26-5. £Ä£Î£Ó¤È£×£å£â¤ò¥¢¥Þ¥¾¥ó¤Çºî¤ë `2g/11/S¡ÁM
(1) ¥¢¥Þ¥¾¥ó¤Î¥¯¥é¥¦¥É¥µ¡Ý¥Ó¥¹¤ò¿¨¤ë
* Amazon EC2 ¤Ë¤Ä¤¤¤Æ
¥¢¥Þ¥¾¥ó¤Î¥¯¥é¥¦¥É¥µ¡Ý¥Ó¥¹¤Ë£×£å£â¤È£Ä£Î£Ó¤Î¥µ¡Ý¥Ð¤òºî¤Ã¤Æ¡¢Ì¾Á°²ò·è¤·¤Æ£×£å£â¤Ë
¥¢¥¯¥»¥¹¤¹¤ë¡£»¨»ïµ»ö¤Ç¤â¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ç¤Î¾ðÊó¤Ç¤â£×£å£â¥µ¡Ý¥Ð¤òºî¤ë¤³¤È¤¬ºÇ½é
¤ÎÊý¤Ë½ñ¤«¤ì¤Æ¤¤¤ë¡£Â¿Ê¬¼è¤êÁȤߤò»Ï¤á¤¿¤é¿ô»þ´Ö¤Ç£×£å£â¥µ¡Ý¥Ð°Ì¤ÏΩ¤Á¾å¤²¤ë¤³¤È
¤¬¤Ç¤¤ëµ¤¤¬¤¹¤ë¡£¤¤¤í¤¤¤íµ¡Ç½¤Ï¤¢¤ë¤è¤¦¤À¤¬´ðËÜ¤Ï Amazon EC2 ¤é¤·¤¤¤è¤¦¤À¤«¤é¡£
½é¤á¤Æ¤Î¤³¤È¤Ï¤ä¤Ï¤ê¤Ê¤«¤Ê¤«¿Ê¤Þ¤Ê¤¤¡£¼è¤ê¤«¤«¤ì¤Ê¤¤¡£°ì±þ¤¶¤Ã¤È¤á¤Ü¤·¤¤µ»ö¤òÆÉ
¤ó¤ÇÁ´ÂΤò¤¶¤¯¤Ã¤È¸«¤Æ¤ß¤ë¡£Æü·Ð´Ø·¸¤Î¤³¤³¿ôǯ¤Î»¨»ï¤ò¤Ñ¤é¤Ñ¤é¤Ã¤È¸«¤Æ¥¢¥Þ¥¾¥ó¤Ë
¤Ä¤¤¤Æ½ñ¤«¤ì¤¿µ»ö¤òÆɤó¤Ç¤ß¤è¤¦¡£¤³¤ì¤Þ¤Ç£Á£×£Ó¤Î¤³¤È¤Ï¥×¥í¥Ð¥¤¥À¤Îº©°Õ¤·¤Æ¤¤¤ë
¿Í¤«¤é¤½¤ó¤Ê¤ËÆñ¤·¤¤¤³¤È¤Ï¤Ê¤¤¤Ç¤¹¤è¤È¡¢°ìÅÙ¤½¤ì¤°¤é¤¤Ê¹¤¤¤¿¤À¤±¤Ç¤¢¤ë¡£
¡ÖÆü·Ð£Î£Å£Ô£×£Ï£Ò£Ë¡×2014.04,"Introduction ¥¯¥é¥¦¥É¤Ã¤Æ¤Ê¤Ë¡© £Á£×£Ó¤Îõ¸¡¤ò»Ï¤á
¤è¤¦"¡¢¤¬¤È¤Ã¤«¤«¤ê¤Ë»²¹Í¤Ë¤Ê¤ë¤È»×¤Ã¤¿¡£¡ÖÆü·Ð£Î£Å£Ô£×£Ï£Ò£Ë¡×2015.04,"½é¤á¤Æ¤Ç
¤â̤ï¤Ê¤¤ ¿Ê¤á¡ª£Á£×£Ó¥Í¥Ã¥È¥ï¡Ý¥¯Ãµ¸¡Ââ Â裱²ó" ¤Ê¤É¡£ ¡ÖSoftware Design¡×¤Ë¥¢
¥Þ¥¾¥ó¤Îµ»ö¤Ï¤Ê¤«¤Ã¤¿¤«¤Ê¡¢¸«Åö¤¿¤é¤Ê¤«¤Ã¤¿¤è¤¦¤Êµ¤¤¬¤¹¤ë¡¢¤¤¤ä£±ºý¤¢¤Ã¤¿¡£
¥¢¥Þ¥¾¥ó¤Î̵ÎÁ¥µ¡Ý¥Ó¥¹¤Î°ÆÆâ¥á¡Ý¥ë¤¬ 2016/08/04 ¤Ë¤¤¿¡£"AWS¥¯¥é¥¦¥É¤Î¸¡¾Ú¡¢¤´Íø
ÍÑÂθ³¤Ë»È¤¨¤ë̵ÎÁÍøÍÑÏȤΤ´°ÆÆâ"¡£ Î㤨¤Ð Amazon EC2 ¤Ï£±¥ö·î¤¢¤¿¤ê£·£µ£°»þ´ÖÍø
ÍѲÄǽ¡£Linux RHEL ¤Þ¤¿¤Ï SLES t2.micro ¥¤¥ó¥¹¥¿¥ó¥¹¡£ÀÁµáÀè½»½ê¤È¥¯¥ì¥¸¥Ã¥È¥«¡Ý
¥É¾ðÊó¤òÆþÎϤ¹¤ë¡£ÌµÎÁÈϰϤòĶ¤¨¤¿Ê¬¤Ï½¾Î̲ݶâÀ©¤Çʧ¤¦¡£
»î¤·¤Ë£×£å£â¥µ¡Ý¥Ð¤òΩ¤Æ¤¿¤Ï¤¤¤¤¤¬¡¢¤½¤Î¤Þ¤Þ¤Û¤«¤Ã¤Æ¤ª¤¯¤È¤É¤ó¤É¤ó²Ý¶â¤µ¤ì¤Æ¤·¤Þ
¤¦¤È¤«¡£¤½¤ó¤Ê¤³¤È¤¬¤Ê¤¤¤è¤¦¤ËºÇÄã¸ÂÃí°Õ¤¹¤Ù¤¤³¤È¤òÀ褺¤Ï¸«¤Ä¤±¤ë¤³¤È¡£¤È¤ê¤¢¤¨
¤º https://aws.amazon.com/jp/ ¥¢¥¯¥»¥¹¤·¤Æ¤ß¤¿¡££·£µ£°»þ´Ö¤È¤¤¤¦¤Î¤Ï¡¢750hr/24hr
¤Ï 31.25day ¤Ç¤º¤Ã¤È»È¤Ã¤Æ¤¤¤Æ¤â¥ª¡Ý¥Ð¡Ý¤·¤Ê¤¤»þ´Ö¤Ç¤¢¤ë¡¢¥Þ¥·¥ó£±Âæ¤Ê¤é¤Ð¡£
ËܤòÇã¤Ã¤¿¼«Á°¤Ç¡¢µ»½ÑɾÏÀ¼Ò¤Î¤Ë¤·¤¿¡¢£Â£´¥µ¥¤¥º ¡ÖAmazon Web Services¼ÂÁ©ÆþÌç¡×
2015ǯ11·î10ÆüȯÇä¡££Ó£Â¼Ò¤Î¥Ñ¥¿¡Ý¥óÊ̤¦¤ó¤Ì¤ó¤Î¤¬¤¤¤¤¤«¤Ê¤È»×¤Ã¤¿¡¢£±¥ö·î°ÌÁ°¤Ë
Ëܲ°¤Ç¤ß¤¿¡££Á£´¥µ¥¤¥º¤Ç»ý¤Á±¿¤Ó¤¹¤ë¤Î¤Ë²Ùʪ¤Ë¤Ê¤ë¡££Â£´¥µ¥¤¥º¤ÇŬÅö¤Ê»þ¤Ë³ó¤ËÆþ
¤ì¤Æ¡¢¶õ¤¤¤¿»þ´Ö¤ËÆɤá¤ë¤è¤¦¤Ë¤¹¤ë¤Î¤¬¤¤¤¤¤«¤Ê¡£
¤·¤«¤·¤â¤¦ FortiGate ¤ÎÊý¤òËܹøÆþ¤ì¤Æ¤ä¤Ã¤Æ¤¤¤«¤Ê¤¤¤±¤Ê¤¤¤Î¤Ë¡£ ¤·¤«¤·Ê̤ʻö¤ò¤ä
¤Ã¤ÆƬ¤¬¥ê¥Õ¥ì¥Ã¥·¥å¤Ç¤¤¿¡£¤È¤ê¤¢¤¨¤º FM ¤È FS ¤¬Íî¤ÁÃ夤¤Æ¤¤¤ë¤Î¤Ç¡¢¤½¤Î´Ö¤Ë¾
»ö¤ò¤ä¤Ã¤Æ¤ß¤¿¡£ËèÆü£±£°£°¤È¤«£²£°£°¤º¤ÄƱ¤¸·ï̾¤Î¥¦¥£¥ë¥¹Æþ¤ê¥á¡Ý¥ë¤¬ FM ¤Ë³ÖÎ¥
¤µ¤ì¤ë¡¢£±½µ´Ö¤Ë£±Ä̰̤ÏźÉÕ¥Õ¥¡¥¤¥ë¤Ä¤¥á¡Ý¥ë¤ò¸í¸¡ÃΤ¹¤ë¤Î¤ÇÃí°Õ¤·¤Æ¤¤¤ë¤¬¡£
¥¢¥Þ¥¾¥ó¤ÎÍѸ졣¥ê¡Ý¥¸¥ç¥ó¤Ï½ê°â¥Ç¡Ý¥¿¥»¥ó¥¿¡Ý¡¢ ¤½¤³¤Ë£Á£Ú( Availability Zone )
¤¬Ê£¿ô¤¢¤ë¡£¥¤¥ó¥¹¥¿¥ó¥¹¤Ï¤¤¤ï¤æ¤ë Linux ¤Ê¤É¤Çºî¤Ã¤¿²¾ÁÛ¥µ¡Ý¥Ð¤Î»ö¡¢ £Å£Ã£²¥¤¥ó
¥¹¥¿¥ó¥¹¤È¤â¤¤¤¦¡£EIP( Elastic IP Address ) ¤Ï¥Ñ¥Ö¥ê¥Ã¥¯¤Ê¸ÇÄê£É£Ð¥¢¥É¥ì¥¹¤Î¤³¤È¡£
ELB ( Elastic Load Balancing ) Éé²Ùʬ»¶¥µ¡Ý¥Ó¥¹¡£VPC ( Virtual Private Cloud )¡£
* ºÇ½é¤Î¤È¤Ã¤«¤«¤ê£±ÆüÌÜ
£Å£Ã£²¥¤¥ó¥¹¥¿¥ó¥¹¤òºî¤Ã¤Æ¤«¤é¡¢ ¤Ä¤Þ¤ê Linux ¥µ¡Ý¥Ð¤Ê¤ó¤«¤ò²¾ÁÛŪ¤Ëºî¤Ã¤Æ£×£å£â
¥µ¡Ý¥Ð¤Î¥½¥Õ¥È¥¦¥§¥¢¡¢Apache ¤È¤« NGINX ¤ò¥¤¥ó¥¹¥È¡Ý¥ë¤·¤Æ¤È¤¤¤¦¼ê½ç¤Ë¤Ê¤ë¡£º©°Õ
¤Ë¤·¤Æ¤¯¤ì¤Æ¤¤¤ë£Ó£É¶È¼Ô¤¬£Á£×£Ó¤ò»È¤¨¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤ì¤¿¡£¤¢¤é¤«¤¸¤á¥¤¥ó¥¹¥¿¥ó¥¹
¤È¸°¤Ïºî¤Ã¤Æ¤¢¤Ã¤¿¡£¤³¤Î¸å¤«¤é»Ï¤á¤ì¤Ð¤¤¤¤¡£¤Ä¤Þ¤ê£×£å£â¥µ¡Ý¥Ð¤Î¥¤¥ó¥¹¥È¡Ý¥ë¤«¤é¡£
¤È¤ê¤¢¤¨¤º https://aws.amazon.com/jp/ ¤Ë¥¢¥¯¥»¥¹¤·¤¿¡£²èÌ̱¦¾å¶ù¤Î²«¿§¤Ç°Ï¤Þ¤ì¤¿
[ ¥µ¥¤¥ó¥¢¥Ã¥× ] ¤ò¥¯¥ê¥Ã¥¯¤·¤ÆÆþ¤ë¡£ ½Ð¤¿ {¥µ¥¤¥ó¥¤¥ó} ¤Î²èÌ̤ǣťá¡Ý¥ë¤È´û¸¥æ
¡Ý¥¶¤ÎÊý¤Ë¥Ñ¥¹¥ï¡Ý¥É¤òÆþ¤ì¤ë¡£ ½ª¤ï¤ë¤Î¤Ï²èÌ̱¦¾å¤Î [ TEST1_AWS ] ¤ò¥×¥ë¥À¥¦¥ó¤·
¤Æ¥á¥Ë¥å¡Ý¤ò½Ð¤·¤Æ [¥µ¥¤¥ó¥¢¥¦¥È] ¤ò¥¯¥ê¥Ã¥¯¤¹¤ë¡£
------------------------------------------------------------------------
| ¡þ AWS ¥µ¡Ý¥Ó¥¹ ÊÔ½¸ TEST1_AWS ¥ª¥ì¥´¥ó ¥µ¥Ý¡Ý¥È
|-----------------------------------------------------------------------
| ¥¯¥¤¥Ã¥¯¥¹¥¿¡Ý¥È Èóɽ¼¨
|
| ¥¦¥§¥Ö¥¢¥×¥ê¥±¡Ý¥·¥ç¥ó ²¾ÁÛ¥Þ¥·¥ó(EC2¥¤¥ó ¥Õ¥¡¥¤¥ë¤Î¥Ð¥Ã¥¯
| ¤ÎºîÀ® ¥¹¥¿¥ó¥¹)¤Îµ¯Æ° ¥¢¥Ã¥×
| º£¤¹¤°»Ï¤á¤ë ¾ÜºÙ¾ðÊó
|
| £Á£×£Ó¥µ¡Ý¥Ó¥¹
| ¥³¥ó¥Ô¥å¡Ý¥Æ¥£¥ó¥° ³«È¯¼ÔÍѥġݥë IoT
| EC2 CodeCommit
| EC2 Container Service ¾¤Ë¤â¥á¥Ë¥å¡Ý¤Ï°ìÇÕ¤¢¤ë
| |
ec2-54-xxx.ap-northeast-1.compute.amazonaws.com ¤Ë ping ÂǤ俤é£É£Ð¥¢¥É¥ì¥¹¤òÊÖ
¤·¤Æ¤¤¿¡£¤³¤Î¥Ñ¥Ö¥ê¥Ã¥¯£É£Ð¥¢¥É¥ì¥¹¤Ç¤â¤Ã¤Æ Linux¥µ¡Ý¥Ð¤¬Î©¤Á¾å¤¬¤Ã¤Æ¤¤¤ë¤È¤¤¤¦
»ö¡£¤³¤³¤Ë SSH ¥¢¥¯¥»¥¹¤·¤¿¤éÆþ¤ì¤Ê¤«¤Ã¤¿¡¢ ¾å¤Î²èÌ̤Dz¾ÁÛ¥Þ¥·¥ó¤òµ¯Æ°¤·¤Ê¤¤¤È¼Â
ÂÖ¤¬¤Ç¤¤Ê¤¤¤Î¤Ç¤Ê¤¤¤«¡£°ã¤¦¡££×£å£â²èÌÌ¤Ç¥í¥°¥¤¥ó¤¹¤ë£É£Ä¤È SSH ¤Ç¤Î£É£Ä¤ÏÊÌ¡¹¡£
[ TeraTerm ¤Ç¤Î¥¢¥¯¥»¥¹ ] ¼ÒÆâ¤Î¥Ñ¥½¥³¥ó¤«¤é Amazon EC2 ¥¤¥ó¥¹
¥¿¥ó¥¹¤Ë TeraTerm ¤Î SSH ¤Ç¥¢¥¯¥»¥¹¡£
Last login: Wed Sep 7 ....
|
8 package(s) needed for security, out of 63 available
Run "sudo yum update" to apply all updates.
Amazon Linux version 2016.09 is available Æ°¤¤¤Æ¤¤¤¿¤Î¤Ï Amazon Linux ¤È¤¤¤¦¤Î
[ec2-user@ip-xxxxx ~]$ ¤À¤Ã¤¿¡£
[ec2-user@ip-xxxxx ~]$ pwd
/home/ec2-user
[ec2-user@ip-xxxxx ~]$ ps -ax Æ°¤¤¤Æ¤¤¤¿¥Ç¡Ý¥â¥ó¤ÇÃΤäƤ¤¤ë¤á¤Ü¤·
[ec2-user@ip-xxxxx ~]$ which sendmail ¤¤¤Î¤Ï ntpd, sendmail, crond ¤Ê¤É¡£
/usr/sbin/sendmail
[ec2-user@ip-xxxxx ~]$ exit
[ec2-user@ip-xxxxx ~]$ sudo yum -y install nginx
[ec2-user@ip-xxxxx ~]$ sudo service nginx start
[ec2-user@ip-xxxxx ~]$ ps -ef | grep nginx
root .... nginx: master process /usr/sbin/nginx -c /etc/nginx/nginx.conf
nginx ... nginx: worker process
¤â¤¦¤³¤ì¤Ç£×£å£â¥µ¡Ý¥Ð¤Ïµ¯Æ°¤·¤Æ¤¤¤Æ¡¢¥Ö¥é¥¦¥¶¤Ç¥¢¥¯¥»¥¹¤·¤¿¤é²èÌ̤¬½Ð¤Æ¤¯¤ë¤Ï¤º
¤À¤¬½Ð¤Ê¤¤¡£²¿¤Ç¡©¡£http://ec2-54-xxx.ap-northeast-1.compute.amazonaws.com/ ±þÅú
¤Ê¤·¡£¥Ö¥é¥¦¥¶¤Ï¥×¥í¥¥·»ØÄê¤Ï¤Ê¤·¤Ç¡£¤³¤³¤Þ¤Ç¤Ç¤¤ì¤Ð¤¦¤ì¤·¤«¤Ã¤¿¤¬¡¢£²»þ´ÖÄøÅÙ
¤Ç¤³¤³¤Þ¤Ç¤ä¤ì¤¿¤È¤¤¤¦¤³¤È¤Çͳ¤È¤·¤è¤¦¤Ç¤Ï¤Ê¤¤¤«¡£¤Þ¤¿ÌÀÆü¡¢¼è¤êÁȤó¤Ç¤ß¤ë¡£
-----------------------------------------------------------------------
| ¡þ AWS ¥µ¡Ý¥Ó¥¹ ÊÔ½¸ TETS1_AWS ¥ª¥ì¥´¥ó ¥µ¥Ý¡Ý¥È
|--------------------------------------------------------¢¬------------
| | ¡Ã
| £Á£×£Ó¥µ¡Ý¥Ó¥¹ Åìµþ¤ËÊѤ¨¤¿¡£
| EC2 ¢«¥¯¥ê¥Ã¥¯¡£
-----------------------------------------------------------------------------
| ¡þ AWS ¥µ¡Ý¥Ó¥¹ ÊÔ½¸ TEST1_AWS Åìµþ ¥µ¥Ý¡Ý¥È
|----------------------------------------------------------------------------
| EC2¥À¥Ã¥·¥å¥Ü¡Ý¥É | ¥ê¥½¡Ý¥¹
| | ¥¢¥¸¥¢¥Ñ¥·¥Õ¥£¥Ã¥¯(Åìµþ)¥ê¡Ý¥¸¥ç¥ó¤Ç¼¡¤Î Amazon EC2
|[-]¥¤¥ó¥¹¥¿¥ó¥¹ | ¥ê¥½¡Ý¥¹¤ò»ÈÍѤ·¤Æ¤¤¤Þ¤¹:
| ¥¤¥ó¥¹¥¿¥ó¥¹ | 1 ¸Ä¤Î¼Â¹ÔÃæ¤Î¥¤¥ó¥¹¥¿¥ó¥¹ 0 ¸Ä¤Î Elastic IP
| | | 0 ÀìÍ¥Û¥¹¥È 0 ¸Ä¤Î¥¹¥Ê¥Ã¥×¥·¥ç¥Ã¥È
|[-]¥Í¥Ã¥È¥ï¡Ý¥¯&¥» | 1 ¸Ä¤Î¥Ü¥ê¥å¡Ý¥à 0 ¸Ä¤Î¥í¡Ý¥É¥Ð¥é¥ó¥µ¡Ý
| | | 1 ¸Ä¤Î¥¡Ý¥Ú¥¢ 2 ¸Ä¤Î¥»¥¥å¥ê¥Æ¥£¥°¥ë¡Ý¥×
| Elastic IP | 0 ¸Ä¤Î¥×¥ì¥¤¥¹¥á¥ó¥È¥°¥ë¡Ý¥×
¤´¤½¤´¤·¤Æ¤¤¤Æ ec2-54-xxx.ap-northeast-1.compute.amazonaws.com ¤Ë¡¢ping ÂǤäƤâ
È¿±þ¤·¤Ê¤¯¤Ê¤Ã¤¿¡£Àè¤Ë½Ð¤Æ¤¤¤¿£É£Ð¥¢¥É¥ì¥¹¤Ë ping ÂǤäƤâÈ¿±þ¤·¤Ê¤«¤Ã¤¿¡£¤É¤¦¤¤
