[Á¦¸ñ] Àιö½º µµ¸ÞÀÎ ½Åû,À§ÀÓ ¹× ¼­ºêµµ¸ÞÀÎ À§ÀÓ - ÀÛ¼ºÀÚ : san2(at)linuxchannel.net - ÀÛ¼ºÀÏ : 2002.04.25 - ¼ö ÁØ : ÃÊÁß±ÞÀÌ»ó http://www.linuxchannel.net/docs/inverse-subdomain.txt À̹®¼­´Â Àιö½º µµ¸ÞÀÎ ½Åû,À§ÀÓ ¹× ¼­ºêµµ¸ÞÀÎ À§ÀÓ¿¡ ´ëÇؼ­ °³·«ÀûÀÎ ¼³¸íÀ» ±× ³»¿ëÀ¸·Î ÇÏ°í ÀÖ½À´Ï´Ù. ---------------------------------------------------------- 1. Àιö½º µµ¸ÞÀÎ 2. Àιö½º µµ¸ÞÀÎÀº ¾î¶² °æ¿ì¿¡ »ç¿ëµÇ³ª? 3. Àιö½º µµ¸ÞÀÎ ½ÅûÀº? 4. ¼­ºê µµ¸ÞÀÎ »ý¼º ¹× Àιö½º µµ¸ÞÀÎ À§ÀÓ 4-1. ÇϳªÀÇ CŬ·¡½º(192.168.11.0)¸¦ Åë°·Î À§ÀÓÇÒ °æ¿ì 4-2. ÇϳªÀÇ CŬ·¡½º(192.168.10.0)Áß ÀϺκÐÀ» À§ÀÓÇÒ °æ¿ì 5. Èıâ ---------------------------------------------------------- 1. Àιö½º µµ¸ÞÀÎ(inverse domain) ¿ªµµ¸ÞÀÎÀ̶ó°íµµ ÇÕ´Ï´Ù. ÀÌ´Â IPÁÖ¼Ò¸¦ ¿ªÀ¸·Î ³ª¿­Çؼ­ µÚ¿¡ ¿ÁÅÝ(octet)´ÜÀ§ÀÇ "in-addr.arpa" À̶ó´Â Ư¼ö µµ¸ÞÀÎÀÌ ºÙÀº µµ¸ÞÀÎÀ» ¸»Çϸç, ¿ªº¯È¯(IPÁÖ¼Ò->FQDN ¸®Á¹ºù) zone¿¡¼­ PTR(PoinTeR) ·¹Äڵ带 »ç¿ëÇؼ­ FQDNÀ» ÁöÁ¤ÇÕ´Ï´Ù. * FQDN(Fully Qualified Domain Name) * ¿ÁÅÝ(octet)´ÜÀ§ : IPÁÖ¼Ò¸¦ 8ºñÆ®¾¿ ¹­¾î dot(.)À¸·Î ±¸ºÐÇÏ¿© Ç¥Çö IPÁÖ¼Ò°¡ 192.168.10.3 À̶ó¸é . arap. in-addr.arpa. 192.in-addr.arpa. 168.192.in-addr.arpa. 10.168.192.in-addr.arpa. 3.10.168.192.in-addr.arpa. 3.10.168.192.in-addr.arpa. µµ¸ÞÀÎÀº »óÀ§ÀÇ 10.168.192.in-addr.arpa. µµ¸ÞÀο¡¼­ À§ÀÓ¹ÞÀº ¼­ºêµµ¸ÞÀÎÀÔ´Ï´Ù. ¶ÇÇÑ Æ¯º°ÇÏ°Ô µµ¸ÞÀÎÀ» ÂÉ°³¾î À§ÀÓÇÏÁö ¾Ê´Â ÀÌ»ó, À§¿Í °°Àº ºí·°´ÜÀ§ -¿ÁÅÝ(octet)´ÜÀ§- Àιö½º µµ¸ÞÀÎÀ» »ç¿ëÇÕ´Ï´Ù. ÀϹÝÀûÀ¸·Î Áö¿ª node¿¡¼­ ÀÌ Àιö½º µµ¸ÞÀÎÀ» °ü¸®Çϴµ¥ A,B,CŬ·¡½º ´ÜÀ§·Î °ü¸® ¹× À§ÀÓÇÕ´Ï´Ù. 2. Àιö½º µµ¸ÞÀÎÀº ¾î¶² °æ¿ì¿¡ »ç¿ëµÇ³ª? ¿ªº¯È¯ÀÌ ÀÌ·ç¾îÁú¶§ »ç¿ëµË´Ï´Ù. ¿¹¸¦µé¾î, ¿ø°ÝÀÇ ´Ù¸¥ ³×Æ®¿öÅ©·Î FQDNÀÌ ¾Æ´Ñ IP ÁÖ·Î POP3 ¿Í °°Àº ¼­¹ö¿¡ Á¢¼ÓÇÒ¶§ IPÁÖ¼Ò¸¦ FQDNÀ¸·Î ¿ªº¯È¯ÇÕ´Ï´Ù. (POP3 ¼­¹ö¿¡¼­ ÀÌ ±â´ÉÀ» OffÇÒ ¼ö ÀÖÀ½) °£È¤ ¿ø°ÝÀÇ POP3¿¡ IPÁÖ¼Ò·Î Á¢¼ÓÇÒ¶§ »ó´çÈ÷ Á¢¼ÓÀÌ ´À·ÁÁø °æÇèÀ» ÇßÀ» °Ì´Ï´Ù. ÀÌ·± °æ¿ì´Â LocalDNS¿¡¼­ ¿ªº¯È¯ÇÏ´Â °úÁ¤Áß ³×ÀÓ½ºÆäÀ̽º°¡ ±úÁ® ¿ªº¯È¯À» Á¦´ë·Î ¸øÇÑ °æ¿ìÀÔ´Ï´Ù. »ó´ë¹æ node¿¡¼­³ª ³×ÀÓ¼­¹ö zone¿¡¼­ À§ÀÓ¹ÞÀº Àιö½º µµ¸ÞÀÎÀ» ¼³Á¤ÇØÁà¾ßÇÕ´Ï´Ù. ÇÏÁö¸¸, ±»Áö Àιö½º µµ¸ÞÀÎÀ» À§ÀÓ¹ÞÁö ¾Ê´õ¶óµµ, °°Àº LocalDNSÀ» »ç¿ëÇÏ°í ÀÌ LocalDNS °¡ ¼³Á¤ÇÑ(À§ÀÓ¹ÞÁö ¾ÊÀº) IPÁÖ¼Ò·Î Á¢¼ÓÇÏ¸é ±×¸¸ÀÔ´Ï´Ù. ´Ù¸¸ ´Ù¸¥ ¿ÜºÎ ³×Æ®¿öÅ©¿¡ IPÁÖ¼Ò·Î Á¢¼ÓÇÒ¶§ »ó´ë¹æ node³ª zone¿¡¼­ Àιö½º µµ¸ÞÀÎÀ» (À§ÀÓ¹Þ¾Æ) ¼³Á¤ÇÏÁö ¾ÊÀ¸¸é °ï¶õÇÏÁÒ... 3. Àιö½º µµ¸ÞÀÎ ½ÅûÀº? Àιö½º µµ¸ÞÀÎÀ» ½ÅûÇÒ¶§ ÇØ´ç ISP·Î ÀüÈ­Çؼ­ ¹®ÀÇÇϸé Áö¿ª node·Î ¿¬°áÇØ ÁÙ°Ì´Ï´Ù.(°æ±â ³²ºÎÁö¿ªÀÏ °æ¿ì ´ëºÎºÐ µ¿¼ö¿ø) À̶§ »ç¾÷Àå(ÇØ´ç ±â°ü)¿¡¼­ CŬ·¡½º ´ÜÀ§°¡ ¾Æ´Ñ CŬ·¡½ºÀÇ ÀϺκÐÀ» »ç¿ëÇÒ °æ¿ì´Â CŬ·¡½º³ª ÀϺκРÅë°¸¦ À§ÀÓÇØÁÖÁö ¾Ê½À´Ï´Ù. ¾î°Í ¶§¹®¿¡ À۳⠰¡À»Âë¿¡ °­·ÂÇÏ°Ô Ç×ÀÇ(?)Çߴµ¥ ´ç´ãÀÚ ºÐÀÌ Â¿Â¿¸Å´õ±º¿ä... "¿Ö ¾ÈµË´Ï±î? 25,26,27 ºñÆ® Á¤µµ·Î ¼­ºêµµ¸ÞÀÎÀ» »ý¼ºÇØ ÁÖ¸é µÇÁö ¾Ê½À´Ï±î?" "....." "±×·³ ¾ÈµÈ´Ù¸é ¾î¶² ±ÔÁ¤À̳ª ¿øÄ¢ÀÌ ÀÖ³ª¿ä?" "....." "±×·³ Á¦°¡ Æ÷±âÇÏÁÒ.....1,2Â÷ ³×ÀÓ¼­¹ö¸¸ ¼³Á¤ÇØ ÁÖ¼¼¿ä..." "³×..." Çö½ÃÁ¡¿¡¼­ »ó´çÈ÷ ¸¹Àº ÀÛÀº ±Ô¸ðÀÇ »ç¾÷Àå¿¡¼­´Â CŬ·¡½º ´ÜÀ§°¡ ¾Æ´Ñ 255.255.255.128, 255.255.255.192, 255.255.255.224 ¿Í °°Àº ³Ý¸Å½ºÅ©¸¦ ¸¹ÀÌ »ç¿ëÇÕ´Ï´Ù. À§¿Í °°Àº ³Ý¸Å½ºÅ©¸¦ »ç¿ëÇÏ°í ÀÖ´Â »ç¾÷Àå¿¡¼­´Â È£½ºÆ®°¡ »ý¼ºµÉ ¶§¸¶´Ù Àιö½º µµ¸ÞÀÎÀ» ¼³Á¤ÇØ ´Þ¶ó°í ±«·Ó°Ô ÇؾßÇÏ´Â ÆDZ¹ÀÔ´Ï´Ù ....T.T $ nslookup aaa.bbb.ccc.ddd 168.126.63.1 ... ** server can't find ddd.ccc.bbb.aaa.in-addr.arpa.: NXDOMAIN $ À§¿Í °°ÀÌ localDNS°¡ ¾Æ´Ñ **¹Þµå½Ã** ´Ù¸¥ ³×ÀÓ¼­¹ö(168.126.63.1)¿¡ ÁúÀÇÇؼ­ ¿ªº¯È¯ÀÌ µÇÁö ¾Ê´Â´Ù¸é ½ÅûÇÏ´Â °ÍÀÌ ÁÁ½À´Ï´Ù(ÇÊ¿äÇÏ´Ù¸é). (KLDP´Â Àιö½º µµ¸ÞÀÎÀÌ ¾ø±º¿ä) dig¸¦ »ç¿ëÇÑ´Ù¸é $ dig @168.126.63.1 -x 202.30.50.90 ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19622 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;90.50.30.202.in-addr.arpa. IN PTR ;; ANSWER SECTION: 90.50.30.202.in-addr.arpa. 3600 IN PTR www.nic.or.kr. ;; AUTHORITY SECTION: 50.30.202.in-addr.arpa. 