无人机蜂群>> ngdns-server>> 返回
项目作者: selboo

项目描述 :
OpenResty DNS Server
高级语言: Lua
项目地址: git://github.com/selboo/ngdns-server.git
创建时间: 2019-05-28T03:29:08Z
项目社区:https://github.com/selboo/ngdns-server
开源协议:MIT License
下载


ngdns-server

docker

  1. # docker pull selboo/ngdns-server
  2. # docker run -itd -p 3053:53/udp selboo/ngdns-server
  4. # dig @127.0.0.1 -p 3053 a.aikaiyuan.com | grep -A 3 "ANSWER SECTION"
  5. # dig @127.0.0.1 -p 3053 c.aikaiyuan.com | grep -A 3 "ANSWER SECTION"
  6. # dig @127.0.0.1 -p 3053 6.aikaiyuan.com AAAA | grep -A 3 "ANSWER SECTION"
  7. # dig @127.0.0.1 -p 3053 t.aikaiyuan.com TXT | grep -A 3 "ANSWER SECTION"
  8. # dig @127.0.0.1 -p 3053 aikaiyuan.com NS | grep -A 3 "ANSWER SECTION"
  9. # dig @127.0.0.1 -p 3053 aikaiyuan.com MX | grep -A 3 "ANSWER SECTION"
  10. # dig @127.0.0.1 -p 3053 srv.aikaiyuan.com SRV | grep -A 3 "ANSWER SECTION"
  11. # dig @127.0.0.1 -p 3053 aikaiyuan.com SOA | grep -A 3 "ANSWER SECTION"

install openresty

  1. # git clone https://github.com/vislee/ngx_stream_ipdb_module.git
  2. # cd ngx_stream_ipdb_module
  3. # git checkout add-lua-api
  4. # sed -i 's/ngx_stream_lua_get_request/ngx_stream_lua_get_req/g' ngx_stream_ipdb_lua.c
  5. # cd ..
  6. # wget https://openresty.org/download/openresty-1.19.3.1.tar.gz
  7. # tar zxvf openresty-1.19.3.1.tar.gz
  8. # cd openresty-1.19.3.1
  9. # ./configure --prefix=/usr/local/ngdns-server/ --with-stream --add-module=../ngx_stream_ipdb_module/ --with-cc-opt="-I $PWD/build/ngx_stream_lua*/src"
  10. # gmake -j
  11. # gmake install

install lua-resty-dns-server

https://github.com/vislee/lua-resty-dns-server

  1. /usr/local/ngdns-server/bin/opm get vislee/lua-resty-dns-server
  2. wget https://github.com/vislee/lua-resty-dns-server/raw/add-feature-subnet/lib/resty/dns/server.lua \
  3. /usr/local/ngdns-server/site/lualib/resty/dns/server.lua

install lua-resty-mlcache

https://github.com/thibaultcha/lua-resty-mlcache

  1. /usr/local/ngdns-server/bin/opm get thibaultcha/lua-resty-mlcache

install lua-resty-logger-socket

https://github.com/p0pr0ck5/lua-resty-logger-socket

  1. /usr/local/ngdns-server/bin/opm get p0pr0ck5/lua-resty-logger-socket

install openresty-dns

  1. wget https://raw.githubusercontent.com/selboo/ngdns-server/master/53.lua \
  2.  -O /usr/local/ngdns-server/nginx/conf/53.lua

install qqwry.ipdb

  1. wget https://cdn.jsdelivr.net/npm/qqwry.ipdb/qqwry.ipdb \
  2.  -O /usr/local/ngdns-server/nginx/conf/qqwry.ipdb

