Managing DNS zone files with dnspython

最新推荐文章于 2022-09-23 17:45:39 发布
最新推荐文章于 2022-09-23 17:45:39 发布
阅读量815 收藏
点赞数

from: http://agiletesting.blogspot.com/2005/08/managing-dns-zone-files-with-dnspython.html



Managing DNS zone files with dnspython

August 19, 2005
I've been using  dnspython lately for transferring some DNS zone files from one name server to another. I found the package extremely useful, but poorly documented, so I decided to write this post as a mini-tutorial on using dnspython.

Running DNS queries

This is one of the things that's clearly spelled out on the  Examples page. Here's how to run a DNS query to get the mail servers (MX records) for dnspython.org: 

import dns.resolver

answers = dns.resolver.query('dnspython.org', 'MX')
for rdata in answers:
    print 'Host', rdata.exchange, 'has preference', rdata.preference
To run other types of queries, for example for IP addresses (A records) or name servers (NS records), replace MX with the desired record type (A, NS, etc.)

Reading a DNS zone from a file

In dnspython, a DNS zone is available as a  Zone object. Assume you have the following DNS zone file called db.example.com: 

$TTL 36000
example.com. IN      SOA     ns1.example.com. hostmaster.example.com. (
               2005081201      ; serial
               28800   ; refresh (8 hours)
               1800    ; retry (30 mins)
               2592000 ; expire (30 days)
               86400 ) ; minimum (1 day)

example.com.     86400   NS      ns1.example.com.
example.com.     86400   NS      ns2.example.com.
example.com.     86400   MX 10   mail.example.com.
example.com.     86400   MX 20   mail2.example.com.
example.com.     86400   A       192.168.10.10
ns1.example.com.        86400   A       192.168.1.10
ns2.example.com.        86400   A       192.168.1.20
mail.example.com.       86400   A       192.168.2.10
mail2.example.com.      86400   A       192.168.2.20
www2.example.com.       86400   A    192.168.10.20
www.example.com.        86400 CNAME     example.com.
ftp.example.com.        86400 CNAME     example.com.
webmail.example.com.    86400 CNAME     example.com.

To have dnspython read this file into a Zone object, you can use this code: 

import dns.zone
from dns.exception import DNSException

domain = "example.com"
print "Getting zone object for domain", domain
zone_file = "db.%s" % domain

try:
    zone = dns.zone.from_file(zone_file, domain)
    print "Zone origin:", zone.origin
except DNSException, e:
    print e.__class__, e
A zone can be viewed as a dictionary mapping  names to  nodes; dnspython uses by default name representations which are relative to the 'origin' of the zone. In our zone file, 'example.com' is the origin of the zone, and it gets the special name '@'. A name such as www.example.com is exposed by default as 'www'.

A name corresponds to a node, and a node contains a collection of record dataset, or  rdatasets. A record dataset contains all the records of a given type. In our example, the '@' node corresponding to the zone origin contains 4 rdatasets, one for each record type that we have: SOA, NS, MX and A. The NS rdataset contains a set of  rdatas, which are the individual records of type NS. The rdata class has subclasses for all the possible record types, and each subclass contains information specific to that record type.

Enough talking, here is some code that will hopefully make the previous discussion a bit clearer: 

import dns.zone
from dns.exception import DNSException
from dns.rdataclass import *
from dns.rdatatype import *

domain = "example.com"
print "Getting zone object for domain", domain
zone_file = "db.%s" % domain

