Sun Java System Portal Server Secure Remote Access 6 2005Q1 °ü¸® ¼³¸í¼ |
2Àå
°ÔÀÌÆ®¿þÀÌÀÌ Àå¿¡¼´Â °ÔÀÌÆ®¿þÀÌ °ü·Ã °³³ä°ú °ÔÀÌÆ®¿þÀÌÀÇ ¿øÈ°ÇÑ ½ÇÇà¿¡ ÇÊ¿äÇÑ Á¤º¸¸¦ ¼³¸íÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ±¸¼º¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº 9Àå, "°ÔÀÌÆ®¿þÀÌ ±¸¼º"À» ÂüÁ¶ÇϽʽÿÀ.
ÀÌ Àå¿¡¼´Â ´ÙÀ½ ÁÖÁ¦¸¦ ´Ù·ì´Ï´Ù.
°ÔÀÌÆ®¿þÀÌÀÇ °³¿ä°ÔÀÌÆ®¿þÀÌ´Â ÀÎÅͳÝÀ» ÅëÇØ µé¾î¿À´Â ¿ø°Ý »ç¿ëÀÚ ¼¼¼Ç°ú ȸ»ç ÀÎÆ®¶ó³Ý »çÀÌ¿¡¼ ÀÎÅÍÆäÀ̽º¿Í º¸¾È À庮À» Á¦°øÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ´Â ¿ø°Ý »ç¿ëÀÚ¿¡ ´ëÇÑ ´ÜÀÏ ÀÎÅÍÆäÀ̽º¸¦ ÅëÇØ ³»ºÎ À¥ ¼¹ö¿Í ÀÀ¿ë ÇÁ·Î±×·¥ ¼¹ö¿¡¼ ¾ÈÀüÇÏ°Ô ÄÁÅÙÆ®¸¦ Á¦°øÇÕ´Ï´Ù.
°¢ °ÔÀÌÆ®¿þÀÌ¿¡¼ ´ÙÀ½ ÀÛ¾÷À» ¼öÇàÇØ¾ß ÇÕ´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¸¸µé±â. ÀÚ¼¼ÇÑ ³»¿ëÀº °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
- °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¸¸µé±â. ÀÚ¼¼ÇÑ ³»¿ëÀº °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
- °ÔÀÌÆ®¿þÀÌ ±¸¼º. 9Àå, "°ÔÀÌÆ®¿þÀÌ ±¸¼º"À» ÂüÁ¶ÇϽʽÿÀ.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¸¸µé±â°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ¿¡´Â °ÔÀÌÆ®¿þÀÌ°¡ ¼ö½ÅÇÏ´Â Æ÷Æ®, SSL ¿É¼Ç ¹× ÇÁ·Ï½Ã ¿É¼Ç°ú °°ÀÌ °ÔÀÌÆ®¿þÀÌ ±¸¼º¿¡ °ü·ÃµÈ ¸ðµç Á¤º¸°¡ µé¾î ÀÖ½À´Ï´Ù.
°ÔÀÌÆ®¿þÀ̸¦ ¼³Ä¡ÇÒ ¶§ ±âº»°ªÀ» ¼±ÅÃÇϸé "±âº»"À̶ó´Â ±âº» °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀÌ ¸¸µé¾îÁý´Ï´Ù. ±âº» ÇÁ·ÎÇÊ¿¡ ÇØ´çÇÏ´Â ±¸¼º ÆÄÀÏÀº ´ÙÀ½ À§Ä¡¿¡ ÀÖ½À´Ï´Ù.
/etc/opt/SUNWps/platform.conf.default
¿©±â¼ /etc/opt/SUNWps´Â ¸ðµç platform.conf.* ÆÄÀÏÀ» À§ÇÑ ±âº» À§Ä¡ÀÔ´Ï´Ù.
platform.conf ÆÄÀÏ ³»¿ë¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº platform.conf ÆÄÀÏ ÀÌÇظ¦ ÂüÁ¶ÇϽʽÿÀ.
°¡´ÉÇÑ ÀÛ¾÷:
- ¿©·¯ ÇÁ·ÎÇÊÀ» ¸¸µé¾î °¢ ÇÁ·ÎÇÊ¿¡ ´ëÇÑ ¼Ó¼ºÀ» Á¤ÀÇÇÑ ´ÙÀ½ ÀÌ ÇÁ·ÎÇÊÀ» ÇÊ¿ä¿¡ µû¶ó ¼·Î ´Ù¸¥ °ÔÀÌÆ®¿þÀÌ¿¡ ÇÒ´çÇÒ ¼ö ÀÖ½À´Ï´Ù.
- ¼·Î ´Ù¸¥ ÄÄÇ»ÅÍ¿¡ ÀÖ´Â °ÔÀÌÆ®¿þÀÌ ¼³Ä¡¿¡ ´ÜÀÏ ÇÁ·ÎÇÊÀ» ÇÒ´çÇÒ ¼ö ÀÖ½À´Ï´Ù.
- °°Àº ÄÄÇ»ÅÍ¿¡¼ ½ÇÇàµÇ´Â ´ÜÀÏ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿¡ ¼·Î ´Ù¸¥ ÇÁ·ÎÇÊÀ» ÇÒ´çÇÒ ¼ö ÀÖ½À´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ¸¸µé·Á¸é
- Sun Java¢â System Access Manager °ü¸® Äֿܼ¡ °ü¸®ÀÚ·Î ·Î±×ÀÎÇÕ´Ï´Ù.
- [¼ºñ½º ±¸¼º] ÅÇÀ» ¼±ÅÃÇÕ´Ï´Ù.
- SRA ±¸¼º ¾Æ·¡¿¡¼ °ÔÀÌÆ®¿þÀÌ ¿·¿¡ ÀÖ´Â È»ìÇ¥¸¦ ´©¸¨´Ï´Ù.
¿À¸¥ÂÊ Ã¢¿¡ [°ÔÀÌÆ®¿þÀÌ] ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- [»õ·Î ¸¸µé±â]¸¦ ´©¸¨´Ï´Ù.
[»õ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¸¸µé±â] ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- »õ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀÇ À̸§À» ÀÔ·ÂÇÕ´Ï´Ù.
- µå·Ó´Ù¿î ¸ñ·Ï¿¡¼ »õ ÇÁ·ÎÇÊÀ» ¸¸µé ¶§ »ç¿ëÇÒ ÇÁ·ÎÇÊÀ» ¼±ÅÃÇÕ´Ï´Ù.
±âº»ÀûÀ¸·Î ¸¸µé¾îÁö´Â »õ ÇÁ·ÎÇÊÀº ¸ðµÎ »çÀü Á¦°øµÈ ±âº» ÇÁ·ÎÇÊÀ» ±âÁØÀ¸·Î ÇÕ´Ï´Ù. »ç¿ëÀÚ Á¤ÀÇ ÇÁ·ÎÇÊÀ» ¸¸µç °æ¿ì µå·Ó´Ù¿î ¸ñ·Ï¿¡¼ ÇØ´ç ÇÁ·ÎÇÊÀ» ¼±ÅÃÇÒ ¼ö ÀÖ½À´Ï´Ù. »õ ÇÁ·ÎÇÊÀº ¼±ÅÃÇÑ ÇÁ·ÎÇÊÀÇ ¸ðµç ¼Ó¼ºÀ» »ó¼ÓÇÕ´Ï´Ù.
±âÁ¸ ÇÁ·ÎÇÊÀ» º¹»çÇÏ¿© »õ ÇÁ·ÎÇÊÀ» ¸¸µå´Â °æ¿ì Æ÷Æ®µµ µ¿ÀÏÇÏ°Ô º¹»çµË´Ï´Ù. »õ ÇÁ·ÎÇÊÀÇ Æ÷Æ®¸¦ ±âÁ¸ ÇÁ·ÎÇÊ°ú Ãæµ¹ÇÏÁö ¾Êµµ·Ï º¯°æÇϽʽÿÀ.
- [¸¸µé±â]¸¦ ´©¸¨´Ï´Ù.
»õ ÇÁ·ÎÇÊÀÌ ¸¸µé¾îÁö¸ç »õ ÇÁ·ÎÇÊÀÌ ³ª¿µÈ [°ÔÀÌÆ®¿þÀÌ] ÆäÀÌÁö·Î µ¹¾Æ°©´Ï´Ù.
- gwmultiinstance ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÏ¿© °ÔÀÌÆ®¿þÀÌÀÇ »õ ÀνºÅϽº¸¦ ¸¸µì´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ½ÃÀÛ ¹× ÁßÁö¸¦ ÂüÁ¶ÇϽʽÿÀ.
- º¯°æ »çÇ×À» Àû¿ëÇÏ·Á¸é ÀÌ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ À̸§ÀÇ °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
°ÔÀÌÆ®¿þÀÌ ½ÃÀÛ ¹× ÁßÁöÀ» ÂüÁ¶ÇϽʽÿÀ. °ÔÀÌÆ®¿þÀ̸¦ ±¸¼ºÇÏ·Á¸é 9Àå, "°ÔÀÌÆ®¿þÀÌ ±¸¼º"À» ÂüÁ¶ÇϽʽÿÀ.
platform.conf ÆÄÀÏ ÀÌÇØplatform.conf ÆÄÀÏÀº ±âº»ÀûÀ¸·Î ´ÙÀ½ À§Ä¡¿¡ ÀÖ½À´Ï´Ù.
/etc/opt/SUNWps
platform.conf ÆÄÀÏ¿¡´Â °ÔÀÌÆ®¿þÀÌ¿¡ ÇÊ¿äÇÑ »ó¼¼ Á¤º¸°¡ µé¾î ÀÖ½À´Ï´Ù. ÀÌ Àý¿¡´Â ¿¹Á¦ platform.conf ÆÄÀÏÀÌ ³ª¿Í ÀÖÀ¸¸ç ¸ðµç Ç׸ñ¿¡ ´ëÇØ ¼³¸íÇÕ´Ï´Ù.
¸ðµç ÄÄÇ»Åͺ° »ó¼¼ Á¤º¸¸¦ ±¸¼º ÆÄÀÏ¿¡ Æ÷ÇÔ½ÃÅ°¸é °øÅë ÇÁ·ÎÇÊÀ» ¿©·¯ ÄÄÇ»ÅÍ¿¡¼ ½ÇÇàµÇ´Â °ÔÀÌÆ®¿þÀÌ¿¡¼ °øÀ¯ÇÒ ¼ö ÀÖ´Ù´Â ÀåÁ¡ÀÌ ÀÖ½À´Ï´Ù.
´ÙÀ½Àº ¿¹Á¦ÀÔ´Ï´Ù.
#
# Copyright 11/28/00 Sun Microsystems, Inc. All Rights Reserved.
# "@(#)platform.conf 1.38 00/11/28 Sun Microsystems"
#
gateway.user=noaccess
gateway.jdk.dir=/usr/java_1.3.1_06
gateway.dsame.agent=http://pserv2.iportal.com:8080/sunportal/RemoteConfigServlet
portal.server.protocol=http
portal.server.host=pserv2.iportal.com
portal.server.port=8080
gateway.protocol=https
gateway.host=siroe.india.sun.com
gateway.port=333
gateway.trust_all_server_certs=true
gateway.trust_all_server_cert_domains=false
gateway.virtualhost=siroe1.india.sun.com 10.13.147.81
gateway.virtualhost.defaultOrg=o=root,dc=test,dc=com
gateway.notification.url=/notification
gateway.retries=6
gateway.debug=error
gateway.debug.dir=/var/opt/SUNWps/debug
gateway.logdelimiter=&&
gateway.external.ip=10.12.147.71
gateway.certdir=/etc/opt/SUNWps/cert/portal
gateway.allow.client.caching=true
gateway.userProfile.cacheSize=1024
gateway.userProfile.cacheSleepTime=60000
gateway.userProfile.cacheCleanupTime=300000
gateway.bindipaddress=10.12.147.71
gateway.sockretries=3
gateway.enable.accelerator=false
gateway.enable.customurl=false
gateway.httpurl=http://siroe.india.sun.com
gateway.httpsurl=https://siroe.india.sun.com
gateway.favicon=https://siroe.india.sun.com
gateway.logging.password=ALKJDF123SFLKJJSDFU
portal.server.instance=
gateway.cdm.cacheSleepTime=60000
gateway.cdm.cacheCleanUpTime=300000
netletproxy.port=10555
rewriterproxy.port=10556
Ç¥ 2-1¿¡´Â platform.conf ÆÄÀÏ¿¡ ÀÖ´Â ¸ðµç Çʵ尡 ³ª¿µÇ°í ÀÌ¿¡ ´ëÇÑ ¼³¸íÀÌ ³ª¿Í ÀÖ½À´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¸¸µé±âgwmultiinstance ½ºÅ©¸³Æ®¸¦ »ç¿ëÇÏ¿© °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¸¦ ¸¸µé°Å³ª Á¦°ÅÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ¸¸µç ÈÄ¿¡ ÀÌ ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇϽʽÿÀ.
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ´ÙÀ½ µð·ºÅ丮·Î À̵¿ÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/
- ´ÙÁß ÀνºÅϽº ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÕ´Ï´Ù.
./gwmultiinstance
´ÙÀ½ ¼³Ä¡ ¿É¼Ç Áß Çϳª¸¦ ¼±ÅÃÇÕ´Ï´Ù.
1) Create a new gateway instance
2) Remove a gateway instance
3) Remove all gateway instances
4) Exit
1À» ¼±ÅÃÇÑ °æ¿ì ´ÙÀ½ Áú¹®¿¡ ´äÇϽʽÿÀ.
What is the name of the new gateway instance?
What protocol will the new gateway instance use?? [https]
What port will the new gateway instance listen on??
What is the fully qualified hostname of the portal server?
What port should be used to access the portal server?
What protocol should be used to access the portal server? [http]
What is the portal server deploy URI?
What is the organization DN? [dc=iportal,dc=com]
What is the Access Manager URI? [/amserver]
What is the Access Manager password encryption key?
Á÷Á¢ ¼¸íÇÑ ÀÎÁõ¼¸¦ ¸¸µå´Â µ¥ ÇÊ¿äÇÑ ´ÙÀ½ Á¤º¸¸¦ ÀÔ·ÂÇϽʽÿÀ.
What is the name of your organization?
What is the name of your division?
What is the name of your city or locality?
What is the name of your state or province?
What is the two-letter country code?
What is the password for the Certificate Database? Again?
What is the password for the logging user? Again?
Have you created the new gateway profile in the admin console? [y]/n
Start the gateway after installation? [y]/n
- »õ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ À̸§À¸·Î °ÔÀÌÆ®¿þÀÌÀÇ »õ ÀνºÅϽº¸¦ ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
¿©±â¼ gateway-profile-name Àº »õ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽºÀÔ´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¿Ü¿¡µµ AMConfig-.instance-name.properties ÆÄÀÏÀÌ /etc/opt/SUNWam/config µð·ºÅ丮¿¡ ¸¸µé¾îÁý´Ï´Ù.
platform.conf ÆÄÀÏ¿¡ portal.server.instance µî·Ï Á¤º¸°¡ ÀÖÀ¸¸é °ÔÀÌÆ®¿þÀÌ¿¡¼ ±×¿¡ ÇØ´çÇÏ´Â AMConfig-instance-name.properties ÆÄÀÏÀ» ÀнÀ´Ï´Ù. platform.conf ÆÄÀÏ¿¡ portal.server.instance µî·Ï Á¤º¸°¡ ¾øÀ¸¸é °ÔÀÌÆ®¿þÀÌ¿¡¼ ±âº» AMConfig ÆÄÀÏ (AMConfig.properties) À» ÀнÀ´Ï´Ù.
´ÙÁß È¨ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¸¸µé±â
´ÙÁß È¨ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¸¦ ¸¸µå´Â °æ¿ì, Áï ÇÑ Portal Server¿¡ ¿©·¯ °ÔÀÌÆ®¿þÀ̸¦ ¸¸µå´Â °æ¿ì¿¡´Â ´ÙÀ½°ú °°ÀÌ platform.conf ÆÄÀÏÀ» ¼öÁ¤ÇØ¾ß ÇÕ´Ï´Ù.
gatewaybindipaddress = 0.0.0.0
°°Àº LDAP¸¦ »ç¿ëÇÏ¿© °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¸¸µé±â
°°Àº LDAP¸¦ »ç¿ëÇÏ´Â °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº ¿©·¯ °³¸¦ ¸¸µå´Â °æ¿ì¿¡´Â ù °ÔÀÌÆ®¿þÀ̸¦ ¸¸µç ÈÄ¿¡ ±× µÚÀÇ ¸ðµç °ÔÀÌÆ®¿þÀÌ¿¡¼ ´ÙÀ½À» ¼öÇàÇÕ´Ï´Ù.
/etc/opt/SUNWam/config/¿¡¼ AMConfig-instance-name.propertiesÀÇ ´ÙÀ½ ¿µ¿ªÀ» óÀ½ ¼³Ä¡ÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿Í ÀÏÄ¡Çϵµ·Ï ¼öÁ¤ÇÕ´Ï´Ù.
