1. 建立開發機器
qemu-img create -f qcow2 Core15-64-dev-1024.qcow2 1024M
2. 安裝作業系統並設定serial console
qemu-system-x86_64 -hda Core15-64-dev-1024.qcow2 -cdrom CorePure64-15.0.iso -boot d -m 4096
3. 開啟TC
qemu-system-x86_64 -hda Core15-64-dev-1024.qcow2 -m 4096 -accel whpx,kernel-irqchip=off -serial telnet:localhost:12345
4. 安裝編譯環境
tec-load -wi compiletc openssl-dev wget
copy Core15-64-dev-1024.qcow2 Core15-64-dev-pdns-recursor.qcow2
5A. 建立PowerDNS Recursor開發環境機器
qemu-system-x86_64 -hda Core15-64-dev-pdns-recursor.qcow2 -m 4096 -accel whpx,kernel-irqchip=off -serial telnet:localhost:12345,server,nowait6A. 下載並安裝Recursor所需編譯環境並進行編譯
tce-load -wi boost-1.65-dev lua-5.4-dev rust
cd /usr/local/include
sudo ln -s lua5.4/* .
cd ~
wget https://downloads.powerdns.com/releases/pdns-recursor-5.2.0.tar.bz2
tar xf pdns-recursor-5.2.0.tar.bz2
cd pdns-recursor-5.2.0
export SSL_CERT_FILE=/usr/local/etc/ssl/certs/ca-certificates.crt
./configure
make
7. 安裝完成編譯程式
sudo make install
8A. 封裝pdns-recursor.tcz
tce-load -wi squashfs-tools
mkdir -p pdns_recursor
cd pdns_recursor
mkdir -p usr/local/sbin usr/local/bin usr/local/etc usr/local/etc/pdns_recursor usr/local/tce.installed
cp /usr/local/sbin/pdns_recursor usr/local/sbin
strip -g usr/local/sbin/*
cp /usr/local/bin/rec_control usr/local/bin
strip -g usr/local/bin/*
cp /usr/local/etc/recursor.yam-dist usr/local/etc
cat > usr/local/etc/pdns_recursor/recursor.yml <<_END_
dnssec:
validation: off
ecs:
add_for:
- '0.0.0.0/0'
incoming:
allow_from:
- '0.0.0.0/0'
listen:
- '0.0.0.0'
use_incoming_edns_subnet: true
logging:
loglevel: 6
trace: 'yes'
outgoing:
dont_query:
- '127.0.0.0/8'
edns_subnet_allow_list:
- '0.0.0.0/0'
source_address:
- '0.0.0.0'
recursor:
# hint_file: '/opt/pdns_recursor/root.hint'_END_cat > usr/local/etc/pdns_recursor/root.hint <<_END_; OPERATED BY WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
M.ROOT-SERVERS.NET. 3600000 AAAA 2001:dc3::35_END_cat > usr/local/tce.installed/pdns_recursor <<_END_
#!/bin/sh
syslogd
sleep 5
mkdir /var/run/pdns-recursormkdir /opt/pdns_recursorcp -n /usr/local/etc/pdns_recursor/* /opt/pdns_recursor
pdns_recursor --daemon=yes --config-dir=/opt/pdns_recursor_END_
cd ~
cat pdns_recursor.tcz.dep <<_END_
openssl.tcz
boost-1.65.tcz
lua-5.4-lib.tcz
curl.tcz
_END_sudo chown -R root:root pdns_recursorsudo chown tc:staff pdns_recursor/usr/local/tce.installed/pdns_recursorchmod 755 pdns_recursor/usr/local/tce.installed/pdns_servermksquashfs pdns_recursor pdns_recursor.tcz
md5sum pdns_recursor.tcz > pdns_recursor.tcz.md5.txt9A. 導出
local:nc -w 3 server 65001 < pdns_recursor.tcz
remote:ncat -l 65001 > pdns_recursor.tcz local:nc -w 3 server 65001 < pdns_recursor.tcz.depremote:ncat -l 65001 > pdns_recursor.tcz.deplocal:nc -w 3 server 65001 < pdns_recursor.tcz.md5.txtremote:ncat -l 65001 > pdns_recursor.tcz.md5.txt
5B. 建立PowerDNS Server開發環境機器
copy Core15-64-dev-1024.qcow2 Core15-64-dev-pdns-server.qcow2qemu-system-x86_64 -hda Core15-64-dev-pdns-server.qcow2 -m 4096 -accel whpx,kernel-irqchip=off -serial telnet:localhost:12345,server,nowait6B. 下載Server編譯所需編譯環境並進行編譯
tce-load -wi boost-1.65-dev lua-5.4-dev rust curl-dev
cd /usr/local/include
sudo ln -s lua5.4/* .
