dns perfect (1) edited
If you can't read please download the document
TRANSCRIPT
- 1. DNS: Domain Name System (DNS) is a database system that translates a computer's fully qualified domain name into an IP address. Networked computers use IP addresses to locate and connect to each other, but IP addresses can be difficult for people to remember. For example, on the web, it's much easier to remember the domain name www.eukhost.com than it is to remember its corresponding IP address (213.175.192.12). DNS allows you to connect to another networked computer or remote service by using its user-friendly domain name rather than its numerical IP address. Conversely, Reverse DNS (rDNS) translates an IP address into a domain name.Why is DNS important? DNS is like a phone book for the Internet. If you know a persons name but dont know their telephone number, you can simply look it up in a phone book. DNS provides this same service to the Internet. When you visit http://dyn.com in a browser, your computer uses DNS to retrieve the websites IP address of 204.13.248.115. Without DNS, you would only be able to visit our website (or any website) by visiting its IP address directly, such ashttp://204.13.248.115.How does DNS work?When you visit a domain such as dyn.com, your computer follows a series of steps to turn the human-readable web address into a machine-readable IP address. This happens every time you use a domain name, whether you are viewing websites, sending email or listening to Internet radio stations like Pandora.Step 1: Request information The process begins when you ask your computer to resolve a hostname, such as
2. visiting http://dyn.com. The first place your computer looks is its local DNS cache, which stores information that your computer has recently retrieved. If your computer doesnt already know the answer, it needs to perform a DNS query to find out.Step 2: Ask the recursive DNS servers If the information is not stored locally, your computer queries (contacts) your ISPs recursive DNS servers. These specialized computers perform the legwork of a DNS query on your behalf. Recursive servers have their own caches, so the process usually ends here and the information is returned to the user.Step 3: Ask the root name servers If the recursive servers dont have the answer, they query the root name servers. A name server is a computer that answers questions about domain names, such as IP addresses. The thirteen root name servers act as a kind of telephone switchboard for DNS. They dont know the answer, but they can direct our query to someone that knows where to find it.Step 4: Ask the TLD name servers The root name servers will look at the first part of our request, reading from right to left www.dyn.com and direct our query to the Top-Level Domain (TLD) name servers for .com. Each TLD, such as .com, .org, and .us, have their own set of name servers, which act like a receptionist for each TLD. These servers dont have the information we need, but they can refer us directly to the servers that do have the information.Step 5: Ask the authoritative DNS servers The TLD name servers review the next part of our request www.dyn.com and direct our query to the name servers responsible for this specific domain. These authoritative name servers are responsible for knowing all the information about a specific domain, which are stored in DNS records. There are many types of records, which each contain a different kind of information. In this example, we want to know the IP address for www.dyndns.com, so we ask the authoritative name server for the Address Record (A).Step 6: Retrieve the record 3. The recursive server retrieves the A record for dyn.com from the authoritative name servers and stores the record in its local cache. If anyone else requests the host record for dyn.com, the recursive servers will already have the answer and will not need to go through the lookup process again. All records have a time-to-live value, which is like an expiration date. After a while, the recursive server will need to ask for a new copy of the record to make sure the information doesnt become out-of-date.Step 7: Receive the answer Armed with the answer, recursive server returns the A record back to your computer. Your computer stores the record in its cache, reads the IP address from the record, then passes this information to your browser. The browser then opens a connection to the webserver and receives the website. This entire process, from start to finish, takes only milliseconds to complete.How Does DNS Affect the Everyday User? DNS affects you in two ways: Domain names are what you will type to visit a web page. (e.g. www.fbi.gov)Domain names can be purchased so that you can have your own website somewhere. (e.g. www.paulsworld.co.uk)Some example internet domain names: about.comnytimes.comHow Domain Names Are Spelled: 1) Domain names are organized right to left, with general descriptors to the right, and specific descriptors to the left. It is like family surnames to the right, specific person names to the left. These descriptors are called "domains". 2) The "top level domains" (TLD, or parent domain) is to the far right of a domain name. Mid-level domains (children and grandchildren) are in the middle. The machine name, often "www", is to the far left. 3) Levels of domains are separated by periods ("dots").A Domain Name is not the same as URL To be technically correct, a domain name is commonly part of a larger Internet address called a "URL". A URL goes into much more detail than domain name, providing much more information, including the specific page address, folder name, machine name, and 4. protocol language. Example Uniform Resource Locator pages, with their domain names bolded: http://horses.about.com/od/basiccare/a/healthcheck.htmWhat Is Authoritative Name Server? Authoritys means the name server knows about a domain and it's configured to server it. An authoritative name server is a name server that gives answers that have been configured by an original source, for example, the domain administrator or by dynamic DNS methods, in contrast to answers that were obtained via a regular DNS query to another name server. An authoritative-only name server only returns answers to queries about domain names that have been specifically configured by the administrator. An authoritative name server can either be a master server or a slave server. A master server is a server that stores the original (master) copies of all zone records. A slave server uses an automatic updating mechanism of the DNS protocol in communication with its master to maintain an identical copy of the master records.An authoritative name server provides actual answer to your DNS queries such as mail server