- ¾ÏÈ£ÀÇ ¾ÏÈ£È¿Í Çص¶¿¡ »ç¿ëµÇ´Â Å°¸¦ ù °ÔÀÌÆ®¿þÀÌ¿Í °°Àº ¹®ÀÚ¿·Î ´ëüÇÕ´Ï´Ù.
am.encryption.pwd= string_key_specified_in gateway-install
- ÀÀ¿ë ÇÁ·Î±×·¥ ÀÎÁõ ¸ðµâÀÇ °øÀ¯ ºñ¹Ð¿¡ ÇØ´çÇÏ´Â Å°¸¦ ´ëüÇÕ´Ï´Ù.
com.iplanet.am.service.secret= string_key_specified_in gateway-install
- /etc/opt/SUNWam/config/ums¿¡¼ serverconfig.xmlÀÇ ´ÙÀ½ ¿µ¿ªÀ» óÀ½ ¼³Ä¡ÇÑ Portal-Identity Server¿Í ´Ù¸¥ °ªÀ¸·Î ¼öÁ¤ÇÕ´Ï´Ù.
<DirDN> cn=puser,ou=DSAME Users,dc=sun,dc=net</DirDN>
<DirPassword>string_key_specified_in gateway-install</DirPassword>
<DirDN>cn=dsameuser,ou=DSAME Users,dc=sun,dc=net</DirDN>
<DirPassword>string_key_specified_in gateway-install </DirPassword>
- amserver ¼ºñ½º¸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
chroot ȯ°æ¿¡¼ °ÔÀÌÆ®¿þÀÌ ½ÇÇàchroot ȯ°æ¿¡¼ º¸¾ÈÀ» °ÈÇÏ·Á¸é chroot µð·ºÅ丮 ÄÁÅÙÆ®°¡ °¡´ÉÇÑ Àû¾î¾ß ÇÕ´Ï´Ù. ¿¹¸¦ µé¾î, »ç¿ëÀÚ°¡ chroot µð·ºÅ丮ÀÇ ÆÄÀÏÀ» ¼öÁ¤ÇÒ ¼ö ÀÖ´Â ÇÁ·Î±×·¥ÀÌ ÀÖÀ¸¸é chroot´Â chroot Æ®¸®¿¡¼ ÆÄÀÏÀ» ¼öÁ¤ÇÏ´Â °ø°ÝÀڷκÎÅÍ ¼¹ö¸¦ º¸È£ÇÏÁö ¾Ê½À´Ï´Ù. CGI ÇÁ·Î±×·¥Àº bourne shell, c-shell, korn shell ¶Ç´Â perl°ú °°Àº Çؼ®µÈ ¾ð¾î·Î ÀÛ¼ºÇÏ¸é ¾È µÇ¸ç Çؼ®ÀÚ°¡ chroot µð·ºÅ丮 Æ®¸®¿¡ ³õÀ» ÇÊ¿ä°¡ ¾øµµ·Ï ÀÌÁø Çü½ÄÀ¸·Î ÄÄÆÄÀÏÇØ¾ß ÇÕ´Ï´Ù.
chroot¸¦ ¼³Ä¡ÇÏ·Á¸é
- ·çÆ®·Î ·Î±×ÀÎÇÏ°í ´Ü¸»±â â¿¡¼ ´ÙÀ½ ÆÄÀÏÀ» ³×Æ®¿öÅ©¿¡ ÀÖ´Â ÄÄÇ»Åͳª ¹é¾÷ Å×ÀÌÇÁ ¶Ç´Â Ç÷ÎÇÇ µð½ºÅ©¿Í °°Àº ¿ÜºÎ ¼Ò½º·Î º¹»çÇÕ´Ï´Ù.
cp /etc/vfstab external-device
cp /etc/nsswitch.conf external-device
cp /etc/hosts external-device
- ´ÙÀ½ µð·ºÅ丮¿¡¼ mkchroot ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÕ´Ï´Ù.
portal-server-install-root/SUNWps/bin/chroot
Âü°í
½ÇÇàµÇ±â ½ÃÀÛÇϸé mkchroot ½ºÅ©¸³Æ®´Â Ctrl-C¸¦ ´·¯ Á¾·áÇÒ ¼ö ¾ø½À´Ï´Ù.
mkchroot ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÏ´Â µ¿¾È ¿À·ù°¡ ¹ß»ýÇϸé mkchroot ½ºÅ©¸³Æ®ÀÇ ½ÇÇà ½ÇÆи¦ ÂüÁ¶ÇϽʽÿÀ.
´Ù¸¥ ·çÆ® µð·ºÅ丮¸¦ ÀÔ·ÂÇ϶ó´Â ¸Þ½ÃÁö°¡ ³ªÅ¸³³´Ï´Ù (new_root_directory). ½ºÅ©¸³Æ®¿¡¼ »õ µð·ºÅ丮¸¦ ¸¸µì´Ï´Ù.
´ÙÀ½ ¿¹Á¦¿¡¼´Â /safedir/chroot°¡ new_root_directoryÀÔ´Ï´Ù.
- platform.conf ÆÄÀÏ¿¡ ¾ð±ÞµÈ Java µð·ºÅ丮¸¦ ´ÙÀ½ ¸í·ÉÀ» »ç¿ëÇÏ¿© ¼öµ¿À¸·Î chroot µð·ºÅ丮¿¡ ¸¶¿îÆ®ÇÕ´Ï´Ù.
mkdir -p /safedir/chroot/java-dir
mount -F lofs java-dir /safedir/chroot/java-dir
Solaris 9¿¡¼´Â ´ÙÀ½À» ¼öÇàÇÕ´Ï´Ù.
mkdir -p /safedir/chroot/usr/lib/32
mount -F lofs /usr/lib/32 /safedir/chroot/usr/lib/32
mkdir -p /safedir/chroot/usr/lib/64
mount -F lofs /usr/lib/64 /safedir/chroot/usr/lib/64
½Ã½ºÅÛÀ» ½ÃÀÛÇÒ ¶§ ÀÌ µð·ºÅ丮¸¦ ¸¶¿îÆ®ÇÏ·Á¸é /etc/vfstab ÆÄÀÏ¿¡ ÇØ´ç Ç׸ñÀ» Ãß°¡ÇÕ´Ï´Ù.
java-dir - /safedir/chroot/java-dir lofs - no -
Solaris 9ÀÇ °æ¿ì:
/usr/lib/32 - /safedir/chroot/usr/lib/32 lofs - no -
/usr/lib/64 - /safedir/chroot/usr/lib/64 lofs - no -
Linux
# mount red.iplanet.com:/misc/export /misc/local
¿©±â¼
red.iplanet.comÀº NFS ÆÄÀÏ ¼¹öÀÇ È£½ºÆ® À̸§ÀÔ´Ï´Ù.
/misc/export´Â red.iplanet.com¿¡¼ ³»º¸³»´Â ÆÄÀÏ ½Ã½ºÅÛÀÔ´Ï´Ù.
/misc/localÀº ÆÄÀÏ ½Ã½ºÅÛÀ» ¸¶¿îÆ®ÇÒ ·ÎÄà ½Ã½ºÅÛ À§Ä¡ÀÔ´Ï´Ù.
Âü°í: ·ÎÄà ½Ã½ºÅÛÀÇ ¸¶¿îÆ® ÁöÁ¡ µð·ºÅ丮 (À§ÀÇ ¿¹¿¡¼ /misc/local) ´Â ¹Ýµå½Ã Á¸ÀçÇØ¾ß ÇÕ´Ï´Ù.
¸¶¿îÆ® ¸í·ÉÀÌ ½ÇÇàµÇ°í red.iplanet.com NFS ¼¹ö¿¡¼ ÀûÀýÇÑ Å¬¶óÀ̾ðÆ® ±ÇÇÑÀ» ÇÒ´ç ¹ÞÀº ÈÄ, Ŭ¶óÀ̾ðÆ® »ç¿ëÀÚ°¡ ¸í·É ls /misc/localÀ» ½ÇÇàÇÏ¿© red.iplanet.comÀÇ /misc/export¿¡ ÀÖ´Â ÆÄÀÏ ¸ñ·ÏÀ» Ç¥½ÃÇÒ ¼ö ÀÖ½À´Ï´Ù.
- ¾Æ·¡ ¸í·ÉÀ» ÀÔ·ÂÇÏ¿© °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
mkchroot ½ºÅ©¸³Æ®ÀÇ ½ÇÇà ½ÇÆÐ
mkchroot ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÏ´Â µ¿¾È ¿À·ù°¡ ¹ß»ýÇÏ¸é ½ºÅ©¸³Æ®¿¡¼ ÆÄÀÏÀ» Ãʱ⠻óÅ·Πº¹¿øÇÕ´Ï´Ù.
´ÙÀ½ ¿¹Á¦¿¡¼´Â /safedir/chroot°¡ chroot µð·ºÅ丮ÀÔ´Ï´Ù.
´ÙÀ½ ¿À·ù ¸Þ½ÃÁö°¡ ¹ß»ýÇÑ °æ¿ì,
Not a Clean Exit
- chroot¸¦ ¼³Ä¡ÇÏ·Á¸éÀÇ 1´Ü°è¿¡¼ ¹é¾÷ ÆÄÀÏÀ» ¿ø·¡ À§Ä¡·Î º¹»çÇÏ°í ´ÙÀ½ ¸í·ÉÀ» ½ÇÇàÇÕ´Ï´Ù.
umount /safedir/chroot/usr/java1.2
umount /safedir/chroot/proc
umount /safedir/chroot/dev/random
- /safedir/chroot µð·ºÅ丮¸¦ Á¦°ÅÇÕ´Ï´Ù.
chroot ȯ°æ¿¡¼ °ÔÀÌÆ®¿þÀÌ ´Ù½Ã ½ÃÀÛ°ÔÀÌÆ®¿þÀÌ ½Ã½ºÅÛÀ» ÀçºÎÆ®ÇÒ ¶§¸¶´Ù chroot ȯ°æ¿¡¼ °ÔÀÌÆ®¿þÀ̸¦ ½ÃÀÛÇÏ·Á¸é ´ÙÀ½ ´Ü°è¸¦ ¼öÇàÇÕ´Ï´Ù.
chroot ȯ°æ¿¡¼ °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÏ·Á¸é
°ÔÀÌÆ®¿þÀÌ ½ÃÀÛ ¹× ÁßÁö±âº»ÀûÀ¸·Î °ÔÀÌÆ®¿þÀÌ´Â »ç¿ëÀÚ noaccess·Î ½ÃÀ۵˴ϴÙ.
°ÔÀÌÆ®¿þÀ̸¦ ½ÃÀÛÇÏ·Á¸é
- °ÔÀÌÆ®¿þÀ̸¦ ¼³Ä¡ÇÏ°í ÇÊ¿äÇÑ ÇÁ·ÎÇÊÀ» ¸¸µç ÈÄ ´ÙÀ½ ¸í·ÉÀ» ½ÇÇàÇÏ¿© °ÔÀÌÆ®¿þÀ̸¦ ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n default start
default´Â ¼³Ä¡ Áß¿¡ ¸¸µé¾îÁö´Â ±âº» °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀÔ´Ï´Ù. ³ªÁß¿¡ °íÀ¯ÇÑ ÇÁ·ÎÇÊÀ» ¸¸µé°í »õ ÇÁ·ÎÇÊ·Î °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÒ ¼ö ÀÖ½À´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
´ÙÁß °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº°¡ ÀÖ´Ù¸é ´ÙÀ½À» »ç¿ëÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway start
ÀÌ ¸í·ÉÀº ƯÁ¤ ÄÄÇ»ÅÍ¿¡ ±¸¼ºµÈ ¸ðµç °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¸¦ ½ÃÀÛÇÕ´Ï´Ù.
Âü°í
¼¹ö¸¦ ´Ù½Ã ½ÃÀÛÇϸé (°ÔÀÌÆ®¿þÀÌÀÇ ÀνºÅϽº¸¦ ±¸¼ºÇÑ ¼¹ö) °ÔÀÌÆ®¿þÀÌÀÇ ±¸¼ºµÈ ÀνºÅϽº°¡ ¸ðµÎ ´Ù½Ã ½ÃÀ۵˴ϴÙ.
/etc/opt/SUNWps µð·ºÅ丮¿¡ ±âÁ¸ ÇÁ·ÎÇÊÀ̳ª ¹é¾÷ ÇÁ·ÎÇÊÀÌ ¾ø¾î¾ß ÇÕ´Ï´Ù.
°ÔÀÌÆ®¿þÀ̸¦ ÁßÁöÇÏ·Á¸é
°ÔÀÌÆ®¿þÀÌ ´Ù½Ã ½ÃÀÛÀϹÝÀûÀ¸·Î °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÒ ÇÊ¿ä°¡ ¾ø½À´Ï´Ù. ´ÙÀ½ À̺¥Æ®°¡ ¹ß»ýÇÑ °æ¿ì¿¡¸¸ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
´Ù¸¥ ÇÁ·ÎÇÊ·Î °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÏ·Á¸é
°ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n new-gateway-profile-name start
°ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÏ·Á¸é
´Ü¸»±â â¿¡¼ ·çÆ®·Î ¿¬°áÇÏ°í ´ÙÀ½ ÀÛ¾÷ Áß Çϳª¸¦ ¼öÇàÇÕ´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ¿öÄ¡µ¶À» ±¸¼ºÇÏ·Á¸é
¿öÄ¡µ¶ÀÌ °ÔÀÌÆ®¿þÀÌÀÇ »óŸ¦ ¸ð´ÏÅ͸µÇÏ°Ô µÉ ½Ã°£ °£°ÝÀ» ¼³Á¤ÇÒ ¼ö ÀÖ½À´Ï´Ù. ½Ã°£ °£°ÝÀº ±âº»ÀûÀ¸·Î 60ÃÊ·Î ¼³Á¤µË´Ï´Ù. ÀÌ ±âº» ¼³Á¤À» º¯°æÇÏ·Á¸é crontab À¯Æ¿¸®Æ¼¿¡¼ ´ÙÀ½ ÁÙÀ» ÆíÁýÇÕ´Ï´Ù.
0-59 * * * * gateway-install-root/SUNWps/bin/
/var/opt/SUNWps/.gw. 5 > /dev/null 2>&1
crontab Ç׸ñÀ» ±¸¼ºÇÏ·Á¸é crontab man ÆäÀÌÁö¸¦ ÂüÁ¶ÇϽʽÿÀ.
°¡»ó È£½ºÆ® ÁöÁ¤°¡»ó È£½ºÆ®´Â °°Àº ½Ã½ºÅÛ IP¿Í È£½ºÆ® À̸§À» °¡¸®Å°´Â Ãß°¡ È£½ºÆ® À̸§ÀÔ´Ï´Ù. ¿¹¸¦ µé¾î È£½ºÆ® À̸§ a.b.c°¡ È£½ºÆ® IP ÁÖ¼Ò 192.155.205.133À» °¡¸®Å°´Â °æ¿ì, °°Àº IP ÁÖ¼Ò¸¦ °¡¸®Å°´Â ´Ù¸¥ È£½ºÆ® À̸§ c.d.e¸¦ Ãß°¡ÇÒ ¼ö ÀÖ½À´Ï´Ù.
°¡»ó È£½ºÆ®¸¦ ÁöÁ¤ÇÏ·Á¸é
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽºÀÇ platform.conf ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
/etc/opt/SUNWps/platform.conf.gateway-profile-name
- ´ÙÀ½ Ç׸ñÀ» Ãß°¡ÇÕ´Ï´Ù.
gateway.virtualhost=fully-qualified-gateway-host gateway-ip-address fully- qualified-reverse-proxyhost
gateway.enable.customurl=true (ÀÌ °ªÀº ±âº»ÀûÀ¸·Î false·Î ¼³Á¤µË´Ï´Ù.)
- °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
°ªÀÌ ÁöÁ¤µÇ¾î ÀÖÁö ¾ÊÀ¸¸é °ÔÀÌÆ®¿þÀÌ¿¡¼´Â ±âº»ÀûÀ¸·Î ÀϹÝÀûÀÎ ÀÛµ¿À» ÇÕ´Ï´Ù.
Access Manage¿¡ Á¢¼ÓÇÒ ÇÁ·Ï½Ã ÁöÁ¤°ÔÀÌÆ®¿þÀÌ¿¡¼ ÇÁ·Ï½Ã È£½ºÆ®¸¦ »ç¿ëÇÏ¿© Portal Server¿¡ ¹èÆ÷µÇ´Â SRA ÄÚ¾î (RemoteConfigServlet) ¿¡ Á¢¼ÓÇϵµ·Ï ÁöÁ¤ÇÒ ¼ö ÀÖ½À´Ï´Ù. ÀÌ ÇÁ·Ï½Ã´Â °ÔÀÌÆ®¿þÀÌ°¡ Portal Server¿Í Access Manager¿¡ Á¢¼ÓÇϱâ À§ÇØ »ç¿ëµË´Ï´Ù.
ÇÁ·Ï½Ã¸¦ ÁöÁ¤ÇÏ·Á¸é
- ¸í·ÉÁÙ¿¡¼ ´ÙÀ½ ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
/etc/opt/SUNWps/platform.conf.gateway-profile-name
- ´ÙÀ½ Ç׸ñÀ» Ãß°¡ÇÕ´Ï´Ù.
http.proxyHost=proxy-host
http.proxyPort=proxy-port
http.proxySet=true
- ¼¹ö¿¡ Á¦ÃâµÈ ¿äû¿¡ ÁöÁ¤µÈ ÇÁ·Ï½Ã¸¦ »ç¿ëÇÒ ¼ö ÀÖµµ·Ï °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
À¥ ÇÁ·Ï½Ã »ç¿ëŸ»ç À¥ ÇÁ·Ï½Ã¸¦ »ç¿ëÇÏ¿© HTTP ¸®¼Ò½º¿¡ ¿¬°áÇϵµ·Ï °ÔÀÌÆ®¿þÀ̸¦ ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. À¥ ÇÁ·Ï½Ã´Â Ŭ¶óÀ̾ðÆ®¿Í ÀÎÅÍ³Ý »çÀÌ¿¡ »óÁÖÇÕ´Ï´Ù.