install redis

  1. # yum install redis -y

config nginx.conf

  1. #user  nobody;
  2. worker_processes auto;
  4. error_log  logs/error.log ;
  5. pid        logs/nginx.pid;
  7. events {
  8.     worker_connections  1024;
  9. }
  12. stream {
  14.     lua_package_path '/usr/local/ngdns-server/lualib/?.lua;/usr/local/ngdns-server/nginx/conf/?.lua;;';
  15.     lua_package_cpath '/usr/local/ngdns-server/lualib/?.so;;';
  17.     lua_shared_dict QUERYCACHE 32m;
  18.     lua_shared_dict my_locks 1m;
  20.     ipdb /usr/local/ngdns-server/nginx/conf/qqwry.ipdb;
  21.     ipdb_language "CN";
  23.     init_by_lua_block {
  24.         local resty_lock = require "resty.lock"
  25.         local mlcache    = require "resty.mlcache"
  27.         local cache, err = mlcache.new("my_cache", "QUERYCACHE", {
  28.             lru_size = 100000,
  29.             ttl      = 10,
  30.             neg_ttl  = 10,
  31.             resty_lock_opts = resty_lock,
  32.             shm_locks = my_locks
  33.         })
  35.         _G.cache = cache
  37.         local tld = {
  38.             "aikaiyuan.com",
  39.             "selboo.com",
  40.             "abc.com"
  41.         }
  42.         local tlds = table.concat(tld, "|")
  44.         local zone = {
  45.             "(",
  46.             tlds,
  47.             ")$"
  48.         }
  49.         _G.zone = table.concat(zone)
  51.         local DNSTYPES = {}
  53.         DNSTYPES[1]   = "A"
  54.         DNSTYPES[2]   = "NS"
  55.         DNSTYPES[5]   = "CNAME"
  56.         DNSTYPES[6]   = "SOA"
  57.         DNSTYPES[12]  = "PTR"
  58.         DNSTYPES[15]  = "MX"
  59.         DNSTYPES[16]  = "TXT"
  60.         DNSTYPES[28]  = "AAAA"
  61.         DNSTYPES[33]  = "SRV"
  62.         DNSTYPES[99]  = "SPF"
  63.         DNSTYPES[255] = "ANY"
  65.         _G.DNSTYPES = DNSTYPES
  67.         local views = {
  68.             电信    = "DX",
  69.             联通    = "LT",
  70.             移动    = "YD",
  71.             中华电信 = "DX",
  72.             鹏博士   = "PBS",
  73.             教育网   = "JY",
  74.             远传电信 = "DX",
  75.             广电网   = "DX",
  76.             亚太电信 = "DX",
  77.             长城    = "PBS"
  78.         }
  80.         _G.VIEWS = views
  81.     }
  83.     server {
  84.         listen 53 udp ;
  86.         content_by_lua_block {
  87.             local ngdns       = require "53"
  88.             local new         = ngdns:new({
  89.                 redis_host    = "127.0.0.1",
  90.                 redis_port    = 6379,
  91.                 redis_timeout = 5,
  92.             })
  94.             new:run_udp()
  95.         }
  97.         log_by_lua_block {
  99.             local logger = require "resty.logger.socket"
  100.             if not logger.initted() then
  101.                 local ok, err = logger.init{
  102.                     host = '127.0.0.1',
  103.                     port = 514,
  104.                     sock_type = "udp",
  105.                     flush_limit = 1,
  106.                     drop_limit = 99999,
  107.                 }
  108.                 if not ok then
  109.                     ngx.log(ngx.ERR, "failed to initialize the logger: ", err)
  110.                     return
  111.                 end
  112.             end
  114.             logger.log(ngx.ctx.log)
  116.         }
  117.     }
  120.     server {
  121.         listen 1053 ;
  123.         content_by_lua_block {
  124.             local ngdns       = require "53"
  125.             local new         = ngdns:new({
  126.                 redis_host    = "127.0.0.1",
  127.                 redis_port    = 6379,
  128.                 redis_timeout = 5,
  129.                 tcp           = 1,
  130.             })
  132.             new:run_tcp()
  133.         }
  135.         log_by_lua_block {
  137.             local logger = require "resty.logger.socket"
  138.             if not logger.initted() then
  139.                 local ok, err = logger.init{
  140.                     host = '127.0.0.1',
  141.                     port = 514,
  142.                     sock_type = "udp",
  143.                     flush_limit = 1,
  144.                     drop_limit = 99999,
  145.                 }
  146.                 if not ok then
  147.                     ngx.log(ngx.ERR, "failed to initialize the logger: ", err)
  148.                     return
  149.                 end
  150.             end
  152.             logger.log(ngx.ctx.log)
  154.         }
  155.     }
  157. }

