DNS¼¹ö ¼³Á¤Çϱâ_³×ÀÓ¼¹ö ¼³Á¤Çϱâ
³×ÀÓ¼¹ö´Â IPÁÖ¼Ò¸¦ »ç¶÷µéÀÌ ½±°Ô ±â¾ïÇÒ ¼ö Àִµµ¸ÞÀÎÁÖ¼Ò·Î ¸ÅÇνÃÄÑÁÖ´Â ¿ªÇÒÀ» ÇÕ´Ï´Ù.
¸®´ª½º¿¡¼ ¾²ÀÌ´Â ³×ÀÓ¼¹ö·Î´Â Bind(Barkeley Internet Name Domain)°¡ ¾²ÀÔ´Ï´Ù. ÇÑÄĸ®´ª½º¿¡´Â ±âº»ÀûÀ¸·Î ¼³Ä¡°¡ µÇ¾î ÀÖÀ¸¹Ç·Î, ¼³Á¤À¸·Î ³Ñ¾î°¡½Ã¸é µË´Ï´Ù. ¸¸ÀÏÀ» À§ÇØ #rpm -qa|grep bind ·Î ÆÐÅ°Áö°¡ ¼³Ä¡µÇ¾î ÀÖ´ÂÁö È®ÀÎÇØ º¸½Ã°í, È®ÀεÇÁö ¾ÊÀ¸¸é ¼³Ä¡¸¦ ¸ÕÀú ÁøÇàÇϽñ⠹ٶø´Ï´Ù.
¸ÕÀú, ¼³Á¤¿¡ ÇÊ¿äÇÑ ÆÄÀϵéÀº ´ÙÀ½°ú °°½À´Ï´Ù. - /etc/named.conf : ºÎÆ® ÆÄÀÏ, ù ¹ø° ¼³Á¤ ÆÄÀÏ - /var/named/named.ca : ·çÆ® ³×ÀÓ¼¹ö¿¡ ´ëÇÑ Á¤º¸°¡ ÀÖ´Â µ¥ÀÌÅͺ£À̽º ÆÄÀÏ(ij½Ã ÆÄÀÏ) - /var/named/named.local : localhost¿¡ ´ëÇÑ ¼³Á¤ ÆÄÀÏ - /var/named/forward.zone : Public Domain¿¡ ´ëÇÑ Forward zone ÆÄÀÏ - /var/named/reverse.zone : Inverse Domain¿¡ ´ëÇÑ Reverse zone ÆÄÀÏ
1. namd.conf ¼³Á¤
¾Æ·¡´Â hancom.com µµ¸ÞÀο¡ ´ëÇÑ named.conf ÆÄÀÏÀÇ ¼³Á¤ÀÔ´Ï´Ù. ±âº»ÀûÀÎ ¼³Á¤ÆÄÀÏ¿¡¼ ±½°Ô Ç¥½ÃµÈ ºÎºÐ¸¸, ½ÅûÇÑ µµ¸ÞÀο¡ ¸Â°Ô Ãß°¡¸¦ ÇÕ´Ï´Ù.
[root@ns root]# cat /etc/named.conf // generated by named-bootconf.pl
options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
//
// a caching only nameserver config
//
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "hancom.com" IN {
type master;
file "hancom.zone";
allow-update { none; };
};
zone "0.168.192.in-addr.arpa" IN {
type master;
file "hancom.rev";
allow-update { none; };
};
[root@ns root]#
| À§¿Í °°ÀÌ ½ÅûÇÑ µµ¸ÞÀÎÀÎ hancom.com¿¡ ´ëÇÑ Æ÷¿öµå Á¸ ÆÄÀÏÀÎ hancom.zoneÀ» ÁöÁ¤ÇÏ¿´°í, ³×ÀÓ¼¹ö¸¦ ¸¸µé È£½ºÆ®ÀÇ IPÀÎ 192.168.0.2ÀÇ ¿ªÀ¸·Î 0.168.192.in-addr-arpa¸¦ ÁöÁ¤ÇÏ°í ¸®¹ö½º Á¸ ÆÄÀÏ·Î hancom.rev ÆÄÀÏÀ» ÁöÁ¤ÇÏ¿´½À´Ï´Ù.