¤¦¤³¤È¡£ SSH ¤ÇÆþ¤Ã¤Æ ec2-54-xxx.ap-northeast-1.compute.amazonaws.com ¤Ë ping ÂÇ
¤Ã¤¿¤éÈ¿±þ¤·¤¿¡¢£É£Ð¥¢¥É¥ì¥¹¤¬ÊѤï¤Ã¤Æ¤¤¤¿¡¢¤½¤ó¤Ê¤³¤È¤¢¤ê¤«¡©¡£
¼ê¸µ¤Î¥Ñ¥½¥³¥ó¤«¤é http://ec2-54-xxx.ap-northeast-1.compute.amazonaws.com ¤·¤Æ¤â
¤Ç¤Æ¤³¤Ê¤«¤Ã¤¿¤Î¤Ï¤½¤Î¤»¤¤¡©¡£²¿¤«°ã¤¦¤è¤¦¤Êµ¤¤¬¤¹¤ë¡£¤Ä¤¤¤Ç¤Î TeraTerm ¤Ç¤Î SSH
¥¢¥¯¥»¥¹¤â¤Ç¤¤Ê¤¯¤Ê¤Ã¤¿¡£ÈëÌ©¸°¤ò¤¤¤ì¤ë²èÌ̤¬¤Ç¤Æ¤³¤Ê¤¯¤Æ¡¢¤½¤ì¤Ç¥À¥á¤Ë¤Ê¤Ã¤Æ¤·
¤Þ¤¦¡£¥¤¥ó¥¹¥¿¥ó¥¹¤ò»ß¤á¤¿¡¢stopping ¤¬½Ð¤Æ£±Ê¬¤°¤é¤¤¤«¤«¤Ã¤¿¤¾¡£
¥¤¥ó¥¹¥¿¥ó¥¹¤ò³«»Ï¤·¤¿¡¢£²£°É䰤餤¤Ç running ¤Ë¤Ê¤Ã¤¿¡£¤½¤ì¤Þ¤Ç¤Ï pending ¤À¤Ã
¤¿¡£ping ¤¬Ä̤ë¤è¤¦¤Ë¤Ê¤ë¡£¤È¤ê¤¢¤¨¤ºº£Æü¤Ï¤³¤³¤Þ¤Ç¤Ë¤¹¤ë¡£ Amazon EC ¤¬²¿¤«¥È¥é
¥Ö¥ë¤Ê¤Î¤«¤â¤·¤ì¤Ê¤¤¡£ºî¶È¤ò½ª¤¨¤¿¤é¤³¤ì¤«¤é¤Ï¥¤¥ó¥¹¥¿¥ó¥¹¤ò»ß¤á¤ë¤³¤È¤Ë¤¹¤ë¡¢¤½
¤¦¤·¤¿¤Î¤Ï½éÆü¤À¤±¤À¤Ã¤¿¡££²ÆüÌܤ«¤é¤ÏÄä»ß¤·¤Ê¤¤¤Þ¤Þ¤Ë¤·¤¿¡¢µóÆ°¤¬Ê¬¤«¤Ã¤¿¤Î¤Ç¡£
£Á£×£Ó¤Î´ÉÍý²èÌ̤Π"[-]¥¤¥ó¥¹¥¿¥ó¥¹ ¥¤¥ó¥¹¥¿¥ó¥¹" ¤Î¤È¤³¤í¤¬´Î¿´¡£¤³¤³¤ËºîÀ®¤·¤¿
¥¤¥ó¥¹¥¿¥ó¥¹¤¬¥ê¥¹¥È¤µ¤ì¤ë¡£º£¤Ï£±¸Ä¤À¤±É½¼¨¤µ¤ì¤Æ¤¤¤ë¡£Name TTT¡¢¥¤¥ó¥¹¥¿¥ó¥¹ID
i-xxxx¡¢¥¤¥ó¥¹¥¿¥ó¥¹¥¿¥¤¥× t2.micro¡¢¥¤¥ó¥¹¥¿¥ó¥¹¤Î¾õÂÖ stopped¡¢ ¥¹¥Æ¡Ý¥¿¥¹¥Á¥§
¥Ã¥¯¡¢¥¡Ý̾ henomohe¡¢¥»¥¥å¥ê¥Æ¥£¥°¥ë¡Ý¥× keroyon¡£
Amazon EC2 ¤Î Linux ¤¬²ÔƯ¤·¤¿¾õÂ֤ϡ£¥¤¥ó¥¹¥¿¥ó¥¹¤Î¾õÂÖ running¡¢¥¹¥Æ¡Ý¥¿¥¹¥Á¥§
¥Ã¥¯ 2/2¤Î¥Á¥§¥Ã¥¯¤Ë¹ç³Ê¤·¤Þ¤·¤¿¡¢¥Ñ¥Ö¥ê¥Ã¥¯DNS ec2-54-xxx.ap-northeast-1.comput
e.amazonaws.com¡¢¥Ñ¥Ö¥ê¥Ã¥¯IP 54-xxx ¤È¤¤¤¦¤è¤¦¤Ë½Ð¤ë¡£xxx Éô¤Ï°ì½ï¤Ç¤¢¤ë¡£ ¤½¤ì
¤Ë¥×¥é¥¤¥Ù¡Ý¥ÈDNS¡¢¥×¥é¥¤¥Ù¡Ý¥ÈIP ¤È¤¤¤¦¤â½Ð¤ë¡£½é´üÀßÄê¤Ë´Ø·¸¤¹¤ë¤«¤âÃΤì¤Ê¤¤¡£
¤³¤ì¤Çʬ¤«¤ë¤Î¤Ï¡¢¤Ò¤ç¤Ã¤È¤·¤Æ¤â¤¦¤³¤ì¤Ç¥×¥é¥¤¥Ù¡Ý¥È¥¯¥é¥¦¥É¤¬¤Ç¤¤Æ¤¤¤ë¤Î¤Ç¤Ê¤¤
¤«¤È¤¤¤¦¤³¤È¡£ Amazon EC2 ¥¤¥ó¥¹¥¿¥ó¥¹¤Ë¥Ñ¥±¥Ã¥È¤ÎÀ©¸Â¤òŬÀڤˤ«¤±¤ì¤Ð¡¢¼«¼Ò¤Î¥Õ
¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Î£Î£Á£Ô¤Î£É£Ð¥¢¥É¥ì¥¹¤«¤é¥¢¥Þ¥¾¥ó¤Ø¹Ô¤¯¥Ñ¥±¥Ã¥È¤À¤±¤òµö²Ä¤¹¤ë¤³¤È
¤¬¤Ç¤¤ì¤Ð¡£¤³¤ì¤Ï£²ÆüÌܤˤϤǤ¤ë¤³¤È¤Ë¤Ê¤Ã¤¿¡¢¥Ñ¥±¥Ã¥È¥Õ¥£¥ë¥¿¥ê¥ó¥°¤¬¤Ç¤¤¿¡£
* ¤¤¤í¤¤¤í¤«¤¤¤í
Linux ¤Ï Amazon Linux ¤Ç¤¤¤¤¤Î¤«¡£¤³¤ì¤Ï CentOS ¤ò¥Ù¡Ý¥¹¤Ë¥¢¥Þ¥¾¥ó¤¬¥á¥ó¥Æ¥Ê¥ó¥¹
¤ò¤·¤Æ¤ë Linux ¤Ç¤¢¤ë¡£ ¤³¤ì¤Ç¤½¤Î¤Þ¤Þ£×£å£â¥µ¡Ý¥Ð¤È¤·¤Æ¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ë¸ø³«¤¹¤ë
¤Î¤Ï¤É¤¦¤«¡£ºÇÄã¸Â¥¢¥¦¥È¥Ð¥¦¥ó¥É¤Î¥Ñ¥±¥Ã¥È¥Õ¥£¥ë¥¿¥ê¥ó¥°¤ÏÀ褺¤ä¤é¤Ê¤¤¤È¤¤¤±¤Ê¤¤¡£
¤ª»î¤·¤Ç Amazon EC2 ¤ò»È¤¨¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤ì¤¿¤Î¡£¤Ç¤âÌÂÏǤò¤«¤±¤ë¤³¤È¤¬¤Ê¤¤¤è¤¦¤Ë
µ¤¤òÉÕ¤±¤Ê¤¤¤È¡£¥¢¥Þ¥¾¥ó¤Î´ÉÍý²èÌ̤ΠTEST1_AWS ¥á¥Ë¥å¡Ý¤Î [ÀÁµá¥À¥Ã¥·¥å¥Ü¡Ý¥É]¤Ç
ÀÁµá¾ðÊó¤È¥³¥¹¥È´ÉÍý¥À¥Ã¥·¥å¥Ü¡Ý¥É ÍøÍÑÎÁ¶â$0.00¡¢ÍøÍѳ«»Ï¤·¤¿·î¤«¤éËè·î½Ð¤Æ¤¤¤ë¡£
VPC( Virtual Private Cloud )¤Ï¡¢Æ¬¤ÎÀÚ¤êÂؤ¨¤ò¤·¤¿¤¤»þ¤Ë¤Ü¤Á¤Ü¤Á¸«¤Æ¤¤¤¯¤³¤È¤Ë¤·
¤è¤¦¡£¥Í¥Ã¥È¥ï¡Ý¥¯¤Î¥»¥°¥á¥ó¥È¤ò´ö¤Ä¤âºî¤ë¤³¤È¤¬¤Ç¤¤ë¤é¤·¤¤¡£²¾Áۣգԣͤò¤«¤Þ¤¹
¤Ë¤ÏɬÍפΤ褦¤À¡£¥Í¥Ã¥È¥ï¡Ý¥¯¤Î¥Æ¥¹¥È´Ä¶¤¬¤Û¤Ü¥¿¥À¤Çºî¤ì¤Æ¤·¤Þ¤¦¤È¤¤¤¦¤³¤È¤«¡£
Fortinet¼Ò¤Î¥×¥ì¥¹¥ê¥ê¡Ý¥¹ 2014ǯ4·î8Æü "Amazon Web Services¥¯¥é¥¦¥É¤Ç FortiGate
¥Í¥Ã¥È¥ï¡Ý¥¯¥»¥¥å¥ê¥Æ¥£¥×¥é¥Ã¥È¥Õ¥©¡Ý¥à¤òÄ󶡡¢¥Ñ¥Ö¥ê¥Ã¥¯¥¯¥é¥¦¥ÉƳÆþ¤Ë¤ª¤±¤ë¥¨
¥ó¥¿¡Ý¥×¥é¥¤¥º¥»¥¥å¥ê¥Æ¥£¤Î³ÈÄ¥¤ò FortiGate-VM on AWS ¤¬¼Â¸½"¡£
https://docs.fortinet.com/.. ¤ÎÃæ¤Ë¡ÖFortiGate-AWS Deployment Guide¡×Version 1.0,
Date 8-1-2014,£³£¹¥Ú¡Ý¥¸¤¢¤ê¡£¤È¤¤¤¦¤Î¤¬¥Í¥Ã¥È¤ò¸«¤¿¤é¤¢¤Ã¤¿¡£·ë¹½Æñ¤·¤½¤¦¤Ç¤¢¤¡£
¤½¤ì¤Ê¤ê¤ËÃ챤¬¤¤¤ê¤½¤¦¡£´Êñ¤Ë¤¹¤°¤Ë¤ÏÍøÍѤǤ¤½¤¦¤Ê¤â¤Î¤Ç¤Ï¤Ê¤¤¡£
Æü·Ð¥³¥ó¥Ô¥å¡Ý¥¿ ITpro ¥µ¥¤¥È¤Ë¡Ö¥Õ¥©¡Ý¥Æ¥£¥Í¥Ã¥È¡¢£Á£×£Ó¸þ¤±¤Ë²¾ÁÛ£×£Á£Æ¤ò"»þ´Ö
Âߤ·"Êý¼°¤ÇÄ󶡳«»Ï¡×2014/07/09¡£Fortinet FortiWeb-VM ¤òÄ󶡡£¤³¤ì¤Þ¤Ç¤Ï£Â£Ù£Ï£Ì
(Bring Your Own License) ¤ÇÄ󶡤·¤Æ¤¤¤¿¤Î¤ò¥ª¥ó¥Ç¥Þ¥ó¥É¤Ç¤âÄ󶡤ò»Ï¤á¤¿¡£
³¤¡¢Åìµþ¥ê¡Ý¥¸¥ç¥óÍøÍÑ¤Ç m3.large ¤Ç£±»þ´ÖÅö¤¿¤êÌó1¥É¥ë¡¢ÆâÌõ¤Ï EC2 ¤¬Ìó 0.2¥É
¥ë¡¢FortiWeb-VM ¥é¥¤¥»¥ó¥¹ Ìó0.8¥É¥ë¡£1x24x365x109=954840 ¤Çǯ´Ö£¹£µËü±ß¤«¤«¤ë·×
»»¤Ë¤Ê¤ë¡£·ë¹½¤¤¤ë¤Ê¡Ý¡£²Ã¤¨¤Æ¥Ñ¥±¥Ã¥È¤ÎÎ̤˱þ¤¸¤¿²Ý¶â¤â¤¢¤ë¤Î¤Ç¤Ê¤¤¤«¡£
¥ª¥ó¥Ç¥Þ¥ó¥ÉÈǤϥ¤¥ó¥¹¥¿¥ó¥¹¤Î¥é¥¤¥»¥ó¥¹¹þ¤ß¤Ç»È¤¨¤ë AMI¡£ FortiGate-VM ¤Ï¥¤¥ó¥¹
¥¿¥ó¥¹¤Î¥¿¥¤¥×¤Ë¤è¤Ã¤Æ»È¤¨¤ë¤Î¤¬¤¢¤ë¡£ÎÁ¶â¤Ï²Ý¶â¤Ç¡£¥ª¥ó¥Ç¥Þ¥ó¥ÉÈǤξ¤Ë£Â£Ù£Ï£Ì
ÈǤȤ¤¤¦¤Î¤¬¤¢¤ë¡£Â¿Ê¬£Â£Ù£Ï£Ì¤Î¥µ¡Ý¥Ó¥¹¤ÏÎÁ¶â¤Î»Ùʧ¤¤¤ÏÊ̤ˤʤë¤Î¤À¤È»×¤¦
FortiGate-VM ¤È FortiWeb-VM ¤¬¤¢¤ëÌõ¤Ç¡¢¤É¤Ã¤Á¤òÁª¤Ù¤Ð¤¤¤¤¤Î¤«¡£¥¢¥Þ¥¾¥ó¤ÎÍøÍÑÎÁ
¶â¤Ï¤É¤¦¤«¡£FortiGate-VM ¤Ï FortiWeb-VM ¤òÊñ´Þ¤·¤Æ¤¤¤ë¤Î¤«¡£ FortiWeb ¤È¤¤¤¦À½ÉÊ
¤â¤¢¤Ã¤Æ¡¢¤³¤ì¤Ï£×£å£â¥µ¡Ý¥Ð¤ò¼é¤ëÀìÍÑ¥¢¥×¥é¥¤¥¢¥ó¥¹¤À¤È»×¤¦¡£
¥¢¥Þ¥¾¥ó¤Î¥¯¥é¥¦¥É¥µ¡Ý¥Ó¥¹¤Î°ÂÁ´À¤Ï¤¤¤«¤Ë¡£¤¢¤ë¥»¥ß¥Ê¡Ý¤Ç¤ÏÅö¤êÁ°¤Î¤è¤¦¤ËÉÕ²ÃŪ
¤Ë°ÂÁ´À¤ò¹â¤á¤ë¥µ¡Ý¥Ó¥¹¤ò»È¤Ã¤Æ²¼¤µ¤¤¤ÈÏ䷤Ƥ¤¤¿¡£¥¢¥Þ¥¾¥ó¤Ï¤½¤ì¤Ê¤ê¤Î°ÂÁ´À¤ò
³ÎÊݤ·¤¿¾å¤Ç¥µ¡Ý¥Ó¥¹¤òÄ󶡤·¤Æ¤¤¤ë¤Î¤Ç¤Ê¤¤¤«¡£¤½¤¦ÇùÁ³¤È»×¤Ã¤Æ¤¤¤¿¤¬¤½¤¦¤Ç¤Ï¤Ê¤¤¡£
¼ÂºÝ Amazon EC2 ¤ò¿¨¤Ã¤Æ¤ß¤¿¡£Linux ¤Ï´ö¤Ä¤«¤Î¼ïÎब¤¢¤êÁªÂò¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤
¤¿¡£Ãæ¤Ë Amazon ¤¬¥Á¥å¡Ý¥Ë¥ó¥°¤·¤Æ¤¤¤ë Linux ¤¬¤¢¤Ã¤¿¡£ ¤É¤¦¤â¤½¤ì¤ò»È¤¦¤Î¤¬°ìÈÌ
Ū¤Ê¤è¤¦¤Ç¤¢¤ë¡£¤À¤«¤é¤È¤¤¤Ã¤Æ°ÂÁ´¤Ë¥Á¥å¡Ý¥Ë¥ó¥°¤·¤Æ¤¤¤ë¤«¤ÏÉÔÌÀ¤À¤¬¡£
Amazon EC2 ¤Ë¤Ï´Êñ¤Ê¥Ñ¥±¥Ã¥È¥Õ¥£¥ë¥¿¥ê¥ó¥°¤¬¤¢¤ë¤Î¤ß¤Ç¤¢¤ë¡£ ¥Õ¥©¡Ý¥Æ¥£¥Í¥Ã¥È¼Ò
¤Î¿Í¤Ëʹ¤¤¤¿¤³¤È¤Ç¡¢¥¢¥Þ¥¾¥ó¤Ç£×£å£â¥µ¡Ý¥Ð¤Î¾è¤Ã¼è¤ê¤«¤é¼é¤ë¥µ¡Ý¥Ó¥¹¤ò¤·¤Æ¤¤¤Þ¤¹
¤È¡£EC2 ¤Î Linux ¤Ë¾è¤»¤ë¤Î¤«¡¢¤½¤ì¤È¤âÊ̤ˡ£Ê̤Ȥ¤¤¦·Á¤Ï¤É¤¦¤Ê¤ë¤«Ê¬¤«¤é¤Ê¤¤¡£
(2) Amazon EC2 ¼è¤Ã³Ý¤«¤ê¤«¤é£²ÆüÌÜ
* ½çÄ´¤Ë¿Ê¤ó¤Ç¤¤¤Þ¤¹
¥»¥¥å¥ê¥Æ¥£¥°¥ë¡Ý¥× keroyon ¤Ç¡£ ¥¤¥ó¥Ð¥¦¥ó¥É¥ë¡Ý¥ë¤Ë¥ë¡Ý¥ë¤òÄɲ䷤ʤ¤¤È¤¤¤±¤Ê
¤¤¤Î¤Ç¤Ê¤¤¤«¡£Á÷¿®¸µ¤Ë¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Î£Î£Á£Ô¤Î£É£Ð¥¢¥É¥ì¥¹¤Ë¤·¤Æ¡¢¥×¥í¥È¥³¥ë¤Ï
SSH ¤À¤±¡£¤³¤ì¤Ë HTTP ¤òÄɲ䷤ʤ¤¤È¤¤¤±¤Ê¤¤¤Î¤Ç¤Ê¤¤¤«¡£¥¢¥¦¥È¥Ð¥¦¥ó¥É¥ë¡Ý¥ë¤ÏÁ´
Éôµö²Ä¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£¥¤¥ó¥Ð¥¦¥ó¥É¤¬£Á£×£Ó¤Ë¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤Î¤³¤È¤Ç¤¢¤ë¡£
¥¤¥ó¥¹¥¿¥ó¥¹¤òÄä»ß¤·¤Æ³«»Ï¤¹¤ë¤È¡¢¥Ñ¥Ö¥ê¥Ã¥¯DNS ¤È ¥Ñ¥Ö¥ê¥Ã¥¯IP ¤¬ÊѤï¤ë¤³¤È¤Ëµ¤
ÉÕ¤¤¤¿¡£¤½¤ì¤Ç²¿¤«±Æ¶Á¤·¤Æ ping ¤¬Ä̤äƤ¤¤¿¤Î¤¬¤Ç¤¤Ê¤¯¤Ê¤Ã¤¿¤Î¤«¤â¡£¤¤¤ä¡¢¥»¥
¥å¥ê¥Æ¥£¥°¥ë¡Ý¥×¤Ë ICMP ¤òµö²Ä¤·¤¿¤é±þÅú¤¹¤ë¤è¤¦¤Ë¤Ê¤Ã¤¿¡£SSH ¤â»È¤¨¤Ê¤¯¤Ê¤Ã¤¿¤Î
¤Ï TeraTerm ¤Ë ec2-54-xxx ¤òµºÜ¤·¤¿¤Î¤Ç¥Û¥¹¥È̾¤¬ÊѤï¤Ã¤Æ¤À¤á¤Ë¤Ê¤Ã¤¿¤Î¤À¡£
NGINX ¤Î£×£å£â¤Ë¥¢¥¯¥»¥¹¤·¤Æ¤â¤À¤á¤À¤Ã¤¿¤Î¤Ï¤Þ¤¿Ê̤ÊÍýͳ¡£¥¤¥ó¥¹¥¿¥ó¥¹¤òÄä»ß¤·¤Æ
³«»Ï¤¹¤ë¤È nginx ¤Î¥Ç¡Ý¥â¥ó¤¬¤Ê¤¯¤Ê¤Ã¤Æ¤¤¤¿¡£ $ sudo yum -y install nginx ¤ò¤Þ¤¿
¤ä¤Ã¤¿¤é¡¢¤¹¤Ç¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤Ï¤µ¤ì¤Æ¤¤¤ë¤È½Ð¤¿¡£ $ sudo service nginx start ¤ä¤Ã
¤¿¤é Starting nginx: ¤È½Ð¤Æµ¯Æ°¤·¤¿¡£
----------------------------------------------------------------------
| http://ec2-54-yyy.ap-northeast-1.compute.amazonaws.com
|---------------------------------------------------------------------
| Welcom to £î£ç£é£î£ø on the Amazon Linux AMI!
|---------------------------------------------------------------------
|
| Website Administrator ¤³¤ó¤Ê¤è¤¦¤Ê²èÌ̤¬É½¼¨¤µ¤ì¤¿
|
| This is the default index.html page that is distributed with nginx
| on the Amazon Linux AMI. It is located in /usr/share/nginx/html.
