Presentation is loading. Please wait.

Presentation is loading. Please wait.

Domain Name System (DNS)

Published byAdam Pierce Modified over 5 years ago

Similar presentations

Presentation on theme: "Domain Name System (DNS)"— Presentation transcript:

1 Domain Name System (DNS)
Jennifer Rexford Fall 2017 (TTh 1:30-2:50 in CS 105) COS 561: Advanced Computer Networks

2 DNS Applies General CS Concepts
Indirection Names in place of addresses Hierarchy Names: .com, .cnn.com, Addresses: /8, /16, /24 Caching Of name-address mappings Typed data Hosts, name servers, mail servers, …

3 Strawman Solution #1: Local File
Original name to address mapping Flat namespace /etc/hosts SRI kept main copy Downloaded regularly Count of hosts was increasing: moving from a machine per domain to machine per user Many more downloads Many more updates

4 Strawman Solution #2: Central Server
One place where all mappings are stored All queries go to the central server Many practical problems Single point of failure High traffic volume Distant centralized database Single point of update Does not scale Need a distributed, hierarchical collection of servers

5 DNS Hierarchy

6 Domain Name System (DNS)
Properties of DNS Hierarchical name space divided into zones Distributed over a collection of DNS servers Hierarchy of DNS servers Root servers Top-level domain (TLD) servers Authoritative DNS servers Performing the translations Local DNS servers and client resolvers 6

7 Distributed Hierarchical Database
unnamed root com edu org ac uk zw arpa generic domains country domains bar ac in- addr west east cam 12 foo my usr 34 my.east.bar.edu usr.cam.ac.uk 56 /24

8 DNS Root Servers 13 root servers (see http://www.root-servers.org/)
Labeled A through M A Verisign, Dulles, VA C Cogent, Herndon, VA (also Los Angeles) D U Maryland College Park, MD G US DoD Vienna, VA H ARL Aberdeen, MD J Verisign, ( 11 locations) K RIPE London (+ Amsterdam, Frankfurt) I Autonomica, Stockholm (plus 3 other locations) E NASA Mt View, CA F Internet Software C. Palo Alto, CA (and 17 other locations) m WIDE Tokyo B USC-ISI Marina del Rey, CA L ICANN Los Angeles, CA

9 TLD and Authoritative DNS Servers
Global Top-level domain (gTLD) servers Generic domains (e.g., .com, .org, .edu) Country domains (e.g., .uk, .fr, .ca, .jp) Managed professionally (e.g., Verisign for .com .net) Authoritative DNS servers Provide public records for hosts at an organization For the organization’s servers (e.g., Web and mail) Can be maintained locally or by a service provider 9

10 Reliability DNS servers are replicated UDP used for queries
Name service available if at least one replica is up Queries can be load balanced between replicas UDP used for queries Need reliability: must implement this on top of UDP Try alternate servers on timeout Exponential backoff when retrying same server Same identifier for all queries Don’t care which server responds

11 DNS Queries and Caching

12 Using DNS Local DNS server (“default name server”) Client application
Usually near the end hosts who use it Local hosts configured with local server (e.g., /etc/resolv.conf) or learn the server via DHCP Client application Extract server name (e.g., from the URL) Do gethostbyname() or getaddrinfo() to get address Server application Extract client IP address from socket Optional gethostbyaddr() to translate into name 12

13 authoritative DNS server
DNS Queries root DNS server for . Host a.cs.princeton.edu wants IP address for Note Recursive vs. Iterative Queries 3 TLD DNS server for .edu 4 5 local DNS server dns.princeton.edu 6 2 7 9 8 local DNS server dns.cs.princeton.edu authoritative DNS server for umass.edu dns.umass.edu 1 10 requesting host a.cs.princeton.edu 13

14 authoritative DNS server
root DNS server for . DNS Caching DNS query latency E.g., 1 sec latency before starting a download Caching to reduce overhead and delay Small # of top-level servers, that change rarely Popular sites visited often Where to cache? Local DNS server Browser 3 TLD DNS server for .edu 4 5 6 2 7 9 8 authoritative DNS server for umass.edu dns.umass.edu 1 10 requesting host a.cs.princeton.edu 14

15 DNS Cache Consistency Goal: Ensuring cached data is up to date
DNS design considerations Cached data is “read only” Explicit invalidation would be expensive Avoiding stale information Responses include a “time to live” (TTL) field Delete the cached entry after TTL expires Perform negative caching (for dead links, misspellings) So failures are quick and don’t overload gTLD servers

16 Setting the Time To Live (TTL)
TTL trade-offs Small TTL: fast response to change Large TTL: higher cache hit rate Following the hierarchy Top of the hierarchy: days or weeks Bottom of the hierarchy: seconds to hours Tension in practice CDNs set low TTLs for load balancing and failover Browsers cache for seconds

17 RR format: (name, value, type, ttl)
DNS Resource Records RR format: (name, value, type, ttl) Type=A Name: hostname Value: IP address Type=CNAME Name: alias for some “canonical” (the real) name: is really srveast.backup2.ibm.com Value: canonical name Type=NS Name: domain Value: hostname of name server for domain Type=MX Value: name of mailserver associated with name

18 Discussion Replicating DNS servers
Zone transfers IP anycast Use of DNS for geo-replicated content Customized responses to queries Inferring the user’s location Knowing the user’s IP address Policy issues Use of DNS to block access to Web sites (U.S., bodog) Collateral damage of DNS injection (China, roots/TLDs) Alternative DNS roots Redirecting DNS for ads and profit (e.g., Paxfire)

19 Discussion Games you can play with DNS Google Public DNS
Measurement using DNS (e.g., King paper) Getting free WiFi Google Public DNS Automating adding records to DNS (RFC 2136) DNS security Cache poisoning (and Kaminsky vulnerability) DNSSEC

Download ppt "Domain Name System (DNS)"

Similar presentations

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.
1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.

2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.
1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:

1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.

1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.

2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.
Application Layer12-1 2010 session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.

Application Layer session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.
Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT 745 Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.

CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.
Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain.

Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain.
Name Resolution and DNS. Domain names and IP addresses r People prefer to use easy-to-remember names instead of IP addresses r Domain names are alphanumeric.

Name Resolution and DNS. Domain names and IP addresses r People prefer to use easy-to-remember names instead of IP addresses r Domain names are alphanumeric.
2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012.

2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012.
CS 4396 Computer Networks Lab

CS 4396 Computer Networks Lab

Similar presentations

Ads by Google