[¸®´ª½º - bind9] µð¹ö±ë ¾î¶»°Ô ÇϽôÂÁö¿ä ?

   Á¶È¸ 5660   Ãßõ 0    

 bind9.2.4를 사용중 입니다.

현재는 dig/host/nslookup을 실행하여, Query/Result 결과로만 확인하고 있습니다.

검증 용도로  Query 수신 및 Result 전송하는 디버깅 및 설정 파일 로딩 확인할 수 있는 방법이 궁금합니다.


아시는 분의 가르침 부탁 드립니다.

감사합니다.

ªÀº±Û Àϼö·Ï ½ÅÁßÇÏ°Ô.
¹ÚÁÖ¿¬ 2016-10
Áú¹®³»¿ëÀÌ ¹üÀ§°¡ ³Ð°í ¾Ö¸ÅÇÑ Áú¹®À̳׿ä

ÀÏ´Ü °£´ÜÇÏ°Ô ¼­¹ö³»¿¡¼­ µ¿ÀÛ»óŸ¦ ÆľÇÇϽô°Ç
¹èÆ÷ÆÇ¿¡ Æ÷ÇÔµÈ bind ÆÐÅ°Áö ¼³Á¤Àº ·Î±×°¡ ÀϺκи¸ ÆÄÀÏ·Î ±â·ÏµÇ±â¶§¹®¿¡
¼³Á¤À» ¹Ù²Ù½Ã¸é ´Ù¸¥ ºÎºÐ¿¡ ´ëÇØ ·Î±×ÆÄÀÏÀ» ÅëÇØ È®ÀÎÇϽǼö ÀÖ½À´Ï´Ù. ( http://coffeenix.net/board_view.php?bd_code=1689 Âü°í)

dig ¸¦ ¾²½ÇÁÙ ¾Æ½Å´Ù¸é host ¸í·ÉÀ̳ª nslookup ¸í·ÉÀÌ ÇÊ¿ä ¾ø½À´Ï´Ù. (´ëºÎºÐ dig ·Î µÈ´Ù°í º¸½Ã¸é µË´Ï´Ù)
     
´äº¯ °¨»çµå¸³´Ï´Ù.

#>  cat named.conf
include "/etc/bind/named.conf.log";

#> cat /etc/bind/named.conf.log
logging {
  channel bind_log {
    file "/var/log/bind/bind.log" versions 3 size 5m;
    severity info;
    print-category yes;
    print-severity yes;
    print-time yes;
  };
  category default { bind_log; };
  category update { bind_log; };
  category update-security { bind_log; };
  category security { bind_log; };
  category queries { bind_log; };
  category lame-servers { null; };
};

#> rndc trace 99
#> rndc querylog
#>  rndc status
number of zones: 12
debug level: 99 <=============== !!!
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is ON <============ !!!
server is up and running

DNS client¿¡¼­ ÇØ´ç named ¼­¹ö·Î ÁúÀÇ ¹× ÀÀ´äÀ» Á¤»óÀûÀ¸·Î ¼öÇàÇϳª,
named ¼­¹ö¿¡ ·Î±×¿¡ ¾Æ¹«°Íµµ Ãâ·ÂÀÌ µÇÁö ¾Ê¾Æ¼­ ÇØ´ç ºÎºÐÀÌ ÀúÀÇ Áú¹®ÀÔ´Ï´Ù.
#> > tail -f /var/log/bind/bind.log
.. Ãâ·Â ¾øÀ½ ...
          
¹ÚÁÖ¿¬ 2016-10
category queries ¸¦ ¼³Á¤ÇϼżŠÆÄÀÏ·Î ±â·ÏÇϵµ·Ï ÇØ¾ß µË´Ï´Ù.

¶ÇÇÑ dns Á¶È¸°¡ ¸¹Àº ½Ã½ºÅÛ¿¡´Â
·Î±×°¡ »ó´çÈ÷ Ä¿Áö±â ¶§¹®¿¡ ÀûÀýÈ÷ ·Î±× °¹¼ö¿Í ÆÄÀÏÅ©±â¸¦ ¼³Á¤ÇÏ¼Å¾ß µË´Ï´Ù.

P.S  ¼³Á¤ÆÄÀÏÀ» ³ªÁß¿¡ Ãß°¡Çϼ̳׿ä include ÆÄÀÏ ·Î ¼³Á¤ÇÏÁö ¸¶½Ã°í named.conf ¿¡ Á÷Á¢ ±â·ÏÇØ º¸¼¼¿ä À§Ä¡¶§¹®¿¡ Àû¿ë ¾ÈµÉ¶§°¡ ÀÖ½À´Ï´Ù.
               
¾Ë·Á ÁֽŠÁ¶¾ð ´öºÐ¿¡, Çϱâ¿Í °°ÀÌ Query °á°ú¸¦ ¾ò¾ú½À´Ï´Ù.