|
$ cd /usr/share/nginx/html
$ ls
404.html 50x.html index.html nginx-logo.png poweredby.png
vi ¤Ç¥Õ¥¡¥¤¥ë¤òºî¤ë¡£ÊÔ½¸¤·¤Æ¥»¡Ý¥Ö¤·¤è¤¦¤È¤·¤¿¤é¸¢¸Â¤¬¤Ê¤¤¤ÈÄ·¤Í¤é¤ì¤¿¡£ »î¤·¤Ë
$ cp 404.html ttt ¤È¥³¥Ô¡Ý¤·¤è¤¦¤È¤·¤¿¤é Permission denied ¤È¤Ç¤¿¡£$ who am i ¤Ï
ec2-user ¤È¤Ç¤¿¡£¤³¤ì¤Ç¤Ï¤À¤á¤Ç $ su - ¤Ç root ¥æ¡Ý¥¶¤Ë¤Ê¤é¤Ê¤¤¤È¤À¤á¡£ £±Æü¤ÈÍâ
Æü¤Î£²»þ´Ö°Ì¼è¤êÁȤó¤Ç¤³¤³¤Þ¤Ç¤Ç¤¤¿¡£¤È¤ê¤¢¤¨¤º¤³¤³¤Þ¤Ç¤Ë¤·¤Æ¤ª¤³¤¦¡£
test1.html
---------------------------
|
|
| Hi! AWS ikken
|
|
Linux ¤ËÆþ¤Ã¤Æ root ¸¢¸Â¤È¤¤¤¦¤«¥Õ¥¡¥¤¥ë¤ÎÊÔ½¸¸¢¸Â¤¬¤¢¤ë¤³¤È¡£¸¢¸Â¤òÉÕÍ¿¤¹¤ë¤³¤È¡£
Apache ¤Ê¤ó¤«¤Î£×£å£â¥µ¡Ý¥Ð¤ò»î¤·¤ËºÇ½é¤Î²èÌ̤Îʸ¸À¤òÊѤ¨¤Æ¤ß¤ë¡£ ¥¤¥ó¥¹¥¿¥ó¥¹¤ò
Ää»ß¡¢µ¯Æ°¤·¤Æ¤â£É£Ð¥¢¥É¥ì¥¹¤¬ÊѤï¤é¤Ê¤¤¤è¤¦¥Ñ¥Ö¥ê¥Ã¥¯¤Ê¸ÇÄê£É£Ð¥¢¥É¥ì¥¹¤ò³ä¤êÅö
¤Æ¤Æ¤ß¤ë¡£Linux ¥¤¥ó¥¹¥¿¥ó¥¹¤Î root ¥¢¥«¥¦¥ó¥È¤Î¥Ñ¥¹¥ï¡Ý¥É¤ÏÀßÄꤵ¤ì¤Æ¤Ê¤¤¡£
$ sudo su - ²¿¤À¤³¤ì¤Ç¤Ç¤¤ë¤Î¤À¡£¤³¤ì¤Þ¤ÇÉáÄÌ¤Ï $ su - ¤È¤ä¤ë¤Î¤Ç¡£
# pwd ¤³¤ì¤Ç # passwd ¤È¤ä¤ì¤Ð root ¤Î¥Ñ¥¹¥ï¡Ý¥É¤òÀßÄê¤Ç¤¤ë¡£
# / ¤È¤ê¤¢¤¨¤º¤³¤Î¤Þ¤Þ¤Ç¾å¤Î test1.html ¤òºîÀ®¤·¤Æ¤ß¤¿¡£
# cd /usr/share/nginx/html
# sudo service nginx start
--------------------------------------------------------------------
| http://ec2-54-yyy.ap-northeast-1.compute.amazonaws.com/test1.html
|-------------------------------------------------------------------
| Hi AWS ikken
|
£Ä£Î£Ó¥µ¡Ý¥Ð¤â¤ä¤Ã¤Æ¤ß¤¿¤¤¤¬¡¢¤É¤¦¤¹¤ì¤Ð¤¤¤¤¤«¡££±¸Ä¤Î¥¤¥ó¥¹¥¿¥ó¥¹¡¢¤Ä¤Þ¤ê£±¤Ä¤Î
Linux ¥µ¡Ý¥Ð¤Ç£×£å£â¤È£Ä£Î£Ó¤Î¥µ¡Ý¥Ð¤òÆ°¤«¤·¤Æ¥Æ¥¹¥È¤¹¤ë¤È¤¤¤¦¤â¤Î¡£Å¬Åö¤Ê¥É¥á¥¤
¥ó̾¤Ç£Ä£Î£Ó¤òÆ°¤«¤¹¡£nix.con¡¢£×£å£â¥µ¡Ý¥Ð¤Î¥Û¥¹¥È¤Ï web.nix.con¡£ £Á£×£Ó¤Î´ÉÍý
²èÌ̤ǤÎÀ©¸ÂÀßÄê¤Ç¼ÒÆ⤫¤é¤·¤«£Ä£Î£Ó¤ÏÍøÍѤǤ¤Ê¤¤¤è¤¦¤Ë¤·¤Æ¡£
¡ÖÆü·Ð£Î£Å£Ô£×£Ï£Ò£Ë¡×2015.07, "½é¤á¤Æ¤Ç¤â̤ï¤Ê¤¤ ¿Ê¤á¡ª£Á£×£Ó¥Í¥Ã¥È¥ï¡Ý¥¯Ãµ¸¡Ââ
Â裴²ó¥Í¥Ã¥È´ØÏ¢¥µ¡Ý¥Ó¥¹¤ò»È¤¤¤³¤Ê¤¹ ¸ÇÄê£É£Ð¤äÉé²Ùʬ»¶¡¢£Î£Á£Ô¤ò½¬ÆÀ"¡¢P.65¤Ëµ¤
¤Ë¤Ê¤ëµ»ö¤¬¡£Elastic IP ¤Î²Ý¶â¤Ë¤Ä¤¤¤Æ¡£¥¤¥ó¥¹¥¿¥ó¥¹¤ò¼Â¹Ô¤·¤Æ¤¤¤ì¤Ð Elastic IP
¤Ë¤ÏÎÁ¶â¤ÏȯÀ¸¤·¤Ê¤¤¡£¥¤¥ó¥¹¥¿¥ó¥¹¤¬»ß¤Þ¤Ã¤Æ¤¤¤ë¤È²Ý¶â¤µ¤ì¤ë¡£
¤³¤ê¤ã¤ª¤¤¤½¤ì¤È»î¤·¤Ë£É£Ð¥¢¥É¥ì¥¹¤ò¼è¤ì¤Ê¤¤¤Ç¤Ï¤Ê¤¤¤«¡££Á£×£Ó¥µ¥¤¥È¤Ë½ñ¤«¤ì¤Æ¤¤
¤ëº£¤ÎÀâÌÀ¤ò¤Ï¤É¤¦¤Ê¤Ã¤Æ¤¤¤ë¤«¡¢¸«¤Æ¤ß¤Ê¤¤¤È¡££×£å£â¥Ö¥é¥¦¥¶¤Ë "Hi AWS ikken" ¤¬
½Ð¤Æ´î¤ó¤Ç¡¢¤¹¤°¤Ë¸ÇÄê£É£Ð¤Ç¤ä¤Ã¤Æ¤ß¤è¤¦¤È Elastic IP ¤ò¼è¤é¤º¤Ë¤è¤«¤Ã¤¿¡££Á£×£Ó
¤Î̵ÎÁÍøÍÑÏÈ https://aws.amazon.com/jp/free/?... ¤Î¤È¤³¤í¤òÆɤó¤Ç¤ß¤¿¡£
Amazon EC2 ¤Î Elastic IP ¤ÎÎÁ¶â¤Ï̵Â̤ÊÍøÍѤòÍÞÀ©¤¹¤ë¤Î¤¬¼ñ»Ý¤Ç¡¢ ¼¡¤Î¤è¤¦¤Ë½ñ¤«
¤ì¤Æ¤¤¤¿¡£"£·£µ£°»þ´Ö£±¥ö·î¤¢¤¿¤ê¤Î Linux¡¢RHEL¡¢¤Þ¤¿¤Ï SLES t2.micro ¥¤¥ó¥¹¥¿¥ó
¥¹¤Î»ÈÍÑÎÌ¡£ Î㤨¤Ð¡¢£±¥¤¥ó¥¹¥¿¥ó¥¹¤ò£±¥ö·î»ÈÍÑ¡¢¤Þ¤¿¤Ï£²¥¤¥ó¥¹¥¿¥ó¥¹¤òȾ·î»ÈÍÑ"¡£
¾¤Î²Ý¶â¤Ï¤É¤¦¤«¡¢¥¢¥Þ¥¾¥ó¤«¤é¥Ñ¥±¥Ã¥È¤ò¥À¥¦¥ó¥í¡Ý¥É¤¹¤ëÊý¸þ¤Ï¤«¤«¤ë¤È¸À¤ï¤ì¤ë¤¬¡£
¤È¤¤¤¦¤³¤È¤Ï¥¤¥ó¥¹¥¿¥ó¥¹¤Ï£±¸Äºî¤Ã¤Æ¤½¤Î¤Þ¤Þ²ÔƯ¤µ¤»¤Æ¤ª¤¡¢ Elastic IP ¤ò£±¸Ä¼è
ÆÀ¤·¤Æ»È¤¦Ê¬¤Ë¤Ï²Ý¶â¤Ï¤Ê¤¤¤È¤¤¤¦¤³¤È¤Ë¤Ê¤ë¡£ Elastic IP ¤ò¼è¤Ã¤¿¤é¥¤¥ó¥¹¥¿¥ó¥¹¤È
´ØÏ¢ÉÕ¤±¤ëºî¶È¤¬É¬Íפˤʤ롣¤³¤¦¤·¤¿¤³¤È¤âÂ賤·¤Æ¤ª¤¤¿¤¤¤È¸À¤¦¤Ê¤é°ìÅÙ¤ä¤Ã¤Æ¤ß
¤ë¡£Æäˤ½¤³¤Þ¤Ç¤ÏɬÍפʤ¤¤È¤¹¤ì¤Ð¡¢°ì»þŪ¤Ë¿¶¤é¤ì¤¿£É£Ð¥¢¥É¥ì¥¹¤Ç½½Ê¬¤Ç¤¢¤ë¡£
* Amazon £Ä£Î£Ó¤ò¼è¤êÁȤࣳÆüÌܾ¯¤· ¤â¤¦¾¯¤·¤Ç½ÐÍè¤Þ¤¹
Amazon Linux ¤Ç¤Î named ¤Ê¤É¥Ç¡Ý¥â¥ó¤Î°·¤¤Êý¤òÄ´¤Ù¤ë¤³¤È¡£resolv.conf ¤Î°·¤¤¤Î¤³
¤È¤â¡£resolv.conf ¥Õ¥¡¥¤¥ë¤Ï¼«Æ°¤ÇÀßÄ꤬½ñ¤¹þ¤Þ¤ì¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤È¤Î¤³¤È¡£¤½
¤ì¤ò¤·¤Ê¤¤ÀßÄ꤬¤Ç¤¤ë¤é¤·¤¤¡£¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ç¤Á¤ç¤Ã¤ÈÄ´¤Ù¤¿¤é¡¢¤½¤ó¤Êµ»ö¤¬¤¢¤Ã
¤¿¡£³Æ¼«¤ä¤Ã¤Æ¤â¤é¤¦¤³¤È¤Ë¤·¤Æ Linux ¤ò»ß¤á¤º¤Ë¡¢¤¤¤í¤¤¤íÆ°ºî³Îǧ¤¹¤ë¤³¤È¤Ë¤¹¤ë¡£
$ cat /etc/resolv.conf ¤³¤ì¤Ï°ìÈÌ¥æ¡Ý¥¶¤Ç¤âɽ¼¨¤Ï¤·¤¿¡£ÊÔ½¸¤Ï¤Ç¤¤Ê¤¤¡£
options timeout:2 attempts:5
; generated by /sbin/dhcclient-script
search ap-northeast-1.compute.internal
nameserver 172.xx.xx.xx
$ sudo yum install bind -y sudo ¤òÁ°¤Ë¤ª¤¯¤È root ¸¢¸Â¤Ç¼Â¹Ô¤Ç¤¤ë¡£ ¤¢¤Ã¤µ
| ¤ê£µÉð̤ÇÆþ¤Ã¤¿¡£/etc/named.conf ¤âÆþ¤Ã¤¿¤ß¤¿¤¤¡£
Installed:
bind.x86_64 32:9.8.2-0.37.rc1.49.amzb1
|
Complete!
$ sudo cat /etc/named.conf ¤¿¤À¤Î $ cat /etc/named.conf ¤Ï¸¢¸Â¥¨¥é¡Ý¤Ë¤Ê¤ë¡£
options {
listen-on port 53 { 127.0.0.1; };
directory "/var/named";
allow-query { localhost; }; ¢¨¤³¤³¤Ë empty-zones-enable ¤Ï¤Ê¤«¤Ã¤¿¡£
recursion yes;
|
}; /var/named/ ¥Ç¥£¥ì¥¯¥È¥ê¤Ï named.ca, named.empty,
| named.localhost, named.loopback ¥Õ¥¡¥¤¥ë¤¬¤¢¤ë¡£
zone "." IN {
type hint;
file "named.ca"
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
¥¤¥ó¥¹¥¿¥ó¥¹¤Ï»ß¤á¤º¤Ë¤ª¤¯¤³¤È¤Ë¤·¤è¤¦¡£¥Ñ¥Ö¥ê¥Ã¥¯£É£Ð¤Ï°ì»þŪ¤Ê¤¬¤é³ä¤êÅö¤Æ¤é¤ì
¤Æ¤¤¤ë¡£¤³¤Î¤Þ¤Þ¤Ç£Ä£Î£Ó¥µ¡Ý¥Ð¤òÀßÄꤷµ¯Æ°¤µ¤»¤ì¤Ð¤¤¤¤¡£Æ±¤¸£É£Ð¥¢¥É¥ì¥¹¤Î¥Þ¥·¥ó
¤ÎÃæ¤Ç£Ä£Î£Ó¥µ¡Ý¥Ð¤È£×£å£â¥µ¡Ý¥Ð¤òÆ°¤«¤¹¤È¤¤¤¦¤³¤È¡£¥É¥á¥¤¥ó̾(£Õ£Ò£Ì̾)¤ÏŬÅö¤Ç
¤¤¤¤¤Ï¤º¡£¼ÒÆâ¤Î¥Ñ¥½¥³¥ó¤Î£Ä£Î£Ó»ØÄê¤Ï¤³¤Î£É£Ð¥¢¥É¥ì¥¹¤Ë¤¹¤ë¡£
¤³¤ì¤Ç£Ä£Î£Ó¥µ¡Ý¥Ð¤ÈÏ¢·È¤·¤Æ£×£å£â¥µ¡Ý¥Ð¤Ø¤Î¥¢¥¯¥»¥¹¤â³Îǧ¤¬¤Ç¤¤ë¤È¤¤¤¦¤³¤È¤Ë¤Ê
¤ë¡¢¤Ï¤º¤À¡£¥¤¥ó¥Ð¥¦¥ó¥É¤â¤Á¤ç¤Ã¤È²òÊü¤¹¤ì¤Ð¡¢¤½¤Î¥Ñ¥Ö¥ê¥Ã¥¯£É£Ð¥¢¥É¥ì¥¹¤«¤é¤Ï¥¢
¥¯¥»¥¹¤Ç¤¤ë¤Ï¤º¡£¥Æ¥¹¥È¤ÎÊý¿Ë¤¬Î©¤Ã¤¿¡£Ê¬¤«¤Ã¤¿¡£¤ó¡Ý¡¢·ë¶É¡¢£²Æü´Ö¤Ç¥á¥É¤¬¤Ä¤¤
¤¿¤è¤¦¤Ê»ö¤Ë¤Ê¤Ã¤¿¡£
£Ä£Î£ÓÀ©¸æ¥Õ¥¡¥¤¥ë¤ÏºÇÄã¤É¤ì¤À¤±µºÜ¤¹¤ì¤Ð¤¤¤¤¤«¡£Éü½¬¤ò¤«¤Í¤Æ¤ä¤Ã¤Æ¤ß¤ë¤È¤·¤è¤¦¡£
¤¢¤È£±Æü¤Ç³Îǧ¤Ç¤¤ë¤Ê¡£¤½¤³¤Þ¤Ç¤Ç£±¥¹¥Æ¡Ý¥¸½ªÎ»¡£¤â¤Ã¤È¤â¥·¥ó¥×¥ë¤Ê£Ä£Î£ÓÀ©¸æ¥Õ
¥¡¥¤¥ë¤Ç¤è¤·¡£¥É¥á¥¤¥ó̾ nix.con¡¢£×£å£â web.nix.con ¤Ç¤è¤·¡£ µÕ°ú¤¤Ê¤·¡¢¥Ò¥ó¥È
¥Õ¥¡¥¤¥ë¤Ê¤·¡£»²¹Í¤Ï mintra.txt dns_vr89.txt ÊÕ¤ê¤Ç¡£
* £Ä£Î£Ó¤È£×£å£â¥µ¡Ý¥Ð¤Î¾éĹ¹½À®
¥Þ¥ë¥Á£Á£Ú¤Ï£Á£×£Ó¤Ç¥¤¥ó¥Õ¥é¤ò¹½ÃÛ¤¹¤ë¤Î¤Ë¿®ÍêÀ¤ò¾å¤²¤ë´ðËÜŪ¤Ê¤ä¤êÊý¡££Ä£Î£Ó¥µ
¡Ý¥Ð¤Î¥×¥é¥¤¥Þ¥ê¡¢¥»¥«¥ó¥À¥ê¤ò£±¥ö½ê¤Î¥ê¡Ý¥¸¥ç¥ó¤ËÃÖ¤¯¤³¤È¤Ë¤·¡¢¤³¤Î¥ê¡Ý¥¸¥ç¥óÆâ
¤Ç£Á£Ú¤òʬ¤±¤Æ£Ä£Î£Ó¥µ¡Ý¥Ð¤òÇÛÃÖ¤¹¤ë¡£¤³¤ì¤Ç£Ä£Î£Ó¥µ¡Ý¥Ð¤ò±¿ÍѤ¹¤ë¤Ë¤¢¤¿¤ê¿®ÍêÀ
¤ò¾å¤²¤é¤ì¤ë¡¢¿®ÍêÀ¤ò³ÎÊݤǤ¤ë¤³¤È¤Ë¤Ê¤ë¡£Æ±»þ¤Ë¥À¥¦¥ó¤¹¤ë¤³¤È¤òÈò¤±¤é¤ì¤ë¡£
¤³¤Î¤³¤ÈÁ°¤«¤éµ¤¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£Æ±¤¸¥¢¥Þ¥¾¥ó¤Î¾ì½ê¡¢Æ±¤¸¥Ç¡Ý¥¿¥»¥ó¥¿¡Ý¤Ç£Ä£Î£Ó¤Î£±
¼¡¥µ¡Ý¥Ð¡¢£²¼¡¥µ¡Ý¥Ð¤ò²ÔƯ¤µ¤»¤¿¤Î¤Ç¤Ï¥¢¥Þ¥¾¥ó¤Îµ¡´ï¤¬¸Î¾ã¤·¤¿¤é¡¢£²¤Ä¤È¤â°ì½ï¤Ë
¥À¥¦¥ó¤·¤Æ¤·¤Þ¤¦¤Î¤Ç¤Ê¤¤¤«¡£¥×¥í¥Ð¥¤¥À¤¬±¿ÍѤ¹¤ë£Ä£Î£Ó¥µ¡Ý¥Ð¤ò¥¢¥Þ¥¾¥ó¤Ë½Ð¤·¤¿¤Î
¤À¤¬¡¢£Õ£Ò£Ì̾¤Ï ec2- ¤Ç»Ï¤Þ¤ë¾ðÊ󤬽ФƤ¤¿¡£¤É¤¦¤¤¤¦¤³¤È¤«°ìÅÙÄ´¤Ù¤Æ¤ß¤ë¡£
£Ä£Î£Ó¥µ¡Ý¥Ð¤È£×£å£â¥µ¡Ý¥Ð¤Ç¤Ï¾éĹ¹½À®¤Î¤ä¤êÊý¤¬°Û¤Ê¤ë¡££Ä£Î£Ó¥µ¡Ý¥Ð¤Ï»ÅÁȤߤȤ·
¤Æ¾éŵ¡Ç½¤¬¤¢¤ë¤Î¤Ç¡¢Ê£¿ô¤Î£Á£Ú¤Ë£Ä£Î£Ó¥µ¡Ý¥Ð¤òÃÖ¤±¤Ð¤è¤¤¡££×£å£â¥µ¡Ý¥Ð¤ÎÊý¤Ï£±
¤Ä¤Î£Õ£Ò£Ì̾¥Ø¤Î¥¢¥¯¥»¥¹¤Çʬ»¶¤·¤ÆÃÖ¤¯¡¢¤Ä¤Þ¤êÊ£¿ô¤Î£Á£Ú¤Ë£×£å£â¥µ¡Ý¥Ð¤òÃÖ¤¤¤ÆÂÐ
±þ¤¹¤ë¡£¤½¤ì¤ò ELB( Elastic Load Balancing ) Éé²Ùʬ»¶¥µ¡Ý¥Ó¥¹¤Ç£±¤Ä¤Ë¸«¤»¤«¤±¤ë¡£
¥¢¥Þ¥¾¥ó¤Ç¤È¤Ã¤¿ Elastic IP ¥Ñ¥Ö¥ê¥Ã¥¯£É£Ð¥¢¥É¥ì¥¹¤ò£Ä£Î£Ó¤ÎÀµ°ú¥Õ¥¡¥¤¥ë¤ËµºÜ¤¹
¤ë¤Î¤¬£±¤Ä¡£¥¢¥Þ¥¾¥ó¤Ç¤Ç¤¤¿ ec2- ¤«¤é»Ï¤Þ¤ë£Õ£Ò£Ì̾¤ò¤³¤Î£Ä£Î£Ó¤ÎÀµ°ú¥Õ¥¡¥¤¥ë¤Ë
CNAME ¤Ç»ØÄꤷ¤ÆµºÜ¤¹¤ë¡£web.nix.con CNAME ec2-xxx ¤È¤¹¤ë¡£Ã¢¤·¤³¤ì¤Ç¤Ï¤Þ¤À¾éĹ
²½¤Ë¤Ï¤Ê¤é¤Ê¤¤¡££Á£ÚÊ£¿ô¤Ë£×£å£â¥µ¡Ý¥Ð¤ò¤ª¤¡¢ELB ¤Ç£±Âæ¤Ë¥¢¥¯¥»¥¹¤¹¤ë¤è¤¦¤Ë¤¹¤ë¡£
£×£å£â¥µ¡Ý¥Ð¤Î£Õ£Ò£Ì̾¤È£É£Ð¥¢¥É¥ì¥¹¤Î£Ä£Î£Ó¤Î¾ðÊó¤ò¡¢£²¤Ä¤Î¸¢°Ò£Ä£Î£Ó¥µ¡Ý¥Ð¤¬»ý
¤Ä¤È¤¤¤¦¤³¤È¤Ë¤Ê¤ë¡£¤³¤ì¤Þ¤Ç¼«¼Ò¤Ç±¿ÍѤ·¤Æ¤¤¤¿¸¢°Ò£Ä£Î£Ó¥µ¡Ý¥Ð¤È¥¢¥Þ¥¾¥ó¤¬ºî¤Ã¤¿
¤â¤Î¤Ç¤¢¤ë¡£¤½¤³¤ò CNAME ¤Ç¤Ò¤Ã¤Ä¤±¤ë¤Î¤Ç¤¢¤ë¡£¤É¤¦¤â ELB ¤òÍøÍѤ¹¤ë¤È ec2- ¤È¤¤
¤¦£Õ£Ò£Ì¤Ç¤Ê¤¯Ê̤Ê̾Á°¤¬ÉÕ¤±¤é¤ì¤ë¤è¤¦¤Ç¤¢¤ë¡£Î㤨¤Ð web.nix.con CNAME elb-xxx¡£
ELB ¤Î¤³¤È¤òÄ´¤Ù¤Æ¤¤¤¿¤é¡¢µ»½ÑɾÏÀ¼Ò¤Î¥µ¥¤¥È giyo.jp ¤Ë"¥¤¥ó¥Õ¥é²°¤Î£Á£×£Ó¤Ï¤¸¤á
¤¿Æüµ¡Ý£Ç£Õ£É¤ò¼Î¤Æ¤è¡¢Â裴²ó¥Í¥Ã¥È¥ï¡Ý¥¯¤ò¹½ÃÛ¤¹¤ë¤ó¤À¡ªº£Æü¤Ï"¡£2015ǯ1·î28Æü
¤Î¤¬¤¢¤Ã¤¿¡£Åìµþ¥ê¡Ý¥¸¥ç¥ó¤Ë¤Ï ap-northeast-1a, 1c ¤Î£²¤Ä¤¬¤¢¤ë¡¢1b ¤Ï¤Ê¤¤¤Î¤«¤â
ÃΤì¤Ê¤¤¤È½ñ¤«¤ì¤Æ¤¢¤Ã¤¿¡£¤³¤³¤éÊÕ¤ê¤Ï¤Þ¤À¹ØÆɤ·¤Æ¤¤¤¿¤Î¤ÇËÜê¤Ë¤¢¤ë¤È»×¤¦¡£
(4) Amazon £Ä£Î£Ó¤ò¼è¤êÁȤࣴÆüÌܤÇ
* ºî¤Ã¤¿£Ä£Î£Ó¤Ç£×£å£â¥¢¥¯¥»¥¹
À褺¤Ï£Å£Ã£²¥¤¥ó¥¹¥¿¥ó¥¹¤Î£²¤Ä¤Î DNS ¤È IP ¤ÎÆ°ºî¤ò³Îǧ¡£ ¼ê¸µ¤Î¥Ñ¥½¥³¥ó¤Î£Ä£Ï£Ó
Á뤫¤é¤Ï ¥Ñ¥Ö¥ê¥Ã¥¯DNS ¤È ¥Ñ¥Ö¥ê¥Ã¥¯IP ¤¬È¿±þ¡¢¥×¥é¥¤¥Ù¡Ý¥È¤ÎÊý¤ÏÈ¿±þ¤»¤º¡£ ¼ê¸µ
¤Î¥Ñ¥½¥³¥ó¤Î SSH ¥¢¥¯¥»¥¹¤·¤¿²èÌ̤«¤é¤Ï ¥×¥é¥¤¥Ù¡Ý¥ÈDNS ¤È ¥×¥é¥¤¥Ù¡Ý¥ÈIP ¤¬È¿±þ¡¢
¥Ñ¥Ö¥ê¥Ã¥¯DNS ¤È ¥Ñ¥Ö¥ê¥Ã¥¯IP ¤ÏÈ¿±þ¤»¤º¡££É£Ð¥¢¥É¥ì¥¹¤ÏŬÅö¤Ë½ñ¤¤¤Æ¤¢¤ê¤Þ¤¹¡£
¥Ñ¥Ö¥ê¥Ã¥¯DNS : ec2-54-168-1-1.ap-northeast-1.compute.amazonaws.com
¥Ñ¥Ö¥ê¥Ã¥¯IP : 54.168.1.1
¥×¥é¥¤¥Ù¡Ý¥ÈDNS: ip-172-192-2-2.ap-northeast-1.compute.internal
¥×¥é¥¤¥Ù¡Ý¥ÈIP : 172.192.2.2
/etc/named.conf ¤³¤ì¤é¤Ï $ sudo vi /etc/named.conf ¤ÇÊÔ
------------------------------------ ½¸¤¹¤ë¡£ SSH ¤ÇÆþ¤Ã¤Æ vi ¤ÇÊÔ½¸¤¹¤ë¤Î¤À
|options { ¤¬¡¢Æäˤª¤«¤·¤ÊµóÆ°¤Ï¤Ê¤«¤Ã¤¿¡£
| listen-on port 53 { any; };
| allow-query { any; };
| recursion no;
|
|zone "nix.con" {
| type master;
| file "nix.con.zone";
|};
/var/named/nix.con.zone
----------------------------------------------
|$TTL 86400
|@ IN SOA nsv.nix.con. ikken.nix.con. (
| 1 3600 900 604800 86400 ) ¥Æ¥¹¥È¤¹¤ë¤À¤±¤Ê¤é¡¢¤³¤ì¤é¤ÎÃͤϴط¸¤Ê¤¤
| ¤¬¡¢°ì±þ¤É¤¦¤¤¤¦°ÕÌ£¤À¤Ã¤¿¤«Éü½¬¤¹¤ë¤³¤È¡£
| IN NS nsv.nix.con.