IP address or web site IP address (A resource record). It provides original and definitive answers to DNS queries. It does not provides just cached answers that were obtained from another name server. Therefore it only returns answers to queries about domain names that are installed in its configuration system. There are two types of Authoritative Name Servers: Master server (primary name server) A master server stores the original master copies of all zone records. A host master only make changes to master server zone records. Each slave server gets updates via special automatic updating mechanism of the DNS protocol. All slave servers maintain an identical copy of the master records.Slave server (secondary name server)A slave server is exact replica of master server. It is used to share DNS server load and to improve DNS zone availability in case master server fails. It is recommend that you should at least have 2 slave servers and one master server for each domain name. Any answer that originates from the DNS Server which has the complete zone file information available for the domain is said to be authoritative answer. In many cases, DNS servers will not have the complete zone file information available for a given domain. Instead, it maintains a cache file which has the results of all queries performed in the past for which it has gotten authoritative response. When a DNS query is given, it searches the cache file, and return the information available as NonAuthoritative Answer.What is non-authoritative DNS server? Non authoritative name servers do not contain copies of any domains. Instead they have a cache file that is constructed from all the DNS lookups it has performed in the past for 5. which it has gotten an authoritative response. When a non-authoritative server queries an authoritative server and receives an authoritative answer, it passes that answer along to the querier as an authoritative answer. Thus, non-authoritative servers can answer authoritatively for a given resolution request. However, non-authoritative servers are not authoritative for any domain they do not contain specific zone files for. Most often, a non-authoritative server answers with a previous lookup from its lookup cache. Any answer retrieved from the cache of any server is deemed non-authoritative because it did not come from an authoritative server. Non authoritative servers do not contain copies of any domains. Instead they have a cache file that is constructed from all the DNS lookups it has performed in the past for which it has gotten an authoritative response. When a non-authoritative server queries an authoritative server and receives an authoritative answer, it passes that answer along to the queried as an authoritative answer. Thus, non-authoritative servers can answer authoritatively for a given resolution request. However, non-authoritative servers are not authoritative for any domain they do not contain specific zone files for. Most often, a non-authoritative server answers with a previous lookup from its lookup cache. Any answer retrieved from the cache of any server is deemed non-authoritative because it did not come from an authoritative server.DNS architecture diagrams: The following diagrams illustrate how the DNS Client and Server services work and provide additional information about name resolution, update, and administration operations. e first diagram illustrates the DNS Client service architecture in its name resolution and update operations. In this diagram, name resolution architecture is demonstrated using a Web browser and Microsoft Outlook and updates are represented by the DHCP client.DNS Client Service Architecture DNS architecture is a hierarchical distributed database and an associated set of protocols that define: A mechanism for querying and updating the database.A mechanism for replicating the information in the database among servers.A schema of the database.How the DNS domain namespace is organized Any DNS domain name used in the tree is technically a domain. Most DNS discussions, however, identify names in one of five ways, based on the level and the way a name is commonly used. For example, the DNS domain name registered to Microsoft (microsoft.com.) is known as a second-level domain. This is because the name has two parts (known as labels) that indicate it is located two levels below the root or top of the tree. Most DNS domain names have two or more labels, each of which indicates a new level in the tree. Periods are used in names to separate labels. The five categories used to describe DNS domain names by their function in the 6. namespace are described in the following table, along with an example of each name type.Types of DNS domain names Name TypeDescriptionExampleRoot domainThis is the top of the tree, representing an unnamed level; it is sometimes shown as two empty quotation marks (""), indicating a null value. When used in a DNS domain name, it is stated by a trailing period (.) to designate that the name is located at the root or highest level of the domain hierarchy. In this instance, the DNS domain name is considered to be complete and points to an exact location in the tree of names. Names stated this way are FQDNs. A name used to indicate a country/region or the type of organization using a name. Variable-length names registered to an individual or organization for use on the Internet. These names are always based on an appropriate top-level domain, depending on the type of organization or geographic location where a name is used. Additional names that an organization can create that are derived from the registered second-level domain name. These include names added to grow the DNS tree of names in an organization and divide it into departments or geographic locations. Names that represent a leaf in the DNS tree of names and identify a specific resource. Typically, the leftmost label of a DNS domain name identifies a specific computer on the network. For example, if a name at this levelA single period (.) or a period used a of a name, such as example.microsoTop-level domain Second-level domainSubdomainHost or resource name.com, which indicates a name reg to a business for commercial use on microsoft.com. , which is the seco domain name registered to Microsof Internet DNS domain name registrarexample.microsoft.com. , which i fictitious subdomain assigned by Mi for use in documentation example nhost-a.example.microsoft.com., w the first label (host-a) is the DNS h name for a specific computer on the 7. is used in a host (A) resource record, it is used to look up the IP address of computer based on its host name.DNS and Internet domains The Internet Domain Name System is managed by a Name Registration Authority