| Unix/Solaris °ü·Ã°Ô½ÃÆÇ |
|---|
| 2000/07/19(19:54) from 203.254.154.69 | |
| ÀÛ¼ºÀÚ : °ÁÙ±â (jkkang65@hanmail.net) | Á¶È¸¼ö : 1910 , ÁÙ¼ö : 166 |
| DNS server setup |
|---|
|
1. Overview - ÀÎÅͳݿ¡ÀÖ´Â ¸ðµç IP address¸¦ ¸ðµÎ /etc/hosts, NIS, NIS+¿¡ ÀúÀåÇÒ ¼ö ¾ø´Ù. 1970³â´ë¿¡´Â ÀÎÅͳÝÀ¸·Î¼ hosts.txt¸¦ ftp·Î downloadÇؼ »ç¿ëÇß´Ù. ±×·¯³ª ÀÎÅͳÝÀÌ Ä¿Áö¸é¼ hosts.txt fileÀÌ Ä¿Áö°í ÀÌ°ÍÀÌ networkÀÌ ºÎÇϸ¦ Áõ°¡½ÃÅ°´Â ¿äÀÎÀ¸·Î ÀÛ¿ëÇß´Ù. ¿À´Ã³¯ ÀÌ·¯ÇÑ ¹®Á¦¸¦ ÇØ°áÇϱâ À§ÇÏ¿© DNS ¶ó´Â °ÍÀ» »ç¿ëÇÑ´Ù. - DNS (Domain Name Service)´Â IP addressÁ¤º¸¸¦ °¡Áö°í ÀÖ´Â database ÀÌ°í, local¿¡ ÀÖ´Â IP address Á¤º¸¸¸ °ü¸®ÇÏ°í ÀÎÅÍ³Ý »ó¿¡ ÀÖ´Â ´Ù¸¥ DNS server¿Í ÀڷḦ °øÀ¯ÇÑ´Ù. - DNS´Â University of California at Berkeley¿¡¼ °³¹ßµÇ¾ú°í, SUNÀº ÀÌ°ÍÀ» O/S³»¿¡ Æ÷ÇÔ½ÃÄ×´Ù. 2. DNS ±â¼ú - °èÃþÀû ±¸Á¶·Î µÇ¾ú°í, Top level domainÀ¸·Î´Â com, edu, gov, mil, net, org, country code¿¡ ÀÖ°í, NIC(Network Information Center)¿¡¼ °ü¸®ÇÑ´Ù. - SUN¿¡¼ DNS server¸¦ ±¸¼ºÇÏ´Â 3°¡Áö Áß¿äÇÑ ÆÄÀÏÀº /usr/sbin/in.named, /etc/named.boot, /etc/init.d/inetsvc ÀÌ´Ù. - ServerÀÇ Á¾·ù * Primary DNS server * Secondary DNS server * Caching DNS server * DNS Root Servers - /etc/named.boot ------------------------------------------------------------------------------------------ DIRECTORY /var/named -> DNS data fileÀÌ ÀÖ´Â À§Ä¡ CACHE cache -> Top level server¿¡ ´ëÇÑ Á¤º¸ PRIMARY jic.co.kr. jic.zone -> local domain¿¡ ÀÖ´Â ½Ã½ºÅÛÀÇ Á¤º¸ PRIMARY 175.239.203.in-addr.arpa 175.239.203.rzone -> IP address¿¡ ´ëÇÑ hostname Á¤º¸ PRIMARY 176.239.203.in-addr.arpa 176.239.203.rzone PRIMARY 0.0.127.in-addr.arpa loop.back -> loopback address¿¡ ´ëÇÑ Á¤º¸ ------------------------------------------------------------------------------------------ - /var/named/cache File ------------------------------------------------------------------------------------------ . in ns ns.nic.ddn.mil. in ns sa.isi.edu. in ns terp.umd.edu. in ns c.nyser.net. ns.nic.ddn.mil. in a 192.112.36.4 sa.isi.edu. in a 26.0.0.73 terp.umd.edu. in a 128.8.10.90 c.nyser.net. in a 192.33.4.12 ------------------------------------------------------------------------------------------ * ù¶óÀο¡ ÀÖ´Â dot´Â root DNSserver¸¦ ÀǹÌÇÏ°í 3°³ÀÇ blank´Â ù ¶óÀο¡ ÀÖ´Â dot¿Í µ¿ÀÏÇÏ´Ù´Â °ÍÀ» ÀǹÌÇÑ´Ù. * ns ´Â NameServer¸¦ ÀǹÌÇÏ°í inÀº Internet, a´Â Address¸¦ ÀǹÌÇÑ´Ù. * ÀÌ ÈÀÏÀº ftp://rs.internic.net/domain/¿¡¼ °¡Á®¿Í¼ ¼öÁ¤¾øÀÌ /var/named¿¡ º¹»çÇØ ³õÀ¸¸é µÈ´Ù. - /var/named/jic.zone ------------------------------------------------------------------------------------------ $ORIGINE jic.co.kr. ;domain jic.co.kr. in soa sun.jic.co.kr. root.sun.jic.co.kr. ( 001.00 ;serial 10800 ;refresh [3 hours] 3600 ;retry [1hours] 432000 ;expire [5 days] 864000) ;minimum [1 day] in ns sun.jic.co.kr. ;primary in mx 10 sun.jic.co.kr. in ns shark.jic.co.kr. ;secondary ; host infromation section ultra1 in a 203.239.175.3 ultra2 in a 203.239.175.4 ultra3 in a 203.239.175.5 localhost in a 127.0.0.1 ------------------------------------------------------------------------------------------ * $ORIGIN ´Â ²À ÇÊ¿äÇÑ °ÍÀº ¾Æ´Ï´Ù. * soa´Â Stat of authorityÀÇ ¾àÀÚÀÌ¸ç °¢ µµ¸ÞÀο¡ ¿ÀÁ÷ Çϳª¸¸ Á¸ÀçÇÏ¿©¾ß ÇÑ´Ù. soa ÀÇ Ã¹ Çʵå´Â µµ¸ÞÀγ×ÀÓÀ» ³ªÅ¸³»°í, µÎ¹ø° inÀº internetÀ», ³×¹ø°´Â soa¸¦ Æ÷ÇÔÇÏ°í ÀÖ´Â hostname, ´Ù¼¸¹ø °´Â ÀÌ µµ¸ÞÀÎÀÇ °ü¸®ÀÚ¸¦ ³ªÅ¸³½´Ù. °ýÈ£¾È¿¡ÀÖ´Â 001.00Àº serial number·Î½á Secondary Nameserver¿¡ Á¤±âÀûÀ¸·Î ÀÌ ¼ýÀÚ°¡ ¹Ù²î¾ú´Â Áö¸¦ üũÇÏ°í ¸¸¾à ¹Ù²î¾úÀ¸¸é Á¤º¸¸¦ dowdloadÇÑ´Ù. µÎ¹ø° 10800 ÃÊ´Â secondary nameserver°¡ °¡Áö°í ÀÖ´Â µ¥ÀÌÅÍ¿¡ primary nameserver¿Í °°ÀºÁö¸¦ üũÇÏ´Â ½Ã°£ÀÌ´Ù. ¿©±â¼´Â 3½Ã°£¸¶´Ù primaryÀÇ µ¥ÀÌÅÍ°¡ ¹Ù²î¾ú´ÂÁö¸¦ üũÇÑ´Ù. ¼¼¹ø° 3600ÃÊ´Â secondary meserver¿¡ ù¹ø° ½Ãµµ°¡ ½ÇÆÐÇÏ¿´´Ù¸é µÎ¹ø°·Î 1½Ã°£ÈÄ ´Ù½Ã ½ÃµµÇÑ´Ù. ³×¹ø° 432000´Â Á¾·á½Ã°£À» ³ªÅ¸³½´Ù. À̽ð£ ÀÌÈÄ¿¡´Â ´õÀÌ»ó ¿äûÀ» ÇÏÁö ¾Ê´Â´Ù. ´Ù¼¸¹ø° 68400ÃÊ´Â ´Ù¸¥ µµ¸ÞÀο¡ÀÖ´Â nameserver·Î¼ cacheµÈ ¸ðµç µ¥ÀÌÅÍ¿¡ time-to-live°ªÀ» ¼³Á¤ÇÑ´Ù. - /var/named/175.239.203.rzone ------------------------------------------------------------------------------------------ 175.239.203.in-addr.arpa. in soa sun.jic.co.kr. root.sun.jic.co.kr. ( 001.00 ;serial 10800 ;refresh [3 hours] 3600 ;retry [1 hours] 432000 ;expire [5 days] 86400 ) ;minimum [1 days] in ns sun.jic.co.kr. ;primary in ns shark.jic.co.kr. ;secondary 1 in ptr sun.jic.co.kr. ;sunÀÇ ip address°¡ 203.239.175.1ÀÌ´Ù 2 in ptr shark.jic.co.kr. ;sharkÀÇ ip address°¡ 203.239.175.2 1.0.0.127 in ptr localhost.jic.co.kr. ------------------------------------------------------------------------------------------ - /var/named/176.239.203.rzone ------------------------------------------------------------------------------------------ 175.239.203.in-addr.arpa. in soa sun.jic.co.kr. root.sun.jic.co.kr. ( 001.00 ;serial 10800 ;refresh [3 hours] 3600 ;retry [1 hours] 432000 ;expire [5 days] 86400 ) ;minimum [1 days] in ns sun.jic.co.kr. ;primary in ns shark.jic.co.kr. ;secondary 1 in ptr blue.jic.co.kr. ;blueÀÇ ip address°¡ 203.239.176.1ÀÌ´Ù 2 in ptr red.jic.co.kr. ;redÀÇ ip