|nsv IN A 54.168.1.1 ¤³¤ì¤é¥¤¥ó¥¹¥¿¥ó¥¹¤Î ¥Ñ¥Ö¥ê¥Ã¥¯IP ¤òµºÜ¡£
|web IN A 54.168.1.1
$ sudo /etc/init.d/named start ½é¤á¤Æ¤³¤Î¥³¥Þ¥ó¥É¤ò¤ä¤ë¤È¸°¤òÀ¸À®¤·¤¿¤È
¤¤¤¦¤Î¤¬½Ð¤¿¡£»ß¤á¤ë¤Î¤Ï named stop ¤Ë¤Æ¡£
$ host web.nix.con ¥Þ¥·¥ó¤òºÆµ¯Æ°¤·¤Æ¤â named¤òÆ°¤«¤¹¤è¤¦¤Ë
Host web.nix.con not found: 3(NXDOMAIN) ¤¹¤ë¤Ë¤Ï $ sudo chkconfig named on¡£
¤³¤Î Linux ¤Î /etc/resolv.conf ¤Ï nameserver 172.xx.xx.xx ¤Ç¡¢127.0.0.1 ¤Ç¤Ï¤Ê¤¤
¤Î¤Ç¡¢$ host web.nix.con ¤Î̾Á°²ò·è¤¬¤Ç¤¤Ê¤¤¡£
¥Ñ¥½¥³¥ó¤Î£Ä£Ï£ÓÁ뤫¤é³Îǧ¡£
> nslookup
> server 54.168.1.1 ¸«¤ë£Ä£Î£Ó¥µ¡Ý¥Ð¤ò¡¢¥¢¥Þ¥¾¥ó¤Ëºî¤Ã¤¿ Linux¥Þ¥·¥ó¤ò»ØÄꤹ¤ë¡£
> web.nix.con £Ä£Î£Ó¥µ¡Ý¥Ð¡¢web.nix.con ¤Î£É£Ð¥¢¥É¥ì¥¹¤ò 54.168.1.1 ÊÖ¤¹¡£
³¤¤¤Æ¥Ö¥é¥¦¥¶¤«¤é¥¢¥¯¥»¥¹¡£
http://web.nix.con ²èÌ̽Ф¿¡£web.nix.con/test1.html ¤â½Ð¤¿¡£ ¥Ñ¥½¥³¥ó¤Î¥Í¥Ã¥È
¥ï¡Ý¥¯ÀßÄê¤Ç£Ä£Î£Ó¤ò 54.168.1.1 ¤Ë¤·¤Æ¡¢¥×¥í¥¥·»ØÄê¤Ê¤·¤Ç¡£
* BIND ¤Î¥Ð¡Ý¥¸¥ç¥ó¤È¥Ñ¥Ã¥ÁÅö¤Æ
¤½¤ì¤Ç BIND ¤Î¥Ð¡Ý¥¸¥ç¥ó¤Ï²¿¤À¤Ã¤¿¤Î¤«¡£¥¤¥ó¥¹¥È¡Ý¥ë¤Îɽ¼¨¤Ë½Ð¤Æ¤¤¤¿¤Î¤«¤âÃΤì¤Ê
¤¤¤¬¡£$ named -v ¤È¤ä¤Ã¤¿¤é "BIND 9.8.2rc1-Redhat-9.8.2-0.37rc1.49.amzn1" ¤È½Ð¤¿¡£
¤³¤Î BIND ¤ÏÀȼåÀ¤¬¤¢¤ë¸Å¤¤¤â¤Î¤Ç¤¢¤ë¡£ºÇ¿·¤Î Amazon Linux ¤ò¥¤¥ó¥¹¥È¡Ý¥ë¤·¤¿¤é
ºÇ¿·¤Î BIND ¤¬Æþ¤ë¤«¤È»×¤¤¤ä¤Ã¤Æ¤ß¤¿¤¬Æþ¤é¤Ê¤«¤Ã¤¿¡£
£²£°£±£¶Ç¯£±£±·îÃæ½Ü»þÅÀ¤Ç¡¢ÀȼåÀÂкö¤¬»Ü¤µ¤ì¤¿ BIND ¤Î¼ÂÁõ¤Ï£³¤Ä¤¢¤ê 9.11.0-P1¡¢
9.10.4-P4¡¢9.9.9-P4 ¤Î Current-Stable ¤Ç¤¢¤ë¡£http://www.isc.org/ ¤Ë BIND ¤Î¥×¥í
¥°¥é¥à¤Î named ¤¬¤¢¤ë¡£ ¥¢¥Ê¥¦¥ó¥¹¤Ï https://jprs.jp/related-info/ 2016ǯ11·î7Æü,
"¡ÖBIND 9¡×¤Ë½ÅÍפÊÀȼåÀ¡¢½¤ÀµÈǤ¬¥ê¥ê¡Ý¥¹"¡£CVE-2016-8864 ¤ò»²¾È¡£
$ sudo yum update bind -y ¥Ñ¥Ã¥±¡Ý¥¸¤Î̾Á°¤Ï named ¤Ç¤Ï¤Ê¤¤¡£
Loaded plugins: proiorities, update-motd upgrade-helper
No packages marked for update
SSH ¥¢¥¯¥»¥¹¤·¤¿¤È¤³¤í¤Ç Amazon Linux ¤Î͸ú¤ÊºÇ¿·¥Ð¡Ý¥¸¥ç¥ó¤¬²¼¤ÎÍͤËɽ¼¨¤µ¤ì¤ë¡£
Amazon Linux version 2016.09 is available
|
$ cat /etc/system-release
Amazon Linux AMI release 2016.03
$ sudo yum update -y ¤³¤ì¤Ç Amazon Linux ¤ÎºÇ¿·¥Ð¡Ý¥¸¥ç¥ó¤¬Æþ¤ë¡£·Ñ³Ū¥¢¥Ã¥×
| ¥Ç¡Ý¥È¥Õ¥í¡Ý¤È¤¤¤¦»ÅÁȤߡ££Ï£Ó¤ÎºÆ¥¤¥ó¥¹¥È¡Ý¥ë¤Ï¤·¤Ê¤¤¡£
Complete!
¤À¡Ý¤Ã¤È¥¤¥ó¥¹¥È¡Ý¥ë¤µ¤ì¤¿¡£bind ¤È¤¤¤¦¤Î¤Ï¤Ê¤«¤Ã¤¿¡£sendmail ¤ÏÌܤˤĤ¤
¤¿¤¬¡£$ named -v ¤ÏÊѤï¤é¤Ê¤«¤Ã¤¿¡£¤È¤¤¤¦¤³¤È¤Ï named ¤Î¥×¥í¥°¥é¥à¤Ï¼«Ê¬
¤Ç¥Ñ¥Ã¥Á¤òÅö¤Æ¤Ê¤¤¤È¤¤¤±¤Ê¤¤¤È¤¤¤¦¤³¤È¡©¡£¤½¤ì¤Ç¤É¤¦¤ä¤Ã¤Æ¤ä¤ë¤Î¤«¤Ê¡£°Ê
²¼¤Î¤è¤¦¤Ë¤·¤Ð¤é¤¯¤¹¤ì¤Ð¥Ñ¥Ã¥Á¤òÅö¤Æ¤¿¤Î¤¬½Ð¤ë¡¢¤½¤ì¤Þ¤ÇÂԤäƤ⤤¤¤¤«¤â¡£
$ sudo yum update bind -y
Loaded plugins: proiorities, update-motd upgrade-helper
amzn-main/latest
amzn-updates/latest
No packages marked for update
"Amazon Linux AMI Security Center"¡¢https://alas.aws.amazon.com/¤ò¸«¤ë¤ÈºÇ¿·¥Ñ¥Ã
¥±¡Ý¥¸¤Î¥ê¥¹¥È¤¬¥ê¥¹¥È¤¬½Ð¤Æ¤¤¤ë¡£"2016-10-20 11:32 ALAS-2016-758 Important bind
CVE-2016-2848" ¤ò¥¯¥ê¥Ã¥¯¤·¤ÆÆâÍƤòɽ¼¨¤·¡¢"bind-9.8.2-0.37.rc1.49.amzn1.x86_64"
"bind-9.8.2-0.37.rc1.49.amzn1.i686" ¤È New Package: ¤Ë½ñ¤«¤ì¤Æ¤¢¤Ã¤¿¡£`2g/11/18
`2g/11/21 ¤Ë "Amazon Linux AMI Security Center" ¸«¤¿¤é¿·¤·¤¯ bind ¤¬¼¡¤Î¤¬½Ð¤Æ¤¤
¤¿¡£"2016-11-18 12:30 ALAS-2016-768 Important bind CVE-2016-8864"¡£ ¥¢¥Ã¥×¥Ç¡Ý¥È
¤·¤¿¤é "Updated: bind.x86_64 32:9.8.2-0.47.rc1.51.amzn1" ¤È¿ôÉäÇÆþ¤Ã¤¿¡£ dig ¥³
¥Þ¥ó¥É¤ÇÆ°¤¤¤Æ¤¤¤ë BIND ¤Î¥Ð¡Ý¥¸¥ç¥ó¤ò¸«¤¿¤é¡¢¤â¤¦¤³¤ì¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£
$ named -v /usr/sbin/named ¤Ë¤¢¤ê¡£
BIND 9.8.2rc1-RedHat-9.8.2-0.47.rc1.51.amzn1
$ dig /usr/bin/dig ¤Ë¤¢¤ê¡£
; <<>>DiG 9.8.2rc1-RedHat-9.8.2-0.47.rc1.51.amzn1 <<>>
|
£Ä£Î£Ó¤Î root ¥µ¡Ý¥Ð¤¬½Ð¤Æ¤¤¿¡£60 IN NS ¤Ç l,m,a,b,c,d,e,f,g,h,i,j,k ¤¬½Ð¤Æ¤¤¿¡£
* ¤³¤ì¤Þ¤Ç¤Ë¤ä¤Ã¤¿¥¢¥Þ¥¾¥ó¤Î¤ª»î¤·¤Èº£¸å
SSH ¤Î¸°¤Þ¤Çºî¤Ã¤Æ¤¯¤ì¤¿ Amazon EC2 ¤ò¿¨¤Ã¤Æ¤ß¤¿¡£¤½¤ì¤¬¤É¤¦¤¤¤¦»ö¤Ê¤Î¤«£±Æü¤Ç¤Û
¤Üʬ¤«¤Ã¤¿¡£¥¤¥ó¥¹¥¿¥ó¥¹¤Ï´û¤Ëºî¤Ã¤Æ¤¢¤Ã¤Æ¡¢ ¤Ä¤Þ¤ê Linux ¥Þ¥·¥ó¤Ï²¾ÁۤǽÐÍè¤Æ¤¤
¤¿¡£SSH ¤Ç¥¢¥¯¥»¥¹¤·£×£å£â¥µ¡Ý¥Ð¤Ç¤â¤¢¤ë NGINX ¤ò yum ¥³¥Þ¥ó¥É¤Ç¥¤¥ó¥¹¥È¡Ý¥ë¤·¤Æ
µ¯Æ°¤·¤Æ¤ß¤¿¡£¤³¤ì¤Ç¼ÒÆ⤫¤é http://ec2-xxx ¤È¥¢¥¯¥»¥¹¤Ç¤¤ë¤Ï¤º¤Ê¤Î¤À¤¬¡¢¤Ç¤¤Ê
¤«¤Ã¤¿¡£ping ¤â ec2-xxx ¤Ë½ÐÍè¤Æ¤¤¤¿¤Ï¤º¤¬È¿±þ¤Ê¤·¡£²¿¤«ÀßÄê¤Ë¿¨¤ì¤¿¤«¡£`2g/11/S
ÀµÌ££´Æü´Ö¤Ç Amazon EC2 ¤Ë£×£å£â¥µ¡Ý¥Ð¤òΩ¤Æ¤Æ¡¢£Ä£Î£Ó¥µ¡Ý¥Ð¤âÆ°¤«¤·¤Æ¥Ö¥é¥¦¥¶¤«
¤é£Õ£Ò£Ì̾¤Ç¥¢¥¯¥»¥¹¤¹¤ë¤³¤È¤Þ¤Ç¤ò³Îǧ¤·¤¿¡£http://web.nix.con/ ¤È¡£¤È¤ê¤¢¤¨¤º¤³
¤³¤Þ¤Ç¤Ë¤·¤Æ¤ª¤³¤¦¡£ £Ä£Î£Ó¤Î named ¤Ç¥Ñ¥Ã¥Á¤òÅö¤Æ¤ë¤Î¤Ï¥¤¥ó¥¹¥È¡Ý¥ë¤Î¥¢¥Ã¥×»ØÄê
¤¹¤ë¤À¤±¤Ç½ÐÍè¤Æ¤·¤Þ¤¦¤Î¤Ç¤Ê¤¤¤«¡£º£²ó¤Ï Amazon Linux ¥¤¥ó¥¹¥¿¥ó¥¹¤À¤Ã¤¿¤Î¤À¤¬¥Ð
¡Ý¥¸¥ç¥ó¥¢¥Ã¥×¤Ï¤É¤¦¤¹¤ë¤Î¤«¡£¼¡²ó¿¨¤ëºÝ¤Ë¤Ï¤½¤³¤éÊÕ¤ê¤ò¸«¤Æ¤ß¤è¤¦¡£`2g/11/m
£Ä£Î£Ó¤È£×£å£â¤Ï Amazon EC2 ¤Ç¥Æ¥¹¥È¤·¤Æ¤ß¤¿¡£¤Ä¤¤¤Ç¤Ë¥á¡Ý¥ë¥µ¡Ý¥Ð¤â¥Æ¥¹¥È¤¹¤ë¤È
¤¤¤¦¤Î¤Ï¤É¤¦¤«¡£¤³¤Î Linux ¤Ë ¥á¡Ý¥ë¥ê¥ì¡Ý¤òΩ¤Æ¤Æ¤ß¤ë¤Î¤À¡£¤³¤ì¤Þ¤Ç¤Î¥Æ¥¹¥È¤Ç¥á
¡Ý¥ë¥ê¥ì¡Ý¤¬£Ä£Î£Ó¤Î£Í£Ø¥ì¥³¡Ý¥É¤Ç¤Ê¤¯¤Æ¤â¥á¡Ý¥ë¤Ï³°¤Ë¹Ô¤¯¤³¤È¤¬Ê¬¤«¤Ã¤Æ¤¤¤ë¡£Â¿
ʬ¤É¤³¤Ç¤â¥á¡Ý¥ë¤¬¹Ô¤¯¤È¤¤¤¦Ìõ¤Ç¤Ï¤Ê¤¤¤È»×¤¦¤¬¡££Í£Ø¥ì¥³¡Ý¥É¤Î¤¬µÕ°ú¤¥Á¥§¥Ã¥¯¤ò
Áê¼ê¥á¡Ý¥ë¥µ¡Ý¥Ð¤¬¤ä¤é¤Ê¤±¤ì¤Ð¼õ¤±ÉÕ¤±¤ë¤Î¤À¤È»×¤¦¡£
¥á¡Ý¥ë¥ê¥ì¡Ý¤ò³°¤Ë½Ð¤¹¤³¤È¤ò¸¡Æ¤¤¹¤ë¤È¡¢¤¤¤Ä¤â°ú¤Ã¤«¤«¤ë¤Î¤Ï¥á¡Ý¥ë¥¹¥È¥¢¤È¤Î¤ä¤ê
¤È¤ê¤Ç¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤¬¼ÙËâ¤ò¤¹¤ë¤³¤È¡£¼ÒÆâ¥Í¥Ã¥È¥ï¡Ý¥¯Æâ¤Ë¤¢¤ë¥á¡Ý¥ë¥¹¥È¥¢¤ò¥Ñ
¥Ö¥ê¥Ã¥¯¤Ê²¾ÁۣɣХ¢¥É¥ì¥¹¤Ç¥Ð¥ê¥¢¥»¥°¥á¥ó¥È¤Ë½Ð¤¹¤Î¤Ï¤è¤¯¤Ê¤¤¡£¤½¤ì¤Ç¤Þ¤¿£Ä£Í£Ú
¤ËÃæ·ÑÍѤΥá¡Ý¥ë¥µ¡Ý¥Ð¤òÀßÃÖ¤·²¾ÁۣɣХ¢¥É¥ì¥¹¤Ç¥Ð¥ê¥¢¥»¥°¥á¥ó¥È¤Ë½Ð¤¹¡£Âç¼ê¥×¥í
¥Ð¥¤¥À¤ËÁêÃ̤·¤¿¤é¤½¤ó¤Ê¹½À®¤¬°ìÈÌŪ¤Ç¤¹¤È¤¤¤ï¤ì¤¿¡£Á´Á³ÌÌÇò¤¯¤Ê¤¤¤Ç¤Ï¤Ê¤¤¤«¡£
¢¬
¤½¤ì°Ê³°¤ËÊýË¡¤¬¤Ê¤¤¤«¼ÂºÝ¤Ë¥á¡Ý¥ë¥ê¥ì¡Ý¤ò³°¤ËÃÖ¤¤¤Æ¡¢»î¤·¤Æ¤ß¤ì¤Ð²¿¤«¤Ç¤¤ë¤«¤â¡£
(4) Amazon ¤Ç WordPress ¤Ï¥È¥ì¥ó¥É
* WordPress ¤ò¼è¤ê¾å¤²¤Æ¤ß¤è¤¦¤«
¼«Ê¬¤Î¥Û¡Ý¥à¥Ú¡Ý¥¸¤ò¥ê¥Ë¥å¡Ý¥¢¥ë¤·¤è¤¦¤È»×¤Ã¤Æ¿¨¤Ã¤Æ¤ß¤¿¡£¥×¥í¥Ð¥¤¥À¤¬¥æ¡Ý¥¶ÍѤË
WordPress ¤ò»È¤¨¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤ì¤¿¤Î¤À¡£´ë¶ÈÅù¤Î¥Û¡Ý¥à¥Ú¡Ý¥¸¤âº£¤ÏÂçÊý¤³¤ì¤ò»È¤Ã
¤Æ¤¤¤ë¤è¤¦¤Ç¤¢¤ë¡£¤È¤Æ¤âÊØÍø¤Ç¤¢¤ë¤È¤¤¤¦Ïäòʹ¤¯¡£WordPress ¤ò¼ÂºÝ¤Ë¿¨¤ì¤Æ¥Ý¥¤¥ó
¥È¤á¤¤¤¿¤³¤È¤â½ñ¤¤¤Æ¤ß¤¿¤¤¤¬¡¢¤½¤³¤Þ¤Ç¤Ï¤Ç¤¤Ê¤¤¤«¤â¡£¼«Ê¬¤ÎÃãÆ»¤Î¥Û¡Ý¥à¥Ú¡Ý¥¸¤ò
ºî¤Ã¤Æ¤ß¤¿¡£¤ª¤è¤½£±½µ´Ö¤Ç¤é¤·¤¤¤Î¤Ï¤Ç¤¤¿¤¬ "¥Æ¡Ý¥Þ" ¤È¤¤¤¦¡¢¤³¤ì¤Þ¤ÇÆëÀ÷¤ß¤Î¤Ê
¤¤Êª¤¬¤¢¤ë¡£"¥Æ¡Ý¥Þ" ¤ò¤½¤Î¤Þ¤Þ»È¤¦¤À¤±¤Ç¤Ï¤É¤¦¤â»×¤¦¤è¤¦¤Ê²èÌ̤ϤǤ¤½¤¦¤Ë¤Ê¤¤¡£
* ¥Û¡Ý¥à¥Ú¡Ý¥¸¤Î¥ê¥Ë¥å¡Ý¥¢¥ë `2h/03/e
¤À¤¤¤ÖÁ°¤«¤é¡¢¤½¤¦£³¡Á£´Ç¯¤«¤Ê WordPress ¤È¤¤¤¦¸ÀÍÕ¤ò¤·¤Ð¤·¤Ðʹ¤¯¡£ ¥Ñ¥½¥³¥ó¤Î¥½
¥Õ¥È¥¦¥§¥¢¤Î̾Á°¤Ê¤Î¤«¥¯¥é¥¦¥É¾å¤Î¥µ¡Ý¥Ó¥¹¤Ê¤Î¤«¡¢µ¤¤Ë¤Ï¤·¤Æ¤¿¤¬²¿¤«¤ÏÃΤé¤Ê¤«¤Ã
¤¿¡£¤É¤¦¤ä¤é¥Û¡Ý¥à¥Ú¡Ý¥¸¤òºî¤ë¥½¥Õ¥È¤é¤·¤¤¤³¤È¤¬Ê¬¤«¤ê¡¢"WordPress tcp-ip.or.jp"
¤È¸¡º÷¤·¤¿¤é¡¢¸Ä¿Í¤ÇÍøÍѤ·¤Æ¤¤¤ë¥×¥í¥Ð¥¤¥À TCP ¤Î¥µ¥¤¥È¡¢ tcp-ip USERS CLUB ¤Ë¥ï
¡Ý¥É¥×¥ì¥¹¤Î¤´ÍøÍÑ(̵ÎÁ) ¤È¤¤¤¦°ÆÆâµ»ö¤¬¤¢¤Ã¤¿¡£2013/10/17 ¤Ë¥µ¡Ý¥Ó¥¹³«»Ï¤·¤Æ¤¿¡£
WordPress ¤Ï¥ª¡Ý¥×¥ó¥½¡Ý¥¹¤Î CMS( Content Management System ) ¥½¥Õ¥È¡£¤º¤¤¤Ö¤óÀÎ
¤«¤é CMS ¤È¤¤¤¦¤Î¤Ï¤¢¤ë¤¬¡¢ ¥Æ¥ó¥×¥ì¡Ý¥È¤òÍѤ¤¤Æ°ì´ÓÀ¤Î¤¢¤ë¥³¥ó¥Æ¥ó¥Ä¤òºî¤ë¤È¤¤
¤¦»ö¤À¤È»×¤¦¤¬¡£¥Û¡Ý¥à¥Ú¡Ý¥¸¥Ó¥ë¥À¡Ý¤È¤¤¤¦¤Î¤ÏºÇ¶á¤Ç¤Ïή¹Ô¤é¤Ê¤¤¤Î¤«¤Ê¡££²¤Ä£³¤Ä
¿¨¤Ã¤¿¤³¤È¤¬¤¢¤ë¤¬¡¢¤¢¤Þ¤ê»È¤¤¾¡¼ê¤¬¤¤¤¤¤â¤Î¤Ç¤Ï¤Ê¤«¤Ã¤¿¡£¤É¤¦¤âºÇ¶á¤Ï WordPress