on the Internet, responsible for maintaining top-level domains that are assigned by organization and by country/region. These domain names follow the International Standard 3166. Some of the many existing abbreviations, reserved for use by organizations, as well as two-letter and three-letter abbreviations used for countries/regions are shown in the following table.Some DNS top-level domain names (TLDs) DNS Domain NameType of Ocom edu org net govCommerc Education Non-prof Networks Non-militmil arpa xxMilitary g Reverse D Two-lette 8. The following diagram illustrates the DNS Server service architecture with its administration tools and the Windows Management Instrumentation (WMI) interface.DNS Server Service ArchitectureReverse Lookup Zone vs Forward Lookup Zone: Domain Name System (DNS) is a naming system that is used by any resource connected 9. to internet. DNS translates domain names, which are more meaningful to humans, in to IP addresses associated with internet resources to locate them throughout the world. Each time an IP address is used, the DNS translates the name in to the corresponding IP address. Forward lookup zone holds host name to IP address relations. When a computer requests an IP address for a specific host name, the forward lookup zone is queried to get the result. On the other hand, Reverse lookup zone contains the IP address to host name mapping. When a computer requests a host name for a specific IP address, the reverse lookup zone is queried to get the answer. What is forward lookup zone? Forward lookup zone contains a mapping between host names and IP addresses. When a computer requests an IP address by providing a host name (that is more user friendly), the forward lookup zone is queried to find the IP address for the given host name. For example, when you type www.cnn.com in your browser, the forward lookup zone will be queried and the IP address 157.166.255.19 will be returned, which is actually the IP address of that site. When a forward lookup is sent to the DNS server, the DNS server searches for an A type resource record associated with the host name provided by the request. An A type resource is a DNS record that can be used to point the domain name and host names to a static IP address. If the DNS server finds a matching A type resource record, it will return that to the client, else it will forward the query to another DNS server. What is reverse lookup zone? Reverse lookup zone contains a mapping that relates IP addresses to host names. When a computer requests for a domain name by providing an IP address, the reverse lookup zone is queried to find the host name for the IP address given. For example, if a client wants to find the host name for the IP address 157.166.255.19, the reverse lookup zone will be queried and it will return the host name www.cnn.com. The reverse lookup zone contains PTR resource records. A PTR record allows doing a reverse lookup by pointing the IP address to a host/domain name. When doing reverse lookups, these PTR records are used to point to A resource records. What is the difference between Reverse Lookup Zone and Forward Lookup Zone? The main difference between forward lookup zone and reverse lookup zone is that forward lookup zone is used to resolve forward lookup queries where the client requests an IP address by providing the host name, while reverse lookup zone is used for resolving reverse lookup queries where a client requests a host name by providing an IP address. The forward lookup zone contains A type resource records that can point out an IP address for a given host name. The reverse lookup zone contains PTR records that can point out a host name for a given IP address.Read more: http://www.differencebetween.com/difference-between-reverse-lookup-zoneand-vs-forward-lookup-zone/#ixzz1wNg4IHRd 10. Recursive and Iterative Queries: With a recursive name query, the DNS client requires that the DNS server respond to the client with either the requested resource record or an error message stating that the record or domain name does not exist. The DNS server cannot just refer the DNS client to a different DNS server. Thus, if a DNS server does not have the requested information when it receives a recursive query it queries other servers until it gets the information, or until the name query fails. Recursive name queries are generally made by a DNS client to a DNS server, or by a DNS server that is configured to pass unresolved name queries to another DNS server, in the case of a DNS server configured to use a forwarder. An iterative name query is one in which a DNS client allows the DNS server to return the best answer it can give based on its cache or zone data. If the queried DNS server does not have an exact match for the queried name, the best possible information it can return is a referral (that is, a pointer to a DNS server authoritative for a lower level of the domain namespace). The DNS client can then query the DNS server for which it obtained a referral. It continues this process until it locates a DNS server that is authoritative for the queried name, or until an error or time-out condition is met. This process is sometimes referred to as "walking the tree," and this type of query is typically initiated by a DNS server that attempts to resolve a recursive name query for a DNS client. Figure 5.4 shows an example of iterative and recursive queries. This example assumes that none of the servers have the requested information in their caches.Figure Iterative and Recursive Queries In the example shown in Figure 5.4, a client somewhere on the Internet needs the IP address of noam.reskit.com. The following events take place: 11. dThe client contacts NameServer1 with a recursive query for noam.reskit.com. The server must now return either the answer or an error message. NameServer1 checks its cache and zones for the answer, but does not find it, so it contacts a server authoritative for the Internet (that is, a root server) with an iterative query for noam.reskit.com. The server at the root of the Internet does not know the answer, so it responds with a referral to a server authoritative for the .com domain. NameServer1 contacts a server authoritative for the .com domain with an iterative query for noam.reskit.com. The server authoritative for the .com domain does not know the exact answer, so it responds with a referral to a server authoritative for the reskit.com domain. NameServer1 contacts the server authoritative for the reskit.com domain with an iterative query for noam.reskit.com. The server authoritative for the reskit.com domain does know the answer. It responds with the requested IP address. NameServer1 responds to the client query with the IP address for noam.reskit.com.