질문&답변
클라우드/리눅스에 관한 질문과 답변을 주고 받는 곳입니다.
리눅스 분류

DNS Master Slave 문의 드립니다.

작성자 정보

  • 그린짱 작성
  • 작성일

컨텐츠 정보

본문

DNS Master Slave 구성 테스트중입니다.

1차 named.conf 파일

options {
        listen-on port 53 { any; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-transfer { 192.168.110.77; };
        allow-query     { any; };
        recursion yes;

        dnssec-enable yes;
        dnssec-validation yes;

        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";

        managed-keys-directory "/var/named/dynamic";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type hint;
        file "named.ca";
};

zone "jjh.com" IN {
        type master;
        file "jjh.com.zone";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";


2차 named.conf 파일

options {
        listen-on port 53 { any; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { any; };
        recursion no;

        dnssec-enable yes;
        dnssec-validation yes;

        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";

        managed-keys-directory "/var/named/dynamic";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type hint;
        file "named.ca";
};

zone "jjh.com" IN {
        type slave;
        file "jjh.com.zone";
        masters { 192.168.110.75; };
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";


이렇게 해서 1차에서 존 파일 생성하고 서비스 재시작 하면 2차로 처음에는 파일이 존재하지 않으니까

잘 넘어갑니다.

그런데 1차에서 시리얼 수정하고 내용을 수정하고 서비스 재시작하면 넘어가질 않네요.

DNS Master 재시작 했을 때 로그입니다.

Mar  7 09:36:51 bae named[2261]: ----------------------------------------------------
Mar  7 09:36:51 bae named[2261]: BIND 9 is maintained by Internet Systems Consortium,
Mar  7 09:36:51 bae named[2261]: BIND 9 is maintained by Internet Systems Consortium,
Mar  7 09:36:51 bae named[2261]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
Mar  7 09:36:51 bae named[2261]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
Mar  7 09:36:51 bae named[2261]: corporation.  Support and training for BIND 9 are
Mar  7 09:36:51 bae named[2261]: corporation.  Support and training for BIND 9 are
Mar  7 09:36:51 bae named[2261]: available at https://www.isc.org/support
Mar  7 09:36:51 bae named[2261]: available at https://www.isc.org/support
Mar  7 09:36:51 bae named[2261]: ----------------------------------------------------
Mar  7 09:36:51 bae named[2261]: ----------------------------------------------------
Mar  7 09:36:51 bae named[2261]: adjusted limit on open files from 4096 to 1048576
Mar  7 09:36:51 bae named[2261]: adjusted limit on open files from 4096 to 1048576
Mar  7 09:36:51 bae named[2261]: found 1 CPU, using 1 worker thread
Mar  7 09:36:51 bae named[2261]: found 1 CPU, using 1 worker thread
Mar  7 09:36:51 bae named[2261]: using up to 4096 sockets
Mar  7 09:36:51 bae named[2261]: using up to 4096 sockets
Mar  7 09:36:51 bae named[2261]: loading configuration from '/etc/named.conf'
Mar  7 09:36:51 bae named[2261]: loading configuration from '/etc/named.conf'
Mar  7 09:36:51 bae named[2261]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
Mar  7 09:36:51 bae named[2261]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
Mar  7 09:36:51 bae named[2261]: using default UDP/IPv4 port range: [1024, 65535]
Mar  7 09:36:51 bae named[2261]: using default UDP/IPv4 port range: [1024, 65535]
Mar  7 09:36:51 bae named[2261]: using default UDP/IPv6 port range: [1024, 65535]
Mar  7 09:36:51 bae named[2261]: using default UDP/IPv6 port range: [1024, 65535]
Mar  7 09:36:51 bae named[2261]: listening on IPv4 interface lo, 127.0.0.1#53
Mar  7 09:36:51 bae named[2261]: listening on IPv4 interface lo, 127.0.0.1#53
Mar  7 09:36:51 bae named[2261]: listening on IPv4 interface eth0, 192.168.110.75#53
Mar  7 09:36:51 bae named[2261]: listening on IPv4 interface eth0, 192.168.110.75#53
Mar  7 09:36:51 bae named[2261]: listening on IPv6 interface lo, ::1#53
Mar  7 09:36:51 bae named[2261]: listening on IPv6 interface lo, ::1#53
Mar  7 09:36:51 bae named[2261]: generating session key for dynamic DNS
Mar  7 09:36:51 bae named[2261]: generating session key for dynamic DNS
Mar  7 09:36:51 bae named[2261]: sizing zone task pool based on 7 zones
Mar  7 09:36:51 bae named[2261]: sizing zone task pool based on 7 zones
Mar  7 09:36:51 bae named[2261]: set up managed keys zone for view _default, file '/var/named/dynamic/managed-keys.bind'
Mar  7 09:36:51 bae named[2261]: set up managed keys zone for view _default, file '/var/named/dynamic/managed-keys.bind'
Mar  7 09:36:51 bae named[2261]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Mar  7 09:36:51 bae named[2261]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 127.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 127.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 254.169.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 254.169.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: D.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: D.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 8.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 8.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 9.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 9.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: A.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: A.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: B.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: B.E.F.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Mar  7 09:36:51 bae named[2261]: command channel listening on 127.0.0.1#953
Mar  7 09:36:51 bae named[2261]: command channel listening on 127.0.0.1#953
Mar  7 09:36:51 bae named[2261]: command channel listening on ::1#953
Mar  7 09:36:51 bae named[2261]: command channel listening on ::1#953
Mar  7 09:36:51 bae named[2261]: zone 0.in-addr.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone 0.in-addr.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone jjh.com/IN: loaded serial 2018030703
Mar  7 09:36:51 bae named[2261]: zone jjh.com/IN: loaded serial 2018030703
Mar  7 09:36:51 bae named[2261]: zone localhost.localdomain/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone localhost.localdomain/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone localhost/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: zone localhost/IN: loaded serial 0
Mar  7 09:36:51 bae named[2261]: managed-keys-zone ./IN: loaded serial 5
Mar  7 09:36:51 bae named[2261]: managed-keys-zone ./IN: loaded serial 5
Mar  7 09:36:51 bae named[2261]: running                   [  OK  ]
Mar  7 09:36:51 bae named[2261]: running




