Domain Name System (DNS)



Similar documents
Domain Name System Richard T. B. Ma

DNS: Domain Name System

Domain Name System (or Service) (DNS) Computer Networks Term B10

Domain Name System (DNS) RFC 1034 RFC

Forouzan: Chapter 17. Domain Name System (DNS)

CS 355. Computer Networking. Wei Lu, Ph.D., P.Eng.

CMPE 80N: Introduction to Networking and the Internet

How To Map Between Ip Address And Name On A Domain Name System (Dns)

The Application Layer: DNS

Chapter 2 Application Layer

Names vs. Addresses. Flat vs. Hierarchical Space. Domain Name System (DNS) Computer Networks. Lecture 5: Domain Name System

Naming and the DNS. Focus. How do we name hosts etc.? Application Presentation Topics. Session Domain Name System (DNS) /URLs

FTP: the file transfer protocol

Motivation. Domain Name System (DNS) Flat Namespace. Hierarchical Namespace

Domain Name System DNS

19 Domain Name System (DNS)

CS 43: Computer Networks Naming and DNS. Kevin Webb Swarthmore College September 17, 2015

Domain Name System (DNS)

DNS and P2P File Sharing

DNS: Domain Name System

DNS. Spring 2016 CS 438 Staff 1

Domain Name System. DNS is an example of a large scale client-server application. Copyright 2014 Jim Martin

NET0183 Networks and Communications

CS 348: Computer Networks. - DNS; 22 nd Oct Instructor: Sridhar Iyer IIT Bombay

internet technologies and standards

Chapter 25 Domain Name System Copyright The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

DNS: Domain Names. DNS: Domain Name System. DNS: Root name servers. DNS name servers

DNS Domain Name System

DATA COMMUNICATOIN NETWORKING

Lecture 2 CS An example of a middleware service: DNS Domain Name System

THE DOMAIN NAME SYSTEM DNS

Chapter 23 The Domain Name System (DNS)

Application-layer protocols

Ch 6: Networking Services: NAT, DHCP, DNS, Multicasting

DNS : Domain Name System

Domain Name System (DNS) Reading: Section in Chapter 9

Internet-Praktikum I Lab 3: DNS

CS640: Computer Networks. Naming /ETC/HOSTS

Teldat Router. DNS Client

Ch 6: Networking Services: NAT, DHCP, DNS, Multicasting, NTP

416 Distributed Systems. Feb 24, 2016 DNS and CDNs

Applications and Services. DNS (Domain Name System)

The Domain Name System

FTP: the file transfer protocol

Internetworking with TCP/IP Unit 10. Domain Name System

3. The Domain Name Service

Domain Name System (DNS) Fundamentals

2.5 DNS The Internet s Directory Service

1. Domain Name System

The Domain Name System

Computer Networks Prof. S. Ghosh Department of Computer Science and Engineering Indian Institute of Technology, Kharagpur Lecture - 34 DNS & Directory

1 DNS Packet Structure

Domain Name System (DNS) Omer F. Rana. Networks and Data Communications 1

Table of Contents DNS. How to package DNS messages. Wire? DNS on the wire. Some advanced topics. Encoding of domain names.

Understand Names Resolution

Domain Name System (DNS) Session-1: Fundamentals. Ayitey Bulley

C 1. Last Time. CSE 486/586 Distributed Systems Domain Name System. Review: Causal Ordering. Review: Causally Ordered Multicast.

DNS Conformance Test Specification For Client

Introduction to DNS CHAPTER 5. In This Chapter

Understanding DNS (the Domain Name System)

Introduction to Network Operating Systems

Part 5 DNS Security. SAST01 An Introduction to Information Security Martin Hell Department of Electrical and Information Technology

what s in a name? taking a deeper look at the domain name system mike boylan penn state mac admins conference

DNS Domain Name System

Network programming, DNS, and NAT. Copyright University of Illinois CS 241 Staff 1

Application Protocols in the TCP/IP Reference Model

The Domain Name System (DNS)

Introduction to the Domain Name System

Some advanced topics. Karst Koymans. Friday, September 11, 2015

DNS and electronic mail. DNS purposes

DNS. Computer Networks. Seminar 12

Applications & Application-Layer Protocols: The Domain Name System and Peerto-Peer

