Presentation is loading. Please wait.

Presentation is loading. Please wait.

Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Domain Name System HISTORY File hosts (the size of Internet became more than 1000.

Published byJacob Knight Modified over 9 years ago

Similar presentations

Presentation on theme: "Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Domain Name System HISTORY File hosts (the size of Internet became more than 1000."— Presentation transcript:

1 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Domain Name System HISTORY File hosts (the size of Internet became more than 1000 hosts in 1984), manually update, errors, impossible to scale DNS is also called BIND (Berkeley Internet Name Domain) Distributed database (delegation to lower level) DNS Translates Resource Records (RR)  hostnames to IP addresses  mail exchanger  host information Name Servers hold the DNS data and know how to find the answer Fully Qualified Domain Name (FQDN) - www.oreilly.com. Each dot separates a subdomain Each subdomain may have a Name Server associated with it nslookup Rev. 1.01 / 12.12.2006

2 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Query of girigiri.gbrmpa.gov.au

3 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES DNS and OSI RM APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL Layer 7 Layer 6 Layer 5 Layer 4 Layer 3 Layer 2 Layer 1 DNS TCP IP Physical TCP/IPOSI/RM

4 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Inverse query 1.Name-to-Address is easy procedure due to indexing by name field in database. 2.Address-to-Name (authorization checks, understanding logs) is not trivial: to implement an exhaustive search or to establish the whole domain in-addr.arpa with IP addresses noted in it (example: IP address 15.16.192.152 corresponds to 152.192.16.15.in-addr.arpa).

5 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Database entities RFC 1035 AHost Address NSAuthoritative Nameserver CNAMECanonical Name SOAMarks Start of Zone of Authority PTRDomain Name Pointer (Reverse Host Record ) HINFOHost Information MXMail Exchange...

6 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES SOA record mydomain.com. IN SOA ns1.mydomain.com. root.mail.mydomain.com. ( 2002012901 24h 2h 4w 4d) The first line indicates first the zone, then the type of record — Internet SOA — then the primary name server for the zone, and then a contact address for the zone. Note that the email address uses a period (dot) in place of the @, and that all of these domain names must end with a dot. updated serial number YYYYMMDDVV check updates by secondary NS retry after fail expire data if no update minimal TTL

7 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES NS, A, CNAME records NS (Name Server) records provide a list of name servers authoritative for the zone: mydomain.com. IN NS ns1.mydomain.com. mydomain.com. IN NS ns2.mydomain.com. The real data itself. mail.mydomain.com. IN A 192.168.40.32 ns1.mydomain.com. IN A 192.168.40.33 ns2.mydomain.com. IN A 192.168.40.34 cheesebox.mydomain.com. IN A 192.168.148.44 lester.mydomain.com. IN A 192.168.148.45 CNAME (Canonical name) records allow aliases. www.mydomain.com. IN CNAME mydomain.com. wwww.mydomain.com. IN CNAME mydomain.com. ww.mydomain.com. IN CNAME mydomain.com. cb.mydomain.com. IN CNAME cheesebox.mydomain.com.

8 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES MX record MX (Mail Exchange) records provide a list of mail servers that accepts e-mail for the specified domain. Three parts: domain name, the name of the machine that will accept mail for the domain, and a preference value (lowest is preferred). Mailers look for MX records before A records - should define MX records for mail systems

9 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Sample zone file @INSOANS.Opusl.COMhostmaster.Opusl.COM. ( 1998102601; serial number (update) 43200; refresh 2x per day 7200; retry every 2 hour (if fail) 2592000; expire after 1 month 86400; TTL is 24 hours ;(minimum in cache) ) INMX10Cello.Opusl.COM. INMX10Viola.Opusl.COM. INMX15Tennis.Opusl.COM. INNSns.Opusl.COM. INNSArizona.EDU. INA192.245.12.8 INA192.245.12.7 INHINFO"DEC-VAXCLUSTER" "OPENVMS" ; WWWCNAMECello.Opusl.COM. NewsINA192.245.12.8 Tennis INTXT"Game, set and match" INA192.245.12.2 ; 100 Mbps line INHINFO"DEC-VAXSTATION" "OPENVMS" INMX10Mail.Opusl.COM. INMX20Mail.TheRiver.COM. for secondary servers

