Book Image

DNS in Action

By : CP Books a.s.
Book Image

DNS in Action

By: CP Books a.s.

Overview of this book

The Domain Name System is one of the foundations of the internet. It is the system that allows the translation of human-readable domain names into machines-readable IP addresses and the reverse translation of IP addresses into domain names. This book describes the basic DNS protocol and its extensions; DNS delegation and registration, including for reverse domains; using DNS servers in networks that are not connected to the internet; and using DNS servers on firewall machines. Many detailed examples are used throughout the book to show perform various configuration and administration tasks.
Table of Contents (16 chapters)
DNS in Action
Credits
About the Authors
Preface
Country Codes and RIRs
Index

Index

A

  • access control
    • parameters / Access Control
  • acl statement / acl Statement, address_match_list
  • Active Directory / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • address_match_list / address_match_list
  • asymmetric encrypting algorithm / 3.7.1 TKEY

B

  • BIND
    • versions / 4.3.2 New Generation BIND
    • advantages, Windows / 4.3.2 New Generation BIND
  • boolean options / Boolean Options
  • BootMethod parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003

C

  • cache command / 4.3.1 named Program in BIND Version 4 System
  • controls statement / controls Statement

D

  • DatabaseDirectory parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • Diffie-Hollman algorithm / 3.7.1 TKEY
  • dig program / 5.1.5.2 The dig Program
  • directory command / 4.3.1 named Program in BIND Version 4 System
  • DisableAutoReverseZone parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • DNS database
    • about / 4.1 DNS Database
    • data types, content / 4.1 DNS Database
    • $TTL statement / $TTL Statement
    • $GENERATE statement / $GENERATE Statement
  • DNS IPv6 extention
    • AAAA records / 3.5.1 AAAA Records
    • A6 records / 3.5.2 A6 Records
    • reverse domains / 3.5.3 Reverse Domains
    • DNAME records / 3.5.4 DNAME Records
  • DNS NCACHE
    • TTL / 3.4.1 How Long are Negative Answers Stored in Memory?
    • MINIMUM field, SOA record / 3.4.2 The MINIMUM Field in an SOA Record
    • negative reply, saving rules / 3.4.3 Saving Negative Reply Rules
  • DNS Notify
    • about / 3.2 DNS Notify
    • master/slave communication / 3.2 DNS Notify, 3.2.1 Notify Message
    • message / 3.2 DNS Notify, 3.2.1 Notify Message
  • DNS notify
    • master/slave communication / 3.2.1 Notify Message
  • DNS protocols
    • resource records, structure / 2.1 Resource Records
    • description / 2.2 DNS Protocol
  • DNS query
    • packet format / 2.3.1 DNS Query Packet Format
    • packet header / 2.3.2 DNS Query Packet Header, 3.6.7 DNS Protocol
    • question section / 2.3.3 Question Section
    • answer packet / 2.3.4 The Answer Section, Authoritative Servers, and Additional Information
    • compression / 2.3.5 Compression
    • inverse query / 2.3.6 Inverse Query
    • resource record transfer / 2.3.7 Methods of RR Transfer via a DNS Packet
    • nonexistent resource record query, example / Example of a Nonexistent RR Query and the Answer
    • communication with root server, example / Example of Communication with a Root Server
    • communication with DNS server, example / Example of Communication with the ns1.volny.cz DNS Server
    • TCP usage, example / An Example of TCP usage
    • nslookup program to find communication content, example / An Example Illustrating the use of the nslookup Program to Find Out Communication Content
  • DNSsec / 3.6.1 DNSsec
  • DNS server
    • channels / logging Statement
    • implementing, Windows server OS / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
    • parameters / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
    • local server information, obtaining / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
    • stopping / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • DNS Update
    • packet / 3.1 DNS Update
    • journal file / 3.1.6 Journal File
  • DNS Update packet
    • header section / 3.1.1 Header Section
    • zone section / 3.1.2 Zone Section
    • additional data section / 3.1.5 Additional Data Section
  • dnswalk program / 5.1.5.1 The dnswalk Program, 6.1.2 Server ns.provider.net
  • Domain Name System (DNS)
    • domain name / 1.1 Domains and Subdomains
    • name syntax / 1.2 Name Syntax
    • reverse domains / 1.3 Reverse Domains
    • 127.0.0.1 / 1.4 Domain 0.0.127.in-addr.arpa
    • zone / 1.5 Zone
    • zone stub / 1.5.1 Special Zones
    • zone cache/hint / 1.5.1 Special Zones
    • queries / 1.7 Queries (Translations)
    • hostname into IP address, translation / 1.7 Queries (Translations)
    • query / 2.3 DNS Query, 2.3.2 DNS Query Packet Header
    • tuning / 5.1 Tools for DNS Debugging
    • configuration check / 5.1 Tools for DNS Debugging, 5.1.1 Check Configuration Files
    • configuration errors / 5.3 Errors in DNS Configuration
    • configuring a root name server on the same server / 9.1 Configuring a Root Name Server on the Same Server (BIND Version 4)
    • configuring a root name server on a separate server / 9.2 Configuring a Root Name Server on a Separate Server (BIND Version 4)
    • configuring a name server for the root domain / 9.2.1Configuring a Name Server for the Root Domain
    • root DNS server in Windows 2000/2003 / 9.3 Root DNS Server in Windows 2000/2003
    • sharing a DNS database / 10.1 Shared DNS for Internet and Intranet
    • configuring DNS on the Intranet / 10.1.2 Only Intranet Addresses are Translated on Intranet
    • dual DNS / 10.3 Dual DNS
    • working / 10.3 Dual DNS
  • domains
    • description / 1.1 Domains and Subdomains
    • reserved / 1.6 Reserved Domains and Pseudodomains
    • pseudodomains / 1.6 Reserved Domains and Pseudodomains
    • delegation process, example / 6.1 Example 1, 6.1.2 Server ns.provider.net, 6.2 Example 2, 6.2.2 Server ns.branch.company.tld
    • regestration / 6.3 Domain Registration
    • second level, delegation / 8.5 Delegation of Second-Level Domains
    • second level, registration / 8.5 Delegation of Second-Level Domains
  • dynamic update / 3.1 DNS Update

