DNS System เสนอ ดร.อรรจน์ โกญจนาท จัดทําโดย นายประพัฒน์พงษ์ หอมประภัทร รหัส 490188 รายงานนีเป็ นส่วนหนึงของรายวิชา CPE 489 Seminar ภาคเรียนที 1 ปี การศึกษา 2552 สาขาวิชาวิศวกรรมคอมพิวเตอร์ วิทยาลัยวิศวกรรมศาสตร์ มหาวิทยาลัยรังสิต
DNS System
.
490188
"' CPE 489 Seminar
' 1 2552
CPE489 DNS System DNS System
490188
IP Address SRI-NIC
Resolver 3 Standard Name Resolution , IP Address, Reverse Name Resolution IP Address Electronic Mail Resolution Email Email Resolver Names server Referral answer IP Address
Abstract The Domain name System (DNS) is the managing system on hostname translating into
IP Address by having the structure of hierarchical and using distributed database and having protocol to connect database and automatic improvement for speed of work and then to protect in the matter of repeating of domain name by SRI-NIC, the improvement and leaving to solve the problem on service if DNS could not be serviced, leaving to stop all on services of internet. The operation of DNS consists of resolver which is the program in client, limiting for any domain and connecting with any servers which divide in 3 types, Standard Name Resolution is the process of using domain name, seeking IP address, Reverse Name Resolution is the process of using IP address, seeking domain name and Electronic Mail Resolution is the process of limit on destination to send email from the email address used to send by resolver is working with name server. The both of resolver and name server will keep search data in cache name server will seek data in cache for the first to increase the efficacy of working if its found, then using data in response to the cache if its not found, it will send the question to root-name server if its found, it will send back the data in the pattern of referral answer to name server when its received IP address, it will send to client which is requesting for. The problem on security system but can not be protected, expecting in the future can be develop the DNS to be security for the level. And in the applied on working for the limit of DNS, its become the beginning of founding of technology of universal domain name which is the opportunity of domain name can be used to be the character and the script of the local languages.
............................................................................................................................................................... ........................................................................................................................................................ Abstract ........................................................................................................................................................ ............................................................................................................................................................ ...................................................................................................................................................... .................................................................................................................................................
' 1 ..............................................................................................................................................1 1.1 .......................................................................................................................1 1.2 ..........................................................................................................2 1.3 .............................................................................2 1.4 ....................................................................................................4
' 2 " ................................................................................................................................5 2.1 DNS Protocol................................................................................................................................5 2.2 The hosts file ................................................................................................................................6 2.3 The domain name system .............................................................................................................7 2.4 ......................................................................................................................................8 2.5 ...............................................................................................8 2.6 .......................................................................................................................8 2.7 ..................................................................................................................................8 2.8 .....................................................................................................................10 2.9 ..............................................................................................................................11 2.10 ...........................................................................................12 2.11 DNS .......................................................................................................13 2.12 ............................................................................................................13 2.13 DNS...................................................................................................................14 2.14 Domain name server ..............................................................................................................14 2.15 Root name server ...................................................................................................................15 2.16 The DNS Client Server ..........................................................................................................16
2.17 DNS Server........................................................................................................16 2.18 2 ...........................................................................17 2.19 .......................................................................................................17 2.20 ...............................................................................................................18 2.21 RFC.....................................................................................................................19
' 3 .........................................................................................................................................24 3.1 DNS Protocol () ................................................................................................24 3.2 DNS (Domain Name System) ....................................................................................................24
................................................................................................................................................25
' 2.1 .7 2.2 71.2.108.158 In-addr.arpa .12 2.3 ...13 2.4 DNS ...22 2.5 DNS Root Name Server....23 2.6 IP DNS...23
' 2.1 ..6 2.2 ..9 2.3 ..10 2.4 ...11 2.5 ....15 2.6 IP Address ....19
' 1
.. 2512 "" (ARPA : Advanced Research Project Agency) (Defense Communication Agency) 2526 2 (MILNET: Military Network) TCP/IP (Transmission Control Protocol / Internet Protocol) TCP/IP DNS(Domain Name System) DNS
1.1 90
ARPA NET SRI ( The NIC ) ARPA NET FTP Host Table SRI 2 (Domain)
2
( Domain Name System) Domain Name Space
1.2
(Stanford Research Institute's Network Information Center SRI-NIC) (FTP : File Transfer Protocol)
- (DNS: Domain Name System) '
1.3 '
( ) . .
