BLUE STUDY

11장. DNS (Domain name Service)

1) Domain Server 의 구성절차

1. /etc/named.boot 생성
2. /var/named Directory 생성
3. /var/named/???.cache
4. /var/named/???.zone: host DB file 이며, 이 파일에 추가되는 host를 update 시켜야 한다.
5. /var/named/???.rzon: reverse 된 host DB file 이며, 이 파일에 추가되는 host를 update 시켜야 한다.
6. /var/named/???.loop: Loop Back file
7. /etc/resolv.conf: Domain과 name_server_IP address를 기술하는 File
8. /etc/defaultrouter: System의 G/W
9. /etc/defaultdomain
10. /etc/nsswitch.conf File Modified; hosts: files dns <--- 추가
11. Daemon 실행 : #in.named -b /etc/named.boot
12. Server 확인 : #nslookup <Server IP Address>
13. 아래 예시는 각 설정 file 내용이며, 부분별로 설명을 넣었다.

*정보통신교육원(AIIT)에 적용된 실제 예이다.

2) PRIMARY SERVER 의 구성 예

; /etc/named.boot
;

directory /var/named
cache . aiit.cache
primary aiit.or.kr. aiit.zone
primary in-addr.arpa aiit.rev
primary 0.0.127.in-addr.arpa aiit.loop

; /var/named/aiit.loop
;

@ IN SOA www.aiit.or.kr. root.www.aiit.or.kr. (

19980521 ; Serial
3600 ; Refresh
300 ; Retry
3600000 ; Expire
14400 ) ; Minimum

IN NS www.aiit.or.kr.
1 IN PTR localhost.

; /var/named/aiit.zone
;

$ORIGIN aiit.or.kr.
aiit.or.kr. IN SOA www.aiit.or.kr. root.www.aiit.or.kr. (

19990930
7200
3600
432000
86400

)

aiit.or.kr. IN NS www
localhost IN A 127.0.0.1

;
; SEOUL
;

$ORIGIN or.kr.
aiit IN A 134.75.107.202

$ORIGIN aiit.or.kr.
www IN A 134.75.107.202

........... 중략 ............................................

infor07 IN A 134.75.107.13

;
; PUSAN
;

pusan IN A 134.75.156.201

........... 중략 ............................................

kbe11 IN A 134.75.156.211

;
; TAEGU
;

jboh IN A 134.75.142.111

........... 중략 ............................................

tk240 IN A 134.75.142.240

;
;
;
; TAEJEON
;

cts IN A 210.119.58.6

tschang IN A 210.119.58.5
taejeon IN A 210.119.58.2

$ORIGIN taejeon.aiit.or.kr.

tjaiit IN A 210.119.58.2
www IN A 210.119.58.2

;
;
;

$ORIGIN aiit.or.kr.

kj IN A 210.119.59.3

........... 중략 ............................................

ts IN A 210.107.252.5

$ORIGIN ts.aiit.or.kr.

aiitfire IN A 210.107.253.20
aiitmain IN A 210.107.252.5

$ORIGIN gis.aiit.or.kr.

gis141 IN A 150.183.46.141

$ORIGIN mm.aiit.or.kr.

sun IN A 210.114.126.150

$ORIGIN aiit.or.kr.

multi IN A 210.114.126.150

;
; EOF
;
; /var/named/aiit.rev
;

$ORIGIN in-addr.arpa.

in-addr.arpa. IN SOA www.aiit.or.kr. root.www.aiit.or.kr.

(

19991026
7200
3600
432000
86400

)

in-addr.arpa. IN NS www.aiit.or.kr.
1.0.0.127 IN PTR localhost.

;
; SEOUL
;

$ORIGIN 107.75.134.in-addr.arpa.

202 IN PTR aiit.or.kr.

........... 중략 ............................................

13 IN PTR infor07.aiit.or.kr.

;
; PUSAN
;

$ORIGIN 156.75.134.in-addr.arpa.

210 IN PTR kbe10.aiit.or.kr.

........... 중략 ............................................

211 IN PTR kbe11.aiit.or.kr.

;
; TAEGU
;

$ORIGIN 142.75.134.in-addr.arpa.

111 IN PTR jboh.aiit.or.kr.

........... 중략 ............................................

240 IN PTR tk240.aiit.or.kr.

;
;TAEJEON
;

$ORIGIN 58.119.210.in-addr.arpa.

6 IN PTR cts.aiit.or.kr.

........... 중략 ............................................

2 IN PTR www.taejeon.aiit.or.kr.

;
;
;

$ORIGIN 155.233.203.in-addr.arpa.

233.155.233.203 IN PTR handy.aiit.or.kr.
232.155.233.203 IN PTR cybus.aiit.or.kr.
214.155.233.203 IN PTR choi.aiit.or.kr.

$ORIGIN 59.119.210.in-addr.arpa.

3 IN PTR kj.aiit.or.kr.

;ts

$ORIGIN 253.107.210.in-addr.arpa.

22 IN PTR w3.aiit.or.kr.
20 IN PTR aiitfire.ts.aiit.or.kr.

$ORIGIN 252.107.210.in-addr.arpa.

5 IN PTR ts.aiit.or.kr.
5 IN PTR aiitmain.ts.aiit.or.kr.

$ORIGIN 46.183.150.in-addr.arpa.