3600 IN NS ns1.nic.or.kr. 50.30.202.in-addr.arpa. 3600 IN NS ns2.nic.or.kr. ;; ADDITIONAL SECTION: ns1.nic.or.kr. 3600 IN A 202.30.50.51 ns2.nic.or.kr. 3600 IN A 218.145.52.186 ;; Query time: 35 msec ;; SERVER: 168.126.63.1#53(168.126.63.1) ;; WHEN: Wed Apr 24 12:13:11 2002 ;; MSG SIZE rcvd: 138 $ ¶Ç´Â $ dig @168.126.63.1 ddd.ccc.bbb.aaa.in-addr.arpa PTR host ¸¦ »ç¿ëÇÑ´Ù¸é $ host -t PTR aaa.bbb.ccc.ddd 168.126.63.1 4. ¼­ºê µµ¸ÞÀÎ »ý¼º ¹× Àιö½º µµ¸ÞÀÎ À§ÀÓ ¼­ºêµµ¸ÞÀÎÀ» »ý¼º ¹× À§ÀÓÇÒ¶§ ÆÛºí¸¯µµ¸ÞÀÎÀº ºñ±³Àû °£´ÜÇϳª Àιö½º µµ¸ÞÀÎ »ý¼º¹× À§ÀÓÀº »ó´çÈ÷ ±î´Ù·Ó½À´Ï´Ù. (ƯÈ÷ Ŭ·¡½º ´ÜÀ§·Î À§ÀÓÇÏÁö ¾Ê´Â´Ù¸é) 4-1. ÇϳªÀÇ CŬ·¡½º(192.168.11.0)¸¦ Åë°·Î À§ÀÓÇÒ °æ¿ì À§ÀÓ¹ÞÀº(¶Ç´Â ÇÒ´ç¹ÞÀº) IPÁÖ¼Ò°¡ CŬ·¡½º ´ÜÀ§·Î 2°³ ÀÌ»óÀÏ °æ¿ì¿¡ ÇØ´çµÊ(ºñ±³Àû ½¬¿ò). ---------------------------------------------------------- ; ÆÛºí¸¯ ¼­ºê µµ¸ÞÀÎ »ý¼º ¹× À§ÀÓ. ; kernel.linux.ac.kr À̶ó´Â ¼­ºê µµ¸ÞÀÎÀ» »ý¼ºÇÏ°í, ; ¼­ºê µµ¸ÞÀÎÀÇ 1Â÷ ³×ÀÓ¼­¹ö´Â ns.kernel.linux.ac.kr ; 2Â÷ ³×ÀÓ¼­¹ö´Â ns2.kernel.linux.ac.kr·Î À§ÀÓÇÔ. ; $ORIGN linux.ac.kr. ;... kernel IN NS ns.kernel IN NS ns2.kernel ;... ns.kernel IN A 192.168.11.3 ns2.kernel IN A 192.168.11.4 ;... ---------------------------------------------------------- ---------------------------------------------------------- ; Àιö½º µµ¸ÞÀÎ À§ÀÓ. ; 192.168.11.0/24 ³×Æ®¿öÅ© ¸ðµÎ¸¦ ; 1Â÷ ³×ÀÓ¼­¹ö´Â ns.kernel.linux.ac.kr ; 2Â÷ ³×ÀÓ¼­¹ö´Â ns2.kernel.linux.ac.kr·Î À§ÀÓÇÔ. ; $ORIGN 11.168.192.in-addr.arpa. ;... @ IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ;... ---------------------------------------------------------- ¼­ºêµµ¸ÞÀÎÀÇ named.conf ÆÄÀÏ zone "kernel.linux.ac.kr" IN { type master; file "zone-kernel.linux.ac.kr"; ... }; zone "11.168.192.in-addr.arpa" IN { type master; file "zone-11.168.192"; ... }; 4-2. ÇϳªÀÇ CŬ·¡½º(192.168.11.0)Áß