À¥ ÇÁ·Ï½Ã ±¸¼º
¿©·¯ µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀο¡ ¼·Î ´Ù¸¥ ÇÁ·Ï½Ã°¡ »ç¿ëµÉ ¼ö ÀÖ½À´Ï´Ù. ÀÌ Ç׸ñÀº ƯÁ¤ µµ¸ÞÀο¡¼ ƯÁ¤ ºÎ¼Ó µµ¸ÞÀο¡ ¿¬°áÇÒ ¶§ ¾î¶² ÇÁ·Ï½Ã¸¦ »ç¿ëÇÒÁö °ÔÀÌÆ®¿þÀÌ¿¡ ¾Ë·Á ÁÝ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ¿¡ ÁöÁ¤µÈ ÇÁ·Ï½Ã ±¸¼ºÀº ´ÙÀ½°ú °°ÀÌ ÀÛµ¿ÇÕ´Ï´Ù.
µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã ±¸¼º¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã ¸ñ·Ï ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
ÇÁ·Ï½Ã »ç¿ë ¿É¼ÇÀ» ±¸¼ºÇÏ·Á¸é À¥ ÇÁ·Ï½Ã »ç¿ë È°¼ºÈ¸¦ ÂüÁ¶ÇϽʽÿÀ.
±×¸² 2-1Àº °ÔÀÌÆ®¿þÀÌ ¼ºñ½ºÀÇ ÇÁ·Ï½Ã ±¸¼º¿¡ ±â¹ÝÇÏ¿© À¥ ÇÁ·Ï½Ã Á¤º¸°¡ ¾î¶»°Ô °áÁ¤µÇ´ÂÁö º¸¿©ÁÝ´Ï´Ù.
±×¸² 2-1 À¥ ÇÁ·Ï½Ã °ü¸®
±×¸² 2-1¿¡¼ ÇÁ·Ï½Ã »ç¿ëÀÌ È°¼ºÈµÇ¾î ÀÖ°í, ¿äûµÈ URLÀÌ [À¥ ÇÁ·Ï½Ã URL »ç¿ë ¾ÈÇÔ] ¸ñ·Ï¿¡ ³ª¿µÇ´Â °æ¿ì °ÔÀÌÆ®¿þÀÌ°¡ ´ë»ó È£½ºÆ®¿¡ Á÷Á¢ ¿¬°áµË´Ï´Ù.
ÇÁ·Ï½Ã »ç¿ëÀÌ È°¼ºÈµÇ¾î ÀÖ°í, ¿äûµÈ URLÀÌ [À¥ ÇÁ·Ï½Ã URL »ç¿ë ¾ÈÇÔ] ¸ñ·Ï¿¡ ³ª¿µÇÁö ¾ÊÀº °æ¿ì °ÔÀÌÆ®¿þÀÌ´Â ÁöÁ¤µÈ ÇÁ·Ï½Ã¸¦ ÅëÇØ ´ë»ó È£½ºÆ®¿¡ ¿¬°áµË´Ï´Ù. ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇ¾î ÀÖ´Â °æ¿ì¿¡´Â [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡¼ ãÀ¸¸é µË´Ï´Ù.
ÇÁ·Ï½Ã »ç¿ëÀÌ ºñÈ°¼ºÈµÇ¾î ÀÖ°í, ¿äûµÈ URLÀÌ [À¥ ÇÁ·Ï½Ã URL »ç¿ë] ¸ñ·Ï¿¡ ³ª¿µÇ¸é °ÔÀÌÆ®¿þÀÌ´Â [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ÀÖ´Â ÇÁ·Ï½Ã Á¤º¸¸¦ »ç¿ëÇÏ¿© ´ë»ó È£½ºÆ®¿¡ ¿¬°áµË´Ï´Ù.
ÇÁ·Ï½Ã »ç¿ëÀÌ ºñÈ°¼ºÈµÇ¾î ÀÖ°í, ¿äûµÈ URLÀÌ [À¥ ÇÁ·Ï½Ã URL »ç¿ë] ¸ñ·Ï¿¡ ³ª¿µÇÁö ¾ÊÀ¸¸é °ÔÀÌÆ®¿þÀÌ°¡ ´ë»ó È£½ºÆ®¿¡ Á÷Á¢ ¿¬°áµË´Ï´Ù.
À§¿¡ ¼³¸íµÈ Á¶°Ç Áß ¾î´À °Í¿¡µµ ÇØ´çÇÏÁö ¾Ê¾Æ¼ Á÷Á¢ ¿¬°áÀÌ ºÒ°¡´ÉÇÏ¸é ¿¬°áÇÒ ¼ö ¾ø´Ù´Â °ÔÀÌÆ®¿þÀÌ ¿À·ù ¸Þ½ÃÁö¸¦ Ç¥½ÃÇÕ´Ï´Ù.
Âü°í
Ç¥ÁØ Æ÷ÅÐ µ¥½ºÅ©Å¾ÀÇ Ã¥°¥ÇÇ Ã¤³ÎÀ» ÅëÇØ URL¿¡ ¾×¼¼½ºÇÏ´Â Áß¿¡ À§¿¡ ¼³¸íµÈ Á¶°Ç Áß ¾î´À °Íµµ ÃæÁ·µÇÁö ¾ÊÀ¸¸é °ÔÀÌÆ®¿þÀÌ´Â ºê¶ó¿ìÀú·Î ¸®µð·º¼ÇÇÕ´Ï´Ù. ±×·¯¸é ºê¶ó¿ìÀú´Â ÀÚü ÇÁ·Ï½Ã ¼³Á¤À» ÅëÇØ URL¿¡ ¾×¼¼½ºÇÕ´Ï´Ù.
±¸¹®
domainname [web_proxy1:port1]|subdomain1 [web_proxy2:port2]|......
¿¹
sesta.com wp1:8080|red wp2:8080|yellow|* wp3:8080
*´Â ¸ðµç Ç׸ñ°ú ÀÏÄ¡µÇ´Â ¿ÍÀϵåÄ«µåÀÔ´Ï´Ù.
¿©±â¼,
sesta.comÀº µµ¸ÞÀÎ À̸§ÀÌ°í wp1Àº Æ÷Æ® 8080¿¡ ¿¬°áÇÒ ÇÁ·Ï½ÃÀÔ´Ï´Ù.
red´Â ºÎ¼Ó µµ¸ÞÀÎÀÌ°í wp2´Â Æ÷Æ® 8080¿¡ ¿¬°áÇÒ ÇÁ·Ï½ÃÀÔ´Ï´Ù.
yellow´Â ºÎ¼Ó µµ¸ÞÀÎÀÔ´Ï´Ù. ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇ¾î ÀÖÁö ¾Ê°í Æ÷Æ® 8080¿¡ µµ¸ÞÀο¡ ÁöÁ¤µÈ ÇÁ·Ï½Ã Áï, wp1ÀÌ »ç¿ëµË´Ï´Ù.
*´Â ¸ðµç ´Ù¸¥ ºÎ¼Ó µµ¸ÞÀο¡¼ Æ÷Æ® 8080¿¡ wp3À» »ç¿ëÇØ¾ß ÇÔÀ» ³ªÅ¸³À´Ï´Ù.
À¥ ÇÁ·Ï½Ã Á¤º¸ ó¸®
Ŭ¶óÀ̾ðÆ®¿¡¼ ƯÁ¤ URL¿¡ ¾×¼¼½ºÇÏ·Á°í ÇÒ ¶§ URLÀÇ È£½ºÆ® À̸§Àº [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ÀÖ´Â Ç׸ñ°ú ÀÏÄ¡ÇÕ´Ï´Ù. ¿äûµÈ È£½ºÆ® À̸§ÀÇ °¡Àå ±ä Á¢¹Ì¾î¿¡ ÀÏÄ¡ÇÏ´Â Ç׸ñÀÌ ¼±Åõ˴ϴÙ. ¿¹¸¦ µé¾î, ¿äûµÈ È£½ºÆ® À̸§ÀÌ host1.sesta.comÀ̶ó°í °¡Á¤ÇØ º¸°Ú½À´Ï´Ù.
- [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã]¿¡ host1.sesta.comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. ÀÏÄ¡ÇÏ´Â Ç׸ñÀÌ ÀÖÀ¸¸é ÀÌ Ç׸ñ¿¡ ÁöÁ¤µÈ ÇÁ·Ï½Ã¸¦ ÅëÇØ ±× È£½ºÆ®¿¡ ¿¬°áµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é ¸ñ·Ï¿¡ *.sesta.comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. Ç׸ñÀ» ãÀ¸¸é ÇØ´ç ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é ¸ñ·Ï¿¡ sesta.comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. Ç׸ñÀ» ãÀ¸¸é ÇØ´ç ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é ¸ñ·Ï¿¡ *.comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. Ç׸ñÀ» ãÀ¸¸é ÇØ´ç ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é ¸ñ·Ï¿¡ comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. Ç׸ñÀ» ãÀ¸¸é ÇØ´ç ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é ¸ñ·Ï¿¡ *ÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù. Ç׸ñÀ» ãÀ¸¸é ÇØ´ç ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
- ±×·¸Áö ¾ÊÀ¸¸é Á÷Á¢ ¿¬°áÀÌ ½ÃµµµË´Ï´Ù.
[µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡¼ ´ÙÀ½ Ç׸ñÀ» °í·ÁÇÕ´Ï´Ù.
com p1| host1 p2 | host2 | * p3
sesta.com p4 | host5 p5 | * p6
florizon.com | host6
abc.sesta.com p8 | host7 p7 | host8 p8 | * p9
host6.florizon.com p10
host9.sesta.com p11
siroe.com | host12 p12 | host13 p13 | host14 | * p14
siroe.com | host15 p15 | host16 | * p16
* p17
°ÔÀÌÆ®¿þÀ̴ ǥ 2-2¿¡ ³ª¿Í ÀÖµíÀÌ ÀÌ Ç׸ñÀ» Å×ÀÌºí¿¡ ³»ºÎÀûÀ¸·Î ¸ÅÇÎÇÕ´Ï´Ù.
Ç¥ 2-2 µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã ¸ñ·Ï¿¡¼ Ç׸ñ ¸ÅÇÎ
¹øÈ£
µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã ¸ñ·ÏÀÇ Ç׸ñ
ÇÁ·Ï½Ã
¼³¸í
1
com
p1
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
2
host1.com
p2
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
3
host2.com
p1
host2¿¡ ´ëÇØ ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇÁö ¾Ê¾ÒÀ¸¹Ç·Î µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã°¡ »ç¿ëµË´Ï´Ù.
4
*.com
p3
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
5
sesta.com
p4
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
6
host5.sesta.com
p5
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
7
*.sesta.com
p6
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î
8
florizon.com
Á÷Á¢
ÀÚ¼¼ÇÑ ³»¿ëÀº Ç׸ñ 14¿¡ ´ëÇÑ ¼³¸í ÂüÁ¶
9
host6.florizon.com
–
ÀÚ¼¼ÇÑ ³»¿ëÀº Ç׸ñ 14¿¡ ´ëÇÑ ¼³¸í ÂüÁ¶
10
abc.sesta.com
p8
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
11
host7.abc.sesta.com
p7
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
12
host8.abc.sesta.com
p8
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
13
*.abc.sesta.com
p9
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î abc.sesta.com µµ¸ÞÀο¡¼ host7°ú host8À» Á¦¿ÜÇÑ ¸ðµç È£½ºÆ®¿¡´Â p9°¡ ÇÁ·Ï½Ã·Î »ç¿ëµË´Ï´Ù.
14
host6.florizon.com
p10
ÀÌ Ç׸ñÀº Ç׸ñ 9¿Í µ¿ÀÏÇÕ´Ï´Ù. ±×·¯³ª Ç׸ñ 9´Â Á÷Á¢ ¿¬°áÀ» ³ªÅ¸³»Áö¸¸, ÀÌ Ç׸ñÀº ÇÁ·Ï½Ã p10À» »ç¿ëÇØ¾ß ÇÔÀ» ³ªÅ¸³À´Ï´Ù. ÀÌ °æ¿ì¿Í °°ÀÌ 2°³ Ç׸ñÀÌ ÀÖ´Â °æ¿ì¿¡´Â ÇÁ·Ï½Ã Á¤º¸°¡ ÀÖ´Â Ç׸ñÀÌ À¯È¿ÇÑ Ç׸ñÀ¸·Î °£Áֵ˴ϴÙ. ´Ù¸¥ Ç׸ñÀº ¹«½ÃµË´Ï´Ù.
15
host9.sesta.com
p11
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
16
siroe.com
Á÷Á¢
siroe.com¿¡ ´ëÇØ ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇÁö ¾Ê¾ÒÀ¸¹Ç·Î Á÷Á¢ ¿¬°áÀ» ½ÃµµÇÕ´Ï´Ù.
17
host12.siroe.com
p12
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
18
host13.siroe.com
p13
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
19
host14.siroe.com
Á÷Á¢
host14¿¡ ´ëÇØ ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇÁö ¾Ê¾ÒÀ¸¹Ç·Î Á÷Á¢ ¿¬°áÀ» ½ÃµµÇÕ´Ï´Ù.
20
*.siroe.com
p14
Ç׸ñ 23¿¡ ´ëÇÑ ¼³¸í ÂüÁ¶.
21
host15.siroe.com
p15
¸ñ·Ï¿¡ ÁöÁ¤µÈ ´ë·Î.
22
host16.siroe.com
Á÷Á¢
host16 ¶Ç´Â siroe.com¿¡ ´ëÇØ ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇÁö ¾Ê¾ÒÀ¸¹Ç·Î Á÷Á¢ ¿¬°áÀ» ½ÃµµÇÕ´Ï´Ù.
23
*.siroe.com
p16
ÀÌ Ç׸ñÀº Ç׸ñ 20°ú ºñ½ÁÇÏÁö¸¸ ÁöÁ¤µÈ ÇÁ·Ï½Ã°¡ ´Ù¸¨´Ï´Ù. ÀÌ·± °æ¿ì °ÔÀÌÆ®¿þÀÌÀÇ Á¤È®ÇÑ µ¿ÀÛÀº ¾Ë ¼ö ¾ø½À´Ï´Ù. µÎ ÇÁ·Ï½Ã Áß Çϳª°¡ »ç¿ëµË´Ï´Ù.
24
*
p17
¿äûµÈ URL°ú ÀÏÄ¡ÇÏ´Â ´Ù¸¥ Ç׸ñÀÌ ¾øÀ¸¸é p17ÀÌ ÇÁ·Ï½Ã·Î »ç¿ëµË´Ï´Ù.
Âü°í
[µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡¼ ÇÁ·Ï½Ã Ç׸ñÀ» | ±âÈ£¿Í ºÐ¸®ÇÏ´Â °Íº¸´Ù ¸ñ·Ï¿¡ °³º° Ç׸ñÀ» º¸À¯ÇÏ´Â °ÍÀÌ ´õ °£´ÜÇÒ ¼ö ÀÖ½À´Ï´Ù. ¿¹¸¦ µé¾î, ´ÙÀ½°ú °°Àº Ç׸ñ ´ë½Å¿¡
sesta.com p1 | red p2 | * p3
ÀÌ Ç׸ñÀ» ´ÙÀ½°ú °°ÀÌ ÁöÁ¤ÇÒ ¼ö ÀÖ½À´Ï´Ù.
sesta.com p1
red.sesta.com p2
*.sesta.com p3
±×·¯¸é ½±°Ô ¹Ýº¹µÇ´Â Ç׸ñÀ̳ª ±âŸ ¸ðÈ£ÇÔÀÇ ¹üÀ§¸¦ Á¼Èú ¼ö ÀÖ½À´Ï´Ù.
µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã ¸ñ·Ï¿¡ ±â¹ÝÇÏ¿© ´Ù½Ã ¾²±â
[µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·ÏÀÇ Ç׸ñµµ Rewriter¿¡¼ »ç¿ëµË´Ï´Ù. Rewriter´Â µµ¸ÞÀÎÀÌ [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ³ª¿µÈ µµ¸ÞÀΰú ÀÏÄ¡ÇÏ´Â ¸ðµç URLÀ» ´Ù½Ã ¾¹´Ï´Ù.
ÁÖÀÇ
[µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·ÏÀÇ * Ç׸ñÀº ´Ù½Ã ¾²±â¿¡ °í·ÁµÇÁö ¾Ê½À´Ï´Ù. ¿¹¸¦ µé¾î, Ç¥ 2-2¿¡ ³ª¿Â ¿¹Á¦¿¡¼´Â Ç׸ñ 24°¡ °í·ÁµÇÁö ¾Ê½À´Ï´Ù.
