1Â÷, 2Â÷ DNS ¼³Á¤ÃÖ°í°ü¸®ÀÚ |
°ü¸®ÀÚ  |
2011-08-09 02:31:56 |
Hit:3748 |
|
|
¸µÅ© #1: http://community.365managed.com/819
·¹µåÇò ¸®´ª½º9¿¡¼ 2Â÷ DNS ¼³Á¤(RNDC »ý·«)
ÀÛ¼ºÀÏ : 2004. 8. 17
ÀÛ¼ºÀÚ : ÃÖÁ¤È£
¼öÁ¤ÀÏ : 2004.8.18
¶Ç¼öÁ¤ : 2004.9.06
9¿ù 6ÀÏ ¼öÁ¤»çÇ×===============================================
2Â÷ DNS´Â RNDC۰ªÀ» ÀÌ¿ëÇÑ 1Â÷ DNSÁ¢¼ÓÀ» Çã°¡ÇÏ´Â °ÍÀ» ±âº»À¸·Î ÇÑ´Ù.
±×·¯³ª ¿©±â¼´Â RNDC¸¦ »ý·«ÇÑ ¹æ¹ýÀ¸·Î À籸¼ºÇÏ¿´´Ù.(RNDC Çò°¥·Á ¤Ñ¤Ñ¤»)
1Â÷ DNS¿¡ 2Â÷ DNS Çã°¡¸¦ À§ÇÑ ¿É¼Ç allow-transper¸¦ Ãß°¡ÇÏ¸é µÈ´Ù.
============================================================
2Â÷ ³×ÀÓ¼¹ö´Â
1Â÷³×ÀÓ¼¹öÀÇ ³»¿ëÀ» ÁÖ±âÀûÀ¸·Î Á¢¼Ó.. ¾÷µ«
1Â÷³×ÀÓ¼¹öÀÇ ºñÁ¤»ó ¿î¿µ ¹× ½ÇÆÐ ¶§ ³×ÀÓ¼¹ö ÀÓ¹« ¼öÇà
º¸Åë 1Â÷³×ÀÓ¼¹ö¿Í ´Ù¸¥ ³×Æ®¿öÅ©¿¡ À§Ä¡(È¿À²ÀûÀÎ ¼¹ö ¿î¿µ)
2Â÷³×ÀÓ¼¹ö¸¦ ¼³Á¤Çϱâ À§Çؼ´Â 1Â÷³×ÀÓ¼¹öÀÇ ºÎÆ®ÆÄÀÏ(named.conf)ÆÄÀÏ ¹× zoneÆÄÀÏÀ» ¼öÁ¤ÇؾßÇÑ´Ù.
1Â÷³×ÀÓ¼¹ö 163.180.111.3
2Â÷³×ÀÓ¼¹ö 163.180.112.3 À̶ó¸é
1Â÷³×ÀÓ¼¹ö¿¡¼ÀÇ ¼³Á¤
0. allow-transper¿É¼Ç Ãß°¡
1.named.confÆÄÀÏ¿¡¼ Inverse Domain Ãß°¡(2Â÷³×ÀÓ¼¹ö°¡ ´Ù¸¥³×Æ®¿÷ÀÏ °æ¿ì)
2.Forward/Reverse zone ÆÄÀÏ¿¡¼ÀÇ 2Â÷ ³×ÀÓ¼¹ö ÁöÁ¤
0.allow-transper ¿É¼Ç Ãß°¡
named.conf
// generated by named-bootconf.pl
options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
allow-transper { 163.180.112.3 ; }; //2Â÷DNS ipÃß°¡
};
1.named.confÆÄÀÏ¿¡¼ Inverse Domain Ãß°¡
2Â÷ ³×ÀÓ¼¹ö°¡ 1Â÷³×ÀÓ¼¹ö¿Í ´Ù¸¥³×Æ®¿÷ÁÖ¼Ò¸¦ °¡Áú °æ¿ì ±¸Çö
Áï ±âÁ¸ ±¸¼ºµÈ ³×Æ®¿öÅ© »ç¿ëÇÑ´Ù¸é »ý·« °¡´ÉÇÏ´Ù
named.conf
~
~
//2Â÷ ³×ÀÓ¼¹ö°¡ 163.180.112.0 ³×Æ®¿öÅ©¿¡ Á¸ÀçÇÑ´Ù¸é »õ·Î¿î ¿ªÁ¸ ±¸°£
zone "112.180.163.in-addr.arpa" {
type master;
file "112.180.163.rev"
};
2.Forward/Reverse zone ÆÄÀÏ¿¡¼ÀÇ 2Â÷ ³×ÀÓ¼¹ö ÁöÁ¤
#vi jungho.zone
@ IN SOA ns.jungho.pe.kr. root.jungho.pe.kr. (
20021009 ; Serial
10800 ; Refresh
3600 ; Retry
43200 ; Expire
86400 ) ; Minimum
IN NS ns.jungho.pe.kr.
