20.DNS SLAVE설정법은 ?
5.4. DNS SLAVE설정법은 ?
etc#more named.conf
options {
directory "/var/named";
check-names master ignore;
check-names slave ignore;
version "No!!!";
masterfile-format text;
allow-transfer { 127.0.0.1;210.116.123.25; 211.35.65.68; 10.251.18.24; };
recursion no;
};
key "rndc-key" {
algorithm hmac-md5;
secret "7B4DN";
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys {"rndc-key"; };
};
zone"." IN {
type hint;
file "named.ca";
};
include"/etc/named.rfc1912.zones";
include"/etc/log.conf";
etc#more named.rfc1912.zones
zone"localhost" IN {
type master;
file "named.localhost";
allow-update { none; };
};
zone"serverchk.com" IN {
type slave;
masters { 210.116.123.25; };
file "serverchk.com.zone";
};
etc#ps -ef |grep named
named 8413 1 0 11:33? 00:00:00 /usr/sbin/named -u named
root 8427 8249 0 11:35pts/10 00:00:00 grep named
etc#cd /var/named/
named#more dns-book.com.zone
$ORIGIN.
$TTL 30 ; 30 seconds
dns-book.com IN SOA ns1.dns-book.com. root.dns-book.com. (
2012091204 ; serial
900 ; refresh (15 minutes)
900 ; retry (15 minutes)
604800 ; expire (1 week)
180 ; minimum (3 minutes)
)
NS ns1.dns-book.com.
NS ns2.dns-book.com.
A 210.116.123.25
$ORIGIN dns-book.com.
ns1 A 210.116.123.25
ns2 A 211.35.65.68
www A 210.116.123.25
Zone전송 TEST법
#dig @ns1.serverchk.com serverchk.com axfr
네임서버 도메인명
Ns1네임서버에 Zone 전송 요청한다.
Zone전송은 TCP 53번 포트를 이용해 전송되므로, Master와 Slave간 TCP 53번 포트는 통신이 가능해야 한다.
다음
https://brunch.co.kr/@topasvga/216
