installation/   


CREATE TABLE domainmetadata (
  id                    INT AUTO_INCREMENT,
  domain_id             INT NOT NULL,
  kind                  VARCHAR(32),
  content               TEXT,
  PRIMARY KEY (id)
) Engine=InnoDB;

CREATE INDEX domainmetadata_idx ON domainmetadata (domain_id, kind);


CREATE TABLE cryptokeys (
  id                    INT AUTO_INCREMENT,
  domain_id             INT NOT NULL,
  flags                 INT NOT NULL,
  active                BOOL,
  content               TEXT,
  PRIMARY KEY(id)
) Engine=InnoDB;

CREATE INDEX domainidindex ON cryptokeys(domain_id);



CREATE TABLE tsigkeys (
  id                    INT AUTO_INCREMENT,
  name                  VARCHAR(255),
  algorithm             VARCHAR(50),
  secret                VARCHAR(255),
  PRIMARY KEY (id)
) Engine=InnoDB;

CREATE UNIQUE INDEX namealgoindex ON tsigkeys(name, algorithm);


insert into tsigkeys (name, algorithm, secret) values ('ddns-wifi', 'hmac-md5', 'N1O8J86aAfF35HmZn18/z1AlvYItxUPTddCq98Dz6miRU8ZsE207J4Dpz9BTprCCoNLCWF3HUUj4It5ROxP2Dg==');

select id from domains where name='wifi.lan';
5
insert into domainmetadata (domain_id, kind, content) values (5, 'TSIG-ALLOW-DNSUPDATE', 'ddns-wifi');

select id from domains where name='192.32.172.in-addr.arpa';
6
insert into domainmetadata (domain_id, kind, content) values (6, 'TSIG-ALLOW-DNSUPDATE', 'ddns-wifi');

------------------------
 sql> select id from domains where name='example.org';
5
sql> insert into domainmetadata(domain_id, kind, content) values(1, ‘SOA-EDIT-DNSUPDATE’,’INCREASE’);
 Unknown column '‘SOA' in 'field list'

--------------------------

esse deve funcionar: (nao entendi esse tal de django rsrsr)

https://pythonhosted.org/django-powerdns-manager/index.html


--- tem log
http://www.nictool.com/demo/

--- utils
https://github.com/ZaphodB/powerdns-snippets/blob/master/pdns-dynamic-reverse-backend.py


--- bom debug com select na base e debug nsupdate
http://mailman.powerdns.com/pipermail/pdns-users/2015-November/011804.html


--- issue falha na resposta do tsig key depois do update ok.

https://github.com/PowerDNS/pdns/issues/2911

--- recusive
https://joekuan.wordpress.com/2015/06/19/powerdns-configuring-authoritative-server-and-forwarding-queries-to-multiple-authoritative-servers/  (desatualizado)

It is recommended to not make your recursive DNS server an authoritative server;  best practice is  use separate DNS servers,     and  only allow  specific IP ranges to make queries against recursive servers.


To combine both recursive functions and authoritative on the same server,

You need to setup pdns-recursor to listen on an alternative port  (Not port 53)
For example, in your powerdns recursor configuration

local-port=5300
OR

Specify a port number as part of a listening address line,  e.g.
     local-address=192.0.2.4:53
00

So PowerDNS recursor will be listening on an alternate port, instead of port 53.

The authoritative DNS server will be configured to  forward any recursive queries that it receives to the alternate port.

Start powerdns recursor, and use the "netstat -an"  command:  in order to verify  that powerdns recursor is listening on the alternate port.


And; configure pdns-authoritative  with recursion.

For example, if   you have  a recursive DNS server listening on port 5300, then
your /etc/powerdns/pdns.conf   authoritative configuration could contain


lazy-recursion=yes
recursive-cache-ttl=10
recursor=127.0.0.1:5300

# allow-recursion       List of subnets that are allowed to make recursive queries
allow-recursion=127.0.0.0/0,  1.2.3.0/24

0 comentários:

Postar um comentário