DNS - Domain Name System

Overview of Computer Networks

Application Protocols in the TCP/IP Reference Model. Application Protocols in the TCP/IP Reference Model. DNS - Concept. DNS - Domain Name System

DNS. Some advanced topics. Karst Koymans. (with Niels Sijm) Informatics Institute University of Amsterdam. (version 2.6, 2013/09/19 10:55:30)

Domain Name System :49:44 UTC Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement

Hostnames. HOSTS.TXT was a bottleneck. Once there was HOSTS.TXT. CSCE515 Computer Network Programming. Hierarchical Organization of DNS

How to Add Domains and DNS Records

CS3600 SYSTEMS AND NETWORKS

The Domain Name System (DNS)

Names & Addresses. Names & Addresses. Names vs. Addresses. Identity. Names vs. Addresses. CS 194: Distributed Systems: Naming

Computer Networks: Domain Name System

Application Layer. Abusayeed Saifullah. CS 5600 Computer Networks. These slides are adapted from Kurose and Ross

ECE 4321 Computer Networks. Network Programming

DNS Resolving using nslookup

Networking Domain Name System

Resilient Networking. Overview of DNS Known attacks on DNS Denial-of-Service Cache Poisoning. Securing DNS Split-Split-DNS DNSSEC.

netkit lab dns Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group Version Author(s)

Transcription:

Chapter 18 CSC465 Computer Networks Spring 2004 Dr. J. Harrison These slides are based on the text TCP/IP Protocol Suite (2 nd Edition) Domain Name System (DNS) CONTENTS NAME SPACE DOMAIN NAME SPACE DISTRIBUTION OF NAME SPACE DNS IN THE INTERNET RESOLUTION DNS MESSAGES TYPES OF RECORDS COMPRESSION EXAMPLES DDNS ENCAPSULATION Domain Name Space Hierarchical name space Names are designed with inverted-tree structure (root at top) Max 128 levels Each level of tree defines a hierarchical level in the name space Each node in tree has a label with max 63 chars Root label is null string To ensure uniqueness, DNS requires that children of node have different labels Domain name space

Domain Name Space Each node in the tree has a domain name Full domain name is a sequence of labels separated by dots Domain names read from node to root Last label is label of root (null) All full domain names end with a dot (. ) Domain is a subtree of the domain name space. The name of a domain is the domain name of the node at the top of the domain. Domain names and labels A node can be in multiple domains pa.ca.us. is in both ca.us. domain and us. domains Examples of FQDN and PQDN Domains

DNS in the Internet DISTRIBUTION OF NAME SPACE Generic domains Country domains Hierarchy of name servers Centralization of DNS? single point of failure traffic volume distant centralized database maintenance doesn t scale!

Delegation key goals of the design of the Domain Name System was to decentralize administration (achieved via delegation) an organization administering a domain can divide it into subdomains Each subdomain can be delegated to another organization Each organization becomes responsible for maintaining all the data in that subdomain can freely change the data and even divide its subdomain up into more subdomains and delegate those The parent domain contains only pointers to sources of the subdomain's data Name Server programs that store information about the domain name space are called name servers Name servers generally have complete information about some part of the domain name space, called a zone A name servers can load DNS data from a file or from another name server it then has authority for that zone Name servers can be authoritative for multiple zones Name Server no server has all name-to-ip address mappings local name servers: each ISP, company has local (default) name server host DNS query first goes to local name server authoritative name server: for a host: stores that host s IP address, name can perform name/address translation for that host s name Zones vs. Domains All top-level domains, and many domains at the second level and lower, like unlv.edu and sun.com, are broken into smaller, more manageable units by delegation (called zones) otherwise, the domain manager would have to manage the subdomains themselves makes much more sense to delegate distribute work subdomain management become autonomous

Zones and domains Example: All Canadian states have responsibility for their own subdomains; complete delegation of subdomains Example: Two Canadian states managed within the ca zone; other 3 have their subdomains delegated to them Name Server Types DNS specs define two types of name servers: primary and secondary A primary name server for a zone reads the data for the zone from a file on its host A secondary name server for a zone gets the zone data from another name server that is authoritative for the zone (called its master server) a secondary can load zone data from another secondary, which would be termed its master When a secondary starts up, it may pulls the zone data over from its master server (zone transfer) Name Server Types Both the primary master and slave name servers for a zone are authoritative for that zone Slave name servers are important because it's a good idea to set up more than one name server for any given zone a name server can be authoritative for >1 zone a name server can be a primary master for one zone and a slave for another Inverse domain

