Presentation is loading. Please wait.

Presentation is loading. Please wait.

Naming and the DNS. Names and Addresses  Names are identifiers for objects/services (high level)  Addresses are locators for objects/services (low level)

Published byCoral Clarke Modified over 8 years ago

Similar presentations

Presentation on theme: "Naming and the DNS. Names and Addresses  Names are identifiers for objects/services (high level)  Addresses are locators for objects/services (low level)"— Presentation transcript:

1 Naming and the DNS

2 Names and Addresses  Names are identifiers for objects/services (high level)  Addresses are locators for objects/services (low level)  Binding is the process of associating a name with an address  Resolution is the process of looking up an address given a name Jane Q. Student 544 Paul G. Allen Center University of Washington 43¢ name address

3 Internet Hostnames  Hostnames are human-readable identifiers for end- systems based on an administrative hierarchy  attu.cs.washington.edu is a server machine  IP addresses are a fixed-length binary encoding for end- systems based on their position in the network  128.208.1.138 is attu’s IP address  Original name resolution: HOSTS.TXT  Current name resolution: Domain Name System  Future name resolution: ?

4 Original Hostname System  When the Internet was really young …  Flat namespace  Simple (host, address) pairs  Centralized management  Updates via a single master file called HOSTS.TXT  Manually coordinated by the Network Information Center  Resolution process  Look up hostname in the HOSTS.TXT file

5 Scaling Problems  Coordination  Between all users to avoid conflicts  Inconsistencies  Between update and distribution of new version  Reliability  Single point of failure  Performance  Competition for centralized resources

6 Domain Name System (DNS)  Designed by Mockapetris and Dunlap in the mid 80s  Namespace is hierarchical  Allows much better scaling of data structures  e.g., attu.cs.washington.edu  Namespace is distributed  Decentralized administration and access  e.g., *.cs.washington.edu managed by CSE  Resolution is by query/response  With replicated servers for redundancy  With heavy use of caching for performance

7 DNS Hierarchy edu lcs mit auorg mil com ai “dot” is the root of the hierarchy Top levels now controlled by ICANN (Was a monopoly until ~2000) Lower level control is delegated …

8 DNS Distribution  Data managed by zones that contain resource records  Zone is a complete description of a portion of the namespace  e.g., all hosts and addresses for machines in washington.edu with pointers to subdomains like cs.washington.edu  One or more nameservers manage each zone  Zone transfers performed between nameservers for consistency  Multiple nameservers provide redundancy  One is “primary”, others are “secondary”  Client resolvers query nameservers for specified records  Multiple messages may be exchanged per DNS lookup to navigate the name hierarchy

9 9 requesting host cis.poly.edu gaia.cs.umass.edu root DNS server local DNS server dns.poly.edu 1 2 3 4 5 6 authoritative DNS server dns.cs.umass.edu 7 8 edu DNS server Example Host at cis.poly.edu wants IP address for gaia.cs.umass.edu

10 10 Recursive vs. Iterative Queries  Recursive query  Ask server to get answer for you  E.g., request 1 and response 8  Iterative query  Ask server who to ask next  E.g., all other request- response pairs requesting host cis.poly.edu root DNS server local DNS server dns.poly.edu 1 2 3 4 5 6 authoritative DNS server dns.cs.umass.edu 7 8 TLD DNS server

11 Hierarchy of Nameservers Root name server Princeton name server Cisco name server CS name server EE name server … …

12 DNS Bootstrapping  Need to know IP addresses of root servers before we can make any queries  Addresses for 13 root servers ([a-m].root-servers.net) handled via initial configuration (named.ca file) 12 B USC-ISI Marina del Rey, CA L ICANN Los Angeles, CA E NASA Mt View, CA F Internet Software C. Palo Alto, CA (and 17 other locations) I Autonomica, Stockholm (plus 3 other locations) K RIPE London (also Amsterdam, Frankfurt) m WIDE Tokyo A Verisign, Dulles, VA C Cogent, Herndon, VA (also Los Angeles) D U Maryland College Park, MD G US DoD Vienna, VA H ARL Aberdeen, MD J Verisign, ( 11 locations)

13 13 DNS Caching  Performing all these queries take time  And all this before the actual communication takes place  E.g., 1-second latency before starting Web download  Caching can substantially reduce overhead  The top-level servers very rarely change  Popular sites (e.g., www.cnn.com) visited often  Local DNS server often has the information cached  How DNS caching works  DNS servers cache responses to queries  Responses include a “time to live” (TTL) field  Server deletes the cached entry after TTL expires

14 14 Negative Caching  Remember things that don’t work  Misspellings like www.cnn.comm and www.cnnn.comwww.cnn.commwww.cnnn.com  These can take a long time to fail the first time  Good to remember that they don’t work  … so the failure takes less time the next time around

