¿ù°£ Àα⠰Խù°

°Ô½Ã¹° 111°Ç
   
Open DNS Ãë¾àÁ¡ º¸¾È Á¶Ä¡»çÇ× (Windows, Linux Æ÷ÇÔ)
±Û¾´ÀÌ : ÃÖ°í°ü¸®ÀÚ ³¯Â¥ : 2014-04-24 (¸ñ) 16:03 Á¶È¸ : 5406
±ÛÁÖ¼Ò :
                             

Ãâó : http://faq.hostway.co.kr/notice/2929

Open DNSÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇØ ÀÎÇÑ °ø°ÝµéÀº 2008³âºÎÅÍ Áö¼ÓÀûÀ¸·Î ¹ß»ýÇÏ°í ÀÖÁö¸¸,

ÇöÀç±îÁö DNS º¸¾È¿¡ ´ëÇÑ ºÎºÐµéÀº °í·ÁµÇÁö ¾Ê°í ³×ÀÓ¼­¹ö ±¸ÃàÀÌ µÇ´Â °æ¿ì°¡ ¸¹½À´Ï´Ù.


À¥ ¼Ò½ºÀÇ Ãë¾àÁ¡ ó·³ ¸¹Àº ºÎºÐµé º¯°æÇÏ°í ¼öÁ¤ÇØ¾ß ÇÏ´Â ÀÛ¾÷µéÀÌ ÇÊ¿äÄ¡ ¾ÊÀ¸´Ï,

÷ºÎµÈ °¡À̵带 µû¶ó ½Å±Ô ±¸Ãà ¹× ±âÁ¸ ¿î¿µ µÇ¾î ÀÖ´Â DNS ¼³Á¤À» ¼öÁ¤ ÇÏ½Ç °ÍÀ» ±Ç°íÇØ µå¸³´Ï´Ù.


°¡Àå Áß¿äÇÑ °ÍÀº bind ¹öÀüÀ» ÃֽŹöÀüÀ¸·Î ¾÷±×·¹À̵å ÇØÁÖ¼Å¾ß ÇÕ´Ï´Ù.

bind´Â ³Î¸® ¾Ë·ÁÁø Ãë¾àÁ¡µéÀÌ ¸¹½À´Ï´Ù. ¹öÀü ¾÷±×·¹ÀÌµå µÇ¸é¼­ ÀÌ·¯ÇÑ »çÇ×µéÀÌ °³¼± µÇ¾ú½À´Ï´Ù.


¾Æ·¡ ¾÷±×·¹ÀÌµå ¹æ¹ý Âü°í ÇϽñ⠹ٶø´Ï´Ù.




KISAÀÇ ÃÖ±Ù º¸¾È°øÁö ÀÔ´Ï´Ù.

http://www.krcert.or.kr/kor/data/secNoticeView.jsp?p_bulletin_writing_sequence=2312




÷ºÎÆÄÀÏÀº KISA (Çѱ¹ÀÎÅͳÝÁøÈï¿ø) ¿¡¼­ ¹èÆ÷ÇÏ´Â DNS °¡À̵å ÀÔ´Ï´Ù.



ÆÄÀÏ ¿©½Ã±â Àü¿¡ °£·«ÇÏ°Ô ¼³¸íÀ» µå¸®ÀÚ¸é, ³×ÀÓ¼­¹ö ±¸¼º½Ã recursion no ¿É¼ÇÀÌ Àû¿ëµÇ¾î ÀÖÁö ¾Ê°Å³ª yes·Î µÇ¾î Àִ°æ¿ì

ÀÚü³×ÀÓ¼­¹ö¿¡ naver.com, google.co.kr ¿Í °°ÀÌ µî·Ï µÇ¾î ÀÖÁö ¾ÊÀº µµ¸ÞÀÎ ÁúÀǽÿ¡µµ ´äº¯À» ÇØÁÖ°Ô µË´Ï´Ù.

ÇØ´ç ¿É¼ÇÀ» ²ûÀ¸·Î ÀÎÇØ ÀÚ½ÅÀÌ ¼³Á¤À» °¡Áö°í ÀÖ´Â zone ÆÄÀϵéÀ» °¡Áö°í ÀÖ´Â µµ¸ÞÀε鿡 ´ëÇؼ­¸¸ ´äº¯À» ÇØÁÝ´Ï´Ù.


ÀÌ·¯ÇÑ ´äº¯ ÇØÁÖ´Â ºÎºÐµéÀ» ÀÌ¿ëÇØ °ø°ÝÀÚ´Â Source IP¸¦ °ø°ÝÇÒ °÷ÀÇ ³×ÀÓ¼­¹ö·Î º¯Á¶ÇÏ°í ÆÐŶ»çÀÌÁ ºñÁ¤»óÀûÀ¸·Î Å©°ÔÇϸç, 

¼ö¸¹Àº Ãë¾àÁ¡À» °¡Áø ³×ÀÓ¼­¹öµéÀ» µ¿¿øÇÏ¿© Á¤»óÀûÀÎ ¼öÇàÀ» ¹æÇØÇÏ´Â ¿ªÇÒÀ» ÇÕ´Ï´Ù. DDoS °ø°ÝÀÚ(Á»ºñ)°¡ µÇ´Â °ÍÀÔ´Ï´Ù.


³×ÀÓ¼­¹ö 1Â÷ : ns1.hostway.co.kr

³×ÀÓ¼­¹ö 2Â÷ : ns2.hostway.co.kr


Web 1 : hostway.co.kr / www.hostway.co.kr

Web 2 : syncmail.co.kr / www.syncmail.co.kr

Web 3 : teamex.co.kr / www.teamex.co.kr



WindowsÀÇ Ä¿¸Çµåâ ȤÀº linux Shell »ó¿¡¼­ nslookupÀ¸·Î ÁúÀǽàOpen DNS ¼³Á¤ÀÌ µÇ¾î ÀÖ´Â °æ¿ì¿£

À§¿Í °°ÀÌ ³×ÀÓ¼­¹ö¿¡ µî·Ï µÇ¾î ÀÖ´Â µµ¸ÞÀÎ ¿Ü¿¡µµ ÁúÀÇ°¡ °¡´É ÇÕ´Ï´Ù.


[rubi] / > # nslookup

> server ns1.hostway.co.kr

Default server: ns1.hostway.co.kr

Address: 1.1.1.1 #53

> google.co.kr

Server:         61.100.13.145

Address:        61.100.13.145#53

Name:   google.co.kr

Address: 173.194.79.94


ÇÏÁö¸¸, recursion ¿É¼ÇÀ» no·Î º¯°æ ÇßÀ» °æ¿ì¿£ ³×ÀÓ¼­¹ö¿¡ Á¸ÀçÇÏ´Â Zone ³»¿ëµé ¿Ü¿¡´Â °ÅºÎÇÏ°Ô µË´Ï´Ù.

no·Î º¯°æ ÇßÀ» °æ¿ì¿£ ¸ðµÎ °ÅºÎ ÇϹǷÎ, ƯÁ¤ ¾ÆÀÌÇÇ ´ë¿ª¿¡¼­¸¸ Çã¿ë ÇÏ´Â ¹æ¹ýµµ Á¸Àç ÇÕ´Ï´Ù. (°¡À̵å Âü°í)


[hostway] / > # nslookup

> server ns1.hostway.co.kr

Default server: ns1.hostway.co.kr

Address: 1.1.1.1 #53

> google.co.kr

Default server: ns1.hostway.co.kr

Address: 1.1.1.1 #53

Non-authoritative answer:

*** Can't find google.co.kr: No answer




³×ÀÓ¼­¹ö¿¡ Á¸Àç ÇÏ´Â µµ¸ÞÀÎÀÇ ZoneÆÄÀÏ ³»¿ëÀº ¾Æ·¡¿Í °°ÀÌ Á¤»ó ÁúÀÇ µË´Ï´Ù.

