CN110417935A - A kind of reverse domain name analysis method based on IPv6 technology - Google Patents
A kind of reverse domain name analysis method based on IPv6 technology Download PDFInfo
- Publication number
- CN110417935A CN110417935A CN201910839171.6A CN201910839171A CN110417935A CN 110417935 A CN110417935 A CN 110417935A CN 201910839171 A CN201910839171 A CN 201910839171A CN 110417935 A CN110417935 A CN 110417935A
- Authority
- CN
- China
- Prior art keywords
- ipv6
- domain name
- analysis method
- method based
- dns server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000005516 engineering process Methods 0.000 title claims abstract description 16
- 238000004458 analytical method Methods 0.000 title claims abstract description 15
- 238000012986 modification Methods 0.000 claims description 3
- 230000004048 modification Effects 0.000 claims description 3
- 238000007689 inspection Methods 0.000 claims description 2
- 238000000034 method Methods 0.000 description 5
- 238000004891 communication Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/618—Details of network addresses
- H04L2101/659—Internet protocol version 6 [IPv6] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/686—Types of network addresses using dual-stack hosts, e.g. in Internet protocol version 4 [IPv4]/Internet protocol version 6 [IPv6] networks
Abstract
The present invention relates to a kind of reverse domain name analysis methods based on IPv6 technology, comprising: S1, creation IPv6 is counter in the dns server for supporting IPv6 solves region, and domain suffix is " IP6.ARPA. ";S2, when receiving the request of the corresponding domain name in the address reverse resolution IPv6, by the IPv6 it is counter solve region by the request be directed toward dns server resource record in AAAA record;S3, progress match query is recorded according to AAAA, request end is finally returned to plus domain name with the format of suffix entitled " .IP6.ARPA ".Compared with prior art, the present invention is on the basis of existing DNS IPv4 name server, using the corresponding region former environment addition IPv6 and file can guarantee that IPv 6 and IPv 4 coexists, do not need volume additional hardware equipment, saved cost.
Description
Technical field
The present invention relates to network technique fields, more particularly, to a kind of reverse domain name analysis method based on IPv6 technology.
Background technique
Due to IPv4 the biggest problems are that network address resources are limited, the application and development of internet are seriously constrained.
The problem of use of IPv6 not only can solve network address resources quantity, but also solve a variety of access devices and be connected into internet
Obstacle, therefore IPv6 is just gradually popularized.
IPv6 is exactly as its name suggests the 6th edition agreement of IP address.We now be IPv4, the address of IPv4 is 32
Position, sum have 4,300,000,000 or so, also to subtract dedicated 192,170 address field of Intranet, just less.And the address of IPv6 is
128, be probably 4,300,000,000 4 powers, address is extremely abundant, almost inexhaustible.IPv6 is safer, standard configuration encryption
Option, the communication between user and server are difficult to be cracked.In addition to this, IPv6 can substantially reduce network delay, Ke Yicong
Universal 100ms or so drops to units now.Existing IPv4 DNS cannot parse the address of IPv6, need additionally to increase hardware
Equipment is realized, at high cost.
Summary of the invention
It is an object of the present invention to overcome the above-mentioned drawbacks of the prior art and provide one kind to be based on IPv6 technology
Reverse domain name analysis method.
The purpose of the present invention can be achieved through the following technical solutions:
A kind of reverse domain name analysis method based on IPv6 technology, comprising:
S1, creation IPv6 is counter in the dns server for supporting IPv6 solves region, and domain suffix is " IP6.ARPA. ";
S2, when receiving the request of the corresponding domain name in the address reverse resolution IPv6, should by the anti-region that solves the IPv6
The AAAA record in dns server resource record is directed toward in request;
S3, progress match query is recorded according to AAAA, finally returned with the format of suffix entitled " .IP6.ARPA " plus domain name
Back to request end.
Preferably, the anti-region that solves the IPv6 includes: the 16 binary digits format string of nibble that use " " separates, low
Bit address is preceding, and high address is rear.
Preferably, the step S1 creation IPv6 is counter solve region before further include: modify the configuration file of DNS, open
IPv6 port snoop and the modification address IPv6.
Preferably, the step S1 creation IPv6 is counter solve region after further include: with named-checkzone order inspection
Whether wrong look into configuration file.
Preferably, the dns server is connected to from dns server.
Preferably, the IPv4 and IPv6 of the dns server co-own unified name space.
Preferably, the dns server is using the linux system for supporting IPv6.
Preferably, the network of the dns server access is Intranet or outer net.
Compared with prior art, the present invention combines IPv4 and IPv6 DNS service architecture technology, in existing DNS IPv4
On the basis of name server, using the corresponding region former environment addition IPv6 and file, guarantees that IPv6 and IPv4 coexists, be not required to
Volume additional hardware equipment is wanted, cost has been saved.
Detailed description of the invention
Fig. 1 is realization block diagram of the invention.