IN NS ns2.jungho.pe.kr.
IN MX 10 mail.jungho.pe.kr.
IN A 163.180.111.1
www IN A 163.180.111.1
ftp IN A 163.180.111.2
mail IN A 163.180.111.3
ns IN A 163.180.111.3
ns2 IN A 163.180.112.3
#vi 112.180.163.rev
@ IN SOA ns.jungho.pe.kr. root.jungho.pe.kr.(
20021009 ; Serial
10800 ; Refresh
3600 ; Retry
43200 ; Expire
86400 ) ; Minimum
IN NS ns.jungho.pe.kr.
IN NS ns2.jungho.pe.kr.
3 IN PTR ns2.jungho.pe.kr.
2Â÷ ³×ÀÓ¼¹ö¿¡¼ÀÇ ¼³Á¤
1.zoneÆÄÀÏ ÁöÁ¤ºÎºÐ¿¡¼ type slave¼³Á¤
2.zoneÆÄÀÏ ÁöÁ¤ºÎºÐ¿¡¼ 1Â÷ DNS ÁÖ¼Ò ÁöÁ¤
3.forward, inverse ±¸¹® ÀÚµ¿ »ý¼º
1.2. ´ÙÀ½°ú °°ÀÌ 2Â÷ DNS¸¦ À§ÇÑ zoneÁöÁ¤ ºÎºÐÀ» ¸¸µé¼ö ÀÖ´Ù
zone "jungho.pe.kr" {
type slave; //2Â÷DNSÁ¸ÆÄÀÏÀÓÀ» ÁöÁ¤
file "slave-jungho.zone";
masters {163.180.111.3;} //1Â÷DNS¼¹öÀÇ ÁÖ¼Ò ÁöÁ¤
};
//
zone "111.180.163.inaddr.arpa" IN {
type slave;
file "slave-111.180.163.rev";
masters {163.180.111.3;}
zone "112.180.163.inaddr.arpa" IN {
type slave;
file "slave-112.180.163.rev";
masters {163.180.111.3;}
};
2Â÷ ³×ÀÓ¼¹öÀÇ Æ÷¿öµå ¹× Àιö½º Á¸ÆÄÀÏÀº 1Â÷ DNSÆÄÀÏÀÇ ÁÖ±âÀû Á¢¼Ó¿¡ ÀÇÇÑ ÀÚµ¿ ¾÷µ¥ÀÌÆ® µÈ´Ù.
ÁöÁ¤µÈ ÆÄÀÏ·Î ÀÚµ¿À¸·Î ¾÷µ¥ÀÌÆ® µÇ´Â ÁÖ±â´Â 1Â÷ ³×ÀÓ¼¹öÀÇ named.confÆÄÀÏÀÇ REFRESHÁֱ⿡ µû¸¥´Ù.
<ÀÚ·áÃâó : 365 Community http://community.365managed.com/819 > | |
|