¤ò»È¤Ã¤Æ¥Û¡Ý¥à¥Ú¡Ý¥¸¤òºî¤Ã¤Æ¤¤¤¯¤Î¤¬Î®¹Ô¤ß¤¿¤¤¡£
TCP ¤Î¥µ¥¤¥È¤Ë¤Ï¥Ö¥í¥°¤ä¥Û¡Ý¥à¥Ú¡Ý¥¸¤òºîÀ®¤·¤Æ¤ß¤Þ¤»¤ó¤«¡¢ÍÆÎÌ¤Ï 500Mbyte ¤È¤¢¤Ã
¤¿¡£Facebook ¤Ë¤Ï¤É¤ó¤É¤ó¼Ì¿¿¤òºÜ¤»¤Æʸ¾Ï¤â¤½¤ì¤Ê¤ê¤Ë½ñ¤¤¤Æ¤¤¤ë¡£TCP¤Î¼«Ê¬¤Î¥Û¡Ý
¥à¥Ú¡Ý¥¸¤ÏÊüÃÖ¾õÂ֤ˤʤäƤ·¤Þ¤Ã¤Æ¤¤¤ë¡£ HTML ¤ò¤¬¤·¤¬¤·½ñ¤¤¤Æ¤¤¤¯¤Î¤Ï¹ü¤¬ÀÞ¤ì¤ë¡£
¤Ç¤â Facebook ¤ò¤½¤ó¤Ê¤Ë¿®ÍѤ¹¤ë¤Î¤Ï¶Øʪ¤À¤È»×¤¦¡£±¿±Ä¤Ë°ãÈ¿¤¹¤ë¤È¤½¤ì¤Þ¤Ç½ñ¤¤¤¿
¤Î¤Ï¥Ð¥Ã¥µ¥ê¾Ã¤µ¤ì¤Æ¤·¤Þ¤¦¡£¤È¤¤¤¦¤³¤È¤Ç TCP ¤Ë¤âƱ¤¸ÆâÍƤò½ñ¤¤¤Æ¹Ô¤¤¿¤¤¡£
2017/02/06 WordPress ¤ò¤´ÍøÍѤΤªµÒÍͤØ(Ãí°Õ´µ¯) ¤È¤¤¤¦¤Î¤â¡¢TCP ¥µ¥¤¥È¤Ë½ñ¤«¤ì
¤Æ¤¢¤Ã¤¿¡£ WordPress Version 4.7.0 ¤ª¤è¤Ó 4.7.1 ¤Ç³°Éô¤«¤éǧ¾Ú¤Ê¤·¤Ç¥³¥ó¥Æ¥ó¥Ä¤ò
½ñ¤´¹¤¨¤é¤ì¤ëÀȼåÀ¤¬¤¢¤ë¤È¡£Âкö¤Ë¤Ï 4.7.2 ¤Ë¥¢¥Ã¥×¤·¤Æ¤¯¤ì¤È¡£ WordPress ¤Ï¥½
¥Õ¥È¤ò¥µ¡Ý¥Ð¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤·¤Æ»È¤¦¡£´û¤Ë¥½¥Õ¥È¥¦¥§¥¢¤ÏÆþ¤Ã¤Æ¤¤¤ëÌõ¤Ç¡¢¸ÄÊ̤˥СÝ
¥¸¥ç¥ó¥¢¥Ã¥×¤·¤Æ¤¯¤ì¤È¤¤¤¦¥Ë¥å¥¢¥ó¥¹¤Î»ö¤¬½ñ¤«¤ì¤Æ¤¤¤ë¤Î¤Ï¡¢¤¤¤«¤Ê¤ë¤³¤È¤«¡£
¤É¤¦¤â WordPress ËÜÂΤξ¤Ë¡¢"¥Æ¡Ý¥Þ" ¤ä "¥×¥é¥°¥¤¥ó" ¤È¤¤¤¦ÊÌÅÓ¥«¥¹¥¿¥Þ¥¤¥º¤¹¤ë
¤¿¤á¤Î¥½¥Õ¥È¥¦¥§¥¢¤¬¼«Ê¬¤Ç¥¤¥ó¥¹¥È¡Ý¥ë¤Ç¤¤ë¤é¤·¤¤¡£¤³¤Î¥Ð¡Ý¥¸¥ç¥ó¤Î¤³¤È¤Ê¤Î¤«¤Ê¡£
TCP ¤Î²ñ°÷¤Ï̵ÎÁ¤ÇÍøÍѤǤ¤ë¤È¸À¤¦¤³¤È¤Ê¤Î¤Ç¡¢¤È¤ê¤¢¤¨¤º¿½¤·¹þ¤ó¤Ç¤ß¤¿¡£¤³¤ì¤Ç¥¤
¥ó¥È¥é¥Í¥Ã¥È¤ÈÃãÆ»¤Î¥Û¡Ý¥à¥Ú¡Ý¥¸¤ò¤â¤¦¾¯¤·¸«¤Æ¤¯¤ì¤Î¤¤¤¤Êª¤Ë¤·¤è¤¦¡£¤º¤Ã¤È¤³¤ì¤Þ
¤Ç¤Î¤Ï¡¢¤¢¤Þ¤ê¤Ë¤â¥Ü¥é¥ó¥Æ¥£¥¢¤Ý¤«¤Ã¤¿¡£¤³¤ì¤Ç¤ÏÈӤμï¤Ë¤Ï¤Ç¤¤Ê¤¤¡£
¥Î¡Ý¥È¥Ñ¥½¥³¥ó¤ò¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤ÇÇ㤦¡¢²ÈÅÅ¥·¥ç¥Ã¥×¤è¤ê°Â¤¯Ç㤨¤ë¡£¥¹¥Þ¡Ý¥È¥Õ¥©¥ó
¤òÃæ¸Å¤Ç¤¤¤¤¤«¤éÇã¤Ã¤Æ¡¢¥·¥à¥Õ¥ê¡Ý¤òÆþ¤ì¤ë¤È·îÀé±ß¤°¤é¤¤¤ÇºÑ¤à¡£Í§¿Í¤Î¥¢¥É¥Ð¥¤¥¹¡£
WordPress ¤Ï¤È¤ê¤¢¤¨¤ººÇ½é¤Î²èÌ̤ò¾¯¤·¤¤¤¸¤Ã¤Æ¤ß¤¿¡£²¿¤«¤¹¤ëÅ٤˥á¡Ý¥ë¤¬¤¯¤ë¤Î¤Ç
Íè¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¡£WordPress ¤ÎËܤò£±ºýÇ㤪¤¦¡££±½µ´Ö¤·¤ÆÇã¤Ã¤ÆÆɤó¤Ç¤¤¤ë¤È¤³¤í¤À
¤¬¡¢¿¨¤Ã¤Æ¤¤¤ì¤Ðʬ¤«¤ë¤È¤¤¤¦¥½¥Õ¥È¤Ç¤Ï¤Ê¤µ¤½¤¦¡£´èÄ¥¤Ã¤Æ¥È¥é¥¤¤·¤Þ¤¹¡£`2h/04/E
WordPress ¤«¤é¤Î¤ªÃΤ餻¥á¡Ý¥ë¤¬»þ¡¹Íè¤ë¡£¤¢¤Ê¤¿¤Î WordPress¥µ¥¤¥È¤Ç¡¢¼Â¹Ô²Äǽ¤Ê
¹¹¿·¤¬¤¢¤ê¤Þ¤¹¡£WordPress¤Î¿·¤·¤¤¥Ð¡Ý¥¸¥ç¥ó¤¬¤¢¤ê¤Þ¤¹¡£4.7.5 ¤«¤é 4.8.1 ¤Ø¹¹¿·¤·
¤Æ¤¯¤À¤µ¤¤¡£¥×¥é¥°¥¤¥ó:Akismet Anti-Spam ¤Ï¿·¤·¤¤¥Ð¡Ý¥¸¥ç¥ó¤¬¤¢¤ê¤Þ¤¹¡£ 3.3 ¤«¤é
3.3.4 ¤Ø¹¹¿·¤·¤Æ¤¯¤À¤µ¤¤¡£¼¡¤Î¥Ú¡Ý¥¸¤Ç¡¢¹¹¿·¤ò¹Ô¤Ê¤Ã¤Æ¤¯¤À¤µ¤¤¡£: https://¥×¥í¥Ð
¥¤¥À¤¬ÍÑ°Õ¤·¤Æ¤¯¤ì¤¿¤È¤³¤í¡£¸Ä¿ÍËè¤ËÀìÍÑ¤Î¥×¥í¥°¥é¥à¤È¤Ê¤Ã¤Æ¤¤¤ë¤é¤·¤¤¡£`2h/08/s
* ¥¤¥ó¥È¥é¥Í¥Ã¥È¹½ÃÛË¡¤Îº£¸å `2h/08/s
¥¤¥ó¥È¥é¥Í¥Ã¥È¹½ÃÛË¡¤â¿·¤·¤¤¤Î¤Ë¤·¤è¤¦¤Ç¤Ï¤Ê¤¤¤«¡£¹Í¤¨¤Æ¤¤¤ë¤Î¤Ï¤³¤ì¤Þ¤Ç¤Î¤è¤¦¤Ë
²òÊü¤¹¤ë¤Î¤Ç¤Ï¤Ê¤¯¡¢¥æ¡Ý¥¶ÅÐÏ¿¤·¤¿¿Í¤À¤±±ÜÍ÷¤Ç¤¤ë¤è¤¦¤Ë¤·¤¿¤¤¡£²¿¤Ç¤â̵ÎÁ¤È¤¤¤¦
¤Î¤Ïº£¸å¡¢¤¤¤«¤¬¤Ê¤â¤Î¤«¡£¤½¤ì¤Ê¤ê¤Î¾ðÊó¤ò¸«¤ë¤Ë¤Ï¤½¤ì¤Ê¤ê¤ÎÂвÁ¤òʧ¤Ã¤Æ¤â¤é¤¦¤è
¤¦¤Ë¤â¤·¤è¤¦¡£¤½¤¦¤·¤¿¤³¤È¤ò¤É¤¦¤ä¤Ã¤Æ¤ä¤ì¤Ð¤¤¤¤¤Î¤«¡£WordPress ¤Î¼ï¡¹¤Îµ¡Ç½¤òÍÑ
¤¤¤ì¤Ð¼Â¸½¤¬¤Ç¤¤ë¤Î¤«¡£WordPress ¤Ï¸µ¤Ï¥Ö¥í¥°¤À¤«¤é¡¢¾ðÊó¤Î¤ä¤ê¤È¤ê¤â¤·¤¿¤¤¤·¡£
£²£°£±£·Ç¯¤Î½©°Ì¤«¤é¼«Âð¤Î¥Ñ¥½¥³¥ó¤Ç¡¢¥¤¥ó¥È¥é¥Í¥Ã¥È¹½ÃÛË¡¤ÎÃæ¿È¤ò¥ê¥Ë¥å¡Ý¥¢¥ë¤¹
¤ë¤è¤¦¤Ë¤·¤Æ¹Ô¤³¤¦¤È»×¤¦¡£¼«Âð¤Ë¤Ï¥½¥Ë¡Ý¤Î¥Î¡Ý¥È¥Ñ¥½¥³¥ó¤¬¤¢¤ë¤¬¡¢¤³¤ì¤Ï Windows
XP ¤Ç¤â¤¦²Ë¤ò¤ä¤é¤Ê¤¤¤±¤Ê¤¤¡£¤½¤ì¤Ç£È£Ð¼Ò¤Î¥Î¡Ý¥È¥Ñ¥½¥³¥ó Corei3 ¤òÇã¤Ã¤¿¡£7·î26
Æü¤ËÆϤ¤¤¿¡£Âå°ú¤¤Ç£¶Ëü±ß¤°¤é¤¤¡£Windows 10 ¤Î²èÌ̤ϥ¿¥Ö¥ì¥Ã¥È¤È°ì½ï¡£ ¥¯¥é¥·¥Ã
¥¯²èÌ̤ËÊѹ¹¤¹¤ëÀßÄê¤Ï¤Ê¤¤¡£"Classic Shell" ¤È¤¤¤¦¥¢¥×¥ê¤ò»È¤¦¤È¤Ç¤¤ë¤é¤·¤¤¤¬¡£
¥á¡Ý¥ë¥½¥Õ¥È¤Ï Mozilla Thunderbird ¤¬¤¤¤¤¤«¡¢ Ä´¤Ù¤¿¤éº£¤Ïµ¡Ç½ÄɲäϤʤ·¤Ç¥Ð¥°ÂÐ
±þ¤Î¤ß¤é¤·¤¤¡£Windows 10 ¤Î²èÌÌ¤Ë "¥á¡Ý¥ë" ¤È¤¤¤¦¥¢¥¤¥³¥ó¤ß¤¿¤¤¤Ê¤Î¤¬¤¢¤ë¡£ ¤³¤ì
¤ò¥¯¥ê¥Ã¥¯¤¹¤ë¤È¥á¡Ý¥ë¤Î¥¢¥×¥ê¤¬´ö¤Ä¤«½Ð¤Æ¤¯¤ë¤é¤·¤¤ Outlook.com¡¢Gmail¡¢Windows
Live Mail¡¢Windows¥á¡Ý¥ë¤È¤«¡£ÂǤÁÀÚ¤ê¤Ë¤Ê¤Ã¤¿¤È¤«¤¤¤í¤¤¤í¤¢¤ë¤ß¤¿¤¤¡£°ìÈÖ¤ÎÌäÂê
¤Ï Windows XP ¤Ç»È¤Ã¤Æ¤¤¿ Outlook ¤Î¥á¡Ý¥ë¥Ç¡Ý¥¿¤ò°Ü¹Ô¤Ç¤¤ë¤«¡£Æñ¤·¤¤¤ß¤¿¤¤¡£
(5) ¥á¡Ý¥ë¥ê¥ì¡Ý¤Ï¥¯¥é¥¦¥É¤Ë¤Ï̤¤À `2h/07¡Á
* ¥á¥â¤½¤Î£±
"26-7.¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ï¤â¤Ï¤ä¸Â³¦¤«¤â,(1)¥ª¥ó¥×¥ì¥ß¥¹¤Î¥á¡Ý¥ë´Ä¶Â³¹Ô" ¤Ê¤É¤Ç¸¡Æ¤
¤·¤¿¥á¡Ý¥ë¥ê¥ì¡Ý¤ò Sun ¤Î¥Þ¥·¥ó¤«¤é FortiMail ¤ËÃÖ¤´¹¤¨¤ëÏᣤ³¤³¤Ç¤Ï¤½¤ì¤ò¼ÂºÝ
¤Ë¹Ô¤Ê¤¦Á°¤Þ¤Ç¤Î»ö¤ò½ñ¤¤¤¿¡£ÏäÎή¤ì¤¬¸åÀè¤Ë¤Ê¤Ã¤Æ¤·¤Þ¤Ã¤¿¤¬¡¢¤½¤³¤ÏÍƼϤµ¤ì¤¿¤¤¡£
DKIM ¥Á¥§¥Ã¥¯¤Ï¤ä¤é¤Ê¤¤¡£DKIM ¤ò¤ä¤ë¤Î¤Ï£Ä£Î£Ó¤ËÀßÄ꤬ɬÍפÀ¤È»×¤¦¡£¤½¤ó¤Ê¤Î¤Ï¤ä
¤Ã¤Æ¤Ê¤¤¡¢SPF ¤ÎÀßÄê¤Ï¤ä¤Ã¤Æ¤¤¤ë¤Î¤Ç SPF ¥Á¥§¥Ã¥¯¤Ï¤ä¤Ã¤Æ¤â¤¤¤¤¤Î¤Ç¤Ê¤¤¤«¡£ ¤½¤ì
¤Ë LDAP ¤Ï»È¤ï¤Ê¤¤¡£¥æ¡Ý¥¶¤Î²¿¤¬¤·¤«¤Î¥Á¥§¥Ã¥¯¤Ï¤ä¤é¤Ê¤¤¡£Ä̤¹¤³¤È¤Ë¤¹¤ë¡£
¼ÂºÝ¤ËÀßÃÖ¤·¤¿¸å¤ÎÄ´À°¤â¤¤¤ë¤À¤í¤¦¡£°ìȯ¤Ç°ÂÄê²ÔƯ¤È¤¤¤¦Ìõ¤Ë¤Ï¹Ô¤«¤Ê¤¤¡££²½µ´Ö¤«
¤é£±¥ö·î¤Ï¤ß¤ëɬÍפ¬¤¢¤ë¤À¤í¤¦¡£´ðËÜŪ¤Ë¥á¡Ý¥ë¥ê¥ì¡Ý¤ÎFortiMail ¤Ç¤ä¤ë¤Î¤Ï¥»¥Ã¥·
¥ç¥ó¤Î¥Á¥§¥Ã¥¯¤Ç¤¢¤ë¡££±£°¸Ä°Ì¥Ñ¥é¥á¡Ý¥¿¤¬¤¢¤ë¤«¤Ê¡¢¤³¤ì¤ò¤É¤¦ÀßÄꤹ¤ë¤«¤À¡£
¥á¡Ý¥ë¥¹¥È¥¢¤¬¥á¡Ý¥ë¥ê¥ì¡Ý¤È¤Î´Ö¤ÇÁ´Éô¤Î¥á¡Ý¥ë¤ò°Å¹æ²½¤¹¤ë¤È¤Ê¤ë¤È¡£¥Þ¥·¥ó¤ÎÉé²Ù
¤¬¾å¤¬¤ë¤Î¤Ç¤Ê¤¤¤«¡£¸½¾õ¤Î¾õÂÖ¤ò¤ß¤Æ¤ª¤¯¤³¤È¡£ £Ã£Ð£Õ»ÈÍÑΨ 0%¡¢¥á¥â¥ê»ÈÍÑΨ 11%
ÄøÅÙ¡££µ£°£°Ä̤°¤é¤¤¤Î°ìÀÆÇÛ¿®¤Ç¤â¤¢¤Þ¤êÊÑÆ°¤·¤Ê¤¤¤Î¤Ç¤Ê¤¤¤«¡£2000B ¤Ï v5.3.1¡£
¥á¡Ý¥ë¥ê¥ì¡Ý¤òÀßÃÖ¤ËÅö¤ê¡¢À褺¤Ï¥á¡Ý¥ë¥¹¥È¥¢´Ö¤Ï°Å¹æ²½¤·¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¡£ÌۤäƤ¤
¤ë¤È¥Ç¥Õ¥©¥ë¥È¤Ç STARTTLS °Å¹æ²½¤µ¤ì¤ë¡£¥á¡Ý¥ë¥ê¥ì¡Ý¤òÊѹ¹¤·¤¿¤³¤È¤Ë¤è¤ê¥á¡Ý¥ë¥¹
¥È¥¢¤Î FortiMail ¤Ë±Æ¶Á¤¬¤¢¤ë¤«¤ò¸«¤Æ¤ß¤¿¤¤¡£Â¿Ê¬¡¢Ìµ¤¤¤È»×¤¦¤¬°ì±þÄ´¤Ù¤Æ¤ß¤ë¡£
¥á¡Ý¥ë¥¹¥È¥¢¤È¥á¡Ý¥ë¥ê¥ì¡Ý¤Î´Ö¤Ë¤â¤·¥Õ¥©¥ì¥ó¥¸¥Ã¥¯ÁõÃ֤ʤ󤫤ò¤«¤Þ¤·¤Æ¤¢¤ë¤È¡¢¤½
¤ÎÁõÃ֤ˤϰŹ沽¥á¡Ý¥ë¤¬Êݸ¤µ¤ì¤ë¤³¤È¤Ë¤Ê¤ë¡£Ê¿Ê¸¤ËÊ£¹ç²½¤·¤ÆÊݸ¤¹¤ëµ¡Ç½¤Ê¤ó¤Æ
¤Î¤Ï¤¢¤ë¤Î¤À¤í¤¦¤«¡£°Å¹æ²½¤¹¤ëÊý¤¬½ÅÍפÀ¤í¤¦¡¢¥Õ¥©¥ì¥ó¥¸¥Ã¥¯¤Ï¹Í¤¨Ä¾¤µ¤Ê¤¤¤È¡£
£¸·î£±Æü£±£µ»þº¢¤«¤éÂçÎ̤ΣӣУÁ£ÍÅþÍè¡£¤Þ¤À¥Þ¥·¥ó¤Ï Sun¡£# cd /var/spool/mqueue¡¢
# ls -l | wc -l ¤ÇÌó£µ£°£°¡£sendmail ¥×¥í¥»¥¹¤ÏÌó£±£µ¸Ä¡£ Ëؤɤ¬ User unknown ¥á
¡Ý¥ë¡£ÍâÆü¤Ë¤Ï£´£°°Ì¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£cron¤ÇËèÄ« User unknown ¥á¡Ý¥ë¤Ï¾Ãµî¤·¤Æ¤¤¤ë¡£
£Ä£Í£Ú¤Ë¤¢¤ë¥µ¡Ý¥Ð¤«¤éľÀÜ¥á¡Ý¥ë¥ê¥ì¡Ý¤Ë¥á¡Ý¥ë¤òÁ÷¤Ã¤Æ¤¤¤ë¤Î¤¬¤Ê¤¤¤«¡£°ÊÁ°¤Ï¤¢¤Ã
¤¿¤è¤¦¤Êµ¤¤¬¤¹¤ë¤¬¡£¥Û¡Ý¥à¥Ú¡Ý¥¸¤Î£×£×£×¥µ¡Ý¥Ð¤È¤«¤À¤Ã¤¿¤«¡£ËÜÍè¤Ï¥á¡Ý¥ë¥¹¥È¥¢¤Ë
Á÷¤ë¤Ù¤¤Ç¡¢¤½¤¦¤Ê¤Ã¤Æ¤¤¤ë¤Ï¤º¡£¤³¤ì¤Ï³Îǧ¤½¤Î£±¤ËÍí¤ó¤Ç¤Î¤³¤È¤Ç¤¢¤ë¡£
[³Îǧ] ¤½¤Î£±: ikken@sub.nix.co.jj °¸¤Î¥á¡Ý¥ë¤¬¤É¤¦¤Ê¤ë¤«¡£
¤½¤Î£²: °Å¹æ²½¤Î STARTTLS ¤¬¼Ò³°¤È¼ÒÆâ¤Ç¤É¤¦¤Ê¤ë¤«¡£
* ¥á¥â¤½¤Î£² `2h/08/s
¥á¡Ý¥ë¥ê¥ì¡Ýµ¡¤òÃÖ¤´¹¤¨¤¿¤È¤³¤í¤ÎÏá£ÆþÇ°¤Ë½àÈ÷¤ò¤·¤Æ¥Í¥Ã¥È¥ï¡Ý¥¯¥±¡Ý¥Ö¥ë¤òÈ´¤
º¹¤·¤·¤Æºî¶È¤Ï½ª¤ï¤Ã¤¿¡£µì¥á¡Ý¥ë¥ê¥ì¡Ý¤Î¥á¡Ý¥ë¥¥å¡Ý¤Ë¤Ï£±£°ÄÌÄøÅÙ¤¢¤Ã¤¿¤¬³§¥´¥ß
¥á¡Ý¥ë¤Ç¤½¤Î¤Þ¤Þ¤Ë¤·¤¿¡£FortiAnalyzer ¤ò¥é¥Ã¥¯¤«¤é¼è¤ê³°¤·£Õ£Ð£Ó¤«¤é¤ÎÅŸ»¤ò¼è¤ë
¤Î¤â»ß¤á¤¿¡£¤½¤ÎÅŸ»¥±¡Ý¥Ö¥ë¤ò FortiMail-400E ¤ËÉÕ¤±¤¿¡£ 400E µ¯Æ°»þ¤Ë¤Ï¥Ö¥ï¡Ý¤È
²»¤¬¤¹¤ë¤¬¡¢¤½¤Î´Ö¤â£Õ£Ð£Ó¤Î¥é¥ó¥×¤ËÊÑÆ°¤Ï¤Ê¤«¤Ã¤¿¡£FortiAnalyzer ¤òÉÕ¤±¤Æ¤¤¤¿»þ¡¢
£Á£Ð£Ã¤Î£²£Õ¤À¤¬²¼¤«¤é£³¤Ä¥é¥ó¥×¤¬ÅÀÅô¤·¤Æ¤¿¤¬ 400E ¤Ë¤·¤Æ¤âÊѤï¤é¤Ê¤«¤Ã¤¿¡£ÅŸ»
¥¿¥Ã¥×¤ò²ð¤»¤Ð¤½¤Î¤Þ¤Þ FortiAnalyzer ¤ÎÅŸ»¤â¼è¤Ã¤Æ¤âÁ´Á³ÌäÂê¤Ê¤¤¤À¤í¤¦¡£
¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Ç WAN->DMZ ¤Ç HTTP,IDENT,DNS ¤ò¾Ã¤·¤Æ UDP/9443 ¤òÆþ¤ì¤¿¡£ LAN->
DMZ ¤Ç HTTPS ¤òÆþ¤ì¤¿¡£ ¤³¤ì¤é¤Ï¥á¡Ý¥ë¥ê¥ì¡Ýµ¡¤Î£É£Ð¥¢¥É¥ì¥¹¤Ë¸þ¤±¤Æ¤ÎÀßÄê¤Ç¤¢¤ë¡£
Æâ³°¤Ç¤Î¥á¡Ý¥ë¤ÎÁ÷¼õ¿®¤È°Å¹æ²½¤ò³Îǧ¤·¤Æ¡¢¼¡¤Ë¥á¡Ý¥ë¥¹¥È¥¢¤Î¥Õ¥¡¡Ý¥à¥¦¥§¥¢¤Î¥Ð¡Ý
