Server Admin

1. bind 설치하기

가. 다운로드 및 설치하기

CentOS, Fedora Core 등의 레드햇 계열의 최신 배포판을 사용할 경우 “yum”프로그램을 통해 아래와 같이 설치한다.

# yum install bind

나. named.conf 수정

bind 설정파일은 /etc/named.conf, /var/named/named.default, /var/named/named.rev 세 개의 파일을 수정합니다.

# cd /etc

# vi named.conf

options {

//      listen-on port 53 { 127.0.0.1; };

//      listen-on-v6 port 53 { ::1; };

        directory       "/var/named";

        dump-file       "/var/named/data/cache_dump.db";

        statistics-file "/var/named/data/named_stats.txt";

        memstatistics-file "/var/named/data/named_mem_stats.txt";

//      allow-query     { localhost; };

        allow-query     { any; };

        recursion yes;

};

... 생략 ...

zone "2.0.10.in-addr.arpa" {

       type master;

       file "named.rev";

};

//

zone "ikunsan.co.kr" {

       type master;

       file "named.default";

};

// include "/etc/named.rfc1912.zones";

다. named.default 수정

# cd /var/named

# cp named.localhost named.default

아래 내용을 참고하여 수정한다.

# vi named.default

$TTL 1D

@       IN SOA  ns.ikunsan.co.kr. root.ns.ikunsan.co.kr. (

                                        0       ; serial

                                        1D      ; refresh

                                        1H      ; retry

                                        1W      ; expire

                                        3H )    ; minimum

        NS      ns.ikunsan.co.kr.

@       A       10.0.2.15

ns      A       10.0.2.15

www     A       10.0.2.15

mail    A       10.0.2.15

라. named.rev 수정

# cd /var/named

# cp named.default named.rev

# vi named.rev

$TTL 1D

@       IN SOA  ns.ikunsan.co.kr. root.ns.ikunsan.co.kr. (

                                        0       ; serial

                                        1D      ; refresh

                                        1H      ; retry

                                        1W      ; expire

                                        3H )    ; minimum

        NS      ns.ikunsan.co.kr.

15      PTR     www.ikunsan.co.kr.

마. bind 재시작 및 확인하기

# chown named:named named.default named.rev

# /etc/init.d/named stop

# /etc/init.d/named start

# tail  /var/log/messages

Apr 10 17:16:22 www named[7632]: automatic empty zone: 8.E.F.IP6.ARPA

Apr 10 17:16:22 www named[7632]: automatic empty zone: 9.E.F.IP6.ARPA

Apr 10 17:16:22 www named[7632]: automatic empty zone: A.E.F.IP6.ARPA

Apr 10 17:16:22 www named[7632]: automatic empty zone: B.E.F.IP6.ARPA

Apr 10 17:16:22 www named[7632]: command channel listening on 127.0.0.1#953

Apr 10 17:16:22 www named[7632]: command channel listening on ::1#953

Apr 10 17:16:22 www named[7632]: the working directory is not writable

Apr 10 17:16:22 www named[7632]: zone 2.0.10.in-addr.arpa/IN: loaded serial 0

Apr 10 17:16:22 www named[7632]: zone ikunsan.co.kr/IN: loaded serial 0

Apr 10 17:16:22 www named[7632]: running

오류가 없으면 nslookup 으로 확인한다.

# nslookup www.ikunsan.co.kr

Server:         10.0.2.15

Address:        10.0.2.15#53

Name:   www.ikunsan.co.kr

Address: 10.0.2.15

바. dns 서버로 사용하기 위한 설정

# cd /etc

# vi resolv.conf

# Generated by NetworkManager

nameserver 10.0.2.15

웹브라우저에서 동작하는 것을 확인할 수있다.