swindler's board

리눅스 관련 강좌란

제목	apache virtual host #1 1998/12/12 (10:46)
이름	김효원
번호	70
조회	480
본문	Apach Server에서 Name server 셋팅과 Virtual server 셋팅 하기 <차례> 1. Sub domain 등록하기 2. 하나의 ip로 Sub domain 추가하기 3. 새로운 Domain 추가하기 RED HAT에서 virtual host설정은 named와 Webserver와 IP alias를 변경해 줌으로서 이루어 진다. IP alias는 한개의 nic에 여러개의 가상 디바이스를 잡는 것을 말한다. 그러므로 한대의 서버에 여러개의 호스트 이름으로 웹서버를 구축할수 있으며 CNAME을 이용 하면 하나의 IP로서 여러개의 서브도메인을 지정할 수 있다. 일단 커널 컴파일시 Networking options에서 ip aliasing와 network alising을 체크 하여야 한다. 네임 서버 구축은 밑의 나우누리 리눅스 동호회의 name server강좌를 참조하라. 1. Sub domain등록하기 자신의 named가 어디있는지 모른다면 whereis named를 하면 나올것이다 그러면 그곳으로 이동을 한다. # ns:/var/named# vi oops.zone # ; made by oops@oops.ml.org # ; # @ IN SOA ns.oops.ml.org. root.ns.oops.ml.org. ( # 980226 ;serial ==> 날짜 꼭 변경해 줘야 함!!! # 10800 ;Refresh # 3600 ;Retry # 432000 ;Expire # 84600) ;Minimum (12h) # # IN NS ns.oops.ml.org. # IN NS ns2.oops.ml.org. # IN MX 0 ns.oops.ml.org. # ; # IN A 210.126.21.90 # ns IN A 210.126.21.90 # IN HINFO Pentium-200MHz dual Linux # # ns2 IN A 147.46.104.4 # # www IN CNAME ns.oops.ml.org. # # poolkim IN A 210.126.21.91 # ktk IN A 210.126.21.92 # test IN A 210.126.21.93 -> 이와 같이 추가 # # hda IN CNAME street.oops.ml.org. # # "oops.zone" 32 lines, 857 characters written .zone file에서는 이용할 sub domain을 정의를 해주는 곳이다 자신이 사용할 서브 domain을 지정하고 그 옆에 할당할 IP를 적는다. # ns:/var/named# vi oops.rev # @ IN SOA ns.oops.ml.org. root.ns.oops.ml.org. ( # # 980204 ;serial => 이부분 역시 변경! # ====== # 10800 ;Refresh # 3600 ;Retry # 432000 ;Expire # 84600) ;Minimum (12h) # # IN NS ns.oops.ml.org. # IN NS ns.nuri.net. # ; # 90 IN PTR ns.oops.ml.org. # 91 IN PTR poolkim.oops.ml.org. # 92 IN PTR ktk.oops.ml.org. # 93 IN PTR test.oops.ml.org. -> 이와 같은 형식으로 추가 # ~ # ~ # "oops.rev" [readonly] 21 lines, 901 characters .rev file은 해당 domain에 ip를 지정해 준다. 이 IP는 할당 받은 IP의 제일 끝자리 수로 지정한다. 이 file은 ptr테이블을 구성하는 file입니다. ptr테이블이 무엇인지에 대한 것은 네임서버 강좌를 참고하세요. # ns:/var/named# ps -ax \| grep named -> named의 PID를 찾는다 # 258 ? S 1:54 /usr/sbin/named # ns:/var/named# kill -HUP 258 -> named를 refresh한다 ps명령어로 named의 PID를 확인한후 named를 리플레쉬를 한다음 밑과 같이 확인을 해 본다 # ns:/var/named# nslookup # Default Server: ns.oops.ml.org # Address: 210.126.21.90 # # > test -> 추가한 서브 도메인 # Server: ns.oops.ml.org # Address: 210.126.21.90 # # Name: test.oops.ml.org # Address: 210.126.21.93 # # > exit 다음은 웹서버의 httpd.conf file의 virtualhost부분을 편집할 차례이다 자신의 웹서버가 설치되어 있는곳으로 이동을 한다. 어디에 있는지 모른다면 whereis httd를 하면된다. # ns:/var/named# cd /usr/local/etc/httpd/ # # ns:/usr/local/etc/httpd# ls # cgi-bin conf httpd icons logs proxy # # ns:/usr/local/etc/httpd# cd conf # # ns:/usr/local/etc/httpd/conf# ls # access.conf httpd.conf mime.types srm.conf # # ns:/usr/local/etc/httpd/conf# vi httpd.conf <----------file 내용-----------> # This is the main server configuration file. See URL http://www.apache.org/ # Do NOT simply read the instructions in here without understanding # what they do, if you are unsure consult the online docs. You have been # Port: The port the standalone listens to. For ports < 1023, you will # HostnameLookups: Log the names of clients or just their IP numbers # e.g. www.apache.org (on) or 204.62.129.132 (off) # You should probably turn this off unless you are going to actually # use the information in your logs, or with a CGI. Leaving this on # can slow down access to your site. # If you wish httpd to run as a different user or group, you must run # If you wish httpd to run as a different user or group, you must run # User/Group: The name (or #number) of the user/group to run httpd as. # On SCO (ODT 3) use User nouser and Group nogroup # On HPUX you may not be able to use shared memory as nobody, and the # suggested workaround is to create a user www and use that user. User nobody # The following directive disables keepalives and HTTP header flushes for # Netscape 2.x and browsers which spoof it. There are known problems with # ServerAdmin: Your address, where problems with