try:
    zone = dns.zone.from_file(zone_file, domain)
    print "Zone origin:", zone.origin
    for name, node in zone.nodes.items():
        rdatasets = node.rdatasets
        print "\n**** BEGIN NODE ****"
        print "node name:", name
        for rdataset in rdatasets:
            print "--- BEGIN RDATASET ---"
            print "rdataset string representation:", rdataset
            print "rdataset rdclass:", rdataset.rdclass
            print "rdataset rdtype:", rdataset.rdtype
            print "rdataset ttl:", rdataset.ttl
            print "rdataset has following rdata:"
            for rdata in rdataset:
                print "-- BEGIN RDATA --"
                print "rdata string representation:", rdata
                if rdataset.rdtype == SOA:
                    print "** SOA-specific rdata **"
                    print "expire:", rdata.expire
                    print "minimum:", rdata.minimum
                    print "mname:", rdata.mname
                    print "refresh:", rdata.refresh
                    print "retry:", rdata.retry
                    print "rname:", rdata.rname
                    print "serial:", rdata.serial
                if rdataset.rdtype == MX:
                    print "** MX-specific rdata **"
                    print "exchange:", rdata.exchange
                    print "preference:", rdata.preference
                if rdataset.rdtype == NS:
                    print "** NS-specific rdata **"
                    print "target:", rdata.target
                if rdataset.rdtype == CNAME:
                    print "** CNAME-specific rdata **"
                    print "target:", rdata.target
                if rdataset.rdtype == A:
                    print "** A-specific rdata **"
                    print "address:", rdata.address
except DNSException, e:
    print e.__class__, e

When run against db.example.com, the code above produces  this output.

Modifying a DNS zone file

Let's see how to add, delete and change records in our example.com zone file. dnspython offers several different ways to get to a record if you know its name or its type.

Here's how to modify the SOA record and increase its serial number, a very common operation for anybody who maintains DNS zones. I use the iterate_rdatas method of the Zone class, which is handy in this case, since we know that the rdataset actually contains one rdata of type SOA: 
   
for (name, ttl, rdata) in zone.iterate_rdatas(SOA):
    serial = rdata.serial
    new_serial = serial + 1
    print "Changing SOA serial from %d to %d" %(serial, new_serial)
    rdata.serial = new_serial


Here's how to delete a record by its name. I use the delete_node method of the Zone class: 

node_delete = "www2"
print "Deleting node", node_delete
zone.delete_node(node_delete)
Here's how to change attributes of existing records. I use the find_rdataset method of the Zone class, which returns a rdataset containing the records I want to change. In the first section of the following code, I'm changing the IP address of 'mail', and in the second section I'm changing the TTL for all the NS records corresponding to the zone origin '@': 

A_change = "mail"
new_IP = "192.168.2.100"
print "Changing A record for", A_change, "to", new_IP
rdataset = zone.find_rdataset(A_change, rdtype=A)
for rdata in rdataset:
    rdata.address = new_IP

rdataset = zone.find_rdataset("@", rdtype=NS)
new_ttl = rdataset.ttl / 2
print "Changing TTL for NS records to", new_ttl
rdataset.ttl = new_ttl

Here's how to add records to the zone file. The find_rdataset method can be used in this case too, with the create parameter set to True, in which case it creates a new rdataset if it doesn't already exist. Individual rdata objects are then created by instantiating their corresponding classes with the correct parameters -- such as rdata = dns.rdtypes.IN.A.A(IN, A, address="192.168.10.30").

I show here how to add records of type A, CNAME, NS and MX: 
  A_add = "www3"
print "Adding record of type A:", A_add
rdataset = zone.find_rdataset(A_add, rdtype=A, create=True)
rdata = dns.rdtypes.IN.A.A(IN, A, address="192.168.10.30")
rdataset.add(rdata, ttl=86400)

CNAME_add = "www3_alias"
target = dns.name.Name(("www3",))
print "Adding record of type CNAME:", CNAME_add
rdataset = zone.find_rdataset(CNAME_add, rdtype=CNAME, create=True)
rdata = dns.rdtypes.ANY.CNAME.CNAME(IN, CNAME, target)
rdataset.add(rdata, ttl=86400)

A_add = "ns3"
print "Adding record of type A:", A_add
rdataset = zone.find_rdataset(A_add, rdtype=A, create=True)
rdata = dns.rdtypes.IN.A.A(IN, A, address="192.168.1.30")
rdataset.add(rdata, ttl=86400)

