Created
September 7, 2017 06:38
-
-
Save tetsuyainfra/f6cc618b54eba8c4f51fba7fdc56def2 to your computer and use it in GitHub Desktop.
DNS権威サーバーとキャッシュサーバが同居してて、isc-dhcpdでDDNSするときの覚書 ref: http://qiita.com/tetsuyainfra/items/0980e3fedf31c228e907
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ddns-updates on; | |
| ddns-update-style interim; | |
| update-static-leases on; | |
| subnet 10.0.100.0 netmask 255.255.255.0 { | |
| zone stg.home.local. { | |
| primary 127.0.0.2; ← ここ | |
| key DHCP_UPDATER; | |
| } | |
| zone 100.0.10.in-addr.arpa. { | |
| primary 127.0.0.2; ← ここ | |
| key DHCP_UPDATER; | |
| } | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # firewall-cmd --direct --add-rule ipv4 nat OUTPUT 100 -p | |
| udp -d 127.0.0.2/32 --dport 53 -j DNAT --to-destination 127.0.0.1:10053 | |
| 問題なければ・・・ | |
| # firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 100 -p udp -d 127.0.0.2/32 --dport 53 -j DNAT --to-destination 127.0.0.1:1005 | |
| # firewall-cmd --reload |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ダイレクトルールの一覧確認 | |
| # firewall-cmd --direct --get-all-rules | |
| iptablesの設定確認 | |
| # iptables-save |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment