CN104917851A - Information processing method and DNS buffer server - Google Patents
Information processing method and DNS buffer server Download PDFInfo
- Publication number
- CN104917851A CN104917851A CN201510234057.2A CN201510234057A CN104917851A CN 104917851 A CN104917851 A CN 104917851A CN 201510234057 A CN201510234057 A CN 201510234057A CN 104917851 A CN104917851 A CN 104917851A
- Authority
- CN
- China
- Prior art keywords
- domain name
- subscriber equipment
- response
- record
- dns request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/568—Storing data temporarily at an intermediate stage, e.g. caching
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/58—Caching of addresses or names
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The invention discloses an information processing method. The method comprises the steps that a DNS request message is intercepted in a kernel layer, and the DNS request message is parsed; a first buffer space is queried in the kernel layer, and under the condition that a valid response record is queried, the valid response record is sent to a user device, otherwise the DNS request message is sent to a user layer; the DNS request message sent by the kernel layer is received in the user layer, and the DNS request message is sent to a recursive server to receive a response result; a second buffer space is queried in the user layer to acquire an intelligent policy which matches a domain name and an IP address; the intelligent policy is used to process the response result, and the processed response result is sent to the kernel layer; the kernel layer sends the received response result to the user device; and the received response result is stored in the first buffer space. According to the information processing method provided by the invention, a DNS buffer server has a great processing performance and is able to support a variety of intelligent policies. The invention further discloses the DNS buffer server.
Description
Technical field
The invention belongs to technical field of domain name resolution, particularly relate to information processing method and DNS (domain name system) caching server.
Background technology
The service that DNS provides is that domain name is converted to IP address, thus makes user can go to access the Internet by domain name, and need not remember IP address.Domain name mapping is called by resolving the process finally obtaining the IP address corresponding with this domain name to domain name.
There is intelligent DNS service at present, when domain name mapping is carried out in user's request, can process the multiple IP addresses corresponding to this domain name according to the source of user, the IP address being best suited for this user is preferentially returned to user, instead of indiscriminate IP address be returned to user.Such as: website is all had at mobile network, communication network and UNICOM's network in a certain enterprise, when telecommunication user accesses this enterprise's network address, preferentially the IP address of enterprise site in communication network is returned to user, when UNICOM user accesses this enterprise's network address, preferentially the IP address of enterprise site in UNICOM's network is returned to user.
Present intelligent DNS service mainly contains following two kinds of modes: one is build dns caching server at the client layer (referring to session layer, presentation layer and application layer) of operating system, and two is build dns caching server at the inner nuclear layer (referring to physical layer, data link layer and network layer) of operating system.Dns caching server is after getting DNS request message, if inner buffer has reply record accordingly, then this response record is returned to user, if inside does not store reply record accordingly, then send DNS request message to recursion server, after utilizing intelligent strategy to process the IP address that recursion server returns afterwards, return to user.
But, above-mentioned two kinds of dns server existing defects: the dns caching server built at client layer can support more intelligent strategy, but its handling property is lower, generally can only support the OPS of about 100,000 (query rate per second); The dns caching server handling property built at inner nuclear layer is higher, but it can only support simple intelligent strategy, and limitation is larger.Therefore, how solving the problem that existing dns caching server cannot be taken into account handling property and support various intelligent strategy, is those skilled in the art's problem demanding prompt solutions.
Summary of the invention
In view of this, the object of the present invention is to provide a kind of information processing method and dns caching server, there is preferably handling property, various intelligent strategy can be supported simultaneously.
For achieving the above object, the invention provides following technical scheme:
A kind of information processing method, be applied to domain name system DNS caching server, described method comprises:
Intercept DNS request message at inner nuclear layer, described DNS request message is resolved, obtains the IP address of domain name, record type and the subscriber equipment to be resolved that described DNS request message carries;
At IP address lookup first spatial cache of inner nuclear layer according to domain name, record type and subscriber equipment, when inquiring the effective response record with the IP matching addresses of domain name, record type and described subscriber equipment, described effective response record is sent to described subscriber equipment, when not inquiring the effective response record with the IP matching addresses of domain name, record type and described subscriber equipment, send described DNS request message to client layer;
Receive the DNS request message of inner nuclear layer transmission at client layer, send described DNS request message to recursion server, receive the response results that described recursion server returns;
At IP address lookup second spatial cache of client layer according to domain name and described subscriber equipment, the intelligent strategy of the IP matching addresses of acquisition and domain name and described subscriber equipment, described intelligent strategy is utilized to process described response results, response results after process is sent to inner nuclear layer, and the response results after described process comprises the IP address of subscriber equipment, domain name, record type and response record;
At inner nuclear layer, the response results received is sent to described subscriber equipment, the response results received is stored to described first spatial cache.