NS_add = "@"
target = dns.name.Name(("ns3",))
print "Adding record of type NS:", NS_add
rdataset = zone.find_rdataset(NS_add, rdtype=NS, create=True)
rdata = dns.rdtypes.ANY.NS.NS(IN, NS, target)
rdataset.add(rdata, ttl=86400)

A_add = "mail3"
print "Adding record of type A:", A_add
rdataset = zone.find_rdataset(A_add, rdtype=A, create=True)
rdata = dns.rdtypes.IN.A.A(IN, A, address="192.168.2.30")
rdataset.add(rdata, ttl=86400)

MX_add = "@"
exchange = dns.name.Name(("mail3",))
preference = 30
print "Adding record of type MX:", MX_add
rdataset = zone.find_rdataset(MX_add, rdtype=MX, create=True)
rdata = dns.rdtypes.ANY.MX.MX(IN, MX, preference, exchange)
rdataset.add(rdata, ttl=86400)

Finally, after modifying the zone file via the zone object, it's time to write it back to disk. This is easily accomplished with dnspython via the to_file method. I chose to write the modified zone to a new file, so that I have my original zone available for other tests: 

new_zone_file = "new.db.%s" % domain
print "Writing modified zone to file %s" % new_zone_file
zone.to_file(new_zone_file)

The new zone file looks something like this (note that all names have been relativized from the origin): 

@ 36000 IN SOA ns1 hostmaster 2005081202 28800 1800 2592000 86400
@ 43200 IN NS ns1
@ 43200 IN NS ns2
@ 43200 IN NS ns3
@ 86400 IN MX 10 mail
@ 86400 IN MX 20 mail2
@ 86400 IN MX 30 mail3
@ 86400 IN A 192.168.10.10
ftp 86400 IN CNAME @
mail 86400 IN A 192.168.2.100
mail2 86400 IN A 192.168.2.20
mail3 86400 IN A 192.168.2.30
ns1 86400 IN A 192.168.1.10
ns2 86400 IN A 192.168.1.20
ns3 86400 IN A 192.168.1.30
webmail 86400 IN CNAME @
www 86400 IN CNAME @
www3 86400 IN A 192.168.10.30
www3_alias 86400 IN CNAME www3

Although it looks much different from the original db.example.com file, this file is also a valid DNS zone -- I tested it by having my DNS server load it.

Obtaining a DNS zone via a zone transfer

This is also easily done in dnspython via the  from_xfr function of the zone module. Here's how to do a zone transfer for dnspython.org, trying all the name servers for that domain one by one: 

import dns.resolver
import dns.query
import dns.zone
from dns.exception import DNSException
from dns.rdataclass import *
from dns.rdatatype import *

domain = "dnspython.org"
print "Getting NS records for", domain
answers = dns.resolver.query(domain, 'NS')
ns = []
for rdata in answers:
    n = str(rdata)
    print "Found name server:", n
    ns.append(n)

for n in ns:
    print "\nTrying a zone transfer for %s from name server %s" % (domain, n)
    try:
        zone = dns.zone.from_xfr(dns.query.xfr(n, domain))
    except DNSException, e:
        print e.__class__, e


Once we obtain the zone object, we can then manipulate it in exactly the same way as when we obtained it from a file.

Various ways to iterate through DNS records

Here are some other snippets of code that show how to iterate through records of different types assuming we retrieved a zone object from a file or via a zone transfer: 

    print "\nALL 'IN' RECORDS EXCEPT 'SOA' and 'TXT':"
    for name, node in zone.nodes.items():
        rdatasets = node.rdatasets
        for rdataset in rdatasets:
            if rdataset.rdclass != IN or rdataset.rdtype in [SOA, TXT]:
                continue
            print name, rdataset

    print "\nGET_RDATASET('A'):"
    for name, node in zone.nodes.items():
        rdataset = node.get_rdataset(rdclass=IN, rdtype=A)
        if not rdataset:
            continue
        for rdataset in rdataset:
            print name, rdataset

    print "\nITERATE_RDATAS('A'):"
    for (name, ttl, rdata) in zone.iterate_rdatas('A'):
        print name, ttl, rdata

    print "\nITERATE_RDATAS('MX'):"
    for (name, ttl, rdata) in zone.iterate_rdatas('MX'):
        print name, ttl, rdata

    print "\nITERATE_RDATAS('CNAME'):"
    for (name, ttl, rdata) in zone.iterate_rdatas('CNAME'):
        print name, ttl, rdata
You can find the code referenced in this post in these 2 modules:  zonemgmt.py and  zone_transfer.py.