ÀϺκÐÀ» À§ÀÓÇÒ °æ¿ì ¿¹: ³×Æ®¿öÅ© 192.168.11.192/26 192.168.11.193 ~ 192.168.11.254±îÁöÀÇ 62°³ À§ÀÓ. ---------------------------------------------------------- ; ÆÛºí¸¯ ¼­ºê µµ¸ÞÀÎ »ý¼º ¹× À§ÀÓ. ; kernel.linux.ac.kr À̶ó´Â ¼­ºê µµ¸ÞÀÎÀ» »ý¼ºÇÏ°í, ; ¼­ºê µµ¸ÞÀÎÀÇ 1Â÷ ³×ÀÓ¼­¹ö´Â ns.kernel.linux.ac.kr ; 2Â÷ ³×ÀÓ¼­¹ö´Â ns2.kernel.linux.ac.kr·Î À§ÀÓÇÔ. ; $ORIGN linux.ac.kr. ;... kernel IN NS ns.kernel IN NS ns2.kernel ;... ns.kernel IN A 192.168.11.193 ns2.kernel IN A 192.168.11.194 ;... ---------------------------------------------------------- Àιö½º µµ¸ÞÀÎ »ý¼º ¹× À§ÀÓÀº »ó´çÈ÷ ±î´Ù·Î¿îµ¥ µÎ°¡Áö Á¤µµ·Î ¼³Á¤ÇÒ ¼ö ÀÖ½À´Ï´Ù. [¹æ¹ý1] NS ·¹Äڵ带 »ç¿ëÇÒ °æ¿ì(±ÇÀåÇÏÁö ¾ÊÀ½) (´Ü¼øÇϸ鼭 »ó´çÈ÷ ¹Ýº¹ Áö·çÇÏ°í ÁöÀúºÐÇÔ) ---------------------------------------------------------- ; Àιö½º ¼­ºê µµ¸ÞÀÎ ÀÚü À§ÀÓ. ; 192.168.11.192/26 ³×Æ®¿öÅ© ¸ðµÎ¸¦ ; 1Â÷ ³×ÀÓ¼­¹ö´Â ns.kernel.linux.ac.kr ; 2Â÷ ³×ÀÓ¼­¹ö´Â ns2.kernel.linux.ac.kr·Î À§ÀÓÇÔ. ; $ORIGN 11.168.192.in-addr.arpa. ;... 193 IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ; 194 IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ; 195 IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ;... 254 IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ; ; À§ÀÇ ³»¿ëÀ» °£´ÜÇÏ°Ô $GENERATE Áö½ÃÀÚ¸¦ »ç¿ëÇÏ¿© ; 2ÁÙ·Î ¿ä¾àÇÒ ¼ö ÀÖÀ½(bind 8.2.3ÀÌÈÄ,bind 9.x) ; $GENERATE 193-254 $ IN NS ns.kernel.linux.ac.kr. $GENERATE 193-254 $ IN NS ns2.kernel.linux.ac.kr. ---------------------------------------------------------- ¼­ºêµµ¸ÞÀÎÀÇ named.conf ÆÄÀÏ zone "kernel.linux.ac.kr" IN { type master; file "zone-kernel.linux.ac.kr"; ... }; zone "193.11.168.192.in-addr.arpa" IN { type master; file "zone-193.11.168.192"; ... }; zone "194.11.168.192.in-addr.arpa" IN { type master; file "zone-194.11.168.192"; ... }; ... zone "254.11.168.192.in-addr.arpa" IN { type master; file "zone-254.11.168.192"; ... }; ¼­ºêµµ¸ÞÀÎÀÇ zone-193.11.168.192 ÆÄÀÏ ---------------------------------------------------------- $ORIGN 193.11.168.192.in-addr.arpa. @ IN SOA ns.kernel.linux.ac.kr. root.kernel.linux.ac.kr. () IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. IN PTR ns.kernel.linux.ac.kr. ---------------------------------------------------------- [¹æ¹ý2] CNAME ·¹Äڵ带 »ç¿ëÇÒ °æ¿ì (RFC 2317) ---------------------------------------------------------- ; Àιö½º ¼­ºê µµ¸ÞÀÎ À§ÀÓ(CNAMEÀ¸·Î ºí·° »ý¼º). ; 192.168.11.192/26 ³×Æ®¿öÅ© ¸ðµÎ¸¦ ; 1Â÷ ³×ÀÓ¼­¹ö´Â ns.kernel.linux.ac.kr ; 2Â÷ ³×ÀÓ¼­¹ö´Â ns2.kernel.linux.ac.kr·Î À§ÀÓÇÔ. ; $ORIGN 11.168.192.in-addr.arpa. ;... kernel IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. 193 IN CNAME 193.kernel 194 IN CNAME 194.kernel 195 IN CNAME 195.kernel ;... 254 IN CNAME 254.kernel ; ; À§ÀÇ ³»¿ëÀ» °£´ÜÇÏ°Ô $GENERATE Áö½ÃÀÚ¸¦ »ç¿ëÇÏ¿© ; ÇÑÁÙ·Î ¿ä¾àÇÒ ¼ö ÀÖÀ½(bind 8.2.3ÀÌÈÄ,bind 9.x) ; $GENERATE 193-254 $ IN CNAME $.kernel ---------------------------------------------------------- ¼­ºêµµ¸ÞÀÎÀÇ named.conf ÆÄÀÏ zone "kernel.linux.ac.kr" IN { type master; file "zone-kernel.linux.ac.kr"; ... }; zone "kernel.11.168.192.in-addr.arpa" IN { type master; file "zone-kernel.11.168.192"; ... }; ¼­ºêµµ¸ÞÀÎÀÇ zone-kernel.11.168.192 ÆÄÀÏ ---------------------------------------------------------- $ORIGN kernel.11.168.192.in-addr.arpa. @ IN SOA ns.kernel.linux.ac.kr. root.kernel.linux.ac.kr. () IN NS ns.kernel.linux.ac.kr. IN NS ns2.kernel.linux.ac.kr. ;... 193 IN PTR ns.kernel.linux.ac.kr. 193 IN PTR ns2.kernel.linux.ac.kr. ;... 195 IN PTR mail.kernel.linux.ac.kr. ;... 198 IN PTR www.kernel.linux.ac.kr. ;... ---------------------------------------------------------- 5. Èı⠻ý·« __EOF__