the server should be # ServerRoot: The directory the server's config, error, and log files # BindAddress: You can support virtual hosts with this option. This option # is used to tell the server which IP address to listen to. It can either # is used to tell the server which IP address to listen to. It can either # contain "", an IP address, or a fully qualified Internet domain name. # ErrorLog: The location of the error log file. If this does not start # TransferLog: The location of the transfer log file. If this does not # PidFile: The file the server should log its pid to # ScoreBoardFile: File used to store internal server process information. # Not all architectures require this. But if yours does (you'll know because # this file is created when you run Apache) then you must* ensure that # no two invocations of Apache share the same scoreboard file. # ServerName allows you to set a host name which is sent back to clients for # your server if it's different than the one the program would get (i.e. use # "www" instead of the host's real name). # "www" instead of the host's real name). # # Note: You cannot just invent host names and hope they work. The name you # define here must be a valid DNS name for your host. If you don't understand # CacheNegotiatedDocs: By default, Apache sends Pragma: no-cache with each # document that was negotiated on the basis of content. This asks proxy # servers not to cache the document. Uncommenting the following line disables # KeepAlive: Whether or not to allow persistent connections (more than # MaxKeepAliveRequests: The maximum number of requests to allow # during a persistent connection. Set to 0 to allow an unlimited amount. # Server-pool size regulation. Rather than making you guess how many # server processes you need, Apache dynamically adapts to the load it # sees --- that is, it tries to maintain enough server processes to # handle the current load, plus a few spare servers to handle transient # load spikes (e.g., multiple simultaneous requests from a single # It does this by periodically checking how many servers are waiting # for a request. If there are fewer than MinSpareServers, it creates # a new spare. If there are more than MaxSpareServers, some of the MinSpareServers 5 # Limit on total number of servers running, i.e., limit on the number # of clients who can simultaneously connect --- if this limit is ever # of clients who can simultaneously connect --- if this limit is ever # reached, clients will be LOCKED OUT, so it should NOT BE SET TOO LOW. # It is intended mainly as a brake to keep a runaway server from taking # MaxRequestsPerChild: the number of requests each child process is # allowed to process before the child dies. # The child will exit so as to avoid problems after prolonged use when # Apache (and maybe the libraries it uses) leak. On most systems, this # isn't really needed, but a few (such as Solaris) do have notable leaks # Proxy Server directives. Uncomment the following line to # CacheRoot /usr/local/etc/httpd/proxy # CacheSize 100000 # CacheGcInterval 4 # CacheMaxExpire 24 # CacheLastModifiedFactor 0.1 # CacheLastModifiedFactor 0.1 # CacheDefaultExpire 12 #NoCache a_domain.com another_domain.edu joes.garage_sale.com # Listen: Allows you to bind Apache to specific IP addresses and/or #Listen 3000 # VirtualHost: Allows the daemon to respond to requests for more than one # server address, if your server machine is configured to accept IP packets # for multiple addresses. This can be accomplished with the ifconfig # Any httpd.conf or srm.conf directive may go into a VirtualHost command. #<VirtualHost host.some_domain.com> #ServerAdmin webmaster@host.some_domain.com #DocumentRoot /www/docs/host.some_domain.com #ServerName host.some_domain.com #ErrorLog logs/host.some_domain.com-error_log #TransferLog logs/host.some_domain.com-access_log <VirtualHost test.oops.ml.org> -> 추가할 도메인을 같이 적는다 ServerAdmin oops@oops.ml.org -> master의 e-mail사용 DocumentRoot /home/test/htdocs -> home 디렉토리 설정 ServerName test.oops.ml.org -> 추가할 도메인명 설정 ErrorLog logs/test.error_log -> error log 생성 디렉토리 설정 TransferLog logs/test.access_log -> access log 생성 디렉토리 설정 </VirtualHost> ~ ~ # "httpd.conf" 237 lines, 7914 characters written # <------------file end----------------> file의 제일 마지막 부분에 <VirtualHost>와 </VirtualHost>에 설정을 해 주면 된다. 