cd ~
wget https://downloads.powerdns.com/releases/pdns-4.9.5.tar.bz2
tar xf pdns-4.9.5.tar.bz2
cd pdns-4.9.5
export SSL_CERT_FILE=/usr/local/etc/ssl/certs/ca-certificates.crt./configure --with-modules=bindmake7. 安裝完成編譯程式
sudo make install8B. 封裝pdns-server.tczcd ~mkdir -p usr/local/bin usr/local/sbin usr/local/etc usr/local/tce.installed /usr/local/lib/pdns usr/local/etc/pdns_servercp /usr/local/sbin/pdns* usr/local/sbincp /usr/local/bin/pdns* usr/local/bincp /usr/local/bin/zone* usr/local/bincp /usr/local/etc/pdns.conf-dist usr/local/etccp /usr/local/lib/pdns/* usr/local/lib/pdnsstrip -g usr/local/bin/* usr/local/sbin/*strip --strip-unneeded usr/local/lib/pdns/lib*.socat > usr/local/tce.installed/pdns_server <<_END_#!/bin/sh syslogd sleep 5 mkdir /var/run/pdns mkdir /opt/pdns_server cp -n /usr/local/etc/pdns_server/* /opt/pdns_server pdns_server --daemon=yes --config-dir=/opt/pdns_server_END_cat > usr/local/etc/pdns_server/pdns.conf <<_END_daemon=no edns-subnet-processing=yes enable-lua-records=yes launch=bind bind-config=/opt/pdns_server/named.conf local-address=0.0.0.0 log-dns-details=yes log-dns-queries=yes loglevel=6_END_cat > usr/local/etc/pdns_server/named.conf <<_END_zone "example.com." { type master; file "/opt/pdns_server/db.example.com"; };_END_cat > usr/local/etc/pdns_server/db.example.com <<_END_$TTL 60 @ IN SOA ns.example.com. host.example.com. ( 2025010101; 600; 30; 60; 60) IN NS ns ns IN A 10.1.1.1 www1 IN A 10.1.1.2 www2 IN A 10.1.1.2 www IN LUA CNAME "; if (netmask({'10.1.1.0/24'})) then return 'ww who IN LUA TXT "; returnj 'IP=' .. bestwho:toString()"_END_cd ~sudo chown -R root:root pdns_serversudo chown tc:staff pdns_server/usr/local/tce.installed/pdns_serversudo chmod 755 pdns_server/usr/local/tce.installed/pdns_servermksquashfs pdns_server pdns_server.tczmd5sum pdns_server.tcz > pdns_server.tcz.md5.txtcat > pdns_server.tcz.dep <<_END_ > openssl.tcz > lua-5.4-lib.tcz > curl.tcz > _END_9. 導出
local:nc -w 3 server 65001 < pdns_server.tczremote:ncat -l 65001 > pdns_server.tczlocal:nc -w 3 server 65001 < pdns_server.tcz.depremote:ncat -l 65001 > pdns_recursor.tcz.deplocal:nc -w 3 server 65001 < pdns_server.tcz.md5.txtremote:ncat -l 65001 > pdns_server.tcz.md5.txt
沒有留言:
張貼留言