Presentation is loading. Please wait.

Presentation is loading. Please wait.

AfNOG-2003 Domain Name System (DNS) Ayitey Bulley

Published byGerald Terry Modified over 8 years ago

Similar presentations

Presentation on theme: "AfNOG-2003 Domain Name System (DNS) Ayitey Bulley"— Presentation transcript:

1 AfNOG-2003 Domain Name System (DNS) Ayitey Bulley abulley@ghana.com

2 AfNOG-2003 Objectives Describe why we need name to address mappings and what was wrong with HOSTS.TXT Describe the client-server model of DNS Setup and test a resolver on a UNIX machine List and describe resource records (RR) a client would be interested in Use dig tool to resolve names with more detail

3 AfNOG-2003 Why Names? The Internet infrastructure depends on IP addresses Machines communicate with each other via IP addresses However human beings can remember names better than numbers A single file mapping name to IP address was created (HOSTS.TXT)

4 AfNOG-2003 HOSTS.TXT Maintained by SRI’s NIC and distributed from a single host Administrators emailed changes to the NIC and periodically downloaded the current HOSTS.TXT Changes were compiled into a new HOSTS.TXT once or twice a week As the network grew this scheme became impracticable.

5 AfNOG-2003 What was wrong with HOSTS.TXT Traffic and load Name collisions Consistency Single point of editing and maintenance Did not scale well The need for a more scalable system/scheme, hence DNS

6 AfNOG-2003 What is DNS? DNS is a distributed database Allows local control of segments of the overall database Employs a client-server architecture Robustness and performance achieved through replication and caching Name servers constitute the server half of the client-server mechanism Resolvers constitute the client half of the client-server mechanism Structure of the DNS database is hierarchical

7 AfNOG-2003 Hierarchical Structure of DNS Very similar to the structure of the UNIX file system Pictured as an inverted tree with root node at the top Each node in the tree has a text label The null label “” is reserved for the root node Root node is written as a single dot (.)

8 AfNOG-2003 Hierarchical Structure of DNS (contd.) “” com bizedu ug DNS Database / etc usrbin opt Unix Filesystem

9 AfNOG-2003 Hierarchical Structure of DNS (contd.) Domain names can be mapped to a tree. New branches at the ‘dots’ No restriction to the amount of branches. netcom ripe www edu isitislabs disi ws1ws2 ftp sun google moon

10 AfNOG-2003 Hierarchical Structure of DNS (contd.) Hostnames are globally unique –E.g. pc1.t1.ws.afnog.org and pc1.t2.ws.afnog.org Name space is administered in zones –E.g. afnog.org and ws.afnog.org can be administered by different organizations

11 AfNOG-2003 Domains Domains are “namespaces” Everything below.com is in the com domain. Everything below afnog.org is in the afnog.org domain and in the.org domain. org domain afnog.org domain org com afnog www edu isi tislabs ws nocwww ftp sun moon google

12 AfNOG-2003 Client-Server Model Resolver Question: www.afnog.org A www.afnog.org A ? Caching forwarder (recursive) root-server www.afnog.org A ? Ask org server @A7.NSTLD.COM. (+ glue) nstld-server www.afnog.org A ? Ask afnog server @ austin.gh.com (+ glue) afnog-server www.afnog.org A ? 216.129.132.164 Add to cache

13 AfNOG-2003 Client-Server Model Caching/recursive server Resolver Client1 Authoritative Server First query is forwarded, and reply is cached Next query is answered from cache Resolver Client2 aa non-aa

14 AfNOG-2003 Types of Nameservers Caching-Only Server –Non-authoritative for any zone except 0.0.127.in- addr.arpa –Resolves recursively by querying authoritative nameservers Authoritative Servers –Master (Primary) –Slave (Secondary) Can be authoritative for one or more domains

15 AfNOG-2003 Exercise 1 In this exercise we will be testing name resolution using: –ping and a browser –and by configuring the local resolver on your PCs (/etc/resolv.conf) Please refer to Exercise 1 in the handouts given to you.

16 AfNOG-2003 Client Resolver Lookups Possible queries from a client to a nameserver are: –Name to IP Address (A) browser –Name to Mail exchanger (MX) Mail Server (MTA) e.g. Exim –IP Address to Name (PTR) - [Reverse DNS] Logging of incoming connections (apache logs) –Alias to Name (CNAME) –Other resource record (RR) types SOA, NS (Mainly Server to Server)

17 AfNOG-2003 Client Resolver Lookups (contd.) Possible responses from a nameserver to a client are: –Positive answer –Negative answer (Name does not exist) –Server Fail (Could not find any answer)

18 AfNOG-2003 Client Utilities for Testing DNS BIND comes with utilities for testing and troubleshooting nameserver issues. Some of these tools are: –nslookup –dig Most client programs use the local resolver –E.g. ping, browsers etc. In this workshop we will focus on the dig and ping utilities.

19 AfNOG-2003 The BIND dig utility Syntax dig [@server] domain [q-type] [other options] Server – The server you want to use to resolve the query (defaults to servers listed in /etc/resolv.conf) Domain - a name in the Domain Name System q-type - is one of (a,any,mx,ns,soa,hinfo,axfr,txt,...) [default: a] Examples # dig @81.199.109.1 ws.afnog.org a # dig @ns.t1.ws.afnog.org ws.afnog.org a # dig @noc.ws.afnog.org –x 81.199.110.100 # man dig

20 AfNOG-2003 Question From the output from the last example, what is the default query type?

21 AfNOG-2003 Understanding output from dig Queries using the dig utility outputs a lot of information, however the most important for us are –Status –Flags –Answer Section –Authority Section –Additional Section –TTL –Total query time –“From …. To …. Server” …. Section

22 AfNOG-2003 ns# dig @81.199.110.100 www.gouv.bj a ; > DiG 8.3 > @81.199.110.100 www.gouv.bj a ; (1 server found) ;; res options: init recurs defnam dnsrch ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 3 ;; QUERY SECTION: ;; www.gouv.bj, type = A, class = IN ;; ANSWER SECTION: www.gouv.bj. 1D IN CNAME waib.gouv.bj. waib.gouv.bj. 1D IN A 208.164.179.196 ;; AUTHORITY SECTION: gouv.bj. 1D IN NS rip.psg.com. gouv.bj. 1D IN NS ben02.gouv.bj. gouv.bj. 1D IN NS nakayo.leland.bj. gouv.bj. 1D IN NS ns1.intnet.bj. ;; ADDITIONAL SECTION: ben02.gouv.bj. 1D IN A 208.164.179.193 nakayo.leland.bj. 1d23h59m59s IN A 208.164.176.1 ns1.intnet.bj. 1d23h59m59s IN A 81.91.225.18 ;; Total query time: 2084 msec ;; FROM: ns.t1.ws.afnog.org to SERVER: 81.199.110.100 81.199.110.100 ;; WHEN: Sun Jun 8 21:18:18 2003 ;; MSG SIZE sent: 29 rcvd: 221

23 AfNOG-2003 Exercise 2 In this exercise we will be using the dig utility to resolve domain names –dig using your local resolver –dig using another caching server –dig for reverse lookups –dig for a non-existent domain

24 AfNOG-2003 Best Practices Choose caching nameservers close by you for your resolver Select at least two (2) caching nameservers for your resolver (redundancy) Use search lists in the resolver for non-FQDN

Download ppt "AfNOG-2003 Domain Name System (DNS) Ayitey Bulley"

Similar presentations

Domain Name System (DNS) Adapted from a presentation by Ayitey Bulley DNS Fundamentals.

Domain Name System (DNS) Adapted from a presentation by Ayitey Bulley DNS Fundamentals.
Web Server Administration

Web Server Administration
Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.

Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.
DNS Session 4: Delegation and reverse DNS Joe Abley AfNOG 2006 workshop.

DNS Session 4: Delegation and reverse DNS Joe Abley AfNOG 2006 workshop.
February 2003slideset 1 Introduction to the DNS system Olaf M. Kolkman

February 2003slideset 1 Introduction to the DNS system Olaf M. Kolkman
Introduction to the DNS AfCHIX 2011 Blantyre, Malawi.

Introduction to the DNS AfCHIX 2011 Blantyre, Malawi.
1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.

1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.
The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.

The Domain Name System. CeylonLinux DNS concepts using BIND 2 Hostnames IP Addresses are great for computers –IP address includes information used for.
Domain Name System (DNS) Network Information Center (NIC) : HOSTS.TXT.

Domain Name System (DNS) Network Information Center (NIC) : HOSTS.TXT.
Recursive Server. Overview Recursive Service Root server list localhost 0.0.127.in-addr.arpa named.conf.

Recursive Server. Overview Recursive Service Root server list localhost in-addr.arpa named.conf.
Domain Name System: DNS

Domain Name System: DNS
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 19 Domain Name System (DNS)

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 19 Domain Name System (DNS)
Domain Name System ( DNS )  DNS is the system that provides name to address mapping for the internet.

Domain Name System ( DNS )  DNS is the system that provides name to address mapping for the internet.
TCP/IP Protocol Suite 1 Chapter 17 Upon completion you will be able to: Domain Name System: DNS Understand how the DNS is organized Know the domains in.

TCP/IP Protocol Suite 1 Chapter 17 Upon completion you will be able to: Domain Name System: DNS Understand how the DNS is organized Know the domains in.
Domain Name Services Oakton Community College CIS 238.

Domain Name Services Oakton Community College CIS 238.
Host Name Resolution. Overview Name resolution Name resolution Addressing a host Addressing a host Host names Host names Host name resolution Host name.

Host Name Resolution. Overview Name resolution Name resolution Addressing a host Addressing a host Host names Host names Host name resolution Host name.
11.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
Domain Name System (DNS) Ayitey Bulley Session-1: Fundamentals.

Domain Name System (DNS) Ayitey Bulley Session-1: Fundamentals.
NET0183 Networks and Communications Lecture 25 DNS Domain Name System 8/25/20091 NET0183 Networks and Communications by Dr Andy Brooks.

NET0183 Networks and Communications Lecture 25 DNS Domain Name System 8/25/20091 NET0183 Networks and Communications by Dr Andy Brooks.
Tony Kombol ITIS 3110. www.teacherstalk.com Who knows this? Who controls this? DNS!

Tony Kombol ITIS Who knows this? Who controls this? DNS!

Similar presentations

Ads by Google