다음 IP aliasing을 해 줘야 한다. 일단 가상 IP를 NIC에 할당을 한다. # /sbin/iconfig eth0:x( x= 1 - 256 ) 210.126.21.y( y=할당할 IP ) 여기서 eth0은 NIC의 디바이스 네임이며 뒤에 ':숫자'를 붙임으로서 가상 디바이스를 생성한다 그다음 이 가상 디바이스를 라우트 셋팅에 추가한다 # /sbin/route add -host 210.126.21.x dev(생략가능) eth0:x 위와 같이 설정한 후 다음과 같이 ifconfig를 사용하여 디바이 스가 활성화 된것을 확인할수 있다. lo Link encap:Local Loopback inet addr:127.0.0.0 Bcast:127.255.255.255 Mask:255.0.0.0 UP BROADCAST LOOPBACK RUNNING MTU:3584 Metric:1 RX packets:5088 errors:0 dropped:0 overruns:0 TX packets:5088 errors:0 dropped:0 overruns:0 eth0 Link encap:10Mbps Ethernet HWaddr 00:8E:B8:83:19:20 inet addr:210.126.21.90 Bcast:203.236.108.255 Mask:255.255.255.0 UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1 RX packets:334036 errors:0 dropped:0 overruns:0 TX packets:11605 errors:0 dropped:0 overruns:0 Interrupt:7 Base address:0x378 eth0:0 Link encap:10Mbps Ethernet HWaddr 00:8E:B8:83:19:20 inet addr:210.126.21.91 Bcast:203.236.108.255 Mask:255.255.255.0 UP BROADCAST RUNNING MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 TX packets:0 errors:0 dropped:0 overruns:0 eth0:1 Link encap:10Mbps Ethernet HWaddr 00:8E:B8:83:19:20 inet addr:210.126.21.92 Bcast:203.236.108.255 Mask:255.255.255.0 UP BROADCAST RUNNING MTU:1500 Metric:1 RX packets:1 errors:0 dropped:0 overruns:0 TX packets:0 errors:0 dropped:0 overruns:0 eth0:2 Link encap:10Mbps Ethernet HWaddr 00:8E:B8:83:19:20 inet addr:210.126.21.93 Bcast:203.236.108.255 Mask:255.255.255.0 UP BROADCAST RUNNING MTU:1500 Metric:1 RX packets:1 errors:0 dropped:0 overruns:0 TX packets:0 errors:0 dropped:0 overruns:0 routing table을 확인 하려면 netstat -nr을 사용하여 확인한다. 결과는 다음과 같다... Kernel IP routing table Destination Gateway Genmask Flags MSS Windows irtt Iface 210.126.21.91 0.0.0.0 255.255.255.255 UH 1500 0 0 eth0:0 210.126.21.92 0.0.0.0 255.255.255.255 UH 1500 0 0 eth0:1 210.126.21.93 0.0.0.0 255.255.255.255 UH 1500 0 0 eth0:2 210.126.21.90 0.0.0.0 255.255.255.128 U 1500 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 3584 0 0 lo 0.0.0.0 210.126.21.254 0.0.0.0 UG 1500 0 0 eth0 다음 rc.alias라는 file을 만든다음에 이 내용을 기입을 해 주면 된다. # ns:/usr/local/etc/httpd/conf# cd /etc/rc.d # ns:/etc/rc.d# ls # rc.0 rc.K rc.alias rc.inet2 rc.serial # rc.4 rc.M rc.cdrom rc.local # rc.6 rc.S rc.inet1 rc.modules # ns:/etc/rc.d# vi rc.alias # /sbin/ifconfig lo 127.0.0.1 # /sbin/ifconfig eth0 up # /sbin/ifconfig eth0 210.126.21.90 # /sbin/ifconfig eth0:0 210.126.21.91 # /sbin/ifconfig eth0:1 210.126.21.92 # /sbin/ifconfig eth0:2 210.126.21.93 # # # /sbin/route add -net 127.0.0.0 # /sbin/route add -net 210.126.21.0 dev eth0 # /sbin/route add -host 210.126.21.90 eth0 # /sbin/route add -host 210.126.21.91 eth0:0 # /sbin/route add -host 210.126.21.92 eth0:1 # /sbin/route add -host 210.126.21.93 eth0:2 # ~ # ~ # "rc.alias" 25 lines, 790 characters written rc.alias를 만든 다음 /etc/rc.d/rc.loacl의 제일 아랫줄에 rc.alias를 기입을 해준다음 저장을 하고 나와서 /etc/rc.d/rc.local 명령을 실행한다음 route명령으로 설정한것이 잡혔는지 확인해 본다. 다음 httpd를 reflesh한다 # ns:/etc/rc.d# more /usr/local/etc/httpd/logs/httpd.pid # 67 (위의 경로와 다르다면 root에서 find / -name httpd.pid를 실행애 봐라!) 또는 # ns:/etc/rc.d# ps -ax \| grep inetd -> httpd의 PID 찾기 # 67 # ns:/etc/rc.d# kill -HUP 67 -> httpd reflesh 명령 <참고1> stand alone방식으로 apache 데몬을 실행했다면 위의 방식대로 하고 inetd를 이용한다면 밑의 방식대로 하면 된다. 참고로 httpd.pid와 inetd의 pid는 서로 다르다. <참고2> name서버에 등록이 되었다고 해서 외부에서 바로 등록된 domain이 인식 되지는 않는다. 상위 name server에서 인식을 해 줘야 하기 때문에 zone의 날짜를 고쳐 줘야 하는 것이다. 일단 위의 과정을 다 거쳤으면 짧게는 하루 길게는 한 이삼일 정도 후에는 외부에서도 도메인이 인식 되어 진다. 김정균. oops@netusers.net

1998 by swindler