Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain.

Published byDouglas Logan Modified over 9 years ago

Similar presentations

Presentation on theme: "Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain."— Presentation transcript:

1 Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks http://www.cs.princeton.edu/courses/archive/fall14/cos561/ Domain Name System (DNS)

2 DNS Applies General CS Concepts Indirection –Names in place of addresses Hierarchy –Names:.com,.cnn.com, www.cnn.com –Addresses: 12.0.0.0/8, 12.3.0.0/16, 12.3.4.0/24 Caching –Of name-address mappings Typed data –Hosts, name servers, mail servers, … 2

3 Strawman Solution #1: Local File Original name to address mapping – Flat namespace – /etc/hosts – SRI kept main copy – Downloaded regularly Count of hosts was increasing: moving from a machine per domain to machine per user – Many more downloads – Many more updates 3

4 Strawman Solution #2: Central Server Central server – One place where all mappings are stored – All queries go to the central server Many practical problems – Single point of failure – High traffic volume – Distant centralized database – Single point of update – Does not scale 4 Need a distributed, hierarchical collection of servers

5 DNS Hierarchy 5

6 Domain Name System (DNS) Properties of DNS – Hierarchical name space divided into zones – Distributed over a collection of DNS servers Hierarchy of DNS servers – Root servers – Top-level domain (TLD) servers – Authoritative DNS servers Performing the translations – Local DNS servers and client resolvers 6

7 7 Distributed Hierarchical Database comeduorgac uk zw arpa unnamed root bar westeast foomy ac cam usr in- addr 12 34 56 generic domainscountry domains my.east.bar.edu usr.cam.ac.uk 12.34.56.0/24

8 DNS Root Servers 13 root servers (see http://www.root-servers.org/)http://www.root-servers.org/ Labeled A through M 8 B USC-ISI Marina del Rey, CA L ICANN Los Angeles, CA E NASA Mt View, CA F Internet Software C. Palo Alto, CA (and 17 other locations) I Autonomica, Stockholm (plus 3 other locations) K RIPE London (+ Amsterdam, Frankfurt) m WIDE Tokyo A Verisign, Dulles, VA C Cogent, Herndon, VA (also Los Angeles) D U Maryland College Park, MD G US DoD Vienna, VA H ARL Aberdeen, MD J Verisign, ( 11 locations)

9 TLD and Authoritative DNS Servers Global Top-level domain (gTLD) servers – Generic domains (e.g.,.com,.org,.edu) – Country domains (e.g.,.uk,.fr,.ca,.jp) – Managed professionally (e.g., Verisign for.com.net) Authoritative DNS servers – Provide public records for hosts at an organization – For the organization’s servers (e.g., Web and mail) – Can be maintained locally or by a service provider 9

10 Reliability DNS servers are replicated – Name service available if at least one replica is up – Queries can be load balanced between replicas UDP used for queries – Need reliability: must implement this on top of UDP Try alternate servers on timeout – Exponential backoff when retrying same server Same identifier for all queries – Don’t care which server responds 10

11 DNS Queries and Caching 11

12 Using DNS Local DNS server (“default name server”) – Usually near the end hosts who use it – Local hosts configured with local server (e.g., /etc/resolv.conf) or learn the server via DHCP Client application – Extract server name (e.g., from the URL) – Do gethostbyname() or getaddrinfo() to get address Server application – Extract client IP address from socket – Optional gethostbyaddr() to translate into name 12

13 requesting host a.cs.princeton.edu www.umass.edu root DNS server for. local DNS server dns.princeton.edu 3 authoritative DNS server for umass.edu dns.umass.edu TLD DNS server for.edu DNS Queries Host a.cs.princeton.edu wants IP address for www.umass.edu Note Recursive vs. Iterative Queries 13 local DNS server dns.cs.princeton.edu 1 2 4 5 6 7 8 9 10

14 requesting host a.cs.princeton.edu www.umass.edu root DNS server for. 3 authoritative DNS server for umass.edu dns.umass.edu TLD DNS server for.edu DNS Caching DNS query latency – E.g., 1 sec latency before starting a download Caching to reduce overhead and delay – Small # of top-level servers, that change rarely – Popular sites visited often Where to cache? – Local DNS server – Browser 14 1 2 4 5 6 7 8 9 10

15 DNS Cache Consistency Goal: Ensuring cached data is up to date DNS design considerations – Cached data is “read only” – Explicit invalidation would be expensive Avoiding stale information – Responses include a “time to live” (TTL) field – Delete the cached entry after TTL expires Perform negative caching (for dead links, misspellings) – So failures quick and don’t overload gTLD servers 15

16 Setting the Time To Live (TTL) TTL trade-offs – Small TTL: fast response to change – Large TTL: higher cache hit rate Following the hierarchy – Top of the hierarchy: days or weeks – Bottom of the hierarchy: seconds to hours Tension in practice – CDNs set low TTLs for load balancing and failover – Browsers cache for 15-60 seconds 16

17 DNS Resource Records 17 RR format: (name, value, type, ttl) Type=A – Name: hostname – Value: IP address Type=CNAME – Name: alias for some “canonical” (the real) name: www.ibm.com is really srveast.backup2.ibm.com – Value: canonical name Type=MX – Value: name of mailserver associated with name Type=NS – Name: domain – Value: hostname of name server for domain

18 Discussion Replicating DNS servers –Zone transfers –IP anycast Use of DNS for geo-replicated content –Customized responses to queries –Inferring the user’s location –Knowing the user’s IP address Policy issues –Use of DNS to block access to Web sites (U.S., bodog) –Collateral damage of DNS injection (China, roots/TLDs) –Alternative DNS roots –Redirecting DNS for ads and profit (e.g., Paxfire) 18

19 Discussion Games you can play with DNS –Measurement using DNS (e.g., King paper) –Getting free WiFi Google Public DNS Automating adding records to DNS (RFC 2136) DNS security –Cache poisoning (and Kaminsky vulnerability) –DNSSEC 19

Download ppt "Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain."

Similar presentations

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.
1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.

2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.
1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:

1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.

1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.

2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.
Application Layer12-1 2010 session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.

Application Layer session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.
1 Translating Addresses Reading: Section 4.1 and 9.1 COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Jennifer Rexford Teaching Assistant:

1 Translating Addresses Reading: Section 4.1 and 9.1 COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Jennifer Rexford Teaching Assistant:
1 Translating Addresses Reading: Section 4.1 and 9.1 COS 461: Computer Networks Spring 2008 (MW 1:30-2:50 in COS 105) Jennifer Rexford Teaching Assistants:

1 Translating Addresses Reading: Section 4.1 and 9.1 COS 461: Computer Networks Spring 2008 (MW 1:30-2:50 in COS 105) Jennifer Rexford Teaching Assistants:
Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT 745 Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.

CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.
Name Resolution and DNS. Domain names and IP addresses r People prefer to use easy-to-remember names instead of IP addresses r Domain names are alphanumeric.

Name Resolution and DNS. Domain names and IP addresses r People prefer to use easy-to-remember names instead of IP addresses r Domain names are alphanumeric.
Chapter 2 Application Layer

Chapter 2 Application Layer

Similar presentations

Ads by Google