start redis openresty-dns

  1. # systemctl restart redis
  2. # /usr/local/ngdns-server/nginx/sbin/nginx

dns query log

  1. 2019-06-25 15:59:51 127.0.0.1 8.8.8.8 lb.aikaiyuan.com aikaiyuan.com lb * A aikaiyuan.com/lb/*/A
  2. 2019-06-25 15:59:51 127.0.0.1 127.0.0.1 lb.aikaiyuan.com aikaiyuan.com lb * A aikaiyuan.com/lb/*/A

time client_ip subnet_ip domain tld sub view qtype redis_key

dns view type

View Code Region
电信 DX 中国
远传电信 DX 中国
广电网 DX 中国
亚太电信 DX 中国
中华电信 DX 中国
联通 LT 中国
移动 YD 中国
教育网 JY 中国
鹏博士 PBS 中国
长城 PBS 中国
海外 HW 海外
局域网 JYW

数据来源: http://www.cz88.net/ip/

dns type

A

  1. ## tld/sub/view/type   value/ttl   set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/lb/*/A 220.181.1.1/3600 220.181.2.2/3600 # 默认区域
  4. OK
  5. 127.0.0.1:6379> sadd aikaiyuan.com/lb/LT/A 123.125.3.3/3600 # 联通区域
  6. OK
  7. # dig @127.0.0.1 lb.aikaiyuan.com

CNAME

  1. ## tld/sub/view/type   value/ttl    set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/www/*/CNAME   aikaiyuan.appchizi.com./3600  # 默认区域
  4. OK
  5. 127.0.0.1:6379> sadd aikaiyuan.com/www/DX/CNAME   dx.appchizi.com./60  # 电信区域
  6. OK
  7. # dig @127.0.0.1 www.aikaiyuan.com CNAME

AAAA

  1. ## tld/sub/view/type   value/ttl   set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/ipv6/*/AAAA 240c::6666/60 240c::8888/60
  4. OK
  5. # dig @127.0.0.1 ipv6.aikaiyuan.com AAAA

NS

  1. ## tld/sub/view/type   value/ttl   set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/ns/*/NS ns10.aikaiyuan.com./86400
  4. OK
  5. # dig @127.0.0.1 ns.aikaiyuan.com NS

TXT

  1. ## tld/sub/view/type   value/ttl   set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/txt/*/TXT txt.aikaiyuan.com/1200
  4. OK
  5. # dig @127.0.0.1 txt.aikaiyuan.com txt

MX

  1. ## tld/sub/view/type   value/ttl/preference   set
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/@/*/MX smtp1.qq.com./720/10 smtp2.qq.com./720/10
  4. OK
  5. # dig @127.0.0.1 aikaiyuan.com MX

SRV

  1. ## tld/sub/view/type   priority/weight/port/value/ttl
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/srv/*/SRV 1/100/800/www.aikaiyuan.com/120
  4. OK
  5. # dig @127.0.0.1 srv.aikaiyuan.com SRV

SOA

  1. ## tld/type   mname/rname/serial/refresh/retry/expire/minimum/ttl
  2. # redis-cli
  3. 127.0.0.1:6379> sadd aikaiyuan.com/SOA ns1.aikaiyuan.com/domain.aikaiyuan.com/1558348800/1800/900/604800/86400/7200
  4. OK
  5. # dig @127.0.0.1 aikaiyuan.com SOA
  • mname 名称服务器的 ,该名称服务器是这个区域的数据起源或主要源。
  • rname 一个,它规定负责这个区域的个人的邮箱。由于不支持 @ 这里使用 . 替代 domain.aikaiyuan.com. <=> domain@aikaiyuan.com
  • serial 该区域的原始副本的无符号 32 位版本号。区域传递保存这个值。这个值叠起(wrap),并且应当使用系列空间算法比较这个值。
  • refresh 区域应当被刷新前的 32 位时间间隔
  • retry 在重试失败的刷新前,应当等待的 32 位时间间隔
  • expire 32 位时间值,它规定在区域不再是权威的之前可以等待的时间间隔的上限
  • minimum 无符号 32 位最小值 TTL 字段,应当用来自这个区域的任何 RR 输出它。
  • ttl TTL

TODO

  • edns-client-subnet
  • ngdns-api

Thanks