Presentation is loading. Please wait.

Presentation is loading. Please wait.

DNS Registries. Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants.

Published byRafe Powell Modified over 9 years ago

Similar presentations

Presentation on theme: "DNS Registries. Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants."— Presentation transcript:

1 DNS Registries

2 Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants Interaction with others –Whois

3 What is DNS Registry? The point of a registry is to publish a zone which delegates child zones to other nameservers Registry system provide a systematic and automated method of maintaining a zone with a limited and well-defined structure If you do not delegate zones to others, possibly don’t care how registries are run

4 DNS Registries Receive and validate external data Store data Publish data (DNS, whois, etc)

5 Data In Domain names Nameservers (FQDN & IP) Meta-data –authentication –technical coordination –billing (payments & renewals)

6 Data Out A zone file –a list of delegations (NS records) –delegation glue (A, AAAA records) –published via a master nameserver, replicated to slaves Whois Other data (statistics, logs, etc)

7 Data Flow

8 Transactions Add and delete records Modify records –add, delete nameservers (change delegation) –change meta-data –set status attributes

9 Manual Registries Some registries don’t have to process many transactions –GOVT.NZ –AQ –INT –NAME A registry might just consist of a zone file edited by hand

10 The NET zone We have a top level domain called NET for the purpose of this workshop Right now, the NET zone is maintained manually Send mail to Arth Lets start by thinking about what the NET zone might look like

11 The NET zone $ TTL 8600 $ORIGIN net. @SOAA.root-server.net.Arth.sanog.net. ( 2004011401; serial 1800; refresh (30 mins) 900; retry (15 mins) 604800; expire (7 days) 86400 ); negataive cache TTL (1 day) NSA.root-server NSB.root-server A.root-serverA192.168.100.1 B.root-serverA192.168.200.1 ; SANGOG organisation ; contact Guarab, +91 98345678, guarab@sangog.netguarab@sangog.net sanogNSns1.sanog NSbangalore.sanog bangalore.sanogA192.168.300.1

12 Transactions Add a domain –Add NS records –Add glue records (A, AAAA) –Store meta-data ; where-is-Sunny Enterprises Ltd ; contact Sunny, +91 0402567896, sunny@ep.netsunny@ep.net where-isNSmoon.ep.net. NSstar.ep.net. ;

13 Transactions…. Modify nameservers, metadata –Change NS records –Change glue records (A, AAAA) –Change meta-data ; where-is-Sunny Enterprises Ltd ; contact Sunny, +91 0402567896, sunny@ep.netsunny@ep.net where-isNSship.ep.net. NSboat.ep.net.

14 Transactions Remove a domain –Remove NS records –Remove glue records (A, AAAA) –Remove meta-data ; where-is-Sunny Enterprises Ltd ; contact Sunny, +91 0402567896, sunny@ep.netsunny@ep.net ; deleted 2003-02-02 by hostmast@sanog.net ;where-isNSship.ep.net. ;NSboat.ep.net.

15 Registry Structure

16 Tedious definitions “registrant” – the organisation or person responsible for a domain “registrar” – the middlemen who interacts with registries on behalf of registrants “registry” - the organisations which maintains the register and publishes the zone “register” – the data that is maintained by the registry

17 Simple Registry Structure Registry deals directly with Registrants No Registrars “Single Access Registry” “Monopoly Registry”

18 Simple Registry with Resellers Registrants can deal directly with the Registry, or they can deal with Resellers

19 Additional Transactions Registries only interact with registries For any particular domain, a Registrant only interacts with one Registrar That Registrar is said to “sponsor” the domain Registry “transfer” transaction

20 Centralise vs De-centralise Some shared-registry systems distribute much of the registry metadata to registrars, rather that maintaining it centrally –“de-centralise” registry (COM, NET) Other shared-registry systems keep all the metadata central –“centralise” registry (INFO, IN, LK, etc)

21 Interaction with Others

22 Contact with Others

23 Whois Mechanism for retrieving metadata from registry RFC 954 No data format specified Transport protocol is poorly specified Every registry whois output looks different

24 Whois.crsnic.net

25 Whois.srs.net.nz

26 More Whois RIRs are registries too –IP addresses, ASNs, domains –Route policy (RIPE-181, RPSL) –IRR whois.apnic.net whois.arin.net whois.ripe.net whois.lacnic.net whois.ra.net

27 Questions ?

Download ppt "DNS Registries. Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants."

Similar presentations

Operational Policies for NIRs in the APNIC Region NIR Meeting APNIC14, Kitakyushu, Japan 4 Sept 2002.

Operational Policies for NIRs in the APNIC Region NIR Meeting APNIC14, Kitakyushu, Japan 4 Sept 2002.
IANA TLD Zone Inspection Shanghai, China Louis Touton 29 October 2002.

IANA TLD Zone Inspection Shanghai, China Louis Touton 29 October 2002.
Daves DNS Show Read at your own risk. Domain Name Service Maps IP addresses to more human readable domain names Every domain name ultimately resolves.

Daves DNS Show Read at your own risk. Domain Name Service Maps IP addresses to more human readable domain names Every domain name ultimately resolves.
The Dot – JM ccTLD Registry (Jamaica) Jeremy Whyte, Andrew Saunders, Walter Rodney.

The Dot – JM ccTLD Registry (Jamaica) Jeremy Whyte, Andrew Saunders, Walter Rodney.
Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.
Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis

Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis
.| The Trusted Channel Centric Marketplace Domain Name Transfers & Domain Delegation.

.| The Trusted Channel Centric Marketplace Domain Name Transfers & Domain Delegation.
Web Server Administration

Web Server Administration
Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.

Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.
February 2003slideset 1 Writing Zone Files Olaf M. Kolkman

February 2003slideset 1 Writing Zone Files Olaf M. Kolkman
DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.

DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.
1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.

1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.
The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.

The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.
DNS Domain Name Service america.pcs.cnu.edu->137.155.2.10.

DNS Domain Name Service america.pcs.cnu.edu->
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
Reverse DNS. Overview Principles Creating reverse zones Setting up nameservers Reverse delegation procedures.

Reverse DNS. Overview Principles Creating reverse zones Setting up nameservers Reverse delegation procedures.
Domain Name Services Oakton Community College CIS 238.

Domain Name Services Oakton Community College CIS 238.
Engineering Workshops DNS Rick Summerhill. Engineering Workshops Basic Ideas DNS in IPv6 is much like DNS in IPv4 Keep files and delegations as simple.

Engineering Workshops DNS Rick Summerhill. Engineering Workshops Basic Ideas DNS in IPv6 is much like DNS in IPv4 Keep files and delegations as simple.
11.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

Similar presentations

Ads by Google