E

  • EventLogLevel parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003

F

  • file specification / File Specification
  • firewall / 10.1.1 The Whole Internet is Translated on the Intranet
  • forwarder command / 4.3.1 named Program in BIND Version 4 System
  • forwarder server
    • local name server, communication / 1.10 Forwarder Servers
    • configuration / 1.10 Forwarder Servers
  • Forwarders parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • forwarding
    • parameters / Forwarding

G

  • glue record / 5.3 Errors in DNS Configuration, 6.2.2 Server ns.branch.company.tld

I

  • include statement / include Statement
  • incremental zone transfer
    • about / 3.3 Incremental Zone Transfer
    • master/slave communication / 3.3 Incremental Zone Transfer
    • request format / 3.3.1 Request Format
    • reply format / 3.3.2 Reply Format
    • RFC 1995, example / 3.3.4 Examples from RFC 1995
  • interfaces
    • parameters / Interfaces
  • internet / 8.1 International Organizations
  • Internet Corporation for Assigned Names and Numbers / 8.1 International Organizations
  • Intranet / 10.1.2 Only Intranet Addresses are Translated on Intranet
  • IP address
    • version 4 / 8.3 IP Addresses and AS Numbers
    • routing the IP addresses of the internet by the Intranet / 10.1.1 The Whole Internet is Translated on the Intranet
  • IP version 6
    • DNS extention / 3.5 DNS IP version 6 Extension
  • IsSlave parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • IXFR
    • purging / 3.3.3 Purging
  • IXFR server / 3.3 Incremental Zone Transfer

K

  • key statement / key Statement
  • kill program / 5.2.1 Signals

L

  • lame delegation / 5.3 Errors in DNS Configuration
  • lightweight resolver
    • working / How does this Mechanism Function?
  • ListenAddress parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • Local Internet Registry
    • Regional Internet Registry / 8.2 Regional Internet Registry (RIR)
    • registration / 8.4.1 Registration of a Local IR
  • LogFileMaxSize parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • LogFilePath parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • logging statement / logging Statement
  • LogLevel parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • lwres server / How does this Mechanism Function?
  • lwres statement / lwres Statement

M

  • master name server / 1.9 Name Server

N

  • name check
    • parameters / Name Check
  • named-checkconf utility / 5.1.2 named-checkconf Utility
  • named-checkzone utility / 5.1.3 named-checkzone Utility
  • named-xfer program / File Specification
  • named.conf file
    • content / 4.3.2.1 Configuration File
    • statements / Configuration File Statements
    • comments, format / Comments
  • named program
    • working / 4.3.1 named Program in BIND Version 4 System
  • name server / 1.7 Queries (Translations)
    • queries / 1.7 Queries (Translations)
    • definition / 1.9 Name Server
    • types / 1.9 Name Server
    • master/slave / 1.9 Name Server
    • IP address, translation process / 1.9 Name Server
    • implementing, named program / 4.3.1 named Program in BIND Version 4 System
    • configuration, caching-only / Examples of Name Server Configuration
    • configuration, authoritative-only / Examples of Name Server Configuration
    • controlling / 5.2 The rndc Program
  • nonauthoritative data / 1.7 Queries (Translations), 1.9 Name Server
  • NoRecursion parameter / 4.4 Microsoft’s Native Implementation of DNS in Windows 2000/2003
  • nslookup program
    • about / 5.1.4 nslookup Program
    • start up / 5.1.4 nslookup Program
    • IP address, finding / 5.1.4 nslookup Program
    • domain name, finding / 5.1.4 nslookup Program
    • record, finding / 5.1.4 nslookup Program
    • servers list / 5.1.4 nslookup Program
    • tuning mode / 5.1.4.1 Debugging Mode
    • debug tuning level / 5.1.4.2 Debug Debugging Level
    • d2 tuning level / 5.1.4.3 d2 Debugging Level
    • DNS packet, sending / Change of the Default Name Server
    • zone extract / Zone Extract
    • name server communication / Simulation of Queries from a Name Server
    • error messages / Error Messages of the nslookup Program