Specific embodiment
The present invention is described in detail with specific embodiment below in conjunction with the accompanying drawings.The present embodiment is with technical solution of the present invention
Premised on implemented, the detailed implementation method and specific operation process are given, but protection scope of the present invention is not limited to
Following embodiments.
Embodiment
The application proposes a kind of reverse domain name analysis method based on IPv6 technology, comprising:
S1, creation IPv6 is counter in the dns server for supporting IPv6 solves region, and domain suffix is " IP6.ARPA. ";
S2, when receiving the request of the corresponding domain name in the address reverse resolution IPv6, by the anti-region that solves IPv6 by the request
The AAAA record being directed toward in dns server resource record;
S3, progress match query is recorded according to AAAA, finally returned with the format of suffix entitled " .IP6.ARPA " plus domain name
Back to request end.
Without the dns server for additionally building IPv6 again, it is only necessary on the basis of original IPv4 DNS Adding Area and
File can.The difference of IPv4 agreement and IPv6 agreement is not meant to need independent two sets of IPv4DNS systems and IPv6
DNS system, by contrast, the system and name space of DNS must be consistent, i.e. IPv4 and IPv6 co-own unified domain
The name space.
Self-built IPv6 DNS name server, it is possible to reduce IPv6 network is arbitrarily configured and brought using public DNS
Risk.It is less problematic under IPv4 network environment, because host can configure Intranet IP after NAT device, do not have
The address publicIP.But in IPv6 network, All hosts will all configure actual IPv 6 Public IP address, once IP
Location exposure, can be refined scanning, can all be attacked the possibility for stealing data at any time.
The network of dns server access can be Intranet or outer network environment.In the present embodiment, dns server is using support
The linux system of IPv6.
Step S1 is specifically included:
(1) confirm that IPv6 has turned on by inet6 option;
(2) network card configuration is modified:
IPV6INIT=yes
IPV6_AUTOCONF=yes
IPV6_DEFROUTE=yes
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
IPV6_PEERDNS=yes
IPV6_PEERROUTES=yes
IPV6_PRIVACY=no;
(3) configuration file for modifying DNS opens IPv6 port snoop and the modification address IPv6;
(4) the 16 binary digits format string of nibble that IPv6 is counter to solve region, is separated with " " is created, low order address exists
Before, rear, domain suffix is " IP6.ARPA. " for high address;
(5) the anti-solution file of IPV6 is modified;
(6) after all configurations are good, check whether configuration file wrong, with named-checkzone order, return OK then without
Accidentally;
(7) finally restart dns service.
This method can also build master and slave dns server, and primary dns server is the creation anti-DNS service for solving region of IPv6
Device provides redundancy, avoids Single Point of Faliure as shown in Figure 1, realizing that data are synchronous;It is available to improve system for equally loaded query demand
Property.
Claims (8)
1. a kind of reverse domain name analysis method based on IPv6 technology characterized by comprising
S1, creation IPv6 is counter in the dns server for supporting IPv6 and IPv4 solves region, and domain suffix is " IP6.ARPA. ";
S2, when receiving the request of the corresponding domain name in the address reverse resolution IPv6, by the anti-region that solves the IPv6 by the request
The AAAA record being directed toward in dns server resource record;
S3, progress match query is recorded according to AAAA, finally returned to the format of suffix entitled " .IP6.ARPA " plus domain name
Request end.
2. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that described
IPv6 is counter, and the region that solves includes: the 16 binary digits format string of nibble that use " " separates, and low order address is in preceding, high address
Rear.
3. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that the step
Rapid S1 creation IPv6 is counter solve region before further include: modify the configuration file of DNS, open IPv6 port snoop and modification IPv6
Address.
4. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that the step
Rapid S1 creation IPv6 is counter solve region after further include: it is whether wrong with named-checkzone order inspection configuration file.
5. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that described
Dns server is connected to from dns server.
6. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that described
The IPv4 and IPv6 of dns server co-own unified name space.
7. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that described
Dns server is using the linux system for supporting IPv6.