Resolvers clients that access name servers Programs running on a host that need information from the domain name space use the resolver The resolver handles: Querying a name server Interpreting responses (which may be resource records or an error) Returning the information to the programs that requested it Resolution Name servers are adept at retrieving data from the domain name space they provide data about zones for which they're authoritative they can also search through the domain name space to find data for which they're not authoritative process is called name resolution Root Name Servers know where there are authoritative name servers for each of the top-level domains most are authoritative for the generic top-level domains top-level name servers can provide the list of name servers that are authoritative for the secondlevel domain Each name server queried gives the querier info about how to get "closer" to the answer it's seeking, or it provides the answer itself. Root Name Servers if no caching, resolution would have to start at the root name servers root name servers crucial to the operation of DNS if all the Internet root name servers were unreachable for an extended period, all resolution on the Internet would fail 13 for redundancy The 13 Root Name Servers a NSI Herndon, VA c PSInet Herndon, VA k RIPE London d U Maryland College Park, MD g DISA Vienna, VA i NORDUnet Stockholm h ARL Aberdeen, MD j NSI (TBD) Herndon, VA m WIDE Tokyo e NASA Mt View, CA f Internet Software C. Palo Alto, CA b USC-ISI Marina del Rey, CA l ICANN Marina del Rey, CA Root name server: may not know authoritative name server may know intermediate name server: who to contact to find authoritative name server 2 local name server dns.eurecom.fr 1 8 requesting host surf.eurecom.fr root name server 7 3 6 4 5 authoritative name server dns.cs.umass.edu gaia.cs.umass.edu

DNS: Iterated Queries root name server Recursive resolution recursive query: puts burden of name resolution on contacted name server heavy load? iterated query: contacted server replies with name of server to contact I don t know this name, but ask this server 2 local name server dns.eurecom.fr 1 8 requesting host surf.eurecom.fr 3 4 7 iterated query intermediate name server dns.umass.edu 5 6 authoritative name server dns.cs.umass.edu gaia.cs.umass.edu Iterative resolution DNS: caching and updating records once (any) name server learns mapping, it caches mapping cache entries timeout (disappear) after some time (TTL field) update/notify mechanisms under design by IETF RFC 2136 http://www.ietf.org/html.charters/dnsind-charter.html DNS Query and Response Messages Header format 16-bit field Identification used by the client to match the response with the query Client uses a different ID# each time its sends a query Server duplicates this number in the corresponding response

Flags fields QR: Query/Response OpCode: 0 standard, 1 inverse, 2 server status AA: Authoritative (was responding server?) TC: Truncated (too large response for UDP) RD: Recursion Desired (both query & response) RA: Recursion Available (only response) rcode: Status of the error TYPES OF RECORDS Question record format Some Query Types admin.atc.fhda.edu. (1 = IN) Type=A; host name to host IP Ex: (relay1.bar.foo.com, 145.37.93.126, A) Type=NS; domain to an authoritative name server for domain Ex: (foo.com, dns.foo.com, NS) Type=CNAME; provides canonical hostname for alias hostname Ex: (foo.com, relay1.bar.foo.com,cname) Type=MX; canonical name of a mailserver Ex: (foo.com, mail.bar.foo.com, MX) Resource record format Format of an offset pointer (ptr offset to domain name in question record) IP address or domain name or offset ptr or character string

Example 1 Example of a query message A resolver sends a query message to a local server to find the IP address for the host chal.fhda.edu.. We discuss the query and response messages separately. query recs (A) (Internet) Response Message query recs answer Example 2 An FTP server has received a packet from an FTP client with IP address 153.2.7.9. The FTP server wants to verify that the FTP client is an authorized client. (Address) 13 Internet TTL (secs) length bytes 153.18.8.105 The list of authorized clients are specified as domain names. The FTP server asks the resolver (DNS client) to send an inverse query to a DNS server to obtain domain name. Example of Inverse Query Message OpCode 1 for Inverse query recs Example of inverse response message in-addr.arpa is added to domain space 153.2.7.9 9.7.2.153.in-addr.arpa 12 query type is PTR 12 domain type is PTR (Internet) (Internet)

DNS can use the services of UDP or TCP using the well-known port 53. END OF PRESENTATION

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information