Rewriter¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº 3Àå, "Proxylet ¹× Rewriter"¸¦ ÂüÁ¶ÇϽʽÿÀ.
±âº» µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎ
URLÀÇ ´ë»ó È£½ºÆ®°¡ Á¤±Ô È£½ºÆ® À̸§ÀÌ ¾Æ´Ò °æ¿ì, Á¤±Ô À̸§¿¡ µµ´ÞÇϵµ·Ï ±âº» µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀ» »ç¿ëÇÕ´Ï´Ù.
°ü¸® ÄܼÖÀÇ [±âº» µµ¸ÞÀÎ] Çʵå Ç׸ñÀÌ ´ÙÀ½°ú °°´Ù°í °¡Á¤ÇØ º¸°Ú½À´Ï´Ù.
red.sesta.com
À§ÀÇ ¿¹¿¡¼´Â sesta.comÀÌ ±âº» µµ¸ÞÀÎÀÌ°í ±âº» ºÎ¼Ó µµ¸ÞÀÎÀº redÀÔ´Ï´Ù.
¿äûµÈ URLÀÌ host1ÀÎ °æ¿ì, ±âº» µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀ» ÅëÇØ host1.red.sesta.comÀ¸·Î °áÁ¤µË´Ï´Ù. ±×·± ´ÙÀ½ [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ host1.red.sesta.comÀÌ ÀÖ´ÂÁö °Ë»öÇÕ´Ï´Ù.
ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º »ç¿ë[µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ÀÖ´Â Á¤º¸¸¦ ¹«½ÃÇÏ·Á¸é ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º (PAC) ±â´ÉÀ» È°¼ºÈÇÕ´Ï´Ù. À̸¦ ±¸¼ºÇÏ·Á¸é ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º Áö¿ø »ç¿ëÀ» ÂüÁ¶ÇϽʽÿÀ.
ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º (PAC) ÆÄÀÏÀ» »ç¿ëÇÒ ¶§¿¡´Â ´ÙÀ½À» ÁÖÀÇÇÕ´Ï´Ù.
- js.jar´Â °ÔÀÌÆ®¿þÀÌ ÄÄÇ»ÅÍÀÇ $JRE_HOME/lib/ext µð·ºÅ丮¿¡ ÀÖ¾î¾ß ÇÕ´Ï´Ù. ±×·¸Áö ¾ÊÀ¸¸é °ÔÀÌÆ®¿þÀÌ¿¡¼ PAC ÆÄÀÏÀÇ ±¸¹®À» ºÐ¼®ÇÒ ¼ö ¾ø½À´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌ´Â ºÎÆà ½Ã¿¡ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ [ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º ÆÄÀÏ] À§Ä¡ Çʵ忡 ÁöÁ¤µÈ À§Ä¡·ÎºÎÅÍ PAC ÆÄÀÏÀ» ºÒ·¯¿É´Ï´Ù. À§Ä¡¸¦ ±¸¼ºÇÏ·Á¸é ÀÚµ¿ ÇÁ·Ï½Ã ±¸¼º ÆÄÀÏ À§Ä¡ ÁöÁ¤À» ÂüÁ¶ÇϽʽÿÀ.
- °ÔÀÌÆ®¿þÀÌ´Â URLConnection API¸¦ »ç¿ëÇÏ¿© ÀÌ À§Ä¡¿¡ µµ´ÞÇÕ´Ï´Ù. ÇÁ·Ï½Ã°¡ °ÔÀÌÆ®¿þÀÌ¿¡ µµ´ÞÇϵµ·Ï ±¸¼ºÇØ¾ß ÇÏ´Â °æ¿ì¿¡´Â ÇÁ·Ï½Ã¸¦ ´ÙÀ½°ú °°ÀÌ ±¸¼ºÇØ¾ß ÇÕ´Ï´Ù.
- ¸í·ÉÁÙ¿¡¼ ´ÙÀ½ ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
/etc/opt/SUNWps/platform.conf.gateway-profile-name
- ´ÙÀ½ Ç׸ñÀ» Ãß°¡ÇÕ´Ï´Ù.
http.proxyHost=web-proxy-hostname
http.proxyPort=web-proxy-port
http.proxySet=true
- °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÏ¿© ÁöÁ¤µÈ ÇÁ·Ï½Ã¸¦ »ç¿ëÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
- PAC ÆÄÀÏ ÃʱâÈ°¡ ½ÇÆÐÇÏ¸é °ÔÀÌÆ®¿þÀÌ´Â [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ÀÖ´Â Á¤º¸¸¦ »ç¿ëÇÕ´Ï´Ù.
- PAC ÆÄÀϷκÎÅÍ ""(ºó ¹®ÀÚ¿) À̳ª "null"ÀÌ ¹ÝȯµÇ¸é °ÔÀÌÆ®¿þÀÌ¿¡¼´Â È£½ºÆ®°¡ ÀÎÆ®¶ó³Ý¿¡ ¼ÓÇÏÁö ¾Ê´Â °ÍÀ¸·Î °¡Á¤ÇÕ´Ï´Ù. À̴ ȣ½ºÆ®°¡ [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï¿¡ ÀÖÁö ¾ÊÀº °æ¿ì¿Í ºñ½ÁÇÕ´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ¿¡¼ È£½ºÆ®¿¡ Á÷Á¢ ¿¬°áµÇµµ·Ï ÇÏ·Á¸é "DIRECT"¸¦ ¹ÝȯÇÕ´Ï´Ù. DIRECT ¶Ç´Â NULLÀÌ ¹ÝȯµÇ´Â ¿¹Á¦¸¦ ÂüÁ¶ÇϽʽÿÀ.
- ¿©·¯ ÇÁ·Ï½Ã°¡ ÁöÁ¤µÇ¾î ÀÖÀ¸¸é °ÔÀÌÆ®¿þÀ̴ ù ¹ø° ¹ÝȯµÈ ÇÁ·Ï½Ã¸¸ »ç¿ëÇÕ´Ï´Ù. È£½ºÆ®¿¡ ÁöÁ¤µÈ ¿©·¯ ÇÁ·Ï½Ã¿¡¼ ÆäÀÏ¿À¹ö³ª ·Îµå ±ÕÇü Á¶Á¤À» ½ÃµµÇÏÁö ¾Ê½À´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌ´Â SOCKS ÇÁ·Ï½Ã¸¦ ¹«½ÃÇÏ°í Á÷Á¢ ¿¬°áÀ» ½ÃµµÇÏ¸é¼ È£½ºÆ®°¡ ÀÎÆ®¶ó³ÝÀÇ ÀÏºÎ¶ó °¡Á¤ÇÕ´Ï´Ù.
- ÀÎÆ®¶ó³ÝÀÇ ÀϺΰ¡ ¾Æ´Ñ È£½ºÆ®¿¡ µµ´ÞÇÏ´Â µ¥ ÇÁ·Ï½Ã¸¦ »ç¿ëÇϵµ·Ï ÁöÁ¤ÇÏ·Á¸é ÇÁ·Ï½Ã À¯Çü "STARPROXY"¸¦ »ç¿ëÇÕ´Ï´Ù. ÀÌ À¯ÇüÀº PAC ÆÄÀÏ Çü½ÄÀÇ È®ÀåÀÌ¸ç °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ¿¡ ÀÖ´Â [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¼½¼ÇÀÇ Ç׸ñ * proxyHost:port¿Í À¯»çÇÕ´Ï´Ù. ÀÚ¼¼ÇÑ ³»¿ëÀº STARPROXY°¡ ¹ÝȯµÇ´Â ¿¹Á¦¸¦ ÂüÁ¶ÇϽʽÿÀ.
¿¹Á¦ PAC ÆÄÀÏ »ç¿ë
´ÙÀ½ ¿¹Á¦´Â [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] ¸ñ·Ï°ú ÇØ´çÇÏ´Â PAC ÆÄÀÏ¿¡ ³ª¿µÈ URLÀ» º¸¿©ÁÝ´Ï´Ù.
DIRECT ¶Ç´Â NULLÀÌ ¹ÝȯµÇ´Â ¿¹Á¦
µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀο¡ ÀÌ ÇÁ·Ï½Ã »ç¿ë:
*intranet1.com proxy.intranet.com:8080
intranet2.com proxy.intranet1.com:8080
ÇØ´çÇÏ´Â PAC ÆÄÀÏ:
// Start of the PAC File
function FindProxyForURL(url, host) {
if (dnsDomainIs(host, ".intranet1.com")) {
return "DIRECT";
}
if (dnsDomainIs(host, ".intranet2.com")) {
return "PROXY proxy.intranet1.com:8080";
}
return "NULL";
}
//End of the PAC File
STARPROXY°¡ ¹ÝȯµÇ´Â ¿¹Á¦
µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀο¡ ÀÌ ÇÁ·Ï½Ã »ç¿ë:
ÇØ´çÇÏ´Â PAC ÆÄÀÏ:
// Start of the PAC File
function FindProxyForURL(url, host) {
if (dnsDomainIs(host, ".intranet1.com")) {
return "DIRECT";
}
if (dnsDomainIs(host, ".intranet2.com")) {
return "PROXY proxy.intranet1.com:8080;" +
"PROXY proxy1.intranet1.com:8080";
}
return "STARPROXY internetproxy.intranet1.com:80";
}
//End of the PAC File
ÀÌ °æ¿ì ¿äûÀÌ .intranet2.com µµ¸ÞÀο¡ Àִ ȣ½ºÆ®¿¡ ´ëÇÑ °ÍÀÌ¸é °ÔÀÌÆ®¿þÀÌ´Â proxy.intranet1.com:8080¿¡ Á¢¼ÓÇÕ´Ï´Ù. proxy.intranet1.com:8080ÀÌ ´Ù¿îµÇ¸é ¿äûÀÌ ½ÇÆÐÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ´Â ÆäÀÏ¿À¹öÇÏÁö ¾Ê°í proxy1.intranet1.com:8080¿¡ Á¢¼ÓÇÕ´Ï´Ù.
PAC ÆÄÀÏ À§Ä¡ ÁöÁ¤
PAC ÆÄÀÏÀÇ À§Ä¡¸¦ ÁöÁ¤ÇÏ´Â Çü½ÄÀº ´ÙÀ½°ú °°ÀÌ ÇØ´ç À§Ä¡¿¡ µû¶ó ´Ù¸¨´Ï´Ù.
º°µµ ¼¼¼Ç¿¡¼ ¼ºñ½º Ãß°¡Portal Server ¼ºñ½º¸¦ º°µµ ¼¼¼Ç¿¡¼ Ãß°¡ÇÒ °æ¿ì ´ÙÀ½À» È®ÀÎÇϽʽÿÀ.
- ¸ðµç Portal Server°¡ °ü¸® ÄܼÖÀÇ [°ÔÀÌÆ®¿þÀÌ] > [ÇÙ½É] ¾Æ·¡¿¡ ³ª¿µË´Ï´Ù. ÀÚ¼¼ÇÑ ³»¿ëÀº Portal Server ¸ñ·Ï ¸¸µé±â ¸¦ ÂüÁ¶ÇϽʽÿÀ.
- ¸ðµç Portal Server URLÀº [°ÔÀÌÆ®¿þÀÌ] > [º¸¾È] ¾Æ·¡ÀÇ ºñÀÎÁõ URL¿¡ ³ª¿µË´Ï´Ù. ÀÚ¼¼ÇÑ ³»¿ëÀº ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï ¸¸µé±â ¸¦ ÂüÁ¶ÇϽʽÿÀ.
Netlet ÇÁ·Ï½Ã »ç¿ëNetlet ÆÐŶÀº °ÔÀÌÆ®¿þÀÌ¿¡¼ ºñ¹Ð¹øÈ£°¡ Çص¶µÇ¾î ´ë»ó ¼¹ö·Î º¸³»Áý´Ï´Ù. ±×·¯³ª °ÔÀÌÆ®¿þÀÌ´Â ¿ÏÃæ Áö´ë (DMZ) ¿Í ÀÎÆ®¶ó³Ý »çÀÌÀÇ ¹æȺ®À» ÅëÇØ ¸ðµç Netlet ´ë»ó È£½ºÆ®¿¡ ¾×¼¼½ºÇØ¾ß ÇÕ´Ï´Ù. ±×·¯·Á¸é ¹æȺ®¿¡¼ ¸¹Àº Æ÷Æ®¸¦ ¿¾î¾ß ÇÕ´Ï´Ù. Netlet ÇÁ·Ï½Ã´Â ¹æȺ®¿¡¼ ¿¸° Æ÷Æ®ÀÇ ¼ö¸¦ ÁÙÀÌ´Â µ¥ »ç¿ëÇÒ ¼ö ÀÖ½À´Ï´Ù.
Netlet ÇÁ·Ï½Ã´Â Ŭ¶óÀ̾ðÆ®·ÎºÎÅÍ °ÔÀÌÆ®¿þÀ̸¦ °ÅÃÄ ÀÎÆ®¶ó³Ý¿¡ »óÁÖÇÏ´Â Netlet ÇÁ·Ï½Ã¿¡ À̸£±â±îÁö º¸¾È ÅͳÎÀ» È®ÀåÇÏ¿© °ÔÀÌÆ®¿þÀÌ¿Í ÀÎÆ®¶ó³Ý »çÀÌÀÇ º¸¾ÈÀ» °ÈÇÕ´Ï´Ù. ÇÁ·Ï½Ã°¡ ÀÖÀ¸¸é Netlet ÆÐŶÀº ÇÁ·Ï½Ã¿¡¼ Çص¶µÈ ÈÄ ´ë»óÀ¸·Î º¸³»Áý´Ï´Ù.
Netlet ÇÁ·Ï½Ã°¡ À¯¿ëÇÑ ÀÌÀ¯´Â ´ÙÀ½°ú °°½À´Ï´Ù.
- º¸¾È °èÃþÀ» Ãß°¡ÇÒ ¼ö ÀÖÀ½
- »ó´çÇÑ ±Ô¸ðÀÇ ¹èÄ¡ ȯ°æ¿¡¼ ³»ºÎ ¹æȺ®À» ÅëÇØ Ãß°¡ IP ÁÖ¼Ò¿Í °ÔÀÌÆ®¿þÀÌÀÇ Æ÷Æ® »ç¿ëÀ» ÃÖ´ëÇÑ ÁÙÀÏ ¼ö ÀÖÀ½
- °ÔÀÌÆ®¿þÀÌ¿Í Portal Server °£ °³¹æ Æ÷Æ® ¼ö¸¦ 1·Î Á¦ÇÑÇÒ ¼ö ÀÖÀ½. ÀÌ Æ÷Æ® ¼ö´Â ¼³Ä¡ ½Ã ±¸¼º °¡´É
- Ŭ¶óÀ̾ðÆ®¿Í °ÔÀÌÆ®¿þÀÌ »çÀÌÀÇ º¸¾È ä³ÎÀ» ±×¸² 2-2ÀÇ "Netlet ÇÁ·Ï½Ã°¡ ±¸¼ºµÇ¾î ÀÖ´Â °æ¿ì" ºÎºÐ¿¡ ³ª¿Í ÀÖµíÀÌ Portal Server±îÁö È®ÀåÇÒ ¼ö ÀÖÀ½. Netlet ÇÁ·Ï½Ã´Â µ¥ÀÌÅÍ ¾Ïȣȸ¦ ÅëÇØ º¸¾ÈÀ» °ÈÇÑ´Ù´Â ÀÌÁ¡ÀÌ ÀÖÁö¸¸ ½Ã½ºÅÛ ÀÚ¿øÀ» ´õ ¸¹ÀÌ »ç¿ëÇÒ ¼ö ÀÖ½À´Ï´Ù. Netlet ÇÁ·Ï½Ã ¼³Ä¡¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº Sun Java Enterprise System ¼³Ä¡ ¼³¸í¼¸¦ ÂüÁ¶ÇϽʽÿÀ.
°¡´ÉÇÑ ÀÛ¾÷:
- Portal Server ³ëµå³ª º°µµ ³ëµå¿¡ Netlet ÇÁ·Ï½Ã¸¦ ¼³Ä¡ÇÒ ¼ö ÀÖ½À´Ï´Ù.
- ´ÙÁß Netlet ÇÁ·Ï½Ã¸¦ ¼³Ä¡ÇÏ°í °ü¸® ÄܼÖÀ» »ç¿ëÇÏ¿© ´ÜÀÏ °ÔÀÌÆ®¿þÀÌ¿¡ ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. ÀÌ´Â ·Îµå ±ÕÇü Á¶Á¤¿¡ À¯¿ëÇÕ´Ï´Ù. ÀÚ¼¼ÇÑ ³»¿ëÀº Netlet ÇÁ·Ï½Ã ¸ñ·Ï È°¼ºÈ ¹× ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
- ´ÜÀÏ ½Ã½ºÅÛ¿¡ Netlet ÇÁ·Ï½ÃÀÇ ´ÙÁß ÀνºÅϽº¸¦ ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌÀÇ ´ÙÁß ÀνºÅϽº¸¦ Netlet ÇÁ·Ï½ÃÀÇ ´ÜÀÏ ¼³Ä¡¿¡ ÁöÁ¤ÇÒ ¼ö ÀÖ½À´Ï´Ù.
