Download presentation
Presentation is loading. Please wait.
1
Name Resolution in Windows Server 2012 (R2)
DNS
2
Name Resolution Overview
NetBIOS name resolution Host name resolution
3
Name Resolution Overview
NetBIOS name resolution * Originally a broadcast-based NR protocol in PC-LAN & LM networks on top of NetBEUI * Based on single-label names (non-hierarchical) * Uses lmhosts (static) files, broadcasts and WINS (NBNS) servers in TCP/IP networks Host name resolution * Original ARPANET (Internet) NR protocol * Based on multi-level names (hierarchical) * Distributed database model * Uses hosts (static) files and DNS Servers
4
Protocol stack comparison
NetBIOS Interface WinSock Interface A SMB SMB, CIFS, HTTP P NetBEUI (NBF) S T TCP UDP N IP LLC MAC D ARP, PPP, xDLC 802.n 802.n P medium medium Broadcast NR Traffic Unicast NR Traffic
5
Protocol stack comparison
NetBIOS Interface WinSock Interface A NBT SMB SMB, CIFS, HTTP P S NetBIOS over TCP/IP helper T TCP UDP N IP LLC MAC D ARP, PPP, xDLC 802.n P medium Broadcast NR Traffic Unicast NR Traffic
6
Internet DNS Namespace
a.root-servers.net b.root-servers.net c.root-servers.net d.root.servers.net e.root-servers.net f.root-servers.net g.root-servers.net … l.root-servers.net m.root-servers.net Internet DNS Namespace “ “ root “13” root-servers.net .com .org .edu .net gTLD’s .gov .mil .int generic Top Level Domains Second Level Domains .yale .mit .ucla .army .navy .airforce Third Level Domains .math .law .physics
7
Internet DNS Namespace
a.root-servers.net b.root-servers.net c.root-servers.net d.root.servers.net e.root-servers.net f.root-servers.net g.root-servers.net … l.root-servers.net m.root-servers.net Internet DNS Namespace “ “ root “13” root-servers.net .com .org .edu .net gTLD’s .gov .mil .int generic Top Level Domains Second Level Domains .yale .mit .ucla .army .navy .airforce Third Level Domains .math .law .physics
8
Internet DNS Namespace
a.root-servers.net b.root-servers.net c.root-servers.net d.root.servers.net e.root-servers.net f.root-servers.net g.root-servers.net … l.root-servers.net m.root-servers.net Internet DNS Namespace “ “ root “13” root-servers.net .com .org .edu .net gTLD’s .gov .mil .int generic Top Level Domains ISO 3166 country codes .be .gb .gb .fr .au .de .nl .nu .jp .tv .il .ru .tw
9
Internet DNS Namespace
a.root-servers.net b.root-servers.net c.root-servers.net d.root.servers.net e.root-servers.net f.root-servers.net g.root-servers.net … l.root-servers.net m.root-servers.net Internet DNS Namespace “ “ root “13” root-servers.net .com .org .edu .net gTLD’s .gov .mil .int generic Top Level Domains ISO 3166 country codes .be .uk .fr .au ccTLD’s .de .nl .nu .jp .tv .il .ru .tw Country code Top Level Domains
10
? Recursive query “13” root-servers.net “ “ root Root hints .com
“ “ root ? Root hints m.root-servers.net l.root-servers.net k.root-servers.net j.root-servers.net i.root-servers.net h.root-servers.net g.root-servers.net f.root-servers.net e.root-servers.net d.root-servers.net c.root-servers.net b.root-servers.net a.root-servers.net .com Cached? … No! Own zone? … No! .amazon www Cached? … No! Ask my DNS server
11
? Iterative query “13” root-servers.net “ “ root .com .amazon www
“ “ root ? Don’t know … ask .com server! .com amazon.com NS = ! Oh, it’s … ! .amazon www
12
? Recursive response “13” root-servers.net “ “ root .com .amazon www
“ “ root ? Don’t know … ask .com server! .com amazon.com NS = ! Ah, it’s … ! Oh, it’s … ! .amazon www
13
? Recursive response “13” root-servers.net “ “ root .com .amazon www
“ “ root ? .com Cached: = TTL = 3600 .amazon www
14
Domain vs. Zone Domain is a node in the Internet namespace
Root domain is largest domain Zone is a file that contains records for a domain with or without child domains Zones can only contain contiguous domains Child domains can be delegated to separate DNS servers (=zone delegation)
15
Domain vs. Zone .com Domain .microsoft Domain “.” (root) Root Domain
.ccTLD’s .arpa .gov .mil .com .net .edu .org .int .microsoft .amazon .contoso .myspace .google .youtube .acme .bol .hp .technet .update .support .msdn .one .mcp .com Domain .microsoft Domain
16
Domain vs. Zone “.” (root) .ccTLD’s .arpa .gov .mil .com .net .edu
.org .int .microsoft .amazon .contoso .myspace .youtube .acme .google .bol .hp .technet .update .support .msdn .one .mcp
17
Domain vs. Zone “.” (root)
Single contiguous DNS zonefile contains all records for domains: microsoft.com one.microsoft.com technet.microsoft.com msdn.microsoft.com mcp.microsoft.com update.microsoft.com support.microsoft.com .com .microsoft .technet .update .support .msdn .one .mcp