DNS Salve 서버 재시작 했을 때 로그 입니다.

Mar  7 09:37:34 jeong named[2390]: BIND 9 is maintained by Internet Systems Consortium,
Mar  7 09:37:34 jeong named[2390]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
Mar  7 09:37:34 jeong named[2390]: corporation.  Support and training for BIND 9 are
Mar  7 09:37:34 jeong named[2390]: available at https://www.isc.org/support
Mar  7 09:37:34 jeong named[2390]: ----------------------------------------------------
Mar  7 09:37:34 jeong named[2390]: adjusted limit on open files from 4096 to 1048576
Mar  7 09:37:34 jeong named[2390]: found 1 CPU, using 1 worker thread
Mar  7 09:37:34 jeong named[2390]: using up to 4096 sockets
Mar  7 09:37:34 jeong named[2390]: loading configuration from '/etc/named.conf'
Mar  7 09:37:34 jeong named[2390]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
Mar  7 09:37:34 jeong named[2390]: using default UDP/IPv4 port range: [1024, 65535]
Mar  7 09:37:34 jeong named[2390]: using default UDP/IPv6 port range: [1024, 65535]
Mar  7 09:37:34 jeong named[2390]: listening on IPv4 interface lo, 127.0.0.1#53
Mar  7 09:37:34 jeong named[2390]: listening on IPv4 interface eth0, 192.168.110.77#53
Mar  7 09:37:34 jeong named[2390]: listening on IPv6 interface lo, ::1#53
Mar  7 09:37:34 jeong named[2390]: generating session key for dynamic DNS
Mar  7 09:37:34 jeong named[2390]: sizing zone task pool based on 7 zones
Mar  7 09:37:34 jeong named[2390]: set up managed keys zone for view _default, file '/var/named/dynamic/managed-keys.bind'
Mar  7 09:37:34 jeong named[2390]: command channel listening on 127.0.0.1#953
Mar  7 09:37:34 jeong named[2390]: command channel listening on ::1#953
Mar  7 09:37:34 jeong named[2390]: zone 0.in-addr.arpa/IN: loaded serial 0
Mar  7 09:37:34 jeong named[2390]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Mar  7 09:37:34 jeong named[2390]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Mar  7 09:37:34 jeong named[2390]: zone jjh.com/IN: loaded serial 2018030701
Mar  7 09:37:34 jeong named[2390]: zone localhost.localdomain/IN: loaded serial 0
Mar  7 09:37:34 jeong named[2390]: zone localhost/IN: loaded serial 0
Mar  7 09:37:34 jeong named[2390]: managed-keys-zone ./IN: loaded serial 3
Mar  7 09:37:34 jeong named[2390]: running                 [  OK  ]


딱히 에러 로그는 안보이는데 이유를 잘 모르겠습니다.

도움 좀 부탁 드립니다!!

관련자료

댓글 0
등록된 댓글이 없습니다.

공지사항


뉴스광장


  • 현재 회원수 :  59,982 명
  • 현재 강좌수 :  35,541 개
  • 현재 접속자 :  71 명