- À¥ ÇÁ·Ï½Ã¸¦ ÅëÇØ NetletÀ» Åë°úÇÒ ¼ö ÀÖ½À´Ï´Ù. À̸¦ ±¸¼ºÇÏ·Á¸é À¥ ÇÁ·Ï½Ã¸¦ ÅëÇÑ Netlet Åͳθµ È°¼ºÈ¸¦ ÂüÁ¶ÇϽʽÿÀ.
±×¸² 2-2¿¡´Â Netlet ÇÁ·Ï½Ã°¡ ¼³Ä¡µÈ °æ¿ì¿Í ¼³Ä¡µÇÁö ¾ÊÀº °æ¿ì, °ÔÀÌÆ®¿þÀÌ¿Í Portal Server¸¦ ±¸ÇöÇÏ´Â 3°¡Áö ±¸Çö »ùÇÃÀÌ ³ª¿Í ÀÖ½À´Ï´Ù. ±¸¼º ¿ä¼Ò¿¡´Â Ŭ¶óÀ̾ðÆ®, ¹æȺ® 2°³, µÎ ¹æȺ® »çÀÌ¿¡ »óÁÖÇÏ´Â °ÔÀÌÆ®¿þÀÌ, Portal Server ¹× Netlet ´ë»ó ¼¹ö°¡ Æ÷ÇԵ˴ϴÙ.
ù ¹ø° ½Ã³ª¸®¿À´Â Netlet ÇÁ·Ï½Ã°¡ ¼³Ä¡µÇÁö ¾ÊÀº °æ¿ìÀÇ °ÔÀÌÆ®¿þÀÌ¿Í Portal Server¸¦ º¸¿©ÁÝ´Ï´Ù. ¿©±â¼´Â µ¥ÀÌÅÍ ¾ÏȣȰ¡ Ŭ¶óÀ̾ðÆ®¿¡¼ °ÔÀÌÆ®¿þÀ̱îÁö¸¸ Àû¿ëµË´Ï´Ù. °¢ Netlet ¿¬°á ¿äûÀ» À§ÇØ µÎ ¹ø° ¹æȺ®¿¡¼ Æ÷Æ®°¡ 1°³ °³¹æµÇ¾î ÀÖ½À´Ï´Ù.
µÎ ¹ø° ½Ã³ª¸®¿À´Â Netlet ÇÁ·Ï½Ã°¡ Portal Server¿¡ ¼³Ä¡µÈ °æ¿ìÀÇ °ÔÀÌÆ®¿þÀÌ¿Í Portal Server¸¦ º¸¿©ÁÝ´Ï´Ù. ÀÌ °æ¿ì µ¥ÀÌÅÍ ¾Ïȣȴ Ŭ¶óÀ̾ðÆ®¿¡¼ Portal Server±îÁö ÀüüÀûÀ¸·Î Àû¿ëµË´Ï´Ù. ¸ðµç Netlet ¿¬°áÀÌ Netlet ÇÁ·Ï½Ã¸¦ ÅëÇØ ¶ó¿ìÆõDZ⠶§¹®¿¡ µÎ ¹ø° ¹æȺ®¿¡¼ Netlet ¿äû¿¡ »ç¿ëµÇ´Â Æ÷Æ®´Â Çϳª¸¸ ¿·Á ÀÖÀ¸¸é µË´Ï´Ù.
¼¼ ¹ø° ½Ã³ª¸®¿À´Â Netlet ÇÁ·Ï½Ã°¡ º°µµ ³ëµå¿¡ ¼³Ä¡µÈ °æ¿ìÀÇ °ÔÀÌÆ®¿þÀÌ¿Í Portal Server¸¦ º¸¿©ÁÝ´Ï´Ù. Netlet ÇÁ·Ï½Ã¸¦ º°µµ ³ëµå¿¡ ¼³Ä¡Çϸé Portal Server ³ëµåÀÇ ·Îµå°¡ ÁÙ¾îµì´Ï´Ù. ¿©±â¼´Â µÎ ¹ø° ¹æȺ®¿¡¼ 2°³ÀÇ Æ÷Æ®¸¸ °³¹æµÇ¾î ÀÖÀ¸¸é µË´Ï´Ù. ÇÑ Æ÷Æ®´Â Portal Server¿¡ ´ëÇÑ ¿äûÀ» ó¸®ÇÏ°í ´Ù¸¥ Æ÷Æ®´Â Netlet ÇÁ·Ï½Ã ¼¹ö¿¡ ´ëÇÑ Netlet ¿äûÀ» ¶ó¿ìÆÃÇÕ´Ï´Ù.
±×¸² 2-2 Netlet ÇÁ·Ï½Ã ±¸Çö
Netlet ÇÁ·Ï½ÃÀÇ ÀνºÅϽº ¸¸µé±â
Portal Server ³ëµå³ª º°µµ ³ëµå¿¡ Netlet ÇÁ·Ï½ÃÀÇ »õ ÀνºÅϽº¸¦ ¸¸µé·Á¸é nlpmultiinstance ½ºÅ©¸³Æ®¸¦ »ç¿ëÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ¸¸µç ÈÄ¿¡ ÀÌ ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇϽʽÿÀ.
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ´ÙÀ½ µð·ºÅ丮·Î À̵¿ÇÕ´Ï´Ù.
netlet-install-dir/SUNWps/bin
- ´ÙÁß ÀνºÅϽº ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÕ´Ï´Ù.
./nlpmultiinstance
- nlpmultiinstance ½ºÅ©¸³Æ®¿¡¼ ³ªÅ¸³ª´Â ´ÙÀ½ Áú¹®¿¡ ´äÇÕ´Ï´Ù.
- What is the name of the new netlet proxy instance?
- If you have a instance configured on this node with the same name, you are asked if you want to use the same configuration for this netlet proxy instance.
- If you answered yes, answer these two questions:
- If you answered no, answer the following questions:
- What protocol will the new netlet proxy instance use?
- What port will the new netlet proxy instance listen on?
- What is the name of your organization?
- What is the name of your division?
- What is the name of your city or locality?
- What is the name of your state or province?
- What is the two-letter country code?
- What is the password for the certificate Database?
- What is the password for the logging user?
- Have you created the new gateway profile in the admin console?
- If you answered yes, start the netlet proxy after installation?
- »õ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ À̸§À¸·Î Netlet ÇÁ·Ï½ÃÀÇ »õ ÀνºÅϽº¸¦ ½ÃÀÛÇÕ´Ï´Ù.
netlet-proxy-install-root/SUNWps/bin/netletd -n gateway-profile-name start
¿©±â¼ gateway-profile-nameÀº ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿¡ ÇØ´çÇÏ´Â ÇÁ·ÎÇÊ À̸§ÀÔ´Ï´Ù.
Netlet ÇÁ·Ï½Ã È°¼ºÈ
Access Manager °ü¸® ÄܼÖÀÇ SRA ±¸¼º¿¡¼ °ÔÀÌÆ®¿þÀÌ ¼ºñ½º¸¦ ÅëÇØ Netlet ÇÁ·Ï½Ã¸¦ È°¼ºÈÇÕ´Ï´Ù. Netlet ÇÁ·Ï½Ã ¸ñ·Ï È°¼ºÈ ¹× ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
Netlet ÇÁ·Ï½Ã ´Ù½Ã ½ÃÀÛ
ÇÁ·Ï½Ã°¡ ¿¹±âÄ¡ ¾Ê°Ô ÁßÁöµÉ ¶§¸¶´Ù ´Ù½Ã ½ÃÀÛÇϵµ·Ï Netlet ÇÁ·Ï½Ã¸¦ ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. ¿öÄ¡µ¶ ÇÁ·Î¼¼½º¸¦ ¿¹¾àÇÏ¿© Netlet ÇÁ·Ï½Ã¸¦ ¸ð´ÏÅÍÇÏ°í, ÇÁ·Ï½Ã°¡ ´Ù¿îµÈ °æ¿ì ´Ù½Ã ½ÃÀÛÇÒ ¼ö ÀÖ½À´Ï´Ù.
Netlet ÇÁ·Ï½Ã¸¦ ¼öµ¿À¸·Î ´Ù½Ã ½ÃÀÛÇÒ ¼öµµ ÀÖ½À´Ï´Ù.
Netlet ÇÁ·Ï½Ã¸¦ ´Ù½Ã ½ÃÀÛÇÏ·Á¸é
´Ü¸»±â â¿¡¼ ·çÆ®·Î ¿¬°áÇÏ°í ´ÙÀ½ ÀÛ¾÷ Áß Çϳª¸¦ ¼öÇàÇÕ´Ï´Ù.
- ¿öÄ¡µ¶ ÇÁ·Î¼¼½º¸¦ ½ÃÀÛÇÕ´Ï´Ù.
netlet-proxy-install-root/SUNWps/bin/netletd watchdog on
±×·¯¸é crontab À¯Æ¿¸®Æ¼¿¡ Ç׸ñÀÌ ¸¸µé¾îÁö°í ¿öÄ¡µ¶ ÇÁ·Î¼¼½º°¡ È°¼º »óÅ°¡ µË´Ï´Ù. ¿öÄ¡µ¶Àº Netlet ÇÁ·Ï½Ã Æ÷Æ®¸¦ ¸ð´ÏÅ͸µÇÏ¿© ÇÁ·Ï½Ã°¡ ´Ù¿îµÇ¸é Ç¥½ÃÇÕ´Ï´Ù.
- Netlet ÇÁ·Ï½Ã¸¦ ¼öµ¿À¸·Î ½ÃÀÛÇÕ´Ï´Ù.
netlet-proxy-install-root/SUNWps/bin/netletd -n gateway-profile-name start
¿©±â¼ gateway-profile-nameÀº ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿¡ ÇØ´çÇÏ´Â ÇÁ·ÎÇÊ À̸§ÀÔ´Ï´Ù.
Netlet ÇÁ·Ï½Ã ¿öÄ¡µ¶À» ±¸¼ºÇÏ·Á¸é
¿öÄ¡µ¶ÀÌ Netlet ÇÁ·Ï½ÃÀÇ »óŸ¦ ¸ð´ÏÅÍÇÏ´Â ½Ã°£ °£°ÝÀ» ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. ½Ã°£ °£°ÝÀº ±âº»ÀûÀ¸·Î 60ÃÊ·Î ¼³Á¤µË´Ï´Ù. ÀÌ ¼³Á¤À» º¯°æÇÏ·Á¸é crontab À¯Æ¿¸®Æ¼¿¡¼ ´ÙÀ½ ÁÙÀ» ÆíÁýÇÕ´Ï´Ù.
0-59 * * * * netlet-install-dir/bin/checkgw /var/opt/SUNWps/.gw 5 > /dev/null 2>&1
Rewriter ÇÁ·Ï½Ã »ç¿ëRewriter ÇÁ·Ï½Ã´Â ÀÎÆ®¶ó³Ý¿¡ ¼³Ä¡µË´Ï´Ù. °ÔÀÌÆ®¿þÀÌ´Â ÄÁÅÙÆ®¸¦ Á÷Á¢ °Ë»öÇÏ´Â ´ë½Å, ÄÁÅÙÆ®¸¦ °¡Á®¿Í °ÔÀÌÆ®¿þÀÌ·Î ¹ÝȯÇÏ´Â Rewriter ÇÁ·Ï½Ã·Î ¸ðµç ¿äûÀ» Àü´ÞÇÕ´Ï´Ù.
Rewriter ÇÁ·Ï½Ã »ç¿ëÀ» ÅëÇØ ¾òÀ» ¼ö ÀÖ´Â ÀÌÁ¡Àº ´ÙÀ½°ú °°½À´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌ¿Í ¼¹ö »çÀÌ¿¡ ¹æȺ®ÀÌ ÀÖ´Â °æ¿ì ¹æȺ®¿¡¼´Â Æ÷Æ®¸¦ 2°³¸¸ ¿¸é µË´Ï´Ù. Çϳª´Â °ÔÀÌÆ®¿þÀÌ¿Í Rewriter ÇÁ·Ï½Ã »çÀÌÀÇ Æ÷Æ®ÀÌ°í ´Ù¸¥ Çϳª´Â °ÔÀÌÆ®¿þÀÌ¿Í Portal Server »çÀÌÀÇ Æ÷Æ®ÀÔ´Ï´Ù.
- ´ë»ó ¼¹ö°¡ HTTP ÇÁ·ÎÅäÄÝ (HTTPS ¾Æ´Ô) ¸¸ Áö¿øÇÏ´õ¶óµµ ÀÌÁ¦ °ÔÀÌÆ®¿þÀÌ¿Í ÀÎÆ®¶ó³Ý »çÀÌÀÇ HTTP Æ®·¡ÇÈÀÌ ¾ÈÁ¤ÀûÀ¸·Î µË´Ï´Ù.
Rewriter ÇÁ·Ï½Ã¸¦ ÁöÁ¤ÇÏÁö ¾ÊÀ¸¸é »ç¿ëÀÚ°¡ ÀÎÆ®¶ó³Ý ÄÄÇ»ÅÍ¿¡ ¾×¼¼½ºÇÏ·Á°í ÇÒ ¶§ °ÔÀÌÆ®¿þÀÌ ±¸¼º ¿ä¼Ò¿¡¼ ÀÎÆ®¶ó³Ý ÄÄÇ»ÅÍ¿¡ Á÷Á¢ ¿¬°áÇÕ´Ï´Ù.
Rewriter ÇÁ·Ï½Ã¸¦ ·Îµå Á¶Á¤±â·Î »ç¿ëÇÏ´Â °æ¿ì¿¡´Â RewriterÀÇ platform.conf.instance_nameÀÌ ·Îµå Á¶Á¤±â URLÀ» °¡¸®Å°´ÂÁö È®ÀÎÇØ¾ß ÇÕ´Ï´Ù. Portal Servers ¸ñ·Ï¿¡ ·Îµå Á¶Á¤±â È£½ºÆ®°¡ ÁöÁ¤µÇ¾î ÀÖ´ÂÁöµµ È®ÀÎÇØ¾ß ÇÕ´Ï´Ù.
°¢ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº (Æ÷ÅÐ ³ëµå¿¡ ÀÖÁö ¾ÊÀ» ¼öµµ ÀÖÀ½) ¿¡ ´ëÇØ ¿©·¯ °³ÀÇ Rewriter ÇÁ·Ï½Ã ÀνºÅϽº°¡ ÀÖ´Â °æ¿ì, Rewriter ÇÁ·Ï½Ã¿¡ ´ëÇÑ ´ÜÀÏ Æ÷Æ® Ç׸ñÀ» ÀÔ·ÂÇÏÁö ¸»°í platform.conf ÆÄÀÏ¿¡ host-name:port Çü½ÄÀ¸·Î °¢ Rewriter ÇÁ·Ï½Ã Á¤º¸¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
Rewriter ÇÁ·Ï½ÃÀÇ ÀνºÅϽº ¸¸µé±â
Portal Server ³ëµå¿¡ Rewriter ÇÁ·Ï½ÃÀÇ »õ ÀνºÅϽº¸¦ ¸¸µé·Á¸é rwpmultiinstance ½ºÅ©¸³Æ®¸¦ »ç¿ëÇÕ´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ¸¸µç ÈÄ¿¡ ÀÌ ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇϽʽÿÀ.
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ´ÙÀ½ µð·ºÅ丮·Î À̵¿ÇÕ´Ï´Ù.
rewriter-proxy-install-root/SUNWps/bin
- ´ÙÁß ÀνºÅϽº ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÕ´Ï´Ù.
./rwpmultiinstance
- ½ºÅ©¸³Æ®¿¡¼ ³ªÅ¸³ª´Â Áú¹®¿¡ ´äÇÕ´Ï´Ù.
- What is the name of the new rewriter proxy instance?
- If you have a rewriter proxy instance configured on this node with the same name, you are asked if you want to use the same configuration for this rewriter proxy instance.
- If you answered yes, answer these two questions:
- If you answered no, answer the following questions:
- What protocol will the new rewriter proxy instance use?
- What port will the new rewriter proxy instance listen on?
- What is the name of your organization?
- What is the name of your division?
- What is the name of your city or locality?
- What is the name of your state or province?
- What is the two-letter country code?
- What is the password for the certificate Database?
- What is the password for the logging user?
- Have you created the new gateway profile in the admin console?
- If you answered yes, start the rewriter proxy after installation?
- »õ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ À̸§À¸·Î rewriter ÇÁ·Ï½ÃÀÇ »õ ÀνºÅϽº¸¦ ½ÃÀÛÇÕ´Ï´Ù.
rewriter-proxy-install-root/SUNWps/bin/rwproxyd -n gateway-profile-name start
¿©±â¼ gateway-profile-nameÀº ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿¡ ÇØ´çÇÏ´Â ÇÁ·ÎÇÊ À̸§ÀÔ´Ï´Ù.
Rewriter ÇÁ·Ï½Ã È°¼ºÈ
Access Manager °ü¸® ÄܼÖÀÇ SRA ±¸¼º¿¡¼ °ÔÀÌÆ®¿þÀÌ ¼ºñ½º¸¦ ÅëÇØ Rewriter ÇÁ·Ï½Ã¸¦ È°¼ºÈÇÕ´Ï´Ù. Rewriter ÇÁ·Ï½Ã ¸ñ·Ï »ç¿ë°ú ¸¸µé±â¸¦ ÂüÁ¶ÇϽʽÿÀ.