141 IN PTR gis141.gis.aiit.or.kr.

$ORIGIN 126.114.210.in-addr.arpa.

150 IN PTR sun.mm.aiit.or.kr.

$ORIGIN 126.114.210.in-addr.arpa.

150 IN PTR multi.aiit.or.kr.

;
; EOF
;
; /var/named/aiit.cache
;

. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4

;
; formerly NS1.ISI.EDU
;

. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 128.9.0.107

;
; formerly C.PSI.NET
;

. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12

;

................................ 중략 ..............................................

; temporarily housed at NSI (InterNIC)
;

. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 198.41.0.11

. 3600000 NS www.
www. 3600000 A 134.75.107.202

; End of File

3) SECONDARY SERVER

SECONDARY 에서는 /etc/named.boot, /var/named/loop.back , /var/named/cache 만 만들어 주고 /usr/sbin/in.named를 구동하면 PRIMARY Server에서 필요한 ???.zone ???.rev File을 가져온 후, Server가 준비 상태에 놓인다.

# tail -5 /var/adm/messages

.............

Oct 27 11:56:19 tjaiit named[6427]: starting. named 4.9.3-P1
Oct 27 11:56:19 tjaiit named[6428]: Ready to answer queries.

; /etc/named.boot
;
; type domain source file
;

directory /var/named ; running directory for named
cache . tj.cache
primary 0.0.127.IN-ADDR.ARPA tj.loop
secondary aiit.or.kr 134.75.107.202 tj.zone
secondary in-addr.arpa 134.75.107.202 tj.rev

;

forwarders 134.75.107.202
slave

; /var/named/tj.loop
;
;

@ IN SOA taejeon.aiit.or.kr. root.taejeon.aiit.or.kr. (

980116 ; Serial
7200 ; Refresh every 2 hours
7200 ; Retry every 2 hour
604800 ; Expire after a week
86400 ) ; Minimum ttl of 1 day

IN NS tjaiit.taejeon.aiit.or.kr.
1 IN PTR localhost.

; /var/named.tj.cache
;

. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4

;
; formerly NS1.ISI.EDU
;

. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 128.9.0.107

;

............. 중략 ............................................

;

. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17

; End of File

; /var/named/tj.zone - /usr/sbin/in.named를 가동시키면 Server가 자동으로
; PRIMARY SERVER에서 Download하며, 바뀐 내용을 계속
; Update 하게 된다.
;
; BIND version named 4.9.3-P1
; zone 'aiit.or.kr' last serial 0
; from 134.75.107.202 at Wed Oct 27 11:52:03 1999

$ORIGIN or.kr.

aiit IN SOA www.aiit.or.kr. root.www.aiit.or.kr. (

19990930 7200 3600 432000 86400 )

IN NS www.aiit.or.kr.

$ORIGIN aiit.or.kr.

www IN A 134.75.107.202

$ORIGIN or.kr.

aiit IN A 134.75.107.202

$ORIGIN mm.aiit.or.kr.

sun IN A 210.114.126.150

$ORIGIN aiit.or.kr.

pusan IN A 134.75.156.201
tksun IN A 134.75.142.105
potato IN A 134.75.107.13
eagle5 IN A 134.75.107.39

................ 이하생략 ..............................................

; /var/named/tj.rev - /usr/sbin/in.named를 가동시키면 Server가 자동으로
; PRIMARY SERVER에서 Download하며, 바뀐 내용을 계속
; Update 하게 된다.
;
; BIND version named 4.9.3-P1
; zone 'in-addr.arpa' last serial 0
; from 134.75.107.202 at Wed Oct 27 11:52:03 1999

$ORIGIN arpa.

in-addr IN SOA www.aiit.or.kr. root.www.aiit.or.kr. (

19991026 7200 3600 432000 86400 )

IN NS www.aiit.or.kr.

; Ignoring info about www.aiit.or.kr, not in zone in-addr.arpa.
; $ORIGIN aiit.or.kr.
; www IN A 134.75.107.202

$ORIGIN 0.127.in-addr.arpa.

0 14400 IN NS www.aiit.or.kr.

; Ignoring info about www.aiit.or.kr, not in zone in-addr.arpa.
; $ORIGIN aiit.or.kr.
; www IN A 134.75.107.202

$ORIGIN 155.233.203.155.233.203.in-addr.arpa.

214 IN PTR choi.aiit.or.kr.
232 IN PTR cybus.aiit.or.kr.
233 IN PTR handy.aiit.or.kr.

$ORIGIN 142.75.134.in-addr.arpa.

115 IN PTR shan.aiit.or.kr.
117 IN PTR wspark.aiit.or.kr.
118 IN PTR sbhong.aiit.or.kr.
119 IN PTR jtsung.aiit.or.kr.
201 IN PTR tk201.aiit.or.kr.

................ 이하생략 ..............................................

;
; /var/named/tj.cache - PRIMARY 서버의 것과 같다.
;

. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4

;
; formerly NS1.ISI.EDU
;

. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 128.9.0.107

;
; formerly C.PSI.NET
;

. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12

;

................ 중략 ..................................................

;

. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17

; End of File

이 저작물은 크리에이티브 커먼즈 코리아 저작자표시-비영리-변경금지 2.0 대한민국 라이선스에 따라 이용하실 수 있습니다.