若闻
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
dns-zone-files:DNSDNS区域文件可随时导入CloudFlare上,以轻松配置常用配置。 文件为BIND格式
05-09
DNS区域文件 准备导入CloudFlare的通用配置区域文件。 可用区域文件 :配置服务。 :配置服务。 :配置服务。 :配置云存储。 :配置服务。 :配置服务。 :配置服务。 Google-App-Engine :配置Google App Engine服务。 Google Workspace :配置Google Workspace (又名GSuite)服务。 ImprovementMX :配置ModifyMX服务。 Mailgun :配置Mailgun服务。 中:配置Medium.com发布。 Office 365 :配置Office 365服务。 SendGrid :配置SendGrid服务。 Shopify :配置Shopify服务。 SmugMug :配置SmugMug服务。 SparkPost :配置SparkPost服务。 Tu
dns-zonefile, 在Javascript中,一个DNS区域文件生成器和.zip
09-18
dns-zonefile, 在Javascript中,一个DNS区域文件生成器和 dns-zonefile兼容于 RFC1035的区域文件解析器,用于和浏览器的文件解析器和生成器。安装 Bower 安装bower install dns-zonefile --save独立sudo npm install d
DNS zone file
weixin_34148508的博客
06-01 651
zone file格式最初由Berkeley Internet Name Domain(BIND)软件包使用,但已被其他DNS server software广泛采用。它们中的一些(例如NSD,PowerDNS)仅将zone file用作编译数据库格式的起点。 zone file是关于RR(resource records资源记录)的一些列条目。 name字段可能留空。 如果这样,该记录将...
DNSZONE文件
saturn254的专栏
09-23 1798
dns zone文件描述
基于dnspythonDNS区域传输
qq726232111的博客
07-16 277
思路: 1 根据域名查询NS服务器 2 尝试对每个NS服务器发起区域传输请求 该过程包含对NS域名的解析 代码: #!/usr/bin/python3 import dns.resolver import dns.query import sys ns=[] def line(): flags='-'*70 print(flags) def getNS(domain): # answer is cl...
Managing Your Biological Data with Python 无水印pdf
10-03
Managing Your Biological Data with Python 英文无水印pdf pdf所有页面使用FoxitReader和PDF-XChangeViewer测试都可以打开 本资源转载自网络,如有侵权,请联系上传者或csdn删除 本资源转载自网络,如有侵权...
Managing Linux Systems with Webmin
02-04
### 使用Webmin管理Linux系统的关键知识点 #### 一、引言 在当今的IT环境中,Linux作为最流行的开源操作系统之一,被广泛应用于服务器管理和企业级应用。然而,对于那些不熟悉命令行操作的新手管理员来说,Linux...
Managing Your Biological Data with Python
08-10
Python,生物信息学
Managing payment files-开源
05-03
"Managing payment files-开源"项目就是这样一个例子,它提供了一个基于Web的系统,专门用于管理和处理来自不同金融机构的支付文件。这样的系统对于企业,尤其是那些处理大量财务交易的公司来说,具有巨大的价值。 ...
Managing Traffic with ALTQ-计算机科学
04-22
1999 USENIX Annual Technical ConferenceMonterey, California, USA, June 6–11, 1999Managing Traffic with ALTQKenjiro Cho Sony Computer Science Laboratories, Inc., Tokyo:copyright: 1999 by The USENIX ...
python写的修改DNS方法dns.py
09-25
Python写的本地修改DNS方法,可以下载尝试一下,执行结果可以颜色区分展示。下载试试吧!!!!!!!