Rewriter ÇÁ·Ï½Ã ´Ù½Ã ½ÃÀÛ
ÇÁ·Ï½Ã°¡ ¿¹±âÄ¡ ¾Ê°Ô ÁßÁöµÉ ¶§¸¶´Ù ´Ù½Ã ½ÃÀÛÇϵµ·Ï Rewriter ÇÁ·Ï½Ã¸¦ ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. ¸ð´ÏÅÍÇÒ ¿öÄ¡µ¶ ÇÁ·Î¼¼½º¸¦ ¿¹¾àÇÏ°í ÀÌ °æ¿ì°¡ ¹ß»ýÇßÀ» ¶§ ´Ù½Ã ½ÃÀÛÇÒ ¼ö ÀÖ½À´Ï´Ù.
Rewriter ÇÁ·Ï½Ã¸¦ ¼öµ¿À¸·Î ´Ù½Ã ½ÃÀÛÇÒ ¼öµµ ÀÖ½À´Ï´Ù.
Rewriter ÇÁ·Ï½Ã¸¦ ´Ù½Ã ½ÃÀÛÇÏ·Á¸é
´Ü¸»±â â¿¡¼ ·çÆ®·Î ¿¬°áÇÏ°í ´ÙÀ½ ÀÛ¾÷ Áß Çϳª¸¦ ¼öÇàÇÕ´Ï´Ù.
- ¿öÄ¡µ¶ ÇÁ·Î¼¼½º¸¦ ½ÃÀÛÇÕ´Ï´Ù.
rewriter-proxy-install-root/SUNWps/bin/rwproxd watchdog on
±×·¯¸é crontab À¯Æ¿¸®Æ¼¿¡ Ç׸ñÀÌ ¸¸µé¾îÁö°í ¿öÄ¡µ¶ ÇÁ·Î¼¼½º°¡ È°¼º »óÅ°¡ µË´Ï´Ù. ¿öÄ¡µ¶Àº Æ÷Æ®¸¦ ¸ð´ÏÅ͸µÇÏ¿© ÇÁ·Ï½Ã°¡ ´Ù¿îµÇ¸é Ç¥½ÃÇÕ´Ï´Ù.
- ¼öµ¿À¸·Î ½ÃÀÛÇÕ´Ï´Ù.
rewriter-proxy-install-root/SUNWps/bin/rwproxd -n gateway-profile-name start
¿©±â¼ gateway-profile-nameÀº ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽº¿¡ ÇØ´çÇÏ´Â ÇÁ·ÎÇÊ À̸§ÀÔ´Ï´Ù.
Rewriter ÇÁ·Ï½Ã ¿öÄ¡µ¶À» ±¸¼ºÇÏ·Á¸é
¿öÄ¡µ¶ÀÌ Rewriter ÇÁ·Ï½Ã »óŸ¦ ¸ð´ÏÅ͸µÇÏ´Â ½Ã°£ °£°ÝÀ» ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. ½Ã°£ °£°ÝÀº ±âº»ÀûÀ¸·Î 60ÃÊ·Î ¼³Á¤µË´Ï´Ù. ÀÌ ¼³Á¤À» º¯°æÇÏ·Á¸é crontab À¯Æ¿¸®Æ¼¿¡¼ ´ÙÀ½ ÁÙÀ» ÆíÁýÇÕ´Ï´Ù.
0-59 * * * * rewriter-proxy-install-root/bin/checkgw /var/opt/SUNWps/.gw 5 > /dev/null 2>&1
°ÔÀÌÆ®¿þÀÌ¿¡¼ ¿ª ÇÁ·Ï½Ã »ç¿ëÇÁ·Ï½Ã ¼¹ö´Â ÀÎÆ®¶ó³Ý¿¡ ÀÎÅÍ³Ý ÄÁÅÙÆ®¸¦ ¼ºñ½ºÇÏ°í ¿ª ÇÁ·Ï½Ã´Â ÀÎÅͳݿ¡ ÀÎÆ®¶ó³Ý ÄÁÅÙÆ®¸¦ ¼ºñ½ºÇÕ´Ï´Ù. ÀÎÅÍ³Ý ÄÁÅÙÆ®¸¦ Á¦°øÇÏ¸ç ·Îµå ±ÕÇü Á¶Á¤°ú ij½ÌÀ» ¼öÇàÇϵµ·Ï ¿ª ÇÁ·Ï½Ã¸¦ ¹èÆ÷ÇÒ ¼ö ÀÖ½À´Ï´Ù.
ÀÌ ¹èÆ÷¿¡¼ °ÔÀÌÆ®¿þÀÌ Àü¹æ¿¡ Ÿ»çÀÇ ¿ª ÇÁ·Ï½Ã°¡ »ç¿ëµÈ´Ù¸é °ÔÀÌÆ®¿þÀÌÀÇ URL ´ë½Å ¿ª ÇÁ·Ï½ÃÀÇ URL·Î ÀÀ´äÀ» ´Ù½Ã ½á¾ß ÇÕ´Ï´Ù. À̸¦ À§ÇØ ´ÙÀ½ ±¸¼ºÀÌ ÇÊ¿äÇÕ´Ï´Ù.
¿ª ÇÁ·Ï½Ã¸¦ È°¼ºÈÇÏ·Á¸é
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽºÀÇ platform.conf ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
/etc/opt/SUNWps/platform.conf.gateway-profile-name
- ´ÙÀ½ Ç׸ñÀ» Ãß°¡ÇÕ´Ï´Ù.
gateway.virtualhost=fully-qualified-gateway-host gateway-ip-address fully- qualified-reverse-proxyhost
gateway.enable.customurl=true (ÀÌ °ªÀº ±âº»ÀûÀ¸·Î false·Î ¼³Á¤µË´Ï´Ù.)
gateway.httpurl=http reverse-proxy-URL
gateway.httpsurl=https reverse-proxy-URL
gateway.httpurlÀº °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ¿¡¼ HTTP Æ÷Æ®·Î ³ª¿µÈ Æ÷Æ®¿¡¼ ¼ö½ÅµÈ ¿äû¿¡ ´ëÇÑ ÀÀ´äÀ» ´Ù½Ã ¾²´Â µ¥ »ç¿ëµË´Ï´Ù.
gateway.httpsurlÀº °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ¿¡¼ HTTPS Æ÷Æ®·Î ³ª¿µÈ Æ÷Æ®¿¡¼ ¼ö½ÅµÈ ¿äû¿¡ ´ëÇÑ ÀÀ´äÀ» ´Ù½Ã ¾²´Â µ¥ »ç¿ëµË´Ï´Ù.
- °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
°ªÀÌ ÁöÁ¤µÇ¾î ÀÖÁö ¾ÊÀ¸¸é °ÔÀÌÆ®¿þÀÌ¿¡¼´Â ±âº»ÀûÀ¸·Î ÀϹÝÀûÀÎ ÀÛµ¿À» ÇÕ´Ï´Ù.
Ŭ¶óÀ̾ðÆ® Á¤º¸ °¡Á®¿À±â°ÔÀÌÆ®¿þÀÌ¿¡¼ Ŭ¶óÀ̾ðÆ® ¿äûÀ» ÀÓÀÇ ¼¹ö·Î Àü´ÞÇÒ ¶§ HTTP Çì´õ¸¦ HTTP ¿äû¿¡ Ãß°¡ÇÕ´Ï´Ù. ÀÌ Çì´õ¸¦ »ç¿ëÇÏ¿© Ãß°¡ Ŭ¶óÀ̾ðÆ® Á¤º¸¸¦ °¡Á®¿À°í °ÔÀÌÆ®¿þÀÌ°¡ ÀÖ´ÂÁö °¨ÁöÇÒ ¼ö ÀÖ½À´Ï´Ù.
HTTP ¿äû Çì´õ¸¦ º¸·Á¸é platform.conf ÆÄÀÏÀÇ Ç׸ñÀ» gateway.error=message·Î ¼³Á¤ÇÑ ´ÙÀ½ servlet API¿¡¼ request.getHeader()¸¦ »ç¿ëÇÕ´Ï´Ù. ´ÙÀ½ Ç¥¿¡´Â HTTP Çì´õ¿¡ ÀÖ´Â Á¤º¸°¡ ³ª¿µÇ¾î ÀÖ½À´Ï´Ù.
Ç¥ 2-3 HTTP Çì´õÀÇ Á¤º¸
Çì´õ
±¸¹®
¼³¸í
PS-GW-PDC
X-PS-GW- PDC: true/false
°ÔÀÌÆ®¿þÀÌ¿¡¼ PDCÀÇ »ç¿ë °¡´É ¿©ºÎ¸¦ ³ªÅ¸³À´Ï´Ù.
PS-Netlet
X-PS-Netlet:enabled=true/false
°ÔÀÌÆ®¿þÀÌ¿¡¼ NetletÀÇ »ç¿ë °¡´É ¿©ºÎ¸¦ ³ªÅ¸³À´Ï´Ù.
NetletÀÌ È°¼ºÈµÈ °æ¿ì ¾ÏÈ£È ¿É¼ÇÀÌ Ã¤¿öÁ®¼ °ÔÀÌÆ®¿þÀÌ°¡ HTTPS (encryption=ssl) ¶Ç´Â HTTP ¸ðµå (encryption=plain) Áß ¾î´À ÂÊ¿¡¼ ½ÇÇà ÁßÀÎÁö º¸¿©ÁÝ´Ï´Ù.
¿¹:
PS-Netlet: enabled=false
NetletÀÌ »ç¿ë ºÒ°¡´É »óÅÂÀÔ´Ï´Ù.
PS-Netlet: enabled=true; encryption=ssl
°ÔÀÌÆ®¿þÀÌ°¡ SSL ¸ðµå¿¡¼ ½ÇÇàµÇ¸ç NetletÀÌ È°¼ºÈµÇ¾ú½À´Ï´Ù.
NetletÀÌ È°¼ºÈµÇÁö ¾ÊÀº °æ¿ì¿¡´Â encryption=ssl/plainÀÌ Ã¤¿öÁöÁö ¾Ê½À´Ï´Ù.
PS-GW-URL
X-PS-GW-URL: http(s)://gatewayURL(:port)
Ŭ¶óÀ̾ðÆ®°¡ ¿¬°áµÈ URLÀ» ³ªÅ¸³À´Ï´Ù.
ºñÇ¥ÁØ Æ÷Æ®ÀÎ °æ¿ì (Áï, Æ÷Æ® 80/443ÀÌ ¾Æ´Ñ »óÅ·Π°ÔÀÌÆ®¿þÀÌ°¡ HTTP/HTTPS ¸ðµå¿¡ ÀÖ´Â °æ¿ì) ":port"µµ ä¿öÁý´Ï´Ù.
PS-GW-Rewriting-URL
X-PS-GW-URL: http(s)://gatewayURL(:port)/[SessionInfo]
°ÔÀÌÆ®¿þÀÌ°¡ ¸ðµç ÆäÀÌÁö¸¦ ´Ù½Ã ¾²´Â URLÀ» ³ªÅ¸³À´Ï´Ù.
- ºê¶ó¿ìÀú¿¡¼ ÄíÅ°¸¦ Áö¿øÇÏ´Â °æ¿ì ÀÌ Çì´õ °ªÀº PS-GW-URL Çì´õ¿Í °°½À´Ï´Ù.
- ºê¶ó¿ìÀú°¡ ÄíÅ°¸¦ Áö¿øÇÏÁö ¾Ê°í
- "»ç¿ëÀÚ ¼¼¼Ç ÄíÅ°°¡ Àü´ÞµÉ »ç¿ëÀÚ ¼¼¼Ç" Çʵ忡 ´ë»ó È£½ºÆ®°¡ ÀÖÀ¸¸é °ªÀº °ÔÀÌÆ®¿þÀÌ°¡ ÆäÀÌÁö¸¦ ¾²´Â ½ÇÁ¦ URLÀÌ µË´Ï´Ù (¾ÏÈ£ÈµÈ ¼¼¼Ç ID Á¤º¸ Æ÷ÇÔ).
- ¶Ç´Â "»ç¿ëÀÚ ¼¼¼Ç ÄíÅ°°¡ Àü´ÞµÉ »ç¿ëÀÚ ¼¼¼Ç" Çʵ忡 ´ë»ó È£½ºÆ®°¡ ¾øÀ¸¸é ¼¼¼Ç ID ¹®ÀÚ¿Àº '$SessionID'°¡ µË´Ï´Ù.
Âü°í: ÀÀ´äÀÇ ÀϺηΠ»ç¿ëÀÚÀÇ Access Manager sessionId°¡ º¯°æµÇ¸é (ÀÎÁõ ÆäÀÌÁö¿¡¼ ¿À´Â ÀÀ´ä°ú °°ÀÌ) ÆäÀÌÁö´Â ÀÌÀü¿¡ Çì´õ¿¡ Ç¥½ÃµÈ °ªÀÌ ¾Æ´Ñ ±× °ªÀ¸·Î ´Ù½Ã ¾²¿©Áý´Ï´Ù.
¿¹:
PS-GW-Rewriting-URL: https://siroe.india.sun.com:10443/
PS-GW-Rewriting-URL: https://siroe.india.sun.com:10443/SessIDValCustomEncodedValue/
PS-GW-Rewriting-URL: https://siroe.india.sun.com:10443/$SessionID
PS-GW-CLientIP
X-PS-GW-CLientIP: IP
°ÔÀÌÆ®¿þÀÌ°¡ recievedSocket.getInetAddress().getHostAddress()·ÎºÎÅÍ °¡Á®¿Â IPÀÔ´Ï´Ù.
ÀÌ IP´Â °ÔÀÌÆ®¿þÀÌ¿¡ Á÷Á¢ ¿¬°áµÇ¸é Ŭ¶óÀ̾ðÆ®ÀÇ IP°¡ µË´Ï´Ù.
ÀÎÁõ üÀÌ´× »ç¿ëÀÎÁõ üÀÌ´×Àº ÀÎÁõÀÇ ÀÏ¹Ý ¸ÞÄ¿´ÏÁò¿¡¼ º¸¾ÈÀ» ÇÑÃþ ³ôÀº ¼öÁØÀ¸·Î °ÈÇÕ´Ï´Ù. »ç¿ëÀÚ°¡ 2°³ ÀÌ»ó ÀÎÁõ ¸ÞÄ¿´ÏÁò¿¡ ´ëÇØ ÀÎÁõ ¹Þµµ·Ï ¼³Á¤ÇÒ ¼ö ÀÖ½À´Ï´Ù.
¿©±â¿¡ ¼³¸íµÈ ÀýÂ÷´Â °ÔÀÌÆ®¿þÀÌ¿¡¼ °³ÀÎ µðÁöÅÐ ÀÎÁõ¼ (PDC) ÀÎÁõ°ú ÇÔ²² ÀÎÁõ üÀÌ´×À» »ç¿ëÇÏ´Â °æ¿ì¿¡¸¸ Àû¿ëµË´Ï´Ù. °ÔÀÌÆ®¿þÀÌ¿¡¼ PDC ÀÎÁõÀ» »ç¿ëÇÏÁö ¾Ê´Â ÀÎÁõ üÀ̴׿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº Access Manager °ü¸® ¼³¸í¼¸¦ ÂüÁ¶ÇϽʽÿÀ.
¿¹¸¦ µé¾î, PDC ¹× Radius ÀÎÁõ ¸ðµâÀ» üÀÌ´×ÇÑ °æ¿ì¿¡´Â »ç¿ëÀÚ°¡ Ç¥ÁØ Æ÷ÅÐ µ¥½ºÅ©Å¾¿¡ ¾×¼¼½ºÇÏ·Á¸é ÀÌ 3°³ ¸ðµâ¿¡ ´ëÇÑ ÀÎÁõÀ» ¸ðµÎ °ÅÃÄ¾ß ÇÕ´Ï´Ù.
±âÁ¸ PDC ÀνºÅϽº¿¡ ÀÎÁõ ¸ðµâÀ» Ãß°¡ÇÏ·Á¸é
- Access Manager °ü¸® Äֿܼ¡ °ü¸®ÀÚ·Î ·Î±×ÀÎÇÕ´Ï´Ù.
- ÇÊ¿äÇÑ Á¶Á÷À» ¼±ÅÃÇÕ´Ï´Ù.
- [º¸±â] µå·Ó´Ù¿î ¸Þ´º¿¡¼ [¼ºñ½º]¸¦ ¼±ÅÃÇÕ´Ï´Ù.
¿ÞÂÊ Ã¢¿¡ ¼ºñ½º°¡ Ç¥½ÃµË´Ï´Ù.
- [ÀÎÁõ ±¸¼º] ¿·ÀÇ È»ìÇ¥¸¦ ´©¸¨´Ï´Ù.
¼ºñ½º ÀνºÅϽº ¸ñ·ÏÀÌ Ç¥½ÃµË´Ï´Ù.
- gatewaypdc¸¦ ´©¸¨´Ï´Ù.
Gatewaypdc ¼Ó¼º ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- [ÀÎÁõ ±¸¼º] ¾ÕÀÇ [ÆíÁý]À» ´©¸¨´Ï´Ù.
[¸ðµâ Ãß°¡]°¡ ³ªÅ¸³³´Ï´Ù.
- [¸ðµâ À̸§]À» ¼±ÅÃÇÏ°í [Ç÷¡±×]¸¦ [ÇÊ¿ä]·Î ¼³Á¤ÇÕ´Ï´Ù. ºó ÄÀ¸·Î ³²°ÜµÖµµ µË´Ï´Ù.