address°¡ 203.239.176.2 1.0.0.127 in ptr localhost. jic.co.kr. ------------------------------------------------------------------------------------------ - /var/named/loop.back ------------------------------------------------------------------------------------------ @ in soa sun.jic.co.kr. root.sun.jic.co.kr. ( 0001.00 ;version number 10800 ;refresh [3 hours] 3600 ;retry [1 hours] 432000 ;expire [5 days] 86400 ) ;minimum [1 days] in ns sun.jic.co.kr. 1 in ptr localhost. ------------------------------------------------------------------------------------------ - Resource Record Format ------------------------------------------------------------------------------------------ soa : start of authority ns : name server a : internet address(name to address) ptr : pointer(address to name) cname : canonical name(nickname) txt : text information wks : well-known services hinfo : host information mx : mail exchanger ------------------------------------------------------------------------------------------ - /etc/nsswitch.conf ------------------------------------------------------------------------------------------ hosts: files dns ------------------------------------------------------------------------------------------ * host nameÀ» ãÀ» ¶§ /etc/hosts fileÀ» ¸ÕÀú ã°í ¾øÀ¸¸é dnsserver¸¦ ã´Â´Ù. - /etc/resolv.conf ------------------------------------------------------------------------------------------ domain jic.co.kr nameserver 203.239.175.1 ------------------------------------------------------------------------------------------ 3. DNS file ¼öÁ¤ - /var/named/jic.zone, /var/named/175.239.203.rzone fileÀ» ¼öÁ¤ÇÑ ÈÄ serial number¸¦ º¯°æÇÒ °Í - in.named daemonÀ» kill½ÃŲ ÈÄ ´Ù½Ã ±âµ¿½Ãų °Í ------------------------------------------------------------------------------------------ # ps -ef | grep in.named # kill -9 process-id # /usr/sbin/in.named ------------------------------------------------------------------------------------------ 4. DNS test ------------------------------------------------------------------------------------------ # nslookup default server sun.jic.co.kr address 203.239.175.1 > www.jic.co.kr Server: sun.jic.co.kr Address: 203.239.175.1 Name: sun.jic.co.kr Address: 203.239.175.1 Aliases: www.jic.co.kr >203.239.175.1 Server: sun.jic.co.kr Address: 203.239.175.1 Name: sun.jic.co.kr Address: 203.239.175.1 ------------------------------------------------------------------------------------------ |
|
|