3
2400 X.25
..2531 3 - "TCSNET" (Thai Computer Science Network) UUCP
/ MHSnet . . ..2531 .th
ait.th psu.th chula.th
4 (ThaiNet) .. 2535 9600 . ns-ait.thnic.net
() (THAISARN: Thai Social/Scientific Academic and Research Network 64 (UUnet)
4
1.4 ' (Hierarchical)
(Distributed)
' 2
"
2.1 DNS Protocol
5 Header, Question, Answer, authority Additional Header 16 Host
oz.integralis.co.uk Host genie eclectic.co.uk IP Address 128.128.1.77
genie.eclectic.co.uk Genie DNS
co.uk
Host genie 128.128.0.100 (chelford.eclectic.co.uk) Host 128.128.1.77 Host Host ( ) eclectic.co.th co.uk (128.128.0.100) Host oz co.uk 128.128.0.100 ( co.uk) 128.128.0.100 (chelford.eclectic.co.uk) Answer
Chelford.eclectic.co.uk Answer Answer Answer Question
6
Answer
oz.integralis.co.uk brewery.integralis.co.uk 16 offset octet 40 octet 41 octet offset 49 (0xC0) octet octet 41 (brewery) 0x17 23 brewery.integralis.co.uk TCP/IP 32 bit boundary octet 32 32 bit boundary
Offset
' 2.1
2.2 The hosts file
Host host hostname hostname IP Address hosts file IP hosts file text manual hosts file IP Address hostname hosts file
20 0x02 o z 0x0A i n t e 28 g r a l I s 0x02 c 36 o 0x02 u k 0x00 0x07 b r 44 e w e r y 0xC0 0x17
7
2.3 The domain name system IAB
Domain Name System DNS IP address TCP/IP IP address 1 DNS
(Domain name space)
' 2.1 "
8
2.4 ' (root)
(domain name) (sub domain) ac.th or.th .th
2.5 (Absolute
domain name) (Relative domain name)
tpt.nectec.or.th.
tpt nectec.or.th. /etc/resolv.conf
2.6 (Top-Level Domains) TLDs
( 1)
(generic domain)
(country code domain)
2.7 ' (Generic
Top Level Domains: gTLDs) 7 .com, .edu, .gov, .int, .mil, .net .org
9
7 .gov .mil l .com, .net .org .edu .int
' 2.2 '"
.com (Commercial organizations) sun.com, microsoft.com.edu (Educational organizations) mit.edu, standford.edu .gov (Government
organizations) nasa.gov, doc.gov
.int (International organizations) nato.int, sadc.int .mil (Military
organizations) army.mil, navy.mil
.net (Networking organizations) nyser.net, sura.net
.org (Organizations)
mitre.org, acm.org
2543
7 .aero, .biz, .coop, .info, .museum, .name .pro
10
' 2.3 '''
.aero
Societies Internationals de Telecommunications Aeronautiques (SITA)
.biz .com
.coop International Cooperative Alliance (ICA)
.info .com, .net .org
.museum International Council of Museums (ICOM)
.name
firstname.lastname john.smith.name
.pro
(professionals)
2.8 ISO 3166-1
.jp, .br, .au .ca (Country Code Top Level Domains) ccTLDs ccTLDs 244 ISO 3166-1 ISO 3166-1 gb .uk
11
' 2.4 '
.at .es .au .fr .ca .jp .ch .kr .de .uk
.th .th
2.9
.in-addr.arpa
4 256 0 255 .in-addr.arpa 256 0 255 256
158.108.2.71 nontri.ku.ac.th 71.2.108.158.in-addr.arpa 158.108.2.71 .arpa, .in-addr .158, .108, .2 .71 (Reverse
12
address) (Forward address) .in-addr.arpa 2
2.10 1
(Domain delegation)
' 2.2 71.2.108.158 in-addr.arpa
13