Preferably, in above-mentioned information processing method, described first spatial cache stores response record with two-layer Hash table structure, wherein, the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record;
At IP address lookup first spatial cache of inner nuclear layer according to domain name, record type and subscriber equipment, comprising: the belonging to IP address first set determining described subscriber equipment; Utilize described first being identified in ground floor Hash table of set to search, determine the memory address of target Hash table; Utilize domain name and record type to search in described target Hash table, obtain and reply record accordingly.
Preferably, in above-mentioned information processing method, described the response results received is stored to the first spatial cache, comprises:
The response results received is resolved, obtains the IP address of subscriber equipment, domain name, record type and response record;
Determine belonging to IP address second set of resolving the subscriber equipment obtained;
Utilize described second being identified in ground floor Hash table of set to search, determine the memory address of pending Hash table;
If there is to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then utilize and resolve the response record obtained the numerical value in this data structure is upgraded;
If there is not to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then in described pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
Preferably, in above-mentioned information processing method, described second spatial cache stores intelligent strategy with two-level-tree structure, wherein, the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy;
At IP address lookup second spatial cache of client layer according to domain name and described subscriber equipment, comprising: utilize domain name to search in ground floor tree, determine the memory address of goal tree; Determine the 3rd set belonging to IP address of described subscriber equipment; Utilize described 3rd being identified in described goal tree of set to search, obtain corresponding intelligent strategy.
Preferably, in above-mentioned information processing method, also comprise after client layer receives the DNS request message of inner nuclear layer transmission:
Described DNS request message is resolved, obtains the domain name to be resolved that described DNS request message carries;
Judge whether described domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored;
If described domain name to be resolved belongs to the blacklist prestored, then send the first response message to inner nuclear layer, at inner nuclear layer, the first response message is sent to described subscriber equipment, if described domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to inner nuclear layer, at inner nuclear layer, the second response message is sent to subscriber equipment, if described domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then send described DNS request message to recursion server.
The present invention also discloses a kind of dns caching server, comprises the caching process subsystem operating in inner nuclear layer and the intelligent strategy processing subsystem operating in client layer;
Described caching process subsystem comprises:
DNS request interception module, for intercepting DNS request message;
DNS request message processing module (MPM), for resolving described DNS request message, obtain the domain name to be resolved that described DNS request message carries, the IP address of record type and subscriber equipment, afterwards according to domain name, IP address lookup first spatial cache of record type and subscriber equipment, inquiring and domain name, when the effective response record of the IP matching addresses of record type and described subscriber equipment, described effective response record is sent to described subscriber equipment, do not inquiring and domain name, when the effective response record of the IP matching addresses of record type and described subscriber equipment, described DNS request message is sent to described intelligent strategy process subelement,
Reply process module, for receiving the response results that described intelligent strategy process subelement sends, being sent to subscriber equipment by the response results received, and the response results received is stored to the first spatial cache;
Described intelligent strategy processing subsystem comprises:
DNS request receiver module, for receiving the DNS request message that described caching process subsystem sends;
Data transmit-receive module, for sending the DNS request message that described DNS request receiver module receives to recursion server, receives the response results that described recursion server returns;
Intelligent strategy processing module, for IP address lookup second spatial cache according to domain name and described subscriber equipment, the intelligent strategy of the IP matching addresses of acquisition and domain name and described subscriber equipment, described intelligent strategy is utilized to process the response results that described data transmit-receive module receives, response results after process is sent to described caching process subsystem, and the response results after described process comprises the IP address of subscriber equipment, domain name, record type and response record.
Preferably, in above-mentioned dns caching server, described first spatial cache stores response record with two-layer Hash table structure, wherein, the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record;
Described DNS request message processing module (MPM), according to IP address lookup first spatial cache of domain name, record type and subscriber equipment, is specially: the belonging to IP address first set determining described subscriber equipment; Utilize described first being identified in ground floor Hash table of set to search, determine the memory address of target Hash table; Utilize domain name and record type to search in described target Hash table, obtain