- [È®ÀÎ]À» ´©¸¨´Ï´Ù.
- ¸ðµâÀ» Çϳª ÀÌ»ó Ãß°¡ÇÑ ´ÙÀ½ [ÀúÀå]À» ´©¸¨´Ï´Ù.
- gatewaypdc µî·Ï Á¤º¸ ÆäÀÌÁö¿¡¼ [ÀúÀå]À» ´©¸¨´Ï´Ù.
- º¯°æ ³»¿ëÀ» Àû¿ëÇÏ·Á¸é °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
¿ÍÀϵåÄ«µå ÀÎÁõ »ç¿ë¿ÍÀϵåÄ«µå ÀÎÁõ¿¡¼´Â Á¤±Ô DNS È£½ºÆ® À̸§¿¡ ¿ÍÀϵåÄ«µå ¹®ÀÚ°¡ ÀÖ´Â ´ÜÀÏ ÀÎÁõÀ» ¼ö¶ôÇÕ´Ï´Ù.
±×·¯¸é °°Àº µµ¸ÞÀο¡¼ ¿©·¯ È£½ºÆ®¿¡ ÀÎÁõÀ» Çã¿ëÇÒ ¼ö ÀÖ½À´Ï´Ù. ¿¹¸¦ µé¾î, *.domain.com¿¡ ´ëÇÑ ÀÎÁõÀ» abc.domain.com ¹× abc1.domain.com¿¡ »ç¿ëÇÒ ¼ö ÀÖ½À´Ï´Ù. »ç½Ç ÀÌ ÀÎÁõÀº domain.com µµ¸ÞÀο¡ ÀÖ´Â ¸ðµç È£½ºÆ®¿¡ À¯È¿ÇÕ´Ï´Ù.
ºê¶ó¿ìÀú ij½Ì »ç¿ë ºÒ°¡´É°ÔÀÌÆ®¿þÀÌ ±¸¼º ¿ä¼Ò´Â À¥ ºê¶ó¿ìÀú¸¦ »ç¿ëÇÏ¿© ¾î´À À§Ä¡¿¡¼³ª ¹é¿£µå ±â¾÷ µ¥ÀÌÅÍ¿¡ ¾ÈÀüÇÏ°Ô ¾×¼¼½ºÇϹǷΠŬ¶óÀ̾ðÆ®¿¡ ÀÇÇØ Á¤º¸°¡ ·ÎÄ÷Πij½ÌµÇÁö ¾Ê¾Æ¾ß ÇÕ´Ï´Ù.
ƯÁ¤ °ÔÀÌÆ®¿þÀÌÀÇ platform.conf ÆÄÀÏ¿¡ ÀÖ´Â ¼Ó¼ºÀ» ¼öÁ¤ÇÏ¿© °ÔÀÌÆ®¿þÀ̸¦ ÅëÇØ ¸®µð·º¼ÇµÈ ÆäÀÌÁöÀÇ Ä³½ÌÀ» ºñÈ°¼ºÈÇÒ ¼ö ÀÖ½À´Ï´Ù.
ÀÌ ¿É¼ÇÀ» ºñÈ°¼ºÈÇÏ¸é °ÔÀÌÆ®¿þÀÌ ¼º´É¿¡ ¿µÇâÀ» ÁÙ ¼ö ÀÖ½À´Ï´Ù. Ç¥ÁØ Æ÷ÅÐ µ¥½ºÅ©Å¾À» »õ·Î °íÄ¥ ¶§¸¶´Ù °ÔÀÌÆ®¿þÀÌ´Â ºê¶ó¿ìÀú¿¡¼ ÀÌÀü¿¡ ij½ÌÇÑ À̹ÌÁö¿Í °°ÀÌ ÆäÀÌÁö¿¡¼ ÂüÁ¶µÇ´Â ¸ðµç Ç׸ñÀ» °Ë»öÇØ¾ß ÇÕ´Ï´Ù. ±×·¯³ª ÀÌ ±â´ÉÀ» ¼ºÈ¸é ¿ø°Ý ¾×¼¼½º º¸¾È ÄÁÅÙÆ®°¡ Ŭ¶óÀ̾ðÆ® »çÀÌÆ®¿¡ ij½ÌµÈ DzÇÁ¸°Æ®¸¦ ³²±âÁö ¾Ê½À´Ï´Ù. ±â¾÷ ³×Æ®¿öÅ©°¡ ÀÎÅÍ³Ý Ä«Æä¿¡¼, ¶Ç´Â ±â¾÷ IT Á¦¾î¸¦ ¹ÞÁö ¾Ê´Â À¯»çÇÑ ¿ø°Ý À§Ä¡¿¡¼ ¾×¼¼½ºµÇ´Â °æ¿ì ÀÌ ÀÌÁ¡Àº ¼º´É»óÀÇ ºÒÀÌÀͺ¸´Ù ÈξÀ Å®´Ï´Ù.
ºê¶ó¿ìÀú ij½ÌÀ» ºñÈ°¼ºÈÇÏ·Á¸é
- ·çÆ®·Î ·Î±×ÀÎÇÏ¿© ÇÊ¿äÇÑ °ÔÀÌÆ®¿þÀÌ ÀνºÅϽºÀÇ platform.conf ÆÄÀÏÀ» ÆíÁýÇÕ´Ï´Ù.
/etc/opt/SUNWps/platform.conf.gateway-profile-name
- ´ÙÀ½ ¶óÀÎÀ» ÆíÁýÇÕ´Ï´Ù.
gateway.allow.client.caching=true
ÀÌ °ªÀº ±âº»ÀûÀ¸·Î true·Î ¼³Á¤µÇ¾î ÀÖ½À´Ï´Ù. °ªÀ» false·Î º¯°æÇÏ¿© Ŭ¶óÀ̾ðÆ® ÂÊ¿¡¼ ºê¶ó¿ìÀú ij½ÌÀ» ºñÈ°¼ºÈÇÕ´Ï´Ù.
- °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
°ÔÀÌÆ®¿þÀÌ ¼ºñ½º »ç¿ëÀÚ ÀÎÅÍÆäÀ̽º »ç¿ëÀÚ Á¤ÀÇÀÌ Àý¿¡¼´Â ÆíÁýÇÒ ¼ö ÀÖ´Â ¿©·¯ µî·Ï Á¤º¸ ÆÄÀÏ¿¡ ´ëÇØ ¼³¸íÇÕ´Ï´Ù.
srapGateway.properties ÆÄÀÏ
´ÙÀ½°ú °°Àº ¸ñÀûÀ¸·Î ÀÌ ÆÄÀÏÀ» ÆíÁýÇÒ ¼ö ÀÖ½À´Ï´Ù.
- °ÔÀÌÆ®¿þÀÌ ½ÇÇà Áß¿¡ ³ªÅ¸³¯ ¼ö ÀÖ´Â ¿À·ù ¸Þ½ÃÁö¸¦ »ç¿ëÀÚ Á¤ÀÇÇÒ ¶§
- HTML-CharSets=ISO-8859-1Àº ÀÌ ÆÄÀÏÀ» ¸¸µå´Â µ¥ »ç¿ëµÇ´Â ¹®ÀÚ ÁýÇÕÀ» ÁöÁ¤ÇÕ´Ï´Ù.
- Áß°ýÈ£ ¾ÈÀÇ ¼ýÀÚ (¿¹: {0}) ´Â °ªÀÌ ·±Å¸ÀÓÀ¸·Î Ç¥½ÃµÈ´Ù´Â °ÍÀ» ¶æÇÕ´Ï´Ù. ÇÊ¿ä¿¡ µû¶ó ÀÌ ¼ýÀÚ¿Í ¿¬°üµÈ ·¹À̺íÀ» º¯°æÇϰųª ·¹À̺íÀ» Àç¹è¿ÇÒ ¼ö ÀÖ½À´Ï´Ù. ·¹ÀÌºí ¼ýÀÚ¿Í ¿À·ù´Â ¿¬°üµÇ¾î Àֱ⠶§¹®¿¡ ·¹ÀÌºí¿¡ ÇØ´çÇϴ ǥ½ÃµÉ ¸Þ½ÃÁö°¡ ÀÖ¾î¾ß ÇÕ´Ï´Ù.
- ·Î±× Á¤º¸¸¦ »ç¿ëÀÚ Á¤ÀÇÇÒ ¶§.
±âº»ÀûÀ¸·Î srapGateway.properties ÆÄÀÏÀº portal-server-install-root/SUNWps/locale µð·ºÅ丮¿¡ ÀÖ½À´Ï´Ù. °ÔÀÌÆ®¿þÀÌ ÄÄÇ»ÅÍ¿¡ ³ªÅ¸³ª´Â ¸ðµç ¸Þ½ÃÁö (°ÔÀÌÆ®¿þÀÌ °ü·Ã ¸Þ½ÃÁö) ´Â ¸Þ½ÃÁöÀÇ ¾ð¾î¿Í´Â »ó°ü ¾øÀÌ ÀÌ ÆÄÀÏ¿¡ ÀÖ½À´Ï´Ù.
Ŭ¶óÀ̾ðÆ® Ç¥ÁØ Æ÷ÅÐ µ¥½ºÅ©Å¾¿¡ ³ªÅ¸³ª´Â ¸Þ½ÃÁöÀÇ ¾ð¾î¸¦ º¯°æÇØ¾ß ÇÏ´Â °æ¿ì ÀÌ ÆÄÀÏÀ» °¢ ·ÎÄÌ µð·ºÅ丮·Î º¹»çÇÕ´Ï´Ù (¿¹: portal-server-install-root/SUNWps/locale).
srapgwadminmsg.properties ÆÄÀÏ
´ÙÀ½°ú °°Àº ÀÌÀ¯·Î ÀÌ ÆÄÀÏÀ» ÆíÁýÇÒ ¼ö ÀÖ½À´Ï´Ù.
LDAP µð·ºÅ丮 °øÀ¯Portal Server ¹× Access Manager ¼¹öÀÇ µÎ ÀνºÅϽº°¡ °°Àº LDAP µð·ºÅ丮¸¦ °øÀ¯ÇÏ´Â °æ¿ì ¸ðµç ÈÄ¼Ó Portal Server, Access Manager ¹× °ÔÀÌÆ®¿þÀÌ¿¡ ´ëÇØ ´ÙÀ½ ÇØ°á ¹æ¹ýÀ» »ç¿ëÇϽʽÿÀ.
#The key that will be used to encrypt and decrypt passwords. am.encryption.pwd=t/vnY9Uqjf12NbFywKuAaaHibwlDFNLO <== ÀÌ ¹®ÀÚ¿À» ù ¹ø° Æ÷ÅÐÀ» ¼³Ä¡ÇßÀ» ¶§ÀÇ ¹®ÀÚ¿·Î ¹Ù²Ù½Ê½Ã¿À.
/* The following key is the shared secret for application auth module */ com.iplanet.am.service.secret=AQICxIPLNc0WWQRVlYZN0PnKgyvq3gTU8JA9 <== ÀÌ ¹®ÀÚ¿À» ù ¹ø° Æ÷ÅÐÀ» ¼³Ä¡ÇßÀ» ¶§ÀÇ ¹®ÀÚ¿·Î ¹Ù²Ù½Ê½Ã¿À.
- /etc/opt/SUNWam/config/ums¿¡¼ serverconfig.xmlÀÇ ´ÙÀ½ ¿µ¿ªÀ» óÀ½ ¼³Ä¡ÇÑ Portal Server ¹× Access Manager ¼¹ö¿Í µ¿±âȵǵµ·Ï ¼öÁ¤ÇÕ´Ï´Ù.
<DirDN>
cn=puser,ou=DSAME Users,dc=sun,dc=net
</DirDN>
<DirPassword>
AQICxIPLNc0WWQT22gQnGgnCp9rUf+FuaqpY <== ÀÌ ¹®ÀÚ¿À» ù ¹ø° Æ÷ÅÐÀ» ¼³Ä¡ÇßÀ» ¶§ÀÇ ¹®ÀÚ¿·Î ¹Ù²Ù½Ê½Ã¿À.
</DirPassword>
<DirDN>
cn=dsameuser,ou=DSAME Users,dc=sun,dc=net
</DirDN>
<DirPassword>
AQICxIPLNc0WWQT22gQnGgnCp9rUf+FuaqpY <== ÀÌ ¹®ÀÚ¿À» ù ¹ø° Æ÷ÅÐÀ» ¼³Ä¡ÇßÀ» ¶§ÀÇ ¹®ÀÚ¿·Î ¹Ù²Ù½Ê½Ã¿À.
</DirPassword>
- amserver ¼ºñ½º¸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
¿¬ÇÕ °ü¸® »ç¿ë¿¬ÇÕ °ü¸®¸¦ »ç¿ëÇÏ¸é »ç¿ëÀÚ°¡ ÇϳªÀÇ ³×Æ®¿öÅ© ¾ÆÀ̵𸦠°¡Áú ¼ö ÀÖµµ·Ï ·ÎÄà ¾ÆÀ̵𸦠Áý°èÇÒ ¼ö ÀÖ½À´Ï´Ù. ¿¬ÇÕ °ü¸®¿¡¼´Â ³×Æ®¿öÅ© ¾ÆÀ̵𸦠»ç¿ëÇÏ¿© »ç¿ëÀÚ°¡ ÇÑ ¼ºñ½º °ø±ÞÀÚÀÇ »çÀÌÆ®¿¡ ·Î±×ÀÎÇÒ °æ¿ì ¾ÆÀ̵𸦠ÀçÀÎÁõ ¹ÞÁö ¾Ê°íµµ ´Ù¸¥ ¼ºñ½º °ø±ÞÀÚÀÇ »çÀÌÆ®¿¡ ¾×¼¼½ºÇÒ ¼ö ÀÖµµ·Ï ÇØ ÁÝ´Ï´Ù. À̸¦ ´ÜÀÏ »çÀοÂÀ̶ó ÇÕ´Ï´Ù.
¿¬ÇÕ °ü¸®´Â Portal Server¿¡¼ °³¹æ ¸ðµå ¹× º¸¾È ¸ðµå·Î ±¸¼ºÇÒ ¼ö ÀÖ½À´Ï´Ù. Portal Server °ü¸® ¼³¸í¼¿¡¼´Â °³¹æ ¸ðµå·Î ¿¬ÇÕ °ü¸®¸¦ ±¸¼ºÇÏ´Â ¹æ¹ý¿¡ ´ëÇØ ¼³¸íÇÕ´Ï´Ù. ¿¬ÇÕ °ü¸®¸¦ Secure Remote Access ¸¦ »ç¿ëÇÏ¿© º¸¾È ¸ðµå¿¡¼ ±¸¼ºÇÏ·Á¸é ¿¸° ¸ðµå¿¡¼ ¿Ã¹Ù·Î ÀÛµ¿ÇÏ´ÂÁö È®ÀÎÇØ¾ß ÇÕ´Ï´Ù. »ç¿ëÀÚ°¡ °°Àº ºê¶ó¿ìÀú¿¡¼ °³¹æ ¸ðµå¿Í º¸¾È ¸ðµå ¸ðµÎ¿¡ ´ëÇØ ¿¬ÇÕ °ü¸®¸¦ »ç¿ëÇÒ ¼ö ÀÖµµ·Ï ÇÏ·Á¸é ÄíÅ°¸¦ Áö¿ì°í ºê¶ó¿ìÀú·ÎºÎÅÍ Ä³½ÌÇØ¾ß ÇÕ´Ï´Ù.
¿¬ÇÕ °ü¸®¿¡ ´ëÇÑ ÀÚ¼¼ÇÑ ³»¿ëÀº Access Manager Federation Management Guide¸¦ ÂüÁ¶ÇϽʽÿÀ.
¿¬ÇÕ °ü¸® ½Ã³ª¸®¿À
»ç¿ëÀÚ°¡ ÃÖÃÊ ¼ºñ½º °ø±ÞÀÚ¿¡°Ô ÀÎÁõÀ» ¹Þ½À´Ï´Ù. ¼ºñ½º °ø±ÞÀÚ´Â À¥ ±â¹Ý ¼ºñ½º¸¦ Á¦°øÇÏ´Â »ó¾÷Àû Á¶Á÷À̰ųª ºñ¿µ¸® Á¶Á÷À» ¸»ÇÕ´Ï´Ù. ÀÌ·¸°Ô ³ÐÀº ¹üÁÖ¿¡´Â ÀÎÅÍ³Ý Æ÷ÅÐ, ´ë¸®Á¡, ¿î¼Û °ø±ÞÀÚ, ±ÝÀ¶ ±â°ü, ¿£ÅÍÅ×ÀθÕÆ® ȸ»ç, µµ¼°ü, ´ëÇÐ ¹× Á¤ºÎ ±â°üÀÌ ¸ðµÎ Æ÷Ç﵃ ¼ö ÀÖ½À´Ï´Ù.
¼ºñ½º °ø±ÞÀÚ´Â ÄíÅ°¸¦ »ç¿ëÇÏ¿© Ŭ¶óÀ̾ðÆ® ºê¶ó¿ìÀú¿¡ »ç¿ëÀÚÀÇ ¼¼¼Ç Á¤º¸¸¦ ÀúÀåÇÕ´Ï´Ù. ÄíÅ°¿¡µµ »ç¿ëÀÚÀÇ ¾ÆÀ̵ð °ø±ÞÀÚ°¡ Æ÷Ç﵃ ¼ö ÀÖ½À´Ï´Ù.