2.11 DNS (Resolver)
2.12
ku.ac.th nectec.or.th nectec.or.th (name resolution) (resolution)
3
' 2.3
14
2.13 DNS DNS 4
1. Caching only DNS DNS Domain Name Database Request DNS cache DNS Cache Memory Cache 2. Primary DNS DNS domain name DNS domain name DNS Hierarchy tree .th co.th ac.th or.th ac.th 3. Secondary DNS DNS Primary DNS Primary DNS domain name Primary DNS Secondary DNS 4. Forwarder DNS DNS forward DNS Firewall Private Network DNS domain name IP Address DNS set DNS domain name Primary DNS Secondary DNS DNS DNS
Forward Lookup Zone: IP Address Reverse Lookup Zone : IP Address
2.14 Domain name server
IP IP
15
2.15 Root name server
(root name server) 13 a.root-servers.net, b.root-servers.net, c.root-servers.net, , m.root-servers.net 4 a.root-servers.net 12 a.root-servers.net
' 2.5
'
a.root-servers.net 198.41.0.4 b.root-servers.net 128.9.0.107 c.root-servers.net 192.230.4.12 d.root-servers.net 128.8.10.90 e.root-servers.net 192.203.230.10 f.root-servers.net. 192.5.5.241 g.root-servers.net 192.112.36.4 h.root-servers.net 128.63.2.53 i.root-servers.net 192.36.148.17 j.root-servers.net 192.58.128.30 k.root-servers.net 193.0.14.129 l.root-servers.net 198.32.64.12 m.root-servers.net 202.12.27.33
' : ftp://ftp.rs.internic.net/domain/name.root
13 10 3 13
16
ccTLDs
gTLDs .com, .net., .org gtld-servers.net .com, .net., .org a.gtld-servers.net m.gtld-servers.net ccTLDs gTLDs .edu in-addr.arpa
2.16 The DNS Client Server
Purdue purdue.edu ibm.com
IP address IP address
2.17 " DNS Server BOOT Zone file ( Primary, Secondary,
Cache DNS Server) Zone file Resource Record NS, A, CNAME, MX
2.17.1 Start of Authority (SOA) Serial
17
2.17.2 NS Name Server DNS server 2.17.3 A Address Host name IP Address
Dnscmd DNS DNS client Windows 2000/XP2003 DHCP
2.17.4 C-name Cannonical Name A
2.17.5 PTR Reverse lookup zones 172.16.48.1 server1.xyz.com 1 PTR Server1.xyz.com Reverse lookup zone
2.17.6 SRV Service location DNS Application servers Windows Server 2003 Active Directory Netlogon, LDAP
2.18 2 2.18.1 (.com .edu .int .org .net )
www.networksolution.com www.internic.net 2.18.2 .th www.thnic.net
2.19 "
1 (Sub Domain Name) www Network Solution Thnic www. host , mail , pc22 , dummy , router , ns , ftp , server , user , gateway , pc1 , pc3 , pc2 ,smtp , pc4 , ns1 , www2 , ns2
2 Second-Level Domain Names
(Search Engine) (Keyword)
18
S S
www. 123. com aol.com , erols.com , uu.net , berkeley.edu , ans.net , intel.com , bbn.com , pacbell.net , home . com , concentric.net , 3com.com , edu.au , naynetworks.com , on.ca , ibm.net , com.au , net.tw , net.com , ad.jp , co.nz , pacbell.com 3 .com .co.th Top-Level Domain Name
2.20 '' 2 1. Delete 2. New
19
Domain name server sornlinux.net Internic IP Address 2.6
IP Address
ns1.sornlinux.net Name server(Master Name Server) 202.129.16.18