#> tail -f bind_query.log
Oct 03 00:03:15.769 queries: info: client 127.0.0.1#50388: query: cisco.com.apn.epc.mnc008.mcc450.3gppnetwork.org IN NAPTR
Oct 03 00:03:28.761 queries: info: client 127.0.0.1#48358: query: cisco.com.apn.epc.mnc008.mcc450.3gppnetwork.org IN NAPTR

Ȥ½Ã Query°á°ú¿Ü¿¡ ÇØ´ç Result ÀÀ´äµµ ·Î±×¿¡ Ãâ·ÂÀÌ °¡´ÉÇÑÁö¿ä ? <==== !!!

Çϱâ¿Í °°ÀÌ ¼öÁ¤ÈÄ¿¡, »ó±âÀÇ °á°ú¸¦ ¾ò¾ú½À´Ï´Ù.
°¨»çÇÕ´Ï´Ù.

logging {
  channel debug_log {
    file "/var/log/bind/bind_query.log" versions 3 size 5m;
    severity debug 99;
    print-category yes;
    print-severity yes;
    print-time yes;
  };
.....
  category queries { debug_log; };
....
};

#> rndc status 
number of zones: 12
debug level: 99
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is ON
server is up and running
                    
¹ÚÁÖ¿¬ 2016-10
result ¶ó¸é ¾î¶²°É ¸»¾¸ÇϽô°ÇÁö (±¸Ã¼ÀûÀÎ ¿¹½Ã¸¦ µé¾îÁֽøé ÁÁ°Ú³×¿ä ´ëºÎºÐ queries Á¤µµ·Î ÇØ°á µÇ±â ¶§¹®¿¡)
³ª¸ÓÁö´Â ¸î¸î ºÎºÐÀÌ ÀÖÁö¸¸ ¾È¾´´Ù°í ºÁ¾ß Çϴ°͵éÀ̶ó..
bind ¹öÀü¸¶´Ù ´Ù¸£°Ô ¹Ù²ï°Íµµ ÀÖ°í.......
category ¼³Á¤Áß packet À̳ª query-errors ÂÊÀ» Âü°íÇÏ½Ã¸é µÉµíÇÕ´Ï´Ù¸¸
bind 9.2.4 ¿¡¼­´Â µ¿ÀÛ ¾ÈÇϴ°ɷΠ¾Ë°í ÀÖ½À´Ï´Ù.
ÃֽŹöÀüÀ¸·Î (ex> 9.10 ) À¸·Î ¿Ã¸®½Ã°í Çغ¸¼¼¿ä (º¸¾È ¹®Á¦·Î ¿Ã¸®½Ã´Â°Íµµ ÁÁÀ»°Ì´Ï´Ù.)

P.S óÀ½ ¿Ã·ÁÁֽŠ¼³Á¤À¸·Îµµ µÇ¾ß ÇÏ´Â°Ô ¸Â½À´Ï´Ù.
    ÃßÃøÄÁµ¥ ¼³Á¤ÆÄÀÏÀ» ¹Ù²ãÁÖ½Ã°í ¼³Á¤ÆÄÀÏÀ» ¸®·Îµå ¾ÈÇϽŰŠ°°½À´Ï´Ù. ¼³Á¤ÆÄÀÏ¿¡¼­ ¿¹¾àµÈ ¸íĪ »ç¿ëÀ» ÇÇÇÏ½Ã´Â°Ô ÁÁÀ»µí ½Í³×¿ä
                         
°è¼ÓµÈ ´äº¯¿¡ °Åµì °¨»çµå¸³´Ï´Ù.
 Result´Â Query¿¡ ´ëÇÑ DNS response¸¦ ¸»ÇÏ´Â °Í À̾ú½À´Ï´Ù.
 ¼³Á¤ È­ÀÏ º¯°æÈÄ¿¡, named Àç ±âµ¿À» ¸¹ÀÌ ÇØ º¸¾Ò½À´Ï´Ù.
 ¾Ë·ÁÁֽŠÃֽŠ¹öÀüÀ¸·Î, ¾÷±×·¹À̵å ÀÌÈÄ¿¡ ÇØ´ç ³»¿ª È®ÀÎÇØ º¸µµ·Ï ÇÏ°Ú½À´Ï´Ù.

²Ù¹÷


QnA
Á¦¸ñPage 3474/5686
2014-05   4987905   Á¤ÀºÁØ1
2015-12   1523888   ¹é¸Þ°¡
2007-11   5656   Çѵ¿ÈÆ
2014-12   5656   ¹Î»çÀå
2005-06   5656   ÇÑâȣ
2009-09   5656   ±è°Ç¿ì
2018-04   5656   ±è°Ç¿ì
2011-10   5656   º¹µ¹ÀÌ
2005-07   5656   ½É±Ô»ó
2006-11   5656   ±è½Â·æ
2006-01   5656   Áøº´ÀÏ
2006-03   5656   ȲÇýÁø
2018-11   5656   ¼öÆÛ½ÎÀ̾ð
2006-04   5657   °í¿µ±Ù
2007-10   5657   ¹æÈ¿¹®
2016-08   5657   NeOpLE
2020-12   5657   »õ³»±â
2008-03   5657   ±è°Ç¿ì
2008-05   5657   ¹ÚÁ¾¿ë
2011-05   5657   ±èÇö¿õ
2013-06   5657   snflzhdj
2016-04   5657   ±è¼±µ¿