¥Ã¥¸¥ç¥ó¥¢¥Ã¥×¤ò¤ä¤Ã¤¿¡£v5.3.8 ¤¬£Ó£É¶È¼Ô¤Î¥µ¥Ý¡Ý¥È¤Ç¤ÏºÇ¿·¤À¤Ã¤¿¡£ £±£³Ê¬¤°¤é¤¤
¤«¤«¤Ã¤¿¡£¥Ð¡Ý¥¸¥ç¥ó¥¢¥Ã¥×¤·¤Þ¤¹¤À¤Ã¤¿¤«½Ð¤Æ Y ¤ò²¡¤·¤¿¤é¡¢ ²¿¤ä¤é¥¨¥é¡Ý¤¬½Ð¤ÆÂç
¾æÉפ«¤È¿´ÇÛ¤·¤Æ¡¢£Ó£É¶È¼Ô¤Îµ»½Ñ¼Ô¤È¤Þ¤º¤¤¤³¤È¤Ë¤Ê¤Ã¤¿¤ÈÏä·¤¿¡£º£¤·¤Ð¤é¤¯ÍͻҤò
¤ß¤è¤¦¤È¥³¥ó¥½¡Ý¥ë¤Ë·Ò¤¤¤À¥Ñ¥½¥³¥ó²èÌ̤ò¸«¤Æ¤¤¤¿¤é¡¢µ¯Æ°¤·¤ÆÍ褿¤Î¤Ç¤Û¤Ã¤È¤·¤¿¡£
400E ¤¬ÆϤ¤¤Æʪ¤ò¸«¤¿¤éÅŸ»¥³¥Í¥¯¥¿¤ò¤â¤¦£±¤ÄÉÕ¤±¤é¤ì¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£ ¼Ì¿¿¤Ç
¤Ïʬ¤«¤é¤Ê¤«¤Ã¤¿¡£ÅŸ»¤¬£²½Å¤À¤ÈξÊý¤È¤âÅŸ»¥±¡Ý¥Ö¥ë¤òº¹¤µ¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£¥é¥Ã
¥¯ÅëºÜ¤Îµ¡´ï¤Ï¤â¤¦°ìÇդǤ½¤¦£Õ£Ð£Ó¤ÎÅŸ»¥³¥Í¥¯¥¿¤â;¤ê¤¬¤Ê¤¤¡££±¤Ä¤Ï£Õ£Ð£Ó¤¢¤ê¤Ë¡¢
¤â¤¦£±¤Ä¤Ï£Õ£Ð£Ó¤Ê¤·¤ÎÅŸ»¤Ç¤É¤¦¤«¡£µì¥á¡Ý¥ë¥ê¥ì¡Ý¤Ï¤·¤Ð¤é¤¯ÃÖ¤¤¤Æ¤ª¤¯¤³¤È¤Ë¤¹¤ë¡£
¥é¥Ã¥¯¤Î¥Ï¥Ö¤Ë¤Ä¤Ê¤°¥±¡Ý¥Ö¥ë¤òÈ´¤¤¤¿¤À¤±¤Ê¤Î¤Ç¡¢ 400E ¤Î¥±¡Ý¥Ö¥ë¤òÈ´¤¤¤Æº¹¤·´¹¤¨
¤ì¤Ð»È¤¨¤ë¡£ÀΤΠSun ¤Ï¥±¡Ý¥Ö¥ë¤ò¤Ì¤¯¤È¥¹¥Ñ¡Ý¥ó¤È²»¤¬¤·¤Æ¥¯¥é¥Ã¥·¥å¤·¤¿¤¬¡¢ ¤³¤Î
¥Þ¥·¥ó¤Ç¤Ï²¿¤âÊѲ½¤Ï¤Ê¤«¤Ã¤¿¡£¤µ¤Æ 200D ¤Ï¤É¤¦¤¹¤ë¤«¡¢¥á¡Ý¥ë¥¹¥È¥¢¤ÎͽÈ÷¤Ë¤¹¤ë¡©¡£
¥á¡Ý¥ë¥¹¥È¥¢¤Î FortiMail-2000B ¤Î¥Õ¥¡¡Ý¥à¥¦¥§¥¢¤ò 5.3.8 ¤Ë¥¢¥Ã¥×¤·¤Æ¡£[¥Ý¥ê¥·¡Ý]
->[¥Ý¥ê¥·¡Ý]->{¥Ý¥ê¥·¡Ý} ¤Î [¼õ¿®¼Ô¥Ý¥ê¥·¡Ý] ¤Î {¥¢¥ó¥Á¥¹¥Ñ¥à} ¤Ç ¡ºFortiGuard¥¹
¥¥ã¥ó ¤Î½ê¡¢¡ºIP¥ì¥Ô¥å¥Æ¡Ý¥·¥ç¥ó¡¢¡º¥Ø¥Ã¥ÀÆâ¤ÎIP¤ò¥¹¥¥ã¥ó¡¢¡º¥Õ¥£¥Ã¥·¥ó¥°URI [
phising ¢¦]¡¢¢¢¥¹¥Ñ¥à¥¢¥¦¥È¥Ö¥ì¥¤¥¯Ëɸ档¸¡ÃΤ·¤¿¤é¥æ¡Ý¥¶³ÖÎ¥¤ËÆþ¤ì¤ë¡£Á°¤Ï"¥Ö¥é
¥Ã¥¯IP¥¹¥¥ã¥ó" ¤À¤Ã¤¿¤Î¤¬ "IP¥ì¥Ô¥å¥Æ¡Ý¥·¥ç¥ó" ¤Ë̾¾Î¤¬ÊѤï¤Ã¤¿¡£º£²ó "¥Ø¥Ã¥ÀÆâ
¤ÎIP¤ò¥¹¥¥ã¥ó" ¤â¥Á¥§¥Ã¥¯¤¹¤ë¤è¤¦¤Ë¤·¤¿¡££Ó£É¶È¼Ô¤Îµ»½Ñ¼Ô¤¬Ä´À°¤·¤Æ¤¯¤ì¤¿¡£Â¸ºß
¤·¤Ê¤¤£É£Ð¥¢¥É¥ì¥¹¤À¤Ã¤¿¤ê¤·¤¿¤é¥¹¥Ñ¥à¤È¤ß¤Ê¤»¤ë¡£°Ê²¼¤ÎÀßÄê¤âÄ´À°¤·¤Æ¤¯¤ì¤¿¡£
¥á¡Ý¥ë¥ê¥ì¡Ý¤ÎÀßÄê¤Ï¡£ [¥Ý¥ê¥·¡Ý]->[¥Ý¥ê¥·¡Ý]->{¥Ý¥ê¥·¡Ý} ¤Î [¼õ¿®¼Ô¥Ý¥ê¥·¡Ý] ¤Î
"¡º 1 ¼õ¿® *@* *@nix.co.jj nix.co.jj ¥¢¥ó¥Á¥¹¥Ñ¥àÄêµÁ ¾¥Ê¥·"¡£¥¢¥ó¥Á¥¹¥Ñ¥à
ÄêµÁ¤Ï¡ºSPF¥Á¥§¥Ã¥¯¡¢¡ºDMARC¥Á¥§¥Ã¥¯¡¢Â¾¥Á¥§¥Ã¥¯¥Ê¥·¡£¥¢¥¯¥·¥ç¥ó¤Ï¡º¥Õ¥©¥ë¥À¤Ø¥·
¥¹¥Æ¥à³ÖÎ¥[Bulk ]¡£[IP¥Ý¥ê¥·¡Ý]Á÷¿®¸µ 192.168.1.1/32¡¢°¸Àè 0.0.0.0/0¡¢¥×¥í¥Õ¥¡¥¤
¥ë¤Î¥»¥Ã¥·¥ç¥ó¤Î¤ß°Ê²¼¤Î¤è¤¦¤ËÀßÄê¡£¥³¥Í¥¯¥·¥ç¥óÀßÄê¤ÏÁ´Éô 0¡£Á÷¿®¼Ôɾ²Á¥Ê¥·¡£¥¨
¥ó¥É¥Ý¥¤¥ó¥Èɾ²Á¥Ê¥·¡£Á÷¿®¼Ô¸¡¾Ú SPF¥Á¥§¥Ã¥¯:[̵¸ú]¡¢Â¾¥Ê¥·¡£¥»¥Ã¥·¥ç¥óÀßÄê ¥Ê¥·¡£
ǧ¾Ú¤µ¤ì¤Ê¤¤¥»¥Ã¥·¥ç¥ó¤ÎÀßÄê ¥Ê¥·¡£SMTP¥ê¥ß¥Ã¥È ¾å¤«¤é 500,50,500,30720,32,10,20¡£
[IP¥Ý¥ê¥·¡Ý] ¤Î£²ÈÖÌܤΥë¡Ý¥ë¤ÏÁ÷¿®¸µ¤È°¸Àè ¶¡Ç¤°Õ¡£¥×¥í¥Õ¥¡¥¤¥ë¤Î¥»¥Ã¥·¥ç¥ó¤Î¤ß
ÀßÄê¡£¥³¥Í¥¯¥·¥ç¥óÀßÄê ¾å¤«¤é2000,0,0,10,0¡¢Á÷¿®¼Ôɾ²Á¥Ê¥·¡¢¥¨¥ó¥É¥Ý¥¤¥ó¥Èɾ²Á¥Ê
¥·¡£Á÷¿®¼Ô¸¡¾Ú SPF¥Á¥§¥Ã¥¯:[͸ú]¡¢¡ºDKIM¥Á¥§¥Ã¥¯¤ò͸ú¡¢ ¡º¥É¥á¥¤¥ó¥¡Ý¥Á¥§¥Ã¥¯
¤ò͸ú¡£¥»¥Ã¥·¥ç¥óÀßÄê ¡º¥É¥á¥¤¥ó¤Ë̵¸ú¤Êʸ»ú¤¬¤¢¤ë EHLO/HELO¥³¥Þ¥ó¥É¤òµñÈÝ¡£ ǧ
¾Ú¤µ¤ì¤Ê¤¤¥»¥Ã¥·¥ç¥ó¤ÎÀßÄê ¡ºHELO/EHLO¥É¥á¥¤¥ó¤ò¥Á¥§¥Ã¥¯¡¢¡ºÁ÷¿®¼Ô¥É¥á¥¤¥ó¤ò¥Á¥§
¥Ã¥¯¡¢¡º¥É¥á¥¤¥ó¤¬Ìµ¤¤¾ì¹ç¤ÏµñÈÝ¡£SMTP¥ê¥ß¥Ã¥È ¾å¤«¤é 10,100,5000,30720,32,10,20¡£
¥Ç¥Õ¥©¥ë¥È¤ÎÃͤ«¤é¤Ï¤À¤¤¤ÖÊѤ¨¤é¤ì¤Æ¤¤¤¿¡£¤É¤¦¤¤¤¦»ö¤«¤³¤ì¤«¤é¤ªÊÙ¶¯¤·¤Þ¤¹¡£
¥á¡Ý¥ë¥ê¥ì¡Ý¤Î¥í¥°¤ò¤ß¤Æ¤¤¤¯¡£[¥â¥Ë¥¿¥ê¥ó¥°]->[¥í¥°]->{¥¢¥ó¥Á¥¹¥Ñ¥à}¤Ç³°Éô¤«¤é¼Ò
Æâ¤Ø¤Î¥á¡Ý¥ë "¥á¥Ã¥»¡Ý¥¸ SPF error:domain xx.co.jp,SPF term not supported"¡¢»ß¤á
¤é¤ì¤Æ¤¤¤ë¤Î¤Ç¤Ê¤¤¤«¡¢°¸ÀèËܿͤ˳Îǧ¤·¤¿¤é¥á¡Ý¥ë¤ÏÍè¤Æ¤ë¤è¤È¡£Â¾¤Ë¤â¥á¥Ã¥»¡Ý¥¸¤Ç
Invalid ehlo/helo domain.(xxx.co.jp)¡¢SPF=SOFTFAIL:(envelope from:yyy@xxx.co.jp)
indicates that MTA ...¡¢DMARC Check failed but sender policy is none.¡¢DMARC SPF
alignment check succeeded.¡£¤³¤ì¤é¤Ï¥Á¥§¥Ã¥¯¤·¤Æ¥í¥°¤ò»Ä¤·¤Æ¤¤¤ë¤À¤±¤ÇÄ̤·¤Æ¤¤¤ë¡£
»ß¤á¤é¤ì¤¿¥á¡Ý¥ë¤Ï¥·¥¹¥Æ¥à³ÖÎ¥¤Î [Bulk/current] ¤ËÆþ¤Ã¤Æ¤¤¤¿¡¢£±Æü¤Ç£²£¹Ä̤¢¤Ã¤¿¡£
¥á¡Ý¥ë¥¹¥È¥¢¤ÎÀßÄê¤Ç "¥¢¥¦¥È¥Ö¥ì¡Ý¥¯" ¤È "¥¢¥¦¥È¥Ö¥ì¥¤¥¯"¡£[¥×¥í¥Õ¥¡¥¤¥ë]->[¥¢¥ó
¥Á¥¦¥£¥ë¥¹]->{¥¢¥ó¥Á¥¦¥£¥ë¥¹} ¤Çºî¤Ã¤¿¥×¥í¥Õ¥¡¥¤¥ë¤Ç¤ÎÀßÄê¡¢¡º¥¦¥£¥ë¥¹¥¹¥¥ã¥óÆâ
¤Î¡º¥Þ¥ë¥¦¥§¥¢¥¢¥¦¥È¥Ö¥ì¡Ý¥¯À©¸æ¡£[¥×¥í¥Õ¥¡¥¤¥ë]->[¥¢¥ó¥Á¥¹¥Ñ¥à]->{¥¢¥ó¥Á¥¹¥Ñ¥à}
ºî¤Ã¤¿¥×¥í¥Õ¥¡¥¤¥ë¤Ç¤ÎÀßÄê¡¢¡º¢§FortiGuard¥¹¥¥ã¥óÆâ¤Î¡º¥¹¥Ñ¥à¥¢¥¦¥È¥Ö¥ì¥¤¥¯À©¸æ¡£
¤Ä¤Å¤ê¤Î°ã¤¤¤ËÆä˰տޤϤʤ¤¤È»×¤¦¡£¤¿¤À¤·°ÕÌ£¤Ï°Û¤Ê¤ë¤è¤¦¤Ç¤¢¤ë¡£¥Þ¥ë¥¦¥§¥¢¥¢¥¦
¥È¥Ö¥ì¡Ý¥¯¤Ï¤¿¤À¤Î¥¦¥£¥ë¥¹¥Á¥§¥Ã¥¯¤ò¤¹¤ë¤À¤±¤é¤·¤¤¡£¥¹¥Ñ¥à¥¢¥¦¥È¥Ö¥ì¥¤¥¯¤ÎÊý¤Ï±Ç
²è¤Î¥¢¥¦¥È¥Ö¥ì¥¤¥¯¤ÎºÙ¶Ý¤Ë¤è¤ëÂ絬ÌÏ´¶À÷¤Ë¶á¤¤°ÕÌ£¤Ç»È¤Ã¤Æ¤¤¤ë¤é¤·¤¤¡£
¥á¡Ý¥ë¥ê¥ì¡Ý¤ÎÅý·×¾ðÊó¤Î¥°¥é¥Õ¤ò¸«¤ë¤È¡¢¤ª¤è¤½£´³ä¤ÏÉÔÍפʥá¡Ý¥ë¤Ç¤¢¤ë¡£ Session
Domain £¸¡ó¡¢SMTP Auth Failure £³£²¡ó¤Ç Reject ¤µ¤ì¤¿¥á¡Ý¥ë¡£[¥á¡Ý¥ë¥¥å¡Ý]->{¥Ç
¥Ã¥É¥á¡Ý¥ë} ¤Ë£²£°£°°Ì¤¢¤Ã¤¿¡¢From ¤¬ postmaster ¤«¤é¤Ç¡¢ ¤Û¤È¤ó¤É¤¬¼ÒÆâ¤Ë³ºÅö¥æ
¡Ý¥¶¤¬¤¤¤Ê¤¤ "User unknown" ¤Ê¥á¡Ý¥ë¤À¤Ã¤¿¡£¥·¥¹¥Æ¥à¥ê¥½¡Ý¥¹¤Ï£Ã£Ð£Õ»ÈÍÑΨ0%¡¢¥á
¥â¥ê»ÈÍÑΨ3%¡¢¥·¥¹¥Æ¥àÉé²Ù0%¡£¥á¡Ý¥ë¥¹¥È¥¢¤Ëή¤ì¤ë¥á¡Ý¥ë¤Ï¤³¤ì¤Þ¤Ç¤Î£¶³ä¤Ë¤Ê¤Ã¤Æ
¤¤¤ëÌõ¤Ç¡¢Éé²Ù¤â¸º¤Ã¤Æ¤¤¤ë¡£Ê¿Æü¤³¤ì¤Þ¤Ç¥á¥â¥ê»ÈÍÑÎ̤¬11,12% ¤À¤Ã¤¿¤Î¤¬5,6% ¤Ë¤Ê
¤Ã¤Æ¤¤¤ë¡¢¥á¡Ý¥ë¥ê¥ì¡ÝÃÖ¤´¹¤¨¤ÎµÙÆü¤Ç¤Ï2,3,4% ¤À¤Ã¤¿¡£¥µ¥ó¥É¥Ü¥Ã¥¯¥¹ FS¤Ï¤É¤¦¤«¡£
Á°¤Ë½ñ¤Î±¤á¤¿ FS ¤Î£Ã£Ð£Õ»ÈÍÑΨ¤Ï 3%¡¢£Ò£Á£Í 22% ¤È¤«¤À¤Ã¤¿¡££Ã£Ð£Õ»ÈÍÑΨ¤Ï¤«¤Ê
¤êÊÑÆ°¤·¤Æº£²ó 0,1% ¤Ç¤Û¤Ü¤º¤Ã¤È¡¢»þÀÞ¤ê 20%¤°¤é¤¤¤Ë¤Ê¤Ã¤¿¤ê¡££Ò£Á£Í¤Ï¤Û¤Ü 18%¤Ç
4% ¤°¤é¤¤¸º¤Ã¤Æ¤¤¤ë¡£ ÃÖ¤´¹¤¨¤·¤Æ°ÂÄê²ÔƯ¤Ë»ê¤ë¤Þ¤Ç£²½µ´Ö¤«¤é£±¥ö·î¤ÏɬÍפÀ¤í¤¦
¤ÈÀè¤Ë½ñ¤¤¤¿¤¬¡¢º£»þÅÀ¤Ç£³Æü·Ð¤Ã¤¿¤Î¤À¤¬¡¢¤³¤ì¤Ç¤â¤¦¤¤¤¤¤«¤âÃΤì¤Ê¤¤¡£Sun ¤Î¥Þ¥·
¥ó¤«¤é FortiMail ¤ËÊѤ¨¤¿²ÁÃͤϽ½Ê¬¤Ë¤¢¤Ã¤¿¤È³Îǧ¤Ç¤¤¿¤·¡£ ¥á¡Ý¥ë¥ê¥ì¡Ý¤Ç¸í¸¡ÃÎ
¤Ï¤Þ¤ºµ¯¤¤Ê¤µ¤½¤¦¤À¤·¡£ ¤Ä¤¤¤Ç£Ó£É¶È¼Ô¤Îµ»½Ñ¼Ô¤Ë¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Î FortiGate ¤Î
¾õÂÖ¤ò¸«¤Æ¤â¤é¤¤¡¢VDOM ¤Ç¥×¥í¥¥·¥µ¡Ý¥Ð¤òÆ°¤«¤·¤Æ¤âÂç¾æÉפ¸¤ã¤Ê¤¤¤«¤È¤Ê¤Ã¤¿¤·¡£
* ¥á¥â¤½¤Î£³ `2h/08/S
£³Æü·Ð¤Ã¤Æ£±¤ÄÌäÂ꤬¤¢¤Ã¤¿»ö¤¬È¯³Ð¡£µÒÀ褫¤é¤Î¥á¡Ý¥ë¤¬Íè¤Ê¤¤¡£¥á¡Ý¥ë¥ê¥ì¡Ý¤Î¥í¥°
¤Ë ʬÎàSession Domain¡¢½èÍýReject ¤È½Ð¤Æ¤¤¤¿¡£¥á¡Ý¥ë¥ê¥ì¡Ý¤Ç°Ê²¼ÀßÄê¡£ [¥¢¥ó¥Á¥¹
¥Ñ¥à]->[¥Ö¥í¥Ã¥¯/¥»¡Ý¥Õ¥ê¥¹¥È]->{¥·¥¹¥Æ¥à} ¤Î¥»¡Ý¥Õ¥ê¥¹¥È¤Ë *@xxx.co.jp µºÜ¤·¤¿¡£
¥À¥á¡¢Í¸ú¤Ë¤Ê¤é¤Ê¤«¤Ã¤¿¡£[IP¥Ý¥ê¥·¡Ý]¤Ç¥¢¥ó¥Á¥¹¥Ñ¥à¤òÃæ¿È¶õ¤Ç¤âºî¤ë¤È¥Û¥ï¥¤¥È¥ê
¥¹¥È¤òºÇ½é¤Ë¸«¤ë¤«¤â¡£¥í¥°¤Ë¤Ï ¥á¥Ã¥»¡Ý¥¸ Invalid ehlo/helo domain.¡¢¥¿¥¤¥× spam¡£
¤Û¤È¤ó¤É¤¬ From ¤Ë²ø¤·¤²¤Ê¥á¡Ý¥ë¥¢¥É¥ì¥¹,To ¤Ï¥Ê¥·¤Ç¡¢¥í¥°¤Î²èÌ̤ò¸«¤ë¤È¥Ý¥Á¥Ý¥Á
¤¢¤ë¡£ÌÀ¤é¤«¤Ë²ø¤·¤¤ÉÔÍפʥá¡Ý¥ë¤Ç¡¢¤³¤Î¸¡ÃΤΥÁ¥§¥Ã¥¯¤ò̵¤¯¤¹Ìõ¤Ë¤Ï¤¤¤«¤Ê¤¤¡£
¤·¤«¤·£³Æü¤â·Ð¤Ã¤Æµ¤ÉÕ¤¯¤È¤Ï¡¢¥á¡Ý¥ë¤Ï¤¤¤é¤ó¤Î¤«¡£[¥×¥í¥Õ¥¡¥¤¥ë]->[¥»¥Ã¥·¥ç¥ó]¤Ç
"ǧ¾Ú¤µ¤ì¤Ê¤¤¥»¥Ã¥·¥ç¥ó¤ÎÀßÄê" ¤Î "¡ºHELO/EHLO¥É¥á¥¤¥ó¤ò¥Á¥§¥Ã¥¯" ¤Ç¾åµ¥á¡Ý¥ë¤¬
°ú¤Ã¤«¤«¤Ã¤¿¤é¤·¤¤¡£¤À¤«¤é¤³¤Î¡º¤ò³°¤»¤ÐÄ̤ë¤Î¤À¤¬¡£Session Domain¤ÇÍî¤È¤·¤Æ¤¤¤ë
¤Î¤Ï£²£°¡ó°Ì¤¢¤ë¤Î¤À¡£È¯¿®¤Ï yyy@xxx.co.jp¡£¥í¥°Ãæ¤Î¥¯¥é¥¤¥¢¥ó¥È¤Ï abc.cloudp.xy
z.ne.jp [1.2.3.4]¡£nslookup ¤Ç¤³¤ì¤é¥É¥á¥¤¥ó̾¤È£É£Ð¥¢¥É¥ì¥¹¤ÏÁÐÊý¤«¤é°ú¤±¤¿¡£¤È
¤ê¤¢¤¨¤º [IP¥Ý¥ê¥·¡Ý] ¤Î°ìÈÖ¾å¤Ë¡¢ Á÷¿®¸µ 1.2.3.4/32¡¢°¸Àè 0.0.0.0/0¡¢¥¢¥¯¥·¥ç¥ó
¥¹¥¥ã¥ó¡¢¥×¥í¥Õ¥¡¥¤¥ë ¥Ê¥·¤òÀߤ±¤¿¡£Ê¬Îà System Safe ¤ÇÄ̤ë¤è¤¦¤Ë¤Ê¤Ã¤¿¡£
¤·¤«¤·¸ÄÊ̤ˤ³¤¦¤ä¤Ã¤Æ¥ë¡Ý¥ë¤òÄɲ䷤Ƥ¤¤¯¤Î¡©¡¢¤¢¤Þ¤ê¸¤¯¤Ê¤¤¤Ê¡£
Ʊ¤¸Æü¤Ë¤Þ¤¿£±¥ö½ê¡¢Æ±¤¸»ö¤Ç¥á¡Ý¥ë¤¬µñÈݤµ¤ì¤¿¡£ ¤â¤¦»ÅÊý¤Ê¤¤¤Î¤Ç "¡ºHELO/EHLO¥É
¥á¥¤¥ó¤ò¥Á¥§¥Ã¥¯"¤Î¡º¤ò³°¤·¤¿¡£Not Spam ¤ÇÄ̤ä¿¡£¥í¥°Ãæ¤Î¥¯¥é¥¤¥¢¥ó¥È¤Î¥É¥á¥¤¥ó
̾¤È£É£Ð¥¢¥É¥ì¥¹¤Ï nslookup ¤ÇÁÐÊý¤«¤é°ú¤±¤¿¡£ÌäÂê¤Ê¤µ¤½¤¦¤Ç¤¢¤ë¡£FortiMail ¤ÎÊý