8. a kind of reverse domain name analysis method based on IPv6 technology according to claim 1, which is characterized in that described
The network of dns server access is Intranet or outer net.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910839171.6A CN110417935A (en) | 2019-09-05 | 2019-09-05 | A kind of reverse domain name analysis method based on IPv6 technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910839171.6A CN110417935A (en) | 2019-09-05 | 2019-09-05 | A kind of reverse domain name analysis method based on IPv6 technology |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN110417935A true CN110417935A (en) | 2019-11-05 |
Family
ID=68370448
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910839171.6A Pending CN110417935A (en) | 2019-09-05 | 2019-09-05 | A kind of reverse domain name analysis method based on IPv6 technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110417935A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111147621A (en) * | 2019-12-30 | 2020-05-12 | 互联网域名系统北京市工程研究中心有限公司 | Method for supporting IPv6 service access of external network user |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090164597A1 (en) * | 2007-12-21 | 2009-06-25 | Gary Stephen Shuster | Content Restriction Compliance Using Reverse DNS Lookup |
| US20130290563A1 (en) * | 2011-10-19 | 2013-10-31 | Xerocole, Inc. | Answer augmentation system for authoritative dns servers |
| US20160191243A1 (en) * | 2014-12-31 | 2016-06-30 | William Manning | Out-of-band validation of domain name system records |
| CN106612339A (en) * | 2015-10-27 | 2017-05-03 | 中国电信股份有限公司 | Domain name updating method, system and main DNS (Domain Name System) server |
| CN108924012A (en) * | 2018-08-24 | 2018-11-30 | 赛尔网络有限公司 | Method, equipment, system and the medium of IPv6 name server liveness detection |
| CN109150655A (en) * | 2018-07-25 | 2019-01-04 | 赛尔网络有限公司 | A kind of detection method that IPv4 firewall IPv6 is bypassed |
| CN210927676U (en) * | 2019-09-05 | 2020-07-03 | 上海地面通信息网络股份有限公司 | Reverse domain name resolution system based on IPv6 technology |
-
2019
- 2019-09-05 CN CN201910839171.6A patent/CN110417935A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090164597A1 (en) * | 2007-12-21 | 2009-06-25 | Gary Stephen Shuster | Content Restriction Compliance Using Reverse DNS Lookup |
| US20130290563A1 (en) * | 2011-10-19 | 2013-10-31 | Xerocole, Inc. | Answer augmentation system for authoritative dns servers |
| US20160191243A1 (en) * | 2014-12-31 | 2016-06-30 | William Manning | Out-of-band validation of domain name system records |
| CN106612339A (en) * | 2015-10-27 | 2017-05-03 | 中国电信股份有限公司 | Domain name updating method, system and main DNS (Domain Name System) server |
| CN109150655A (en) * | 2018-07-25 | 2019-01-04 | 赛尔网络有限公司 | A kind of detection method that IPv4 firewall IPv6 is bypassed |
| CN108924012A (en) * | 2018-08-24 | 2018-11-30 | 赛尔网络有限公司 | Method, equipment, system and the medium of IPv6 name server liveness detection |
| CN210927676U (en) * | 2019-09-05 | 2020-07-03 | 上海地面通信息网络股份有限公司 | Reverse domain name resolution system based on IPv6 technology |
Non-Patent Citations (1)
| Title |
|---|
| 顾润龙,刘智涛,侯玉香: "Linux操作系统及应用技术", pages: 10 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111147621A (en) * | 2019-12-30 | 2020-05-12 | 互联网域名系统北京市工程研究中心有限公司 | Method for supporting IPv6 service access of external network user |
| CN111147621B (en) * | 2019-12-30 | 2022-05-03 | 互联网域名系统北京市工程研究中心有限公司 | Method for supporting IPv6 service access of external network user |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111181991B (en) | Method and device for constructing terminal access platform of Internet of things | |
| US9143421B2 (en) | Network system capable of implementing stun with the assistance of two network devices and method thereof | |
| CN111225020B (en) | User mode network file system dual-stack access method, device and equipment | |
| CN105359458B (en) | Network device communications method and the network equipment | |
| EP1553713A1 (en) | Time synchronizing device and process and associated products | |
| US9392080B2 (en) | IPv4/IPv6 bridge | |
| WO2019128273A1 (en) | Method, device and system for determining connection relation of network devices | |
| CN105260377B (en) | A kind of upgrade method and system based on classification storage | |
| CN111404628B (en) | Time synchronization method and device | |
| CN105338128A (en) | Domain name resolution method and device | |
| CN110677383A (en) | Firewall opening method and device, storage medium and computer equipment | |
| CN100481778C (en) | A method, device and system for binding the terminal with the pseudo terminal device | |
| CN103095722A (en) | Method for updating network security table and network device and dynamic host configuration protocol (DHCP) server | |
| CN111711705B (en) | Method and device for realizing network connection based on bidirectional NAT (network Address translation) by proxy node | |
| CN111131448B (en) | Edge management method, edge proxy equipment and computer readable storage medium for ADSL Nat operation and maintenance management | |
| CN103795581A (en) | Address processing method and address processing device | |
| CN110417935A (en) | A kind of reverse domain name analysis method based on IPv6 technology | |
| CN114422350B (en) | Public cloud container instance creation method | |
| US20050105525A1 (en) | Method of detecting the type of network address translator | |
| CN113038594B (en) | Network management registration method and device for MESH extended equipment | |
| CN101083594A (en) | Method and system for managing network appliance | |
| CN112073553B (en) | Network address translation type detection method, device, equipment and storage medium | |
| CN210927676U (en) | Reverse domain name resolution system based on IPv6 technology | |
| CN104660728A (en) | NAT (network address translator) traversal method based on intelligent home control system | |
| EP3264730A1 (en) | Method and apparatus for terminal application accessing nas |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |