¬°¤°»ò forward »P reverse DNS database ·|¤À¶}ºÞ²z ?
ºKn»¡©ú:
DNS ¨t²Î, ¤À forward/reverse (¥¿¤Ï¸Ñ) ¨â¤j¶µ, ¤@ª½¥H¨Ó, ¬ÛÃöºÞ²z³æ¦ì,
¥u§âµJÂI©ñ¦b forward domain zone µn°OºÞ²z¤W, ¦Ó±`´Á©¿µø¥t¤@¥b, reverse
domain zone ªº±ÂÅvµn°O»PºÞ²z.
»¡©ú¬°¦ó forward/reverse DNS NS RR, ¦³®É¬O¤À¶}, ¦³®É¬O¦P¤@ÓºÞ²z³æ¦ì.
Á| HiNet ªº¨Ò¤l, SEEDNet, ... ".Com.tw", "Net.tw" »¡©ú.
Path: netnews.NCTU.edu.tw!news2!not-for-mail
From: cschen@cc.nctu.edu.tw (C.S.Chen)
Newsgroups: tw.bbs.comp.network,tw.bbs.config
Subject: Re: Ãö©ó¦¹¦¸«Ø¥þDNS ³]©w±À®i¬¡°Ê (3)
Date: 10 Jul 1997 10:36:37 GMT
Organization: National Chiao Tung University, Hsinchu, Taiwan
Lines: 112
Message-ID: <5q2dvl$rit$1@news2.nctu.edu.tw>
References: <5pvgai$sve$1@news2.nctu.edu.tw> <5pvnvm$bu4@netnews.hinet.net> <5q16i1$p1b$1@uuserv.net.tw> <5q1l9b$8f4@netnews.hinet.net>
NNTP-Posting-Host: localhost
X-Trace: 868530997 28253 cschen@localhost 127.0.0.1
X-Newsreader: TIN [UNIX 1.3 950824BETA+ANSI+COLOR PL8]
Xref: netnews.NCTU.edu.tw tw.bbs.comp.network:62510 tw.bbs.config:11986
°ª·s¼w (kao@cepheus.com.tw) ´£¨ì:
: In article <5q16i1$p1b$1@uuserv.net.tw>, cthuang@UUserv.Net.tw (Ching-tung Huang) wrote:
: >°ª·s¼w (kao@cepheus.com.tw) ´£¨ì:
: >: ¨ä¹ê³o¦b ORA ªº DNS and BIND ¤@®Ñ¤¤¼gªº«Ü²M·¡, forward «ç°µ, reverse «ç°µ,
^^^^^^^^^^^^^^^^^^
¬Ý±z´£¨ì DNS adm ªº bible, ³o¤@ÂI, §Ú¥»¨Ó¥H¬°, ±z¤w¸g«Ü²M·¡¤F.
¤£¹L, ¦A¬Ý§A¤U±ªº post, ¤~µo²{, §A¹ï forward/reverse ¬°¤°»ò·|¤À¶}³]ªº²{ª¬,
¤´¤£ÁA¸Ñ.
-- ÅãµM, ¥ú¬Ý Bible ÁÙ¬O¤£°÷, ÁÙ¬O±o±q, ¾ã®M¨î«×¦p¦ó¹B§@, ·Q°_ !
²³æ¬Ý,
* forward domain - ¦pªG¤j®a³£±¾¦b ".com.tw", ¥Ø«e¦³ III/SEEDNet t³d,
primary DNS server "aladdin.iii.org.tw" ªº zone data file ªº maintain.
¨ÆÅv²Î¤@.
--> ¦]¬°, ".tw" ³o¤@¼hªº primary DNS server "moevax.edu.tw" ±N,
".com.tw" §¹¥þ±ÂÅvµ¹ "aladdin.III.org.tw" ³o¤@¾÷¾¹¨Ó°µ zone
data files ªº maintain. ³oÓ¾÷¾¹, ¥Ø«e¥Ñ SEEDNet ªº¤H, ¦b
ºÞ²z.
( ¨ä¥¦ ".org.tw", ".net.tw", ±¡§Î§¹¥þ¤@¼Ë )
* reverse domain - ¦]¬°¬O, ±q IP address Âà¹L¨Ó, ©Ò¥H, «ÜÃø¦³¤@ӲΤ@
ªº¤W¼h ( ¦p ".com.tw"), ¤S¦]¬°¨C³æ ISP ¦Û¤v³Ì²M·¡, ¨ì©³¦Û¤v³o¤@Ãä
¾Ö¦³¦h¤Ö IP address, þ¤@Ãä¤w¸gµ¹¥X¥h, µ¹þ¨Ç³æ¦ì, ³Ìªñ¦³þ¨ÇÅÜ°Ê,
....
------------------------------------------------
- 140.130.*.* ==> 130.140.in-addr.arpa
- 192.72.5.* ==> 5.72.192.in-addr.arpa
- 203.73.87.* ==> 87.73.203.in-addr.arpa
...
------------------------------------------------
©Ò¥H, ³o¤@¨ÇªF¦è, ©M forward domain zone ªº³B²z¤è¦¡, ´N¤£¦P,
¤£®e©ö¦³¤@ӲΤ@ªº³æ¦ìt³d maintain.
·íµM, ¦U ISP ¦Ut³d¦Û¤vªº 130.140.in-addr.arpa, 5.72.192.in-addr.arpa
"87.73.203.in-addr.arpa" ªº DNS server µn¿ý»PºÞ²z.
°£«D, ¦³¤@Ó±¡§Î¦p¤U,
* 73.203.in-addr.arpa (1)
* 87.73.203.in-addr.arpa (2)
¤~·|¥X²{, (2) ¦V (1) µù¥Uªº±¡§Î.
©Ò¥H,
a) ¹ï©ó ISP ¦U¾Ì¥»¨Æ, ¦Û¦æ¦V APNIC, ¬Æ¦Ü InterNIC ±o¨Óªº,
¦]¬°, IP address ¤Àªº´², ·íµM ISP n¥X±¦U¦Ût³d, ¦Û¤vªº.
b) ¥Ñ TWNIC ¦V APNIC ¥Ó½Ð±o¨Óªº, «h¦]¬°´X¥G¦³«Ü¦h¬O³sÄòªº block,
¦]¦¹, À³¥i¥H¥Î TWNIC ªº¦W¸q, ¾ã¬q¦V¤W¼h APNIC ªº DNS server, ¨ú±o
±ÂÅv.
³oùØ©Ò challenge ªº¬O, ´N HiNet ªº case, ¤£ºÞ¬O¤W±ªº a), b) þ¤@ºØ,
HiNet ³£©|¥¼§¹¥þ, §¹¦¨¨ä¥Ø«e, À³¸Ó°µªºªF¦è.
: >²Ä¤Gª©ªº¤º®e, covers ¨ì 4.9.4 ªºªF¦è (·í®É³Ì·sª©), ¹ï©ó syslog
: >ªº»¡©ú, ¤]¤ñ¸û·s. ³oª©»P²{¦bªº³nÅé¤ñ¸û°t¦X.
: >: 1. Hinet t³d¦¬¥ó(ISP -> HINET)
: >: 2. seednet t³dµn¿ý .com.tw .org.tw .net.tw(seednet -> ISP)
: >: ¦]¦¹ hinet ¬O seednet ªº¤W¤â(twnic ¨î«×),
: >: seednet ¤]¬O hinet ªº¤W¤â(¹ê»Ú DNS ¹B§@)
: >²{¦bÁ¿ªº¬O»¡, ¦]¬°¤½¥q¦æ¸¹±µ¦b HiNet ¤U, ©Ò¥H reverse domain n§ä HiNet
: >À°¦£. ¦ý¬O HiNet ªº¤H»¡, n§ä TWNIC, ©Ò¥H¥L̤]¤£ª¾¹Dn«ç»ò¿ì.
: >¥i¬O, TWNIC ªº DNS µù¥U²Õ´N¬O HiNet ªº¤H¦bt³d. ©Ò¥H¤~·|:
: >: > HiNet --> TWNIC-DNS (HiNet) ==> ¤£ª¾¹D«ç»ò¿ì ?
:
: ¨º§Ú·Q¥i§_½Ð¥L̦b¥´¹q¸Ü¨ì HINET ¾÷©Ð, §Ú¥´ªº®É«á HINET ªº¤H»¡,
: ¥H§Úªº±¡ªp¦Ó¨¥(¤@Ó IP), forward ¬O seednet t³d, reverse ¬O HINET t³d,
: ¦ý¬O¤@Ó class c ªº¥Î¤á§Ú´N¤£ª¾¤F, ¤£¹L»P TWNIC ·¾³q¥»´N¤£À³¬O¥Ñ
: HINET ¥Î¤á¦Û¦æ³B²z, ³o¸ò TWNIC ªº¬Y¶µ·~°È¥Ñ½Öt³d¬OµLÃöªº, §_«h
: ¾ãÓ¨î«×ªº³]p´N·|µo¥Í±À©eªº±¡ªp
:
: ¤£¹L HINET ¤Hû¦³Åv¶i¨ì III ©ÒÄݪº¥D¾÷¤¤¥h¶Ü??
-- ³oÃ䪺°ÝÃD, ¸ò III ªº DNS server, ´X¥G³£µLÃö. ¤£n¦b³oùØ, ¥´Âà¤F.
-- ³o¸ò¬O¤@Ó IP address, ÁÙ¬O¤@Ó class C ®Ú¥»µLÃö.
¬O reverse domain zone ±ÂÅv, n«ç»ò°µªº¨Æ±¡.
³oùØ, HiNet n°µªº¬O, ( ¬J¥Nªí HiNet ¦Û¤v, ¤]¥Nªí TWNIC-DNS ²Õ )
1) ±H e-mail ¥Ó½Ðªí, ±N HiNet ¦Û¦æ¥Ó½Ð¨ì IP address, ¦V¤W¤@¼h, µù¥U
reverse domain zone ªº NS RR. µM«á,
a) ¦³¨Ç±¡ªp, ¬O HiNet ¥»¨, ¾ã²Õ¨ú±o±ÂÅv, ¨Ò¦p 39.202.in-addr.arp
( ÀH«KÁ|¨Ò, ¤£¤@©w¬O¥¿½T) «h HiNet ¥²¶·¦b hntp1.hinet.net ( or
whatever DNS server ) ¤W, «Ø¤@Ó DNS server, ¦A©¹¤U±ÂÅv.
-- ¤U´å³æ¦ì, ª½±µ¨Ó HiNet µn°O.
b) ¦pªG¤£¬O³sÄòªº 256 ªº class C, ¾ã²Õ block, ¨º¥½¥²¶·, ¦¬¶°¤U¹C
¦U§O¨Ï¥Î³æ¦ìªº¸ê®Æ, µM«á¦AÂà¦V¤W¼h reverse domain zone DNS
µn°O³o¤@¨Ç domain zone ªº DNS server.
-- ¦]µLªk¨ú±o octal boundary DNS zone ªº±ÂÅv, HiNet ¦n¥NÂà.
¨Ãª¾·|,¤U´å·~ªÌ, ¨Æ¥ý«Ø¦nÓ§Oªº reverse DNS server.
2) ±H e-mail ¥Ó½Ðªí, ±N TWNIC ¥Ó½Ð¨ì IP address, ¦V¤W¤@¼h, µù¥U
reverse domain zone ªº NS RR. ³o¨ä¤¤, ¥]¬A¦³¦U®a ISP Âà¤W¨Ó
ªº¤U´å DNS server NS RR.
¥i¯àªº±¡§Î, ¤]¬OÃþ¦ü¤W± (a), (b) ¨âÃþ, ¦ý³oùبú±o¾ã²Õ±ÂÅv,
¦p 65.210.in-addr.arpa (ÀH«KÁ|¨Ò) ªÌ, ¥i¯à¥Î ns.twnic.net +
hntp1.hinet.net (or moevax.edu.tw, ...) ªº¦W¸q, ¥h¥Ó½Ðµn°O,
µM«á¨ä¥¦ 123.65.210.in-addr.arpa ¦A¦V³oÓ DNS server µn°O.
--
Joe. C.S.Chen, cschen@ns.nctu.edu.tw