> teamex.co.kr

> server ns1.hostway.co.kr

Default server: ns1.hostway.co.kr


Name:   teamex.co.kr
Address: 66.232.144.219


==============

¸®´ª½º »ç¿ëÀÚÀÇ °æ¿ì ¾Æ·¡¿Í °°ÀÌ dig ¸í·ÉÀ» ÅëÇØ °£´ÜÈ÷ È®ÀÎ °¡´É ÇÕ´Ï´Ù.
hostway # dig @111.111.111.111 +short porttest.dns-oarc.net TXT

 Ãë¾àÁ¡ Á¸Àç DNS È®ÀÎ °á°ú :

z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net." aaa.bbb.ccc.ddd is POOR: 26 queries in 4.0 seconds from 1 ports with std dev 0.00"


 Á¤»ó DNS È®ÀÎ °á°ú :

z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net. 

"111.111.111.111 is GOOD: 26 queries in 2.0 seconds from 26 ports with std dev

17685.51"



DNS Ãë¾àÁ¡¿¡ ´ëÇÑ Á¡°ËÀº ¾Æ·¡ URL¿¡¼­ ÁøÇà ÇÏ½Ç ¼ö ÀÖ½À´Ï´Ù.

¼³Á¤ µÈ DNS Á¡°Ë

À¥ Ãë¾àÁ¡ Á¡°Ë

³×ÀÓ¼­¹ö ¼³Á¤ ¹æ¹ý


º¸¾È Tip1. Bind ÆÐÅ°ÁöÀÇ ¹öÀüÀ» ÃÖ½ÅÀ¸·Î À¯Áö ÇØÁֽñ⠹ٶø´Ï´Ù. (ÇÏÀ§ ¹öÀüÀÇ °æ¿ì Ãë¾àÁ¡ Á¸Àç.
* bind ¼Ò½º ÆÐÅ°Áö¸¦ ¹Þ¾Æ ¼³Ä¡.

º¸¾È Tip2. Bind ¹öÀü °¨Ãß±â
¼³Á¤¹æ¹ýÀº recursion ¿É¼Ç°ú °°ÀÌ named.conf ȤÀº named.caching-nameserver.conf ¼³Á¤ÆÄÀÏ¿¡¼­
options { } ºÎºÐ ¾È¿¡ version "UNKNOWN"; À» Ãß°¡
 
[hostway] / > # vi /etc/named.caching-nameserver.conf
 
options {
...
...
        version "UNKNOWN";
        allow-recursion { trust; };
        allow-transfer { none; };
...
...
};
 
ÀúÀåÇÏ°í ³ª¿Â µÚ, ¿ª½Ã named µ¥¸ó reload
/etc/rc.d/init.d/named reload

À̸§ Æнº¿öµå
ºñ¹Ð±Û (üũÇÏ¸é ±Û¾´À̸¸ ³»¿ëÀ» È®ÀÎÇÒ ¼ö ÀÖ½À´Ï´Ù.)
¿ÞÂÊÀÇ ±ÛÀÚ¸¦ ÀÔ·ÂÇϼ¼¿ä.
   

 



 
»çÀÌÆ®¸í : ¸ðÁö¸®³× | ´ëÇ¥ : ÀÌ°æÇö | °³ÀÎÄ¿¹Â´ÏƼ : ·©Å°´åÄÄ ¿î¿µÃ¼Á¦(OS) | °æ±âµµ ¼º³²½Ã ºÐ´ç±¸ | ÀüÀÚ¿ìÆí : mojily°ñ¹ðÀÌchonnom.com Copyright ¨Ï www.chonnom.com www.kyunghyun.net www.mojily.net. All rights reserved.