rndc 명령어 # rndc Usage: rndc [-b address] [-c config] [-s server] [-p port] [-k key-file ] [-y key] [-V] command command is one of the following: reload Reload configuration file and zones. reload zone [class [view]] Reload a single zone. refresh zone [class [view]] Schedule immediate maintenance for a zone. retransfer zone [class [view]] Retransfer a single zone without checking serial number. f..

[BIND] BIND 관리를 위한 RNDC 설정_v201704 1. rndc.conf 파일 및 키 생성 # rndc-confgen > /etc/rndc.conf ---Output # Start of rndc.conf key "rndc-key" { algorithm hmac-md5; secret "VHwE0YVJvw+4EY7SFimblg=="; }; options { default-key "rndc-key"; default-server 127.0.0.1; default-port 953; }; # End of rndc.conf # Use with the following in named.conf, adjusting the allow list as needed: # key "rndc-key" { # algor..

DNS(named) 백업 스크립트 # cat dns_backup.sh --- #!/bin/sh set -x DIR="fvm01.scbyun.com-`date +%Y%m%d`" cd /root/.nl/ mkdir $DIR mkdir $DIR/sbin mkdir $DIR/etc cp -rpf /var/named $DIR cp /etc/named.conf $DIR/etc cp /etc/named.logging.conf $DIR/etc cp /etc/named.root.key $DIR/etc cp /etc/named.iscdlv.key $DIR/etc cp /etc/rndc.* $DIR/etc cp /usr/sbin/named $DIR/sbin #cp -pr /usr/local/nbind $DIR #rm -rf..

도메인 위임 설정 sangchul.kr ZONE 파일 ss IN NS ns.ss.sangchul.kr. ;위임할 네임서버 도메인 ns.ss IN A 210.53.53.53 ; 네임서버 IP ss.sangchul.kr ZONE 파일 $TTL 60 @ IN SOA ns.ss.sangchul.kr rname.ss.sangchul.kr. ( 2013111204 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum IN NS ns.ss.sangchul.kr. ;네임서버 도메인 ns IN A 210.53.53.53 ;공인(사설) 네임서버 IP ; @ IN A 192.168.0.100 www IN A 192.168.0.100 질의 테스트 결과 # dig www.s..

슬레이브 ZONE 파일 유형 변경(data -> ASCII text) options { ... masterfile-format text; ... } Syntax: [ masterfile-format (text|raw) ; ] masterfile-format Specifies the file format of zone files (see Section 6.3.7). The default value is text, which is the standard textual representation, except for slave zones, in which the default value is raw. Files in other formats than text are typically expected to be..

BIND Master File Extension: the $GENERATE Directive Syntax: $GENERATE range lhs [ttl] [class] type rhs [comment] $GENERATE is used to create a series of resource records that only differ from each other by an iterator. $GENERATE can be used to easily generate the sets of records required to support sub /24 reverse delegations described in RFC 2317: Classless IN-ADDR.ARPA delegation. $ORIGIN 0.0...