¤¬°¤¤¡©¡¢ÉÒ´¶²á¤®¤ë¤Î¤«¡£[IP¥Ý¥ê¥·¡Ý] ¤Î "¥»¥Ã¥·¥ç¥ó¥×¥í¥Õ¥¡¥¤¥ë" ¤Î "¢¦¥ê¥¹¥È"
¤Ë¥Û¥ï¥¤¥È¥ê¥¹¥È¤é¤·¤¤â¤Î¤¬¤¢¤ë¡£¤³¤ì¤Ï¤É¤¦¤Ê¤Î¤«¡£¢¢Á÷¿®¼Ô¥»¡Ý¥Õ¥ê¥¹¥È¥Á¥§¥Ã¥¯
¤ò͸ú¡¢¢¢Á÷¿®¼Ô¥Ö¥í¥Ã¥¯¥ê¥¹¥È¥Á¥§¥Ã¥¯¤ò͸ú¡¢¢¢¤³¤Î¥ê¥¹¥È¾å¤Î¼õ¿®¼Ô¤òµö²Ä¡¢¢¢¤³
¤Î¥ê¥¹¥È¾å¤Î¼õ¿®¼Ô¤òµñÈÝ¡£ºÇ½é¤Î¤È¤³¤í¤Ë *@xxx.co.jp ¤Ê¤É¤È½ñ¤¤¤ÆÄ̤»¤Ê¤¤¤«¡£
Session Domain¡¢Reject ¤È¤¤¤¦¥í¥°¤Ï¼¡¤ËÆü¤â½Ð¤Æ¤¤¤¿¡£ ¥¢¥ó¥Á¥¹¥Ñ¥à Sender domain
check failed for yyy@xvl.asia¡£Milter:from=,reject 452 4.5.2 Could
not resolv sender domain.¡£¤·¤«¤·ºòÆü¤Þ¤Ç¤Ï Session Domain ¤Ç»ß¤á¤é¤ì¤¿¤Î¤¬20%¤¢
¤Ã¤¿¤Î¤¬4%¤Ë¤Ê¤Ã¤¿¡£SMTP Auth Failure ¤Ç¤Ï 20%Á°¸å»ß¤á¤é¤ì¤Æ¤¤¤ë¡£¤ªËߵ٤ߤˤʤë
¿ôÆüÁ°¤«¤é¥á¡Ý¥ë¥¹¥È¥¢¤Ç¥¦¥£¥ë¥¹¤Ç³ÖÎ¥¤µ¤ì¤¿¤Î¤¬¤°¤Ã¤ÈÁý¤¨¤Æ¤¤¤ë¡£¿ôÉ´¤«¤é£µÉ´¤Ç
¤¹¤êÈ´¤±¤â¿ô½½¡£¥µ¥ó¥É¥Ü¥Ã¥¯¥¹¤ò²óÈò¤¹¤ë¥¦¥£¥ë¥¹¤¬½Ð¤Æ¤¤¿¤È£±Ç¯°ÌÁ°¤«¤é¸À¤ï¤ì¤ë¡£
¤ä¤Ï¤ê°ÃηäÎÊý¤¬¾¡¤ë¾ÚÌÀ¤ß¤¿¤¤¤ÊÏäǡ¢¿Í¹©ÃÎǽ¤Ë¤è¤ë¸¡ÃΤâ²óÈò¤È¿ôÆüÁ°¤Ë¸«¤¿¡£
* sendmail À©¸æ¥Õ¥¡¥¤¥ë¤òºÇ¸å¤Ë
"21-4.¥¤¥ó¥¿¡Ý¥Í¥Ã¥ÈÀܳ¼þ¤ê¤Îºþ¿·,(4)¥á¡Ý¥ë¥ê¥ì¡ÝÍÑ¥µ¡Ý¥Ð¤Îºþ¿·,* Mail-Relay ¤Î
sendmail.mc ¥Õ¥¡¥¤¥ë" rinne6.txt¡£ ¼ÂºÝ¤Î¥á¡Ý¥ë¥ê¥ì¡Ý¤Î¥Þ¥·¥ó Sun Solaris 9 ¤Ç»È
ÍѤ·¤Æ¤¤¤ë sendmail.cf ¤Î¸µ¤Ë¤Ê¤ë mc À©¸æ¥Õ¥¡¥¤¥ë¤Ï°Ê²¼¤Î¤È¤Û¤ÜƱ¤¸¤Ç¤¢¤ë¡£ ÀßÄê
¤ÎÃÀ¤Ë¤Ê¤ë¤È¤³¤í¤òÈ´¿è¤·¤¿¡£FortiMail ¤Î "¥²¡Ý¥È¥¦¥§¥¤" ¤Î¥â¡Ý¥É¤Ç¤â²¼µ¤ÎÀßÄê¤È
»÷¤¿¤è¤¦¤Ë¤Ê¤ë¤è¤¦¤ËƧ½±¤·¤¿¤¤¡£FortiMail ¤Î¤É¤³¤ÇÀßÄê¤Ç¤¤ë¤«¡£
MailRelay.mc
------------------------------------------
|DwhostA
|Dmnix.co.jj
|define(`confDOMAIN_NAME', `$w.$m') dnl
|define(`always_add_domain') dnl ¥á¡Ý¥ë¤Î°¸Àè¤Ë¥É¥á¥¤¥ó̾¤¬¤Ê¤±¤ì¤Ð¤½
| ¤ì¤òÉÕ¤±²Ã¤¨¤ë¡£
|MASQUERADE_AS(`nix.co.jj')dnl ¤³¤Î£³¤Ä¤Ç xxx@yyy.nix.co.jj¤È¤¤¤¦¤è
|MASQUERADE_DOMAIN(`nix.co.jj')dnl ¤¦¤Ê¥á¡Ý¥ë¥¢¥É¥ì¥¹¤ÇÍ褿¤é¡¢yyy Éô¤ò
|FEATURE(`masquerade_entire_domain')dnl ½ü¤¤¤Æ xxx@nix.co.jj ¤Ë¤¹¤ë¡£
|
|FEATURE(`nocanonify',`canonify_hosts')dnl °¸À襢¥É¥ì¥¹Éô¤¬¥Û¥¹¥È̾¤Î»þ¤Î¤ß¥É¥á
| ¥¤¥ó̾¤òÉÕ¤±²Ã¤¨¤ë¡£
|FEATURE(`accept_unresolvable_domains')dnl ¥¨¥ó¥Ù¥í¡Ý¥× FROM ¤Ë¥É¥á¥¤¥ó̾¤¬ DNS
| ¥µ¡Ý¥Ð¤Ç¸«¤Ä¤«¤é¤Ê¤¯¤Æ¤â¼õ¤±Æþ¤ì¤ë¡£
|FEATURE(`accept_unqualified_senders')dnl ¥¨¥ó¥Ù¥í¡Ý¥× FROM ¤Ë¥É¥á¥¤¥óÉô¤¬¤Ê¤¯
| ¤Æ¤â¼õ¤±¼è¤ë¡£
|define(`confDOUBLE_BOUNCE_ADDRESS',`')dnl ¥À¥Ö¥ë¥Ð¥¦¥ó¥¹¥á¡Ý¥ë¤ò¼Î¤Æ¤ë¡£
|
|define(`confMIN_QUEUE_AGE',`15m')dnl mqueue ¤Ë¤¢¤ë¥á¡Ý¥ë¤ÎºÇûºÆÁ÷´Ö³Ö¡©¡£
|define(`confTO_QUEUEWARN',`4h')dnl £´»þ´ÖËè¤ËºÆÁ÷¤ò·«¤êÊÖ¤¹¤È¤¤¤¦¤³¤È¡£
|define(`confTO_QUEUERETURN',`3d')dnl ¤½¤·¤Æ£³Æü´ÖºÆÁ÷¤ò·«¤êÊÖ¤¹¤È¤¤¤¦¤³¤È¡£
|define(`confTO_COMMAND',`10m')dnl SMTP¥³¥Þ¥ó¥É¤È¥á¡Ý¥ë¥Ç¡Ý¥¿¤Î¤ä¤ê¤È¤ê
|define(`confTO_DATABLOCK',`10m')dnl ¤Î¥¿¥¤¥à¥¢¥¦¥È»þ´Ö¡¢Ã±°Ì m ¤Ïʬ¡£
|
|FEATURE(`no_default_msa')dnl ¥µ¥Ö¥ß¥Ã¥·¥ç¥ó¥Ý¡Ý¥È 587 ¤Ï»È¤ï¤Ê¤¤¡£
¤¹¤°¾å `no_default_msa' ¤Î½ê¤Ï "O DaemonPortOptions=Port=587, Name=MSA, M=E" ¤È
¤¤¤¦µ½Ò¤ò xxx.cf ¤ËÆþ¤ì¤Ê¤¤¤³¤È¤Ë¤Ê¤ë¡£ ¥µ¥Ö¥ß¥Ã¥·¥ç¥ó¥Ý¡Ý¥È¤È¤Ï Outlook ¤Ê¤É¥á
¡Ý¥ë¥¯¥é¥¤¥¢¥ó¥È¤Î¥½¥Õ¥È¤¬¥á¡Ý¥ë¥µ¡Ý¥Ð¤Ë¥¢¥¯¥»¥¹¤¹¤ë¥Ý¡Ý¥ÈÈÖ¹æ 587¡£¥á¡Ý¥ë¥µ¡Ý¥Ð
Ʊ»Î¤¬¥¢¥¯¥»¥¹¤¹¤ë¥Ý¡Ý¥ÈÈÖ¹æ¤Ï 25 ¤Ç¤¢¤ë¡£Á°¼Ô¤Ï MSA( Message Submission Agent )¡¢
¸å¼Ô¤Ï MTA( Mail Transfer Agent ) ¤È¤¤¤¦¡£¥×¥í¥È¥³¥ë¤ÏƱ¤¸¤Ç SMTP ¤Ç¤¢¤ê°ÊÁ°¤Ï¶è
Ê̤µ¤ì¤ë¤³¤È¤Ï¤Ê¤«¤Ã¤¿¡£¥á¡Ý¥ë¤Î¤ä¤ê¤È¤ê¤ÎÌò³ä¤Ë±þ¤¸¤Æʬ¤±¤ë¤Î¤¬Ë¾¤Þ¤·¤¤¤È¤µ¤ì¤ë¡£
£²£°£°£²Ç¯º¢¤Î sendmail ¤ÎËܤˤϥµ¥Ö¥ß¥Ã¥·¥ç¥ó¥Ý¡Ý¥È¤Î¤³¤È¤Ï½ñ¤«¤ì¤Æ¤Ê¤«¤Ã¤¿¡£¤·
¤Ð¤·¤Ð»²¹Í¤Ë¤·¤¿¤Î¤Ï¡Öiij.news¡×2005/3-4, vol.69, "£ó£ð£á£í¤«¤é¥á¡Ý¥ë¤ò¼é¤ì(´ÉÍý
¼ÔÊÔ)" ¤Ç¡¢¤³¤Îµ»ö¤Ï£É£É£Ê¤Î¥µ¥¤¥È¤Ë PDF ¤Çº£¤Ç¤â¸«¤ë¤³¤È¤¬¤Ç¤¤ë¡£·ë¶Ésendmail
¤Ç¤Ï¤³¤Î¥µ¥Ö¥ß¥Ã¥·¥ç¥ó¥Ý¡Ý¥È¤Ï»È¤ï¤Ê¤«¤Ã¤¿¡£¥á¡Ý¥ë¥¹¥È¥¢¤ò Sun ¤«¤é FortiMail ¤Ë
Êѹ¹¤·¤Æ¤â»È¤ï¤Ê¤¤¤È¤¤¤¦¤«¡¢°Õ¼±¤·¤ÆÍøÍѤÎÀßÄê¤Ï¤ä¤Ã¤Æ¤Ê¤¤¡£¥á¡Ý¥ë¥½¥Õ¥È Outlook
¤Ê¤É¤Ç¤âÍøÍѤ¹¤ë¤Î¤ËÀßÄ꤬ɬÍפˤʤ롣ÍøÍѤ¹¤ë¤·¤Ê¤¤¤ÎÁªÂò¤¬¤½¤ì¤¾¤ì¤Ç¤Ç¤¤ë¤Î¤«¡£
£±¥ö½ê¤À¤±¥á¡Ý¥ë¤¬¹Ô¤«¤Ê¤¤½ê¤¬¤¢¤ë¡£ ¥á¡Ý¥ë¤Î¥Ø¥Ã¥À¡Ý¤ò¤ß¤ë¤È "MDeferred: Àܳ¤¬
»þ´ÖÀÚ¤ì¤Ç¤¹¡£" ¤È¤¤¤¦¤Î¤¬½Ð¤Æ¤¤¤ë¡£ SMTP ¤ÎÁê¼ê¥á¡Ý¥ë¥µ¡Ý¥Ð¤È¤Î¤ä¤ê¤È¤ê¤Ç»þ´Ö¤ò
¿©¤Ã¤Æ¤¤¤ë¤È¤³¤í¤¬¤¢¤ë¤Î¤Ç¤Ê¤¤¤«¡£ ¤Ò¤ç¤Ã¤È¤«¤·¤Æ define(`confTO_COMMAND',`10m')¡¢
define(`confTO_DATABLOCK',`10m') ÊÕ¤ê¤ÎÃͤòÊѤ¨¤ì¤Ð²ò·è¤Ç¤¤ë¤Î¤Ç¤Ê¤¤¤«¤È»×¤Ã¤¿¡£
¤·¤«¤· 10m¡¢¤Ä¤Þ¤ê£±£°Ê¬¤Ç¤Ï´Ø·¸¤Ê¤¤¤Ê¡£ £Ä£Î£Ó¸¡º÷¤Ç¤â»þ´Ö¤¬¤«¤«¤ë¡¢ ²¿¥ß¥ê¥»¥Ã
¥¯¤È¤¤¤¦¥ª¡Ý¥À¡Ý¤Ç¤ÎÏäÀ¤¬¡££Ä£Î£Ó¤â´Ø·¸¤Ê¤¤¤«¡£Áê¼ê¥á¡Ý¥ë¥µ¡Ý¥Ð¤ÎÀßÄ꤬ÌäÂ꤫¡£
"User unknown" ¤Ê¥á¡Ý¥ë¤¬¥á¡Ý¥ë¥ê¥ì¡Ý¤Î¥á¡Ý¥ë¥¥å¡Ý¡¢/var/spool/mqueue/ ¤Ëί¤Þ¤ë¡£
¼Ò³°¤«¤é¼ÒÆâ¤ËÍ褿¥á¡Ý¥ë¤Ç¼ÒÆâ¤Ë¥á¡Ý¥ë¥¢¥É¥ì¥¹¤¬¤Ê¤¤¥á¡Ý¥ë¤Ï¡¢Á÷¿®¸µ¤Ë¤½¤Î»ÝÅÁ¤¨
¤ë¥á¡Ý¥ë¤òÊÖ¤¨¤¹¡£¤½¤³¤ÇÁ÷¿®¸µ¥á¡Ý¥ë¥¢¥É¥ì¥¹¤¬µ¶Â¤¤µ¤ì¤Æ¤¤¤ë¤È¹Ô¤¾ì¤¬¤Ê¤¯¤Æ¥á¡Ý
¥ë¥ê¥ì¡Ý¤Ëί¤Þ¤Ã¤Æ¤·¤Þ¤¦¡£³Î¤«¤³¤ì¤ò¥Ð¥¦¥ó¥¹¥á¡Ý¥ë¤È¸Æ¤ó¤À¤È»×¤¦¡£FortiMail ¤Ç¤Ï
[¥¢¥ó¥Á¥¹¥Ñ¥à]->[¥Ð¥¦¥ó¥¹¸¡¾Ú]¡¢¥»¥Ã¥·¥ç¥ó¥×¥í¥Õ¥¡¥¤¥ë¤ÎÁ÷¿®¼Ô¸¡¾Ú¤Ë¢¢¥Ð¥¦¥ó¥¹¸¡
¾Ú¤ò¥Ð¥¤¥Ñ¥¹¡£¤È¤¤¤¦¥á¥Ë¥å¡Ý¤¬ "¥²¡Ý¥È¥¦¥§¥¤" ¤È "¥µ¡Ý¥Ð" ¶¦¤Ë¸«¤¿¤é¤¢¤Ã¤¿¡£
* ¥á¡Ý¥ë¥¢¥É¥ì¥¹ÊÑ´¹¤Î³Îǧ
¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ø [ PC1 ¤Î Outlook ÀßÄê ]
MR¢¢ ¡§ Gmail ¤È¤«
.3¡Ã²¾ÁÛIP ¡§ ¥á¡Ý¥ë¥¢¥É¥ì¥¹¤Ï ikken@nix.co.jj¡£
------------------------ 202.241.128.x ¥á¡Ý¥ëÁ÷¿®£É£Ð¤Ï 192.168.1.6¡£
|
¢¢MR |.2 [ Gmail ¤Î²èÌ̤ò¤ß¤è¤¦ ]
.1¡Ã .2------- FortiMail
------------|Fire | ͽÈ÷µ¡ https://www.gmail.com/ ¤ËÆþ¤Ã¤Æ¡£
| Wall| MR' <--- PC1
¢¢MS ------- ¢¢ ¢¤ MR' ¤Ç¤Ï xxx@nix.co.jj °¸¤Ï MS¤Ø
.1¡Ã |.2 ¡Ã.6 ¡Ã.8 Á÷¤ëÀßÄê¤Ë¤·¤Æ¤¢¤ë¡£Â¾¤Î¥á¡Ý¥ë¥¢
-------------------------------------- ¥É¥ì¥¹¤Ø¤Ï¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Î¥á¡Ý¥ë
192.168.1.0 nix.co.jj ¥µ¡Ý¥Ð¤Ø¥¢¥¯¥»¥¹¤·¤Æ¥á¡Ý¥ë¤òÁ÷¤ë¡£
PC1 ¤Î Outlook ¤Ç ikken@nix.co.jj ¤«¤é MR' ¤Ë ikken@sub.nix.co.jj °¸¤ËÁ÷¤Ã¤Æ¤ß¤¿¡£
¥á¡Ý¥ë¤Ï¥¨¥é¡Ý¤Ë¤Ê¤Ã¤¿¡£MR'¤Î¥í¥°¤Ë To ¤Ç ikken@sub.nix.co.jj ¤Î¤Þ¤Þ¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£
ikken@nix.co.jj ¤È¤Ê¤Ã¤Æ¤Ê¤«¤Ã¤¿¡£"Host unknown(Name server: sub.nix.co.jj: host
not found)(Reason: 550 Host unknown)" ¤È¤Ç¤Æ¤¤¤¿¡£ËÜÈÖ²ÔƯ¤Î¥á¡Ý¥ë¥ê¥ì¡Ý¤Î Sun¤Ç
¤âƱ¤¸¤À¤Ã¤¿¡£Sun ¤Ç¤Ï¤Á¤ã¤ó¤È¤Ê¤ë¤È»×¤Ã¤Æ¤¤¤¿¤Î¤À¤¬¡£¥á¡Ý¥ë¥ê¥ì¡Ý¤Ë¥á¡Ý¥ë¤¬Æþ¤Ã
¤¿Ãʳ¬¤Ç¡¢¼ÒÆâ¤Ø¤Î°¸À襢¥É¥ì¥¹¤¬ ikken@sub.nix.co.jj ¤«¤é ikken@nix.co.jj ¤Ë¤Ê¤ë
¤Ï¤º¤Ê¤Î¤À¤¬¡£°Ê²¼¤Ï¸½ºß¤Î¥á¡Ý¥ë¥ê¥ì¡Ý¤Ç¤Î¥á¡Ý¥ë¥¢¥É¥ì¥¹¤Î²ò¼á¤ÎÍͻҡ£
# /usr/lib/sendmail -bt -C/etc/mail/sendmail.cf
ADDRESS TEST MODE (ruleset 3 NOT automatically invoked)
Enter
> 3,0 ikken °Ê²¼ÅÓÃæ¾Êά¡£
parse returns: $# local $: ikken << [a]
> 3,0 ikken@nix.co.jj [b]
parse returns: $# esmtp $@ [ 192 . 168 . 1 . 1 ] $: ikken < @ nix . co . jj . >
> 3,0 ikken@sub.nix.co.jj [c] ¥Ö¥é¥ó¥¯¤ò°ìÉôµÍ¤á¤¿¡£
parse returns: $# esmtp $@ sub . nix . co . jj . $: ikken < @ sub.nix.co. jj . >
¤³¤Î·ë²Ì¤«¤é MailRelay.mc ¤ÎÀßÄ꤬¸ú¤¤¤Æ¤¤¤ë¤Î¤«¤Èµ¿Ìä¤À¡£[a] ¤Ï ikken@nix.co.jj
¤Ë¤Ê¤ë¤Î¤Ç¤Ê¤¤¤«¡£[b] ¤Ï¤½¤Î¤Þ¤Þ¤À¤¬¡£[c] ¤Ï sub ¤¬¼è¤ì¤Æ ikken@nix.co.jj ¤Ë¤Ê¤ë
¤Î¤Ç¤Ê¤¤¤«¡£sendmail ¤È¤â¸å¡¢¿ôÆü¤Ç¤ª¤µ¤é¤Ð¡£ ¤³¤¦¤ä¤Ã¤ÆÆ°ºî³Îǧ¤¬¤Ç¤¤ë¤Î¤â¤³¤ì