15 15 DNS Resource Records DNS: distributed db storing resource records (RR)  Type=NS  name is domain (e.g. foo.com)  value is hostname of authoritative name server for this domain RR format: (name, value, type, ttl) Type=A – name is hostname – value is IP address Type=CNAME – name is alias name for some “canonical” (the real) name www.ibm.com is really servereast.backup2.ibm.com – value is canonical name Type=MX – value is name of mailserver associated with name

16 16 DNS Protocol DNS protocol : query and reply messages, both with same message format Message header Identification: 16 bit # for query, reply to query uses same # Flags: –Query or reply –Recursion desired –Recursion available –Reply is authoritative

17 17 Reliability  DNS servers are replicated  Name service available if at least one replica is up  Queries can be load balanced between replicas  UDP used for queries  Need reliability: must implement this on top of UDP  Try alternate servers on timeout  Exponential backoff when retrying same server  Same identifier for all queries  Don’t care which server responds

18 18 Inserting Resource Records into DNS  Example: just created startup “FooBar”  Register foobar.com at Network Solutions  Provide registrar with names and IP addresses of your authoritative name server (primary and secondary)  Registrar inserts two RRs into the com TLD server: (foobar.com, dns1.foobar.com, NS) (dns1.foobar.com, 212.212.212.1, A)  Put in authoritative server dns1.foobar.com  Type A record for www.foobar.com  Type MX record for foobar.com

19 19 Playing With Dig on UNIX  Dig program  Allows querying of DNS system  Use flags to find name server (NS)  Disable recursion so that operates one step at a time

20 Future Evolution of the DNS  Design constrains us in two major ways that are increasingly less appropriate  Static host to IP mapping  What about mobility (Mobile IP)  Location-insensitive queries  What if I don’t care what server a Web page comes from, as long as it’s the right page?  e.g., a yahoo page might be replicated

21 Akamai  Use the DNS to effect selection of a nearby Web cache  Leverage separation of static/dynamic content Nearby Cache Server DNS servers for akamai.com client

22 DNS DoS Attacks October 22, 2002  The attack lasted for approximately one hour. Of the thirteen servers, nine were disabled  The largest malfunction of the DNS servers before this event were seven machines in July 1997, due to a technical glitch

23 DNS DoS Attacks February 6, 2007  The attack lasted about five hours. none of the servers crashed, two of the root servers "suffered badly", while others saw "heavy traffic".  The botnet responsible for the attack has reportedly been traced to South Korea. "If the United States found itself under a major cyberattack aimed at undermining the nation’s critical information infrastructure, the Department of Defense is prepared, based on the authority of the president, to launch a cyber counterattack or an actual bombing of an attack source."

Download ppt "Naming and the DNS. Names and Addresses  Names are identifiers for objects/services (high level)  Addresses are locators for objects/services (low level)"

Similar presentations

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.

Domain Name System (DNS) Name resolution for both small and large networks Host names IP Addresses Like a phone book, but stores more information Older.
DNS – Domain Name system Converting domain names to IP addresses since 1983.

DNS – Domain Name system Converting domain names to IP addresses since 1983.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.
1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

1 EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Spring 2012 Spring 2012.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.

2: Application Layer1 FTP, SMTP and DNS. 2: Application Layer2 FTP: separate control, data connections r FTP client contacts FTP server at port 21, specifying.
1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:

1 Domain Name System (DNS) Reading: Section 9.1 COS 461: Computer Networks Spring 2006 (MW 1:30-2:50 in Friend 109) Jennifer Rexford Teaching Assistant:
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.

1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts, routers: –IP address (32 bit) - used for addressing datagrams –“name”, e.g., gaia.cs.umass.edu.
EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 5 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
1 K. Salah Module 2.2: Domain Name System IP assigns 32-bit addresses to hosts (interfaces) –Binary addresses easy for computers to manage –All applications.

1 K. Salah Module 2.2: Domain Name System IP assigns 32-bit addresses to hosts (interfaces) –Binary addresses easy for computers to manage –All applications.
2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.

2: Application Layer1 Chapter 2 Application Layer Computer Networking: A Top Down Approach, 4 th edition. Jim Kurose, Keith Ross Addison-Wesley, July 2007.
Application Layer12-1 2010 session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.

Application Layer session 1 TELE3118: Network Technologies Week 12: DNS Some slides have been taken from: r Computer Networking: A Top Down Approach.
Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Naming Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT 745 Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.

CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.
Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain.

Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks Domain.
Application Layer 2-1 Chapter 2 Application Layer Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012.

Application Layer 2-1 Chapter 2 Application Layer Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012.

Similar presentations

Ads by Google