DNS BIND区域数据文件
斑驳的岁月
12-31 3107
区域解析库:由众多资源记录RR(Resource Record)组成。 SOA:Start Of Authority(起始授权记录),一个区域解析库有且仅能有一个SOA记录,必须位于解析库的第一条记录。 A:Address(地址记录) FQDN –> IPv4 32bit AAAA: FQDN –> IPv6 128bit=32bit×4 PTR: PoinTeR(域...
DNS区域文件(Zone file)的serial数值命名规则
weixin_34356555的博客
04-11 534
DNS区域文件(Zone file)的serial命名规则需要按照官方提供的文档命名,主要有2点需要注意。1.命名时,Master DNS的Serial数值必须大于Slave DNS的,且全必须是数字;2.Serial 数值不能是超过当前系统时间的未来的某个值,如现在是2013年10月29不能超过2013102900;YYYYMMDDRR的格式如下:The format for this line...
DNS服务器上 区域文件 是,DNS服务器上“区域文件”是用来
weixin_29771573的博客
07-31 526
摘要:上区下列叙述关于中正据文件的C语言数确的是_。上区函数内部题的中国径问求最为:大学短路。域文用体系中医要特理论的主点是。...上区下列叙述关于中正据文件的C语言数确的是_。域文用关于整体以下误的楼梯的说法错是(。上区函数内部题的中国径问求最为:大学短路。下列哪种酶的疾病与酪有关氨酸缺失。行矫患者中国正佩戴:近镜进凹透大学视眼可以。在制作表页之前单网,行能正添加中才表单必须对象到表单域常运,建...
Python学习笔记-DNS处理模块dnspython
weixin_33766805的博客
06-13 247
DNS处理模块dnspython dnspythonpython实现的一个DNS工具包,它支持几乎所有的记录类型,可以用于查询、传输并动态更新ZONE信息,同时支持TSIG(事务签名)验证消息和EDNS0(扩展DNS)。在系统管理方面,我们可以利用其查询功能来实现DNS服务监控以及解析结果的校验,可以替代nslookup和dig等工具,轻松做到与现有平台的整合。 ...
dnspython
weixin_30687811的博客
03-13 291
dnspython 一个Python实现的一个DNS工具包,利用其查询功能来实现dns的服务监控及解析结果的校验。 安装 pip install dnspython 解析域名为IP from dns import resolver f = open('ddd.log', 'w') with open('urls.txt', 'r') as fp: for line in fp: ...
将其他平台的DNS zone file导入到Route53的hosted zone
王飞Vincent-Fei的AWS专栏
03-13 1836
快速迁移域名解析的时候,我们可以利用Route53的导入功能,直接将遵守BIND标准的zone file导入。 导入时,会自动忽略文件中的NS和SOA记录,且导入前,Route53的hosted zone里面只有NS和SOA。 最多一次导入1000行记录,再多只能使用BIND to Amazon Route 53 Conversion Tool这个工具了。 导入方法: 首先创建hosted
三、Python3自动化运维——DNS处理模块dnspython
weixin_45625450的博客
08-11 2605
dnspythonpython 实现的一个dns场景的工具包。将网站与IP地址相互关联在一起 就叫DNS所谓的记录,其实是满足不同业务场景的dns名称查询方式-- 一般在DNS服务器上进行配置主要应用场景 - 查询解析场景查询方法- query。......
python3之DNS处理模块dnspython
热门推荐
龍大笔记
08-16 1万+
import dns.resolver domain = input('请输入域名地址') 请输入域名地址www.baidu.com # (1) A记录, 将主机转换为IP地址 A= dns.resolver.query(domain,'A') for i in A.response.answer: for j in i.items: if j.rdtype =...
managing projects with gnu make
最新发布
09-17
GNU Make 是一个广泛使用的项目管理工具,它可以帮助我们自动化构建和管理项目。它的核心思想是基于规则来定义项目的构建过程。 首先,我们需要在项目的根目录中创建一个名为“Makefile”的文件,用于定义项目的...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值