2. hancom.zone »ý¼º
named.conf ÆÄÀÏ¿¡¼ ÁöÁ¤ÇÑ hancom.com¿¡ ´ëÇÑ Forward zone ÆÄÀÏ°ú Reverser zone ÆÄÀÏÀº °¢°¢ hancom.zone°ú hancom.rev·Î ¼³Á¤ÇÏ¿´½À´Ï´Ù. ÁöÁ¤ÇÑ ÆÄÀÏÀº /var/named µð·ºÅ丮¿¡ ÆÄÀÏÀ» »ý¼ºÇÕ´Ï´Ù. /var/named À¸·Î À̵¿ÇÏ¿© »ìÆ캸¸é. ±âº»ÀûÀ¸·Î named.ca, localhost.zone, named.local ÆÄÀÏÀº »ý¼ºµÇ¾î ÀÖ½À´Ï´Ù.
hancom.zone ÆÄÀÏÀ» »ý¼ºÇϱâ À§ÇØ, named.local ÆÄÀÏÀ» hancom.zoneÆÄÀÏ·Î º¹»çÇÕ´Ï´Ù.
[root@ns root]# cd /var/named [root@ns named]# ls localhost.zone named.ca named.local [root@ns named]# cp named.local hancom.zone
| Çü½Ä¿¡ ¸Â°Ô hancom.zone ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
[root@ns named]# vi /var/named/hancom.zone $TTL 86400
@ IN SOA ns.hancom.com. root.ns.hancom.com. (
2002062500 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns.hancom.com.
IN MX 10 mail.hancom.com.
ns IN A 192.168.0.2
hancom.com. IN A 192.168.0.2
mail IN A 192.168.0.3
www IN A 192.168.0.4
ftp IN A 192.168.0.5
| [ÁÖÀÇ] ÆíÁý½Ã µµ¸ÞÀÎ ¸í ´ÙÀ½Àº ¹Ýµå½Ã ÄÞ¸¶(.)À» Âï¾î¾ß ÇÕ´Ï´Ù.
3. hancom.rev »ý¼º Æ÷¿öµå Á¸ ÆÄÀÏÀÎ hancom.zoneÀ» »ý¼ºÇß´Ù¸é, ³ª¸ÓÁö Çϳª ¸®¹ö½º Á¸ ÆÄÀÏÀÎ hancom.revÆÄÀϸ¸ »ý¼ºÇÏ¸é µË´Ï´Ù. hancom.rev ÆÄÀÏÀ» »ý¼ºÇϱâ À§ÇØ, named.local ÆÄÀÏÀ» hancom.rev ÆÄÀÏ·Î º¹»çÇÕ´Ï´Ù
[root@ns root]# cd /var/named [root@ns named]# ls hancom.zone localhost.zone named.ca named.local [root@ns named]# cp named.local hancom.rev
| hancom.rev ÆÄÀÏÀ» ´ÙÀ½°ú °°ÀÌ ÆíÁýÇÕ´Ï´Ù. [root@ns named]# vi /var/named/hancom.rev
$TTL 86400
@ IN SOA ns.hancom.com. root.ns.hancom.com. (
2002062500 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns.hancom.com.
2 IN PTR ns
3 IN PTR mail
4 IN PTR www
5 IN PTR ftp
| Çü½Ä
±âº»ÀûÀÎ Çü½ÄÀº °°À¸¸ç, IP¸¦ µµ¸ÞÀÎÀ¸·Î ¸ÅÇÎÇÒ ¼ö ÀÖµµ·Ï PTR(Pointer) ·¹Äڵ带 »ç¿ëÇÏ¿©, µµ¸ÞÀο¡ ´ëÇÑ IP¸¦ ÁöÁ¤ÇÏ¸é µË´Ï´Ù.
4. ±× ¿Ü ¼³Á¤ ³×ÀÓ¼¹ö¸¦ ¼³Á¤ÇÏ´Â ¼¹öÀÇ /etc/resolve.confÆÄÀÏÀ» Àá½Ã »ìÆ캸°í, ³×ÀÓ¼¹ö ¼³Á¤¿¡ ¸Â°Ô ¼öÁ¤À» ÇÕ´Ï´Ù. /etc/hostsÆÄÀÏ°ú /etc/host.confÆÄÀÏÀº Âü°í·Î »ìÆ츸 º¸½Ã¸é µË´Ï´Ù.
/etc/resolve.conf ¼¹öÀÇ ³×ÀÓ¼¹ö¸¦ ÁöÁ¤ÇÏ´Â °ÍÀ¸·Î, ÀÔ·ÂµÈ ¼ø¼´ë·Î ÁöÁ¤µÈ ³×ÀÓ¼¹ö¿¡ ÁúÀǸ¦ ÇÏ°Ô µË´Ï´Ù. ù ¹ø° µî·ÏµÉ ³×ÀÓ¼¹ö´Â NICÀ̳ª KRNIC¿¡ µî·ÏµÈ 1Â÷ ³×ÀÓ¼¹ö·Î ns.hancom.comÀ» ¼ÂÆÃÇϴ ȣ½ºÆ®ÀÇ IP¸¦ µî·ÏÇÕ´Ï´Ù.