¾ÆÀ̵ð °ø±ÞÀÚ´Â ÀÎÁõ ¼ºñ½º¸¦ Àü¹®ÀûÀ¸·Î Á¦°øÇÏ´Â ¼ºñ½º °ø±ÞÀÚ¸¦ ¸»ÇÕ´Ï´Ù. ÀÎÁõÀ» À§ÇÑ °ü¸® ¼ºñ½º·Î ¾ÆÀ̵ð °ø±ÞÀÚ´Â ¾ÆÀ̵ð Á¤º¸¸¦ À¯Áö °ü¸®Çϱ⵵ ÇÕ´Ï´Ù. ¾ÆÀ̵ð °ø±ÞÀÚ¿¡ ÀÇÇØ Çã°¡µÈ ÀÎÁõÀº Á¦ÈÞ °ü°è¿¡ ÀÖ´Â ¸ðµç ¼ºñ½º °ø±ÞÀÚ¿¡°Ô À¯È¿ÇÕ´Ï´Ù.
»ç¿ëÀÚ°¡ ¾ÆÀ̵ð °ø±ÞÀÚ¿Í Á¦ÈÞµÇÁö ¾ÊÀº ¼ºñ½º¿¡ ¾×¼¼½ºÇÏ·Á°í ÇÏ¸é ¾ÆÀ̵ð °ø±ÞÀÚ´Â ÄíÅ°¸¦ Á¦ÈÞµÇÁö ¾ÊÀº ¼ºñ½º °ø±ÞÀÚ¿¡°Ô Àü´ÞÇÕ´Ï´Ù. ±×·± ´ÙÀ½ ÀÌ ¼ºñ½º °ø±ÞÀÚ°¡ ÄíÅ°¿¡ ¸í¸íµÈ ¾ÆÀ̵ð °ø±ÞÀÚ¿¡°Ô ¾×¼¼½ºÇÒ ¼ö ÀÖ½À´Ï´Ù.
±×·¯³ª ÄíÅ°´Â ¿©·¯ DNS µµ¸ÞÀο¡¼ ÀÐÀ» ¼ö ¾ø±â ¶§¹®¿¡ ¼ºñ½º °ø±ÞÀÚ¸¦ ¿Ã¹Ù¸¥ ¾ÆÀ̵ð °ø±ÞÀÚ¿¡°Ô ¸®µð·º¼ÇÇÏ¿© »ç¿ëÀÚ¿¡°Ô ´ÜÀÏ »çÀοÂÀÌ °¡´ÉÇϵµ·Ï °ø¿ë µµ¸ÞÀÎ ÄíÅ° ¼ºñ½º¸¦ »ç¿ëÇÕ´Ï´Ù.
¿¬ÇÕ °ü¸® ¸®¼Ò½º ±¸¼º
¿¬ÇÕ ÀÚ¿ø, ¼ºñ½º °ø±ÞÀÚ, ¾ÆÀ̵ð °ø±ÞÀÚ ¹× °ø¿ë µµ¸ÞÀÎ ÄíÅ° ¼ºñ½º (CDCS) ´Â »óÁÖÇØ ÀÖ´Â À§Ä¡¸¦ ±âÁØÀ¸·Î °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ¿¡ ±¸¼ºµË´Ï´Ù. ÀÌ Àý¿¡¼´Â 3°¡Áö ½Ã³ª¸®¿À¸¦ ±¸¼ºÇÏ´Â ¹æ¹ý¿¡ ´ëÇØ ¼³¸íÇÕ´Ï´Ù.
±¸¼º 1
ÀÌ ±¸¼º¿¡¼´Â ¼ºñ½º °ø±ÞÀÚ, ¾ÆÀ̵ð °ø±ÞÀÚ ¹× °ø¿ë µµ¸ÞÀÎ ÄíÅ° ¼ºñ½º°¡ °°Àº ±â¾÷ ÀÎÆ®¶ó³Ý¿¡ ¹èÄ¡µÇ°í ¾ÆÀ̵ð °ø±ÞÀÚ´Â ÀÎÅÍ³Ý DNS (Domain Name Server) ¿¡ °Ô½ÃµÇÁö ¾Ê½À´Ï´Ù. CDCS´Â ¼±Åà »çÇ×ÀÔ´Ï´Ù.
ÀÌ ±¸¼º¿¡¼´Â °ÔÀÌÆ®¿þÀÌ°¡ Portal Server°¡ µÇ´Â ¼ºñ½º °ø±ÞÀÚ¸¦ ÁöÁ¤ÇÕ´Ï´Ù. ÀÌ ±¸¼ºÀº Portal ServerÀÇ ´ÙÁß ÀνºÅϽº¿¡ À¯È¿ÇÕ´Ï´Ù.
- Access Manager °ü¸® Äֿܼ¡ °ü¸®ÀÚ·Î ·Î±×ÀÎÇÕ´Ï´Ù.
- °ü¸® Äֿܼ¡¼ [¼ºñ½º ±¸¼º] ÅÇÀ» ¼±ÅÃÇÕ´Ï´Ù.
- SRA ±¸¼º ¾Æ·¡¿¡¼ °ÔÀÌÆ®¿þÀÌ ¿·¿¡ ÀÖ´Â È»ìÇ¥¸¦ ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- ¼Ó¼ºÀ» ¼³Á¤ÇÒ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ÆíÁý ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- [ÇÙ½É] ÅÇÀ» ´©¸¨´Ï´Ù.
- [ÄíÅ° °ü¸® »ç¿ë] È®ÀζõÀ» ¼±ÅÃÇÏ°í ÄíÅ° °ü¸®ÀÇ »ç¿ëÀ» È°¼ºÈÇÕ´Ï´Ù.
- [º¸¾È] ÅÇÀ» ´©¸¨´Ï´Ù.
- Portal Servers Çʵå·Î ½ºÅ©·ÑÇÏ°í Portal Server À̸§À» ÀÔ·ÂÇÏ¿© ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ /amserver ¶Ç´Â /portal/dt µîÀÇ °ü·Ã URLÀ» »ç¿ëÇÒ ¼ö ÀÖµµ·Ï ÇÕ´Ï´Ù. ¿¹:
http://idp-host:port/amserver/js
http://idp-host:port/amserver/UI/Login
http://idp-host:port/amserver/css
http://idp-host:port/amserver/SingleSignOnService
http://idp-host:port/amserver/UI/blank
http://idp-host:port/amserver/postLogin
http://idp-host:port/amserver/login_images
- Portal Server Çʵå·Î ½ºÅ©·ÑÇÏ¿© Portal Server À̸§À» ÀÔ·ÂÇÕ´Ï´Ù. ¿¹¸¦ µé¾î /amserver¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- [º¸¾È] ÅÇÀ» ´©¸¨´Ï´Ù.
- ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·ÏÀ¸·Î ½ºÅ©·ÑÇÏ¿© ¿¬ÇÕ ¸®¼Ò½º¸¦ Ãß°¡ÇÕ´Ï´Ù. ¿¹:
/amserver/config/federation
/amserver/IntersiteTransferService
/amserver/AssertionConsumerservice
/amserver/fed_images
/amserver/preLogin
/portal/dt
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- À¥ ÇÁ·Ï½Ã¿¡¼ ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ URL¿¡ Á¢¼ÓÀÌ ÇÊ¿äÇϸé [ÇÁ·Ï½Ã] ÅÇÀ» ´©¸¨´Ï´Ù.
- [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] Çʵå·Î ½ºÅ©·ÑÇÏ¿© ÇÊ¿äÇÑ À¥ ÇÁ·Ï½Ã¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- Å͹̳Πâ¿¡¼ °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
±¸¼º 2
ÀÌ ±¸¼º¿¡¼´Â ¾ÆÀ̵ð °ø±ÞÀÚ, ¾ÆÀ̵ð °ø±ÞÀÚ ¹× °ø¿ë µµ¸ÞÀÎ ÄíÅ° °ø±ÞÀÚ (CDCP) °¡ °°Àº ±â¾÷ ÀÎÆ®¶ó³Ý¿¡ ¹èÄ¡µÇÁö ¾Ê¾Ò°Å³ª ¾ÆÀ̵ð °ø±ÞÀÚ°¡ ÀÎÅͳݿ¡ »óÁÖÇϴ Ÿ»ç °ø±ÞÀÚÀÔ´Ï´Ù.
ÀÌ ±¸¼º¿¡¼´Â °ÔÀÌÆ®¿þÀÌ°¡ Portal Server°¡ µÇ´Â ¼ºñ½º °ø±ÞÀÚ¸¦ ÁöÁ¤ÇÕ´Ï´Ù. ÀÌ ±¸¼ºÀº Portal ServerÀÇ ´ÙÁß ÀνºÅϽº¿¡ À¯È¿ÇÕ´Ï´Ù.
- Access Manager °ü¸® Äֿܼ¡ °ü¸®ÀÚ·Î ·Î±×ÀÎÇÕ´Ï´Ù.
- °ü¸® Äֿܼ¡¼ [¼ºñ½º ±¸¼º] ÅÇÀ» ¼±ÅÃÇÕ´Ï´Ù.
- SRA ±¸¼º ¾Æ·¡¿¡¼ °ÔÀÌÆ®¿þÀÌ ¿·¿¡ ÀÖ´Â È»ìÇ¥¸¦ ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- ¼Ó¼ºÀ» ¼³Á¤ÇÒ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ÆíÁý ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- [ÇÙ½É] ÅÇÀ» ´©¸¨´Ï´Ù.
- [ÄíÅ° °ü¸® »ç¿ë] È®ÀζõÀ» ¼±ÅÃÇÏ°í ÄíÅ° °ü¸®ÀÇ »ç¿ëÀ» È°¼ºÈÇÕ´Ï´Ù.
- Portal Servers Çʵå·Î ½ºÅ©·ÑÇÏ°í ¼ºñ½º °ø±ÞÀÚ Portal Server À̸§À» ÀÔ·ÂÇÏ¿© ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ /amserver ¶Ç´Â /portal/dt µîÀÇ °ü·Ã URLÀ» »ç¿ëÇÒ ¼ö ÀÖµµ·Ï ÇÕ´Ï´Ù.
http://idp-host:port/amserver/js
http://idp-host:port/amserver/UI/Login
http://idp-host:port/amserver/css
http://idp-host:port/amserver/SingleSignOnService
http://idp-host:port/amserver/UI/blank
http://idp-host:port/amserver/postLogin
http://idp-host:port/amserver/login_images
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- [º¸¾È] ÅÇÀ» ´©¸¨´Ï´Ù.
- ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·ÏÀ¸·Î ½ºÅ©·ÑÇÏ¿© ¿¬ÇÕ ¸®¼Ò½º¸¦ Ãß°¡ÇÕ´Ï´Ù. ¿¹:
/amserver/config/federation
/amserver/IntersiteTransferService
/amserver/AssertionConsumerservice
/amserver/fed_images
/amserver/preLogin
/portal/dt
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- À¥ ÇÁ·Ï½Ã¿¡¼ ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ URL¿¡ Á¢¼ÓÀÌ ÇÊ¿äÇϸé [ÇÁ·Ï½Ã] ÅÇÀ» ´©¸¨´Ï´Ù.
- [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] Çʵå·Î ½ºÅ©·ÑÇÏ¿© ÇÊ¿äÇÑ À¥ ÇÁ·Ï½Ã¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- Å͹̳Πâ¿¡¼ °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start
±¸¼º 3
ÀÌ ±¸¼º¿¡¼´Â ¾ÆÀ̵ð °ø±ÞÀÚ, ¾ÆÀ̵ð °ø±ÞÀÚ ¹× °ø¿ë µµ¸ÞÀÎ ÄíÅ° °ø±ÞÀÚ (CDCP) °¡ °°Àº ±â¾÷ ÀÎÆ®¶ó³Ý¿¡ ¹èÄ¡µÇÁö ¾Ê¾Ò°Å³ª ¼ºñ½º °ø±ÞÀÚ°¡ ÀÎÅͳݿ¡ »óÁÖÇϴ Ÿ»çÀÌ°í ¾ÆÀ̵ð °ø±ÞÀÚ´Â °ÔÀÌÆ®¿þÀÌ¿¡ ÀÇÇØ º¸È£µË´Ï´Ù.
ÀÌ ±¸¼º¿¡¼´Â °ÔÀÌÆ®¿þÀÌ°¡ Portal Server°¡ µÇ´Â ¾ÆÀ̵ð °ø±ÞÀÚ¸¦ ÁöÁ¤ÇÕ´Ï´Ù.
ÀÌ ±¸¼ºÀº Portal ServerÀÇ ´ÙÁß ÀνºÅϽº¿¡ À¯È¿ÇÕ´Ï´Ù. ÀÌ ±¸¼ºÀº ÀÎÅͳݿ¡¼´Â ±¸ÇöµÇ´Â °æ¿ì°¡ °ÅÀÇ ¾øÁö¸¸ ¾î¶² ±â¾÷ ³×Æ®¿öÅ©¿¡´Â ÀÎÆ®¶ó³Ý¿¡ ÀÌ·¯ÇÑ ±¸¼ºÀÌ ÀÖÀ» ¼ö ÀÖ½À´Ï´Ù. Áï, ¾ÆÀ̵ð °ø±ÞÀÚ´Â ¹æȺ®À¸·Î º¸È£µÇ´Â ¼ºê³Ý¿¡ ÀÖ°í ¼ºñ½º °ø±ÞÀÚ´Â ±â¾÷ ³×Æ®¿öÅ© ³»¿¡¼ Á÷Á¢ ¾×¼¼½º °¡´ÉÇÑ °æ¿ì¸¦ ¸»ÇÕ´Ï´Ù.
- Access Manager °ü¸® Äֿܼ¡ °ü¸®ÀÚ·Î ·Î±×ÀÎÇÕ´Ï´Ù.
- °ü¸® Äֿܼ¡¼ [¼ºñ½º ±¸¼º] ÅÇÀ» ¼±ÅÃÇÕ´Ï´Ù.
- SRA ±¸¼º ¾Æ·¡¿¡¼ °ÔÀÌÆ®¿þÀÌ ¿·¿¡ ÀÖ´Â È»ìÇ¥¸¦ ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- ¼Ó¼ºÀ» ¼³Á¤ÇÒ °ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊÀ» ´©¸¨´Ï´Ù.
°ÔÀÌÆ®¿þÀÌ ÇÁ·ÎÇÊ ÆíÁý ÆäÀÌÁö°¡ Ç¥½ÃµË´Ï´Ù.
- [ÇÙ½É] ÅÇÀ» ´©¸¨´Ï´Ù.
- [ÄíÅ° °ü¸® »ç¿ë] È®ÀζõÀ» ¼±ÅÃÇÏ°í ÄíÅ° °ü¸®ÀÇ »ç¿ëÀ» È°¼ºÈÇÕ´Ï´Ù.
- Portal Servers Çʵå·Î ½ºÅ©·ÑÇÏ°í ¾ÆÀ̵ð °ø±ÞÀÚ Portal Server À̸§À» ÀÔ·ÂÇÏ¿© ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ /amserver ¶Ç´Â /portal/dt µîÀÇ °ü·Ã URLÀ» »ç¿ëÇÒ ¼ö ÀÖµµ·Ï ÇÕ´Ï´Ù.
http://idp-host:port/amserver/js
http://idp-host:port/amserver/UI/Login
http://idp-host:port/amserver/css
http://idp-host:port/amserver/SingleSignOnService
http://idp-host:port/amserver/UI/blank
http://idp-host:port/amserver/postLogin
http://idp-host:port/amserver/login_images
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- [º¸¾È] ÅÇÀ» ´©¸¨´Ï´Ù.
- ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·ÏÀ¸·Î ½ºÅ©·ÑÇÏ¿© ¿¬ÇÕ ¸®¼Ò½º¸¦ Ãß°¡ÇÕ´Ï´Ù. ¿¹:
/amserver/config/federation
/amserver/IntersiteTransferService
/amserver/AssertionConsumerservice
/amserver/fed_images
/amserver/preLogin
/portal/dt
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- À¥ ÇÁ·Ï½Ã¿¡¼ ÀÎÁõµÇÁö ¾ÊÀº URL ¸ñ·Ï¿¡ ³ª¿µÈ URL¿¡ Á¢¼ÓÀÌ ÇÊ¿äÇϸé [ÇÁ·Ï½Ã] ÅÇÀ» ´©¸¨´Ï´Ù.
- [µµ¸ÞÀÎ ¹× ºÎ¼Ó µµ¸ÞÀÎÀÇ ÇÁ·Ï½Ã] Çʵå·Î ½ºÅ©·ÑÇÏ¿© ÇÊ¿äÇÑ À¥ ÇÁ·Ï½Ã¸¦ ÀÔ·ÂÇÕ´Ï´Ù.
- [Ãß°¡]¸¦ ´©¸¨´Ï´Ù.
- [ÀúÀå]À» ´©¸¨´Ï´Ù.
- Å͹̳Πâ¿¡¼ °ÔÀÌÆ®¿þÀ̸¦ ´Ù½Ã ½ÃÀÛÇÕ´Ï´Ù.
gateway-install-root/SUNWps/bin/gateway -n gateway-profile-name start