10 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Reverse mapping zone file ; Authoritative data for 130.139.in-addr.arpa ; @INSOA jatz.aarnet.edu.au. mit.jatz.aarnet.edu.au. ( 1993092001 ; Serial 10800 ; Refresh - 3 hours 1800 ; Retry - 30 minutes 3600000 ; Expire - 1000 hours 43200 ) ; Minimum - 12 hours INNS jatz.aarnet.edu.au. INNS anu.anu.edu.au. ; 4.204INPTR jatz.aarnet.edu.au. 8.204INPTR scotch-finger.aarnet.edu.au. 16.204INPTR nico.aarnet.edu.au.

11 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES DNS message format (UDP 53) IdentificationFlags Number of questionsNumber of answer RRs Number of authority RRsNumber of additional RRs Questions Answers (variable number of RRs) Authority (variable number of RRs) Additional information (variable number of RRs)

12 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES RR portion of DNS response Domain name TypeClass Time-to-live Resource data length Resource data

13 Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Problems with DNS  Inverse queries for local ISP.  DNS supports both TCP and UDP, but primarily uses UDP. TCP is slow and denial of service, UDP is vulnerable to response spoofing.  Lack of competition in domain name registering.  Confusion of trademarks and domains.  NS records contain hostnames, not addresses. Redundancy.

Download ppt "Petrozavodsk State University, Alex Moschevikin, 2003NET TECHNOLOGIES Domain Name System HISTORY File hosts (the size of Internet became more than 1000."

Similar presentations

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.
Web Server Administration

Web Server Administration
Web Server Administration Chapter 4 Name Resolution.

Web Server Administration Chapter 4 Name Resolution.
Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.

Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.
Spring 2006CS 3321 Name Service (DNS) Outline Terminology Domain Naming System.

Spring 2006CS 3321 Name Service (DNS) Outline Terminology Domain Naming System.
DNS Session 4: Delegation and reverse DNS Joe Abley AfNOG 2006 workshop.

DNS Session 4: Delegation and reverse DNS Joe Abley AfNOG 2006 workshop.
Guide to TCP/IP, Second Edition1 Guide To TCP/IP, Second Edition Chapter 7 Domain Name System.

Guide to TCP/IP, Second Edition1 Guide To TCP/IP, Second Edition Chapter 7 Domain Name System.
1 Guide To TCP/IP Domain Name System. 2 DNS – TCP/IP Application Protocol Name resolution protocol - robust, reliable & stable Distributed database technology.

1 Guide To TCP/IP Domain Name System. 2 DNS – TCP/IP Application Protocol Name resolution protocol - robust, reliable & stable Distributed database technology.
DNS Domain name server – a server to translate IP aliases to addresses As you know, IP (internet protocol) works by providing every Internet machine with.

DNS Domain name server – a server to translate IP aliases to addresses As you know, IP (internet protocol) works by providing every Internet machine with.
DNS. DNS is a network service that enables clients to resolve names to IP address and vice-versa. Allows machines to be logically grouped by domain names.

DNS. DNS is a network service that enables clients to resolve names to IP address and vice-versa. Allows machines to be logically grouped by domain names.
1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.

1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.
The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.

The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Chapter 25 Domain Name System.

McGraw-Hill©The McGraw-Hill Companies, Inc., Chapter 25 Domain Name System.
Domain Name System (DNS) Network Information Center (NIC) : HOSTS.TXT.

Domain Name System (DNS) Network Information Center (NIC) : HOSTS.TXT.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.
Domain Name System ( DNS )  DNS is the system that provides name to address mapping for the internet.

Domain Name System ( DNS )  DNS is the system that provides name to address mapping for the internet.
Module 12: Domain Name System (DNS)

Module 12: Domain Name System (DNS)
The Domain Name System (DNS)

The Domain Name System (DNS)
DNS Domain Name Service References: Wikipedia 1.

DNS Domain Name Service References: Wikipedia 1.
Reverse DNS. Overview Principles Creating reverse zones Setting up nameservers Reverse delegation procedures.

Reverse DNS. Overview Principles Creating reverse zones Setting up nameservers Reverse delegation procedures.

Similar presentations

Ads by Google