O

  • option statement
    • about / options Statement
    • parameters / Parameters of the options Statement, Boolean Options, Access Control, Periodic Task Intervals

P

  • periodic task intervals
    • parameters / Periodic Task Intervals
  • primary command / 4.3.1 named Program in BIND Version 4 System
  • primary master / 1.9 Name Server

R

  • Regional Internet Registry / 8.2 Regional Internet Registry (RIR)
  • resolver
    • working / 1.8 Resolvers
    • configuration in UNIX / 1.8.1 Resolver Configuration in UNIX
    • configuration in Windows / 1.8.2 Resolver Configuration in Windows
  • resource records / 2.1 Resource Records
  • Resource Records
    • DNS Update, prerequisite section / 3.1.3 Prerequisite Section
    • DNS Update, update section / 3.1.4 Update Section
    • Start Of Authority / 4.2.1 SOA Records
    • A records / 4.2.2 A Records
    • CNAME records / 4.2.3 CNAME Records
    • TXT records / 4.2.4 HINFO and TXT Records
    • NS records / 4.2.5 NS Records
    • MX records / 4.2.6 MX Records
    • PTR records / 4.2.7 PTR Records
    • SRV records / 4.2.8 SRV Records, 4.2.11 Asterix (*) in a DNS Name
    • $ORIGIN command / 4.2.9 $ORIGIN
    • $INCLUDE command / 4.2.10 $INCLUDE
  • reverse domain
    • IP6.INT / IP6.INT
    • IP6.ARPA / IP6.ARPA
    • delegation process, example / Server ns.company.com, Server ns.ripe.net (authoritative server for a superior domain)
    • subnetwork delegation / Server ns.ripe.net (authoritative server for a superior domain)
    • subnetwork marking / Server ns.ripe.net (authoritative server for a superior domain)
  • rndc program / 5.2 The rndc Program
  • root name server / 1.9 Name Server
  • round robin / 1.7.1 Round Robin

S

  • secondary command / 4.3.1 named Program in BIND Version 4 System
  • Secure Dynamic Update / 3.1.7 Notes
  • security
    • DNSsec / 3.6.1 DNSsec
    • KEY record / 3.6.2 KEY Record
    • SIG record / 3.6.3 SIG Record
    • NXT record / 3.6.4 NXT Record
    • zone signature / 3.6.5 Zone Signature
    • dig program / 3.6.6 Display Data
    • DNS protocol / 3.6.7 DNS Protocol
    • TSIG / 3.7 TSIG
    • TKEY record / 3.7.1 TKEY
    • certificates / 3.8 Saving Certificates to DNS
  • server statement / server Statement
  • signals
    • HUP / 5.2.1.1 HUP Signal
    • INT / 5.2.1.2 INT Signal
    • IOT / 5.2.1.3 IOT Signal
    • TERM / 5.2.1.4 TERM Signal
    • KILL / 5.2.1.5 KILL Signal
    • USR2 / 5.2.1.6 USR1 and USR2 Signals
  • slave command / 4.3.1 named Program in BIND Version 4 System
  • slave name server / 1.9 Name Server
  • Start Of Authority
    • file structure / 4.2.1 SOA Records
  • stealth name server / 1.9 Name Server
  • stub resolver / 4.3.2.3 Lightweight Resolver
  • subdomains / 1.1 Domains and Subdomains
  • syntax
    • DNS record / 4.1 DNS Database
    • SRV record / 4.2.8 SRV Records

T

  • translating the internet on the Intranet / 10.1.1 The Whole Internet is Translated on the Intranet
  • translation in local network
    • whole internet / 10.2.1 Translation in Intranet—Whole Internet
    • without internet translation / 10.2.2 Translation in Intranet without Internet Translation
  • trusted-key statement / trusted-key Statement
  • TTL / 3.6.3 SIG Record

U

  • User Datagram Protocol
    • hostname into IP address, translation / 1.7 Queries (Translations)

V

  • view statement / view Statement

Z

  • zone statement / zone Statement
  • zone stub / zone Statement
  • zone transfer
    • parameters / Zone Transfer