ns2.sornlinux.net Name server(Master Name Server) 202.129.16.19
www.sornlinux.net Host 202.129.16.20
mail1.sornlinux.net Mail Exchanger 202.129.16.21
2.21 RFC 2.21.1 RFC 881 RFC 897 RFC 921
The Domain Names Plan and Schedule 2.21.2 RFC 881
DDN/ARPA host DDN/ARPA
2.21.3 RFC 882 RFC 973 obsolete by RFC 1034 RFC 1035 Nov-1983
Domain Names - Concepts and Facilities 2.21.4 RFC ARPA
host
2.21.5 RFC 883 RFC 973; obsolete by RFC 1034 RFC 1035 Nov-1983
Domain Names - Implementation and Specification 2.21.6 RFC
2.21.7 RFC 1034 ( : STD 13) RFCs 1101, 1122, 1183, 1706, 1876, 1982, 2181, 2308 2535; obsoletes RFCs 882, 883 973
Domain Names Concepts and Facilities
20
2.21.8 RFC RFC-882 host
2.21.9 RFC 1035 ( : STD 13) RFCs 1101, 1122, 1183, 1706, 1876, 1982, 1995, 1996, 2136, 2137, 2181, 2308, 2535, 2782, 2845, 3425 RFC 3658; obsoletes RFCs 882, 883 973 Domain Names Implementation Specification
2.21.10 RFC
2.21.11 RFC-883
2.21.12 RFC 1101 RFC 1034 RFC 1035
DNS Encoding of Network Names and Other Types 2.21.13 RFC
RRs
Mappings
2.21.14 RFC 1183 RFC 1034 RFC 1035; RFC 2052
New DNS RR Definitions DNS RFC .
2.21.15 RFC 1535
A Security Problem and Proposed Correction With Widely Deployed DNS Software
2.21.16 RFC 1536
Common DNS Implementation Errors and Suggested Fixes
21
DNS
2.21.17 RFC 1537
Common DNS Data File Configuration Errors DNS
2.21.18 RFC 1591
Domain name system structure and delegation (DNS)
2.21.19 RFC 1706
DNS NSAP resource records (RR) DNS NSAP mapping RR NSAP
2.21.20 RFC 1712
DNS encoding of geographical location Naming (DNS) DNS
2.21.21 RFC 1713
Tools for DNS debugging DNS () mapping
2.21.22 RFC 1788
ICMP domain name messages
22
ICMP IP address
2.21.23 RFC 1794
DNS support for load balancing RFC IETF DNS / balancing DNS DNS balancing 2.21.24 RFC 1816
US Government Internet domain names RFC 1811
2.21.25 RFC 1886
DNS Extensions to support IP version 6 IP 6 (IPv6)
' 2.4 DNS
23
' 2.5 DNS Root Name Server
' 2.6 IP DNS
' 3
3.1 DNS Protocol (')
(DNS : Domain Name System) ' (Distributed) (Hierarchical)
3.2 DNS (Domain Name System) 3.2.1
IP Address 3.2.2 IP Address
InterNIC(Internet Network Information Center) 3.2.3 IP Name Server
Name Server IP
3.2.4 Server DNS Name Server Domain Name Server
3.2.5
.com commercial
.edu education
.int International Organization
.org Organization
.net Network
25
.2552. . http://en.wikipedia.org/wiki/Domain_Name_System Andrs Salamon.2547. DNS related RFCs. http://www.dns.net/dnsrd/rfc/ Joyce K. Reynolds.2551. RFC Numbers 1000-1099. http://www.faqs.org/rfcs/rfc1099.html Brent Baccala.2540. Zone maintenance and transfers. http://www.freesoft.org/CIE/RFC/1034/31.htm ThaiHostSave.2550. Domain name registration Thailand. http://webhosting.thaihostsave.com/domain-regis Network Sorcery, Inc.2008. Domain Name System. http://www.networksorcery.com/enp/protocol/dns.htm