¤Ç¤·¤Þ¤¤¡£sendmail ¤Ë¤Ï£±£¹£¹£µÇ¯¤«¤éÀ¤Ïäˤʤä¿¡¢Ä¹¤¤´Ö¤´¶ìÏ«¤µ¤Þ¤Ç¤·¤¿¡£
* ¥á¡Ý¥ë°Å¹æ²½¤Î³Îǧ¤½¤Î£±
¤Ç¤¤ì¤Ðº£°ìÅÙ³Îǧ¤·¤Æ¤ª¤¤¿¤¤¡£ FortiMail-200D ¤ò¼ÒÆâ¥Í¥Ã¥È¥ï¡Ý¥¯¤Ë¤ª¤¤¤Æ¥á¡Ý¥ë
¥ê¥ì¡Ý¤È¤·¤ÆÀßÄꤷ³°Éô¤Ø¥á¡Ý¥ë¤¬¹Ô¤¯¤³¤È¡¢¥á¡Ý¥ë¥¹¥È¥¢¤Ë¹Ô¤¯¤³¤È¡£¼ê¸µ¤Î¥Ñ¥½¥³¥ó
¤Î Outlook ¤«¤é FortiMail-200D ¤Ë¡¢ ¤¤¤¤Ê¤ê¥á¡Ý¥ë¤òÁ÷¤Ã¤Æ³°¤Ë½Ð¤Æ¹Ô¤Ã¤¿µ¤¤¬¤¹¤ë¡£
¥Æ¥¹¥È´Ä¶¤òÁ°¤Ëºî¤Ã¤¿¡£"26-3.FortiMail ¥á¡Ý¥ë°Å¹æ²½¤Î¸¡Æ¤,(5)¥á¡Ý¥ë¥µ¡Ý¥Ð´Ö¤Î°Å
¹æ²½¤Î¥Æ¥¹¥È" ¤Ë¤Æ¡£°Ê²¼¤Ç Outlook ¤«¤é 200D¡¢¤½¤·¤Æ Gmail ¤Ø¹Ô¤Ã¤¿¤Î¤ò³Îǧ¤·¤¿¡£
PC1 ¤Î Outlook ¤Ç ikken@nix.co.jj ¤«¤é Gmail ¤ËÁ÷¤Ã¤¿¡¢ MR' ¤Î¥í¥°¤Ë STARTTLS ¤¬
½Ð¤Æ¤¤¤¿¡£ikken@nix.co.jj ¤ËÁ÷¤Ã¤¿¡¢MR' ¤Î¥í¥°¤Ë STARTTLS ¤¬½Ð¤Æ¤¤¤¿¡£
[¥Ý¥ê¥·¡Ý]->[¥¢¥¯¥»¥¹À©¸æ]->{Á÷¿®} °Ê²¼Á´Éô MR' ¤Ç¤ÎÀßÄê¡£
--------------------------------------------------------------------------------
|͸ú ID Á÷¿®¼Ô¥Ñ¥¿¡Ý¥ó ¼õ¿®¼Ô¥Ñ¥¿¡Ý¥ó TLS°¸ÀèIP TLS¥×¥í °Å¹æ²½¥×¥í
| ¥Õ¥¡¥¤¥ë ¥Õ¥¡¥¤¥ë
|-------------------------------------------------------------------------------
| ¡º 1 * * 0.0.0.0/0
--------------------------------------------------------------------------------
͸ú¤Ç¡º¤Ï̵¤·¤Ë¤·¤Æ Gmail ¤ËÁ÷¤Ã¤¿¡¢¥í¥°¤Ï STARTTLS ¤¬½Ð¤Æ¤¤¤¿¡£ ¤Þ¤µ¤Ë¥Ç¥Õ¥©¥ë
¥È¤Ç°Å¹æ²½¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤È¸À¤¦¤³¤È¤Ç¤¢¤ë¡£³°Éô¤È¤Ï°Å¹æ²½¤·¤Æ¡¢¼ÒÆâ¤È¤Ï°Å¹æ²½¤Ê¤·¤Ç¡¢
¤½¤¦¤¤¤¦ÀßÄê¤Ï¤Ç¤¤Ê¤¤¡©¡£¥á¡Ý¥ë¥¹¥È¥¢¤ÎÊý¤Ç°Å¹æ²½¤¹¤ë¡¢¤·¤Ê¤¤¤È¤¤¤¦¤Î¤¬¤Ç¤¤ë¤Î
¤«¡£¤È¤â¤«¤¯²èÌÌ¥á¥Ë¥å¡Ý¤Ë¤Ï¤Ê¤µ¤½¤¦¡¢¥³¥Þ¥ó¥É¤Ç°Å¹æ²½¤¹¤ë¤·¤Ê¤¤¤ò¤ä¤ì¤ë¤«¤â¡£¤½
¤Î¸å£Ó£É¶È¼Ô¤Îµ»½Ñ¼Ô¤Ë¶µ¤¨¤Æ¤â¤é¤Ã¤¿¡¢TLS¥×¥í¥Õ¥¡¥¤¥ë¤¬ STARTTLS ¤Ë´Ø·¸¤¹¤ë¤È¡£
<< MR' ¤Î°Å¹æ²½¤Ë´Ø¤¹¤ë¾¤ÎÀßÄê¤Ï >>
[¥á¡Ý¥ëÀßÄê]->[ÀßÄê]->{¥á¡Ý¥ë¥µ¡Ý¥Ð¡ÝÀßÄê} ¤³¤Î¥á¡Ý¥ë¥µ¡Ý¥Ð¤¬¥á¡Ý¥ë¤ò¼õ¤±¤ë¤Î¤Ë
SMTP¥µ¡Ý¥Ð¡Ý¥Ý¡Ý¥ÈÈÖ¹æ: [25 ] SMTPS ¤ò»È¤¦¤«¤É¤¦¤«¡¢¼ÂºÝ 465È֤ϻÈ
SMTP over SSL/TLS ¢¢ ÍѤ»¤º¡£SMTP over SSL/TLS ¤ÈSTARTTLS
SMTPS¥µ¡Ý¥Ð¡Ý¥Ý¡Ý¥ÈÈÖ¹æ: [465 ] ¤ÏÊÌʪ¤È¤ß¤Æ¤¤¤¤¤À¤í¤¦¡£
[¥á¡Ý¥ëÀßÄê]->[¥É¥á¥¤¥ó]->{¥É¥á¥¤¥ó} ¥á¡Ý¥ë¥¹¥È¥¢¤Ë¥á¡Ý¥ë¤òÁ÷¤ë¤Î¤Ë SMTPS
¥É¥á¥¤¥ó̾:[nix.co.jj ] ¤ò»È¤¦¤«¤É¤¦¤«¡£»ÈÍѤ·¤Æ¤¤¤Ê¤¤¡£
¥ê¥ì¡Ý¥¿¥¤¥×:[¥Û¥¹¥È ¢¦]
SMTP¥µ¡Ý¥Ð¡Ý:[192.168.1.1 ]¥Ý¡Ý¥È:[25 ]SMTPS¤ò»ÈÍÑ¢¢
* ¥á¡Ý¥ë°Å¹æ²½¤Î³Îǧ¤½¤Î£²
°Ê²¼¤ÎÀßÄê¤Ç Gmail ¤ËÁ÷¤Ã¤¿¡£¥í¥°¤Ë STARTTLS ¤Ï¤Ç¤Ê¤«¤Ã¤¿¡£ ʿʸ¤ÇÁ÷¿®¤·¤¿¤È¤¤¤¦
¤³¤È¡£TLS°¸ÀèIP ¤Ï 0.0.0.0/0 ¤Ç¡¢Gmail °¸¤È¤¤¤¦¤³¤È¤ÇǤ°Õ¤Î£É£Ð¥¢¥É¥ì¥¹¤Ø¡£
[¥Ý¥ê¥·¡Ý]->[¥¢¥¯¥»¥¹À©¸æ]->{Á÷¿®}
--------------------------------------------------------------------------------
|͸ú ID Á÷¿®¼Ô¥Ñ¥¿¡Ý¥ó ¼õ¿®¼Ô¥Ñ¥¿¡Ý¥ó TLS°¸ÀèIP TLS¥×¥í °Å¹æ²½¥×¥í
|-------------------------------------------------------------------------------
| ¡º 1 * * 0.0.0.0/0 TLS_NASI
--------------------------------------------------------------------------------
°Ê²¼¤ÎÀßÄê¤Ç ikken@nix.co.jj ¤ËÁ÷¤Ã¤¿¡¢¥í¥°¤Ë STARTTLS ¤Ï½Ð¤Ê¤«¤Ã¤¿¡£ Gmail ¤Ë¤â
Á÷¤Ã¤Æ¤ß¤¿¤éÁ÷¤ë¤³¤È¤Ç¤¤Æ¡¢¥í¥°¤Ë¤Ï STARTTLS ¤¬½Ð¤Æ¤¤¤¿¡£Gmail °¸¤Ë¤Ï°Å¹æ²½¤Ë¤Ê
¤Ã¤Æ¤¤¤¿¡£¤Ä¤Þ¤ê¥ë¡Ý¥ë¤Î£±Èְʳ°¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç°Å¹æ²½¤Ë¤Ê¤ë¤È¤¤¤¦¤³¤È¡£ÌÀ¼¨Åª¤Ë¥ë
¡Ý¥ë¤ò½ñ¤¯¤Î¤Ê¤é"¡º 2 * * 0.0.0.0/0 ¶õÍó"¡£²¼µ¤Î ID 1 ¤Î²¼¤Ë²Ã¤¨¤ë¤³¤È¡£¥ë¡Ý
¥ë¤ÎŬÍѤϾ夫¤é¤Ë¤Ê¤ë¡£ID ¤ÎÈÖ¹æ¤Ï½çÈ֤ǤϤʤ¤¡£°ø¤ß¤Ë¡¢¡º¤Ïľ¤Á¤Ë͸ú¤Ë¤Ê¤ë¡£
[¥Ý¥ê¥·¡Ý]->[¥¢¥¯¥»¥¹À©¸æ]->{Á÷¿®} ¥á¡Ý¥ë¥¹¥È¥¢ MS ¤Ë¸þ¤±¤Æ¡£
--------------------------------------------------------------------------------
|͸ú ID Á÷¿®¼Ô¥Ñ¥¿¡Ý¥ó ¼õ¿®¼Ô¥Ñ¥¿¡Ý¥ó TLS°¸ÀèIP TLS¥×¥í °Å¹æ²½¥×¥í
|-------------------------------------------------------------------------------
| ¡º 1 * * 192.168.1.1/32 TLS_NASI
--------------------------------------------------------------------------------
192.168.1.1 192.168.1.6 "TLS¥×¥í¥Õ¥¡¥¤¥ë" ¤Î TLS
---------- ---------- ---------- ¥×¥í¥Õ¥¡¥¤¥ë̾: TLS_NASI¡¢
|MS | |MR' | |³°Éô¤Î¥á| TLS¥ì¥Ù¥ë:¤Ê¤·¡¢¼ºÇÔ»þ¤Î
| ¼õ¿®| <-------- | Á÷¿® | --------> |¡Ý¥ë¥µ¡Ý| ¥¢¥¯¥·¥ç¥ó: °ì»þŪ¤Ê¥¨¥é
| | | | |¥Ð,Gmail| ¡Ý¡£ ¤³¤Î TLS¥ì¥Ù¥ë ¤Ê¤·
| Á÷¿®| --------> | ¼õ¿® | <-------- |¤Ï TLS°Å| ¤È¤¤¤¦¤Î¤¬°Å¹æ²½¤¹¤ë¡¢¤·
| | | | |¹æ²½É¸½à| ¤Ê¤¤¤ÎÀ©¸æ¤ÎÌ£Á¹¤Ç¤¢¤ë¡£
---------- ---------- ----------
[MR'¤ÎÀßÄê] Á÷¿®: 192.168.1.1 ¤Ø¤Î¥á¡Ý¥ë¤Ï°Å¹æ²½¤·¤Ê¤¤¡£¤½¤ì°Ê³°¤Ø¤Ï°Å¹æ²½¤¹¤ë¡£
¼õ¿®: 192.168.1.1 ¤«¤é¤Î¥á¡Ý¥ë¤Ï°Å¹æ²½¤»¤º¡£¤½¤ì°Ê³°¤«¤é¤Ï°Å¹æ²½¤¹¤ë¡£
¥á¡Ý¥ë¤Î¤ä¤ê¼è¤ê¤Î¥×¥í¥È¥³¥ë¤Ï¡¢ÁÐÊý¤Ç¥Í¥´¥·¥¨¡Ý¥·¥ç¥ó¤·¤Æ¹ç°Õ¤·¤Æ·è¤Þ¤ë¡£ÊÒÊý¤¬
°Å¹æ²½¤·¤Þ¤¹¤È¤¤¤Ã¤Æ¤â¤â¤¦ÊÒÊý¤¬°Å¹æ²½¤·¤Þ¤»¤ó¤È¤¤¤Ã¤¿¤é¡¢°Å¹æ²½¤ä¤ê¤È¤ê¤Ë¤Ï¤Ê¤é
¤Ê¤¤¡£¥Æ¥¹¥È´Ä¶¤Î¤¿¤á MS ¤«¤é MR' ¤Ë¥á¡Ý¥ë¤¬¹Ô¤¯¤³¤È¤Ï¤Ê¤¤¤¬¡¢ MS ¤È MR' ´Ö¤ÎÄÌ
¿®¤ò°Å¹æ²½¤·¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¤Ë¤Ï¡¢²¼µ¤Î¤è¤¦¤Ë¥ë¡Ý¥ë¤òÀߤ±¤ì¤Ð¤¤¤¤¤Ï¤º¤Ç¤¢¤ë¡£¥×¥í
¤ÎÀßÄê¤Ç¤Ï Á÷¿®¼ÔIP 0.0.0.0/0 ¤Ï£³¤Ä¤Î¥ë¡Ý¥ë¤òºî¤Ã¤Æ¤¤¤¿¡£Ç¤°Õ¡ÝÆâÉô¤Ï¥ê¥ì¡Ý¡¢Æâ
Éô¡Ý³°Éô¤Ï¥ê¥ì¡Ý¡¢ºÇ¸å¤Î¥ë¡Ý¥ë¤ÇǤ°Õ¡ÝǤ°Õ¤ÏµñÈÝ¡£¤³¤ì¤Ç¾ÜºÙ¤Ê¥í¥°¤¬ ID ¤Ç»Ä¤ë
[¥Ý¥ê¥·¡Ý]->[¥¢¥¯¥»¥¹À©¸æ]->{¼õ¿®}
--------------------------------------------------------------------------------
|͸ú ID Á÷¿®¼Ô¥Ñ ¼õ¿®¼Ô¥Ñ Á÷¿®¼ÔIP ¥ê¥Ð¡Ý¥¹ ǧ¾Ú¥¹ TLS¥×¥í ¥¢¥¯¥·¥ç¥ó
| ¥¿¡Ý¥ó ¥¿¡Ý¥ó DNS¥Ñ¥¿¡Ý¥ó ¥Æ¡Ý¥¿¥¹ ¥Õ¥¡¥¤¥ë
|-------------------------------------------------------------------------------
|¡º 1 * * 192.168.1.1/32 * ÉÔÌä TLS_NASI ¥ê¥ì¡Ý
|¡º 2 * * 0.0.0.0/0 * ÉÔÌä ¥ê¥ì¡Ý
--------------------------------------------------------------------------------
* Á÷¿®¼Ô¸¡¾Ú¤Î DKIM ¤Ï
http://www.dkim.jp/dkim-jp/faq/¡ÖDKIM¤Ï¤É¤ì¤°¤é¤¤¹¤Þ¤Ã¤Æ¤¤¤Þ¤¹¤«?¡×¤Îµ»ö¤òé¤Ã
¤Æ¤¤¤¯¤È WIDE Project ¤Î£²£°£°£µÇ¯¤«¤é¤Î¥°¥é¥Õ¤¬¤¢¤Ã¤¿¡££²£°£±£²Ç¯¤Ç¤ÎÉáµÚΨ¤Ç¤Ï
SPF/SenderID ¤¬±¦¸ª¾å¤¬¤ê¤Ç 43.89 ¥Ñ¡Ý¥»¥ó¥È¡¢DK/DomainKeys ¤Ï¤º¤Ã¤È¥¼¥í¤Ë¶á¤¤²£
¤Ð¤¤¤¬Â³¤¤¤Æ¤¤¤Æ 0.50 ¥Ñ¡Ý¥»¥ó¥È¡£DomainKeys ¤Ï¾å¤Î FortiMail ¤ÎÀßÄê¤Ë¤â¤Ç¤Æ¤¤¿
"¡º¥É¥á¥¤¥ó¥¡Ý¥Á¥§¥Ã¥¯" ¤Ç SPF ¤ä DKIM ¤Ë»÷¤¿¥ä¥Õ¡Ý¤¬Ä󾧤·¤¿Êý¼°¤Ç¤¢¤ë¡£º£Æü¤Ç
¤Ï SPF ¤¬À¸¤»Ä¤Ã¤Æ¡¢DomainKeys ¤Ï¼Â¼Á¤Û¤È¤ó¤É»È¤ï¤ì¤Æ¤¤¤Ê¤¤¡£
DKIM ¤Î»²¹Í»ñÎÁ¤Ï¡£"17-1.ÌÂÏÇ¥á¡Ý¥ë¤Î¾õ¶·¤ÈÂкöÊýË¡, (5)¥á¡Ý¥ë¤ÎÁ÷¿®¥É¥á¥¤¥óǧ¾Ú
¤ÎÀßÄê" commun1.txt¡£ ¡ÖNETWORK MAGAZINE¡×2008/02, P.112¡Á113, "¥á¡Ý¥ë¥¢¥É¥ì¥¹¤Î
º¾¾Î¤òËɤ² ²þ¤¶¤ó¤«¤é¥á¡Ý¥ë¤ò¼é¤ë¥É¥á¥¤¥óǧ¾Ú¤Îµ»½Ñ"¡£113 ¥Ú¡Ý¥¸¤Î {¥á¡Ý¥ë¤Ë½ð̾
¥Ø¥Ã¥À¤òÄɲ乤ëDKIM} ¤Î¤È¤³¤í¤Îµ»ö "°ìÈÌŪ¤Ê£Ð£Ë£É(¸ø³«¸°´ðÈ×)¤È°Û¤Ê¤ë¤Î¤Ï¡¢¸ø
Ū¤Ê£Ã£Á¤ÎÅŻҾÚÌÀ½ñ¤¬ÉÔÍפʤ³¤È¡£¤³¤ì¤Ï,DKIMÉáµÚ¤Ë¤È¤Ã¤Æ¤ÏÂ礤ʥá¥ê¥Ã¥È¤À"¡£¤³
¤Îµ»ö¤Ï `2h/08/10 ¤Ë¸«¤Ä¤±¤¿¡¢¼ê¸µ¤ÇÆ°ºî¥Æ¥¹¥È¤Ç¤¤½¤¦¤Êµ¤¤¬¤·¤Æ¤¤¿¡£
¥á¡Ý¥ë¥ê¥ì¡Ý FortiMail ¤ÇÀßÄê¤Ë´Ø·¸¤·¤½¤¦¤Ê½ê¡£[¥á¡Ý¥ëÀßÄê]->[¥É¥á¥¤¥ó]->{¥É¥á¥¤
¥ó} "[-]nix.co.jj" ¤ò¥¯¥ê¥Ã¥¯¤·¤Æ½Ð¤¿²èÌ̤ˤơ£{¢¦¹âÅÙ¤ÊÀßÄê} ¤Î {>DKIMÀßÄê}¤³¤³
¤ËÈëÌ©¸°¤òÃÖ¤¯¤Î¤«¤Ê¡£[¥»¥Ã¥·¥ç¥ó]->[¥»¥Ã¥·¥ç¥ó]->{¥»¥Ã¥·¥ç¥ó} "¥»¥Ã¥·¥ç¥ó¥×¥í¥Õ
¥¡¥¤¥ë" Ǥ°Õ¡ÝǤ°Õ ¤ËÀßÄê¡£ ¢¤Á÷¿®¼Ô¸¡¾Ú¡¢¡ºDKIM¥Á¥§¥Ã¥¯¤ò͸ú¡¢¢¢³°Éô¤ËÁ÷¿®¤¹¤ë
¥á¥Ã¥»¡Ý¥¸¤ÎDKIM½ð̾¤ò͸ú¡¢¢¢DKIM½ð̾¤òǧ¾Ú¤µ¤ì¤¿Á÷¿®¼Ô¤Î¤ß͸ú¡££Ä£Î£Ó¥µ¡Ý¥Ð¤Ï
¼ÒÆâÍѤΠNetAttest D3 ¤òÍѤ¤¤Æ¡¢TXT ¥ì¥³¡Ý¥É¤Ë¸ø³«¸°¤òÃÖ¤±¤Ð¤¤¤¤¡£¤ä¤ó¤Ê¤¤¤±¤É¤Í¡£