[root@ns named]# cat /etc/resolv.conf nameserver 192.168.0.2 nameserver 168.126.63.1
|
/etc/hosts hosts´Â °£´ÜÇÑ ³×ÀÓ¼¹öÀÇ ¿ªÇÒÀ» ÇÏ´Â °ÍÀ¸·Î, ÀÚÁÖ ¾²´Â µµ¸ÞÀο¡ ´ëÇÑ ¾Ë¸®¾Æ½º¸¦ ÁöÁ¤ÇÒ ¼ö ÀÖ½À´Ï´Ù. ¸¸ÀÏ http://www.hancom.com À¥ »çÀÌÆ® Á¢¼ÓÀÌ ºó¹øÇÒ °æ¿ì, °£´ÜÈ÷ /etc/hosts ÆÄÀÏ¿¡ ¾Æ·¡¿Í °°ÀÌ µî·ÏÇϹǷνá www¸¸À¸·Î www.hancom.com ¼¹ö·Î Á¢¼ÓÇÏ°Ô µË´Ï´Ù.
[root@ns named]# cat /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 localhost.localdomain localhost
192.168.0.2 ns.hancom.com. ns
211.233.3.59 kr.hancom.com www
|
/etc/host.conf ¾Æ·¡ ±×¸²°ú °°ÀÌ hosts¿Í bind ¿¡ ´ëÇÑ ÂüÁ¶ ¼ø¼¸¦ °áÁ¤ÇÕ´Ï´Ù. ¸¸ÀÏ, ¼ø¼°¡ ¹Ù²î¾î ÀÖ´Ù¸é, /etc/hostsÆÄÀÏÀº ¹«¿ëÁö¹°ÀÌ µÇ°ÚÁÒ?
[root@ns named]# cat /etc/host.conf order hosts,bind [root@ns named]#
|
5. ³×ÀÓ ¼¹ö µ¥¸ó Àç °¡µ¿ º¯°æÀÌ ¿Ï·á µÇ¾ú´Ù¸é, µ¥¸óÀ» Àç ½ÇÇàÇÕ´Ï´Ù.
[root@ns root]# /etc/rc.d/init.d/named stop named ¸¦ Á¤ÁöÇÔ: [ È®ÀÎ ] [root@ns root]# /etc/rc.d/init.d/named start named (À»)¸¦ ½ÃÀÛÇÕ´Ï´Ù: [ È®ÀÎ ] [root@ns root]#
|
6. ³×ÀÓ ¼¹ö ¼³Á¤ ¿À·ù üũ ³×ÀÓ¼¹ö¸¦ ±¸ÃàÇÏ°í ¹®Á¦Á¡À» üũÇÏ´Â µµ±¸´Â ¿©·¯ °¡Áö°¡ ¸¹½À´Ï´Ù. ±× Áß °¡Àå ¸¹ÀÌ ¾²ÀÌ´Â nslookupÀ¸·Î ³×ÀÓ¼¹ö¸¦ üũÇÏ´Â ¹æ¹ýÀ» ¾Ë¾Æº¸µµ·Ï ÇÏ°Ú½À´Ï´Ù.
¸í·ÉÇà¿¡¼ nslookup¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
[root@ns root]# nslookup Note: nslookup is deprecated and may be removed from future releases. Consider using the `dig' or `host' programs instead. Run nslookup with the `-sil[ent]' option to prevent this message from appearing. >
| >¿¡ ¼ÂÆÃµÈ ³×ÀÓ ¼¹ö¸íÀ» ÀÔ·ÂÇÕ´Ï´Ù.
¾Æ·¡¿Í °°ÀÌ hancom.comÀ» ÀÔ·ÂÇÒ °æ¿ì Á¦´ë·Î µÈ 192.168.0.2ÀÇ ³×ÀÓ¼¹ö°¡ Ãâ·ÂµË´Ï´Ù.
> hancom.com Server: 192.168.0.2 Address: 192.168.0.2#53
Name: hancom.com Address: 192.168.0.2 >
| ¸¸ÀÏ, server cant't find ns.hancom.com : NXDOMAIN À̶ó°í ¸Þ½ÃÁö°¡ ³ª¿À¸é Á¦´ë·ÎµÈ ¼³Á¤ÀÌ ¾Æ´Ï¹Ç·Î, ¼³Á¤ ÆÄÀϵéÀ» ´Ù½Ã »ìÆ캼 ÇÊ¿ä°¡ ÀÖ½À´Ï´Ù. |
|