18
Domain vs. Zone “.” (root) DNS zonefile contains only records for:
microsoft.com .com .microsoft Delegated zones Each DNS server contains a separate zone for each delegation: one.microsoft.com technet.microsoft.com msdn.microsoft.com mcp.microsoft.com update.microsoft.com support.microsoft.com .technet .update .support .msdn .one .mcp
19
Domain vs. Zone “.” (root)
Partly delegated contiguous DNS zonefile contains records for: microsoft.com one.microsoft.com technet.microsoft.com msdn.microsoft.com mcp.microsoft.com .com .microsoft Delegated zones Each DNS server contains a separate zone for each delegation: update.microsoft.com support.microsoft.com .technet .update .support .msdn .one .mcp
20
Domain vs. Zone “.” (root)
Partly delegated contiguous DNS zonefile contains records for: microsoft.com one.microsoft.com technet.microsoft.com msdn.microsoft.com mcp.microsoft.com .com .microsoft Illegal delegation Domains .update and .support are non-contiguous (common parent needed) .technet .update .support .msdn .one .mcp
21
Zone types Primary zone Secondary zone Stub zone
AD integrated zone (acts as primary zone) RODC AD integrated zone (acts as primary Read-Only zone)
22
Primary Zone “.” (root) .com
Primary Zone file contains R/W-version of data .acme Manual updates acme.com.dns acme.com IN SOA srv1.acme.com mail.acme.com Automatic updates ns1.acme.com ns2.acme.com pc1.acme.com pc2.acme.com pc3.acme.com Refreshes
23
Secondary Zone “.” (root) .com
Primary Zone file contains R/W-version of data .acme Secondary Zone file contains R/O-version of data Manual updates acme.com.dns acme.com IN SOA srv1.acme.com mail.acme.com Automatic updates ns1.acme.com ns2.acme.com pc1.acme.com pc2.acme.com pc3.acme.com Refreshes
24
Secondary Zone “.” (root) And Full Zone Transfer (AXFR) .com
Primary Zone file contains R/W-version of data .acme Secondary Zone file contains R/O-version of data Request full zone transfer (AXFR) Authorized? … Yes!
25
DNS Notify “.” (root) And Incremental Zone Transfer (IXFR) .com
Database version increment Primary Zone file contains R/W-version of data .acme Secondary Zone file contains R/O-version of data DNS Notify Get SOA record Version increment = 1 IXFR (1 record) Update (send 1 record) Database version increment
26
Aging and Scavenging Lease 0,5 Lease Renewed Lease 0,5 Lease Tl
DHCP T0 Discover Offer Acknowledge Request Acknowledge Request Request Acknowledge Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS Register DNS DNS Zone file version: 1 st No-Refresh Interval Refresh Interval 2nd No-Refresh Interval 1 2 3
27
1 st No-Refresh Interval
Aging and Scavenging Lease 0,5 Lease DHCP Tl T0 Discover Offer Request Acknowledge Register DNS DNS 1 st No-Refresh Interval Refresh Interval Scavenging Interval
28
Reverse Lookups Resolve IP-addresses to FQDN’s
Reverse indexes the Internet Uses the in-addr.arpa or ip6.arpa Domain Requires participation of domain holders Used for inbound SMTP server determination (and more)
29
Reverse Lookups Srv3.east.acme.com.
Compare: hostname structure IP-address structure Srv3.east.acme.com. Internet root domain gTLD 2nd Level domain 3rd Level domain Left-to-right = Up the hierarchy Hostname
30
Reverse Lookups Srv3.east.acme.com. 191.124.17.201 191.124.17.201 /24
Compare: hostname structure IP-address structure Srv3.east.acme.com. /24 Net-ID Host-ID Left-to-right = Down the hierarchy
31
Reverse Lookups Srv3.east.acme.com. 191.124.17.201 191.124.17.201 /24
Compare: hostname structure IP-address structure Srv3.east.acme.com. /24 Net-ID Host-ID Left-to-right = Down the hierarchy
32
Reverse Lookups Srv3.east.acme.com. 191.124.17.201 201 .17 .124 .191
Compare: hostname structure IP-address structure Srv3.east.acme.com. 201 .17 .124 .191 .in-addr.arpa. Left-to-right = Up the hierarchy “Host-ID” “Internet root”
33
Reverse Lookups Example IP-address 191.124.17.201
Find PTR in-addr.arpa. Iterates between DNS servers to find: in-addr.arpa zone Finds 201 PTR record with name: 201 IN PTR srv3.acme.com Responsibility of acme.com domain holder to maintain PTR records
34
Reverse Lookups “.” (root) .arpa .in-addr .ccTLD’s .gov .mil .org .int
What name belongs to IP: ? 201. 17. 124. 191. in-addr.arpa . 1 … 191 192 3 … 254 255 2 srv3.acme.com ! 3 … 124 125 1 2 … 254 255 191 in-addr.arpa. acme.com IN SOA … PTR srv1.acme.com PTR srv2.acme.com PTR srv3.acme.com PTR srv4.acme.com 255 1 2 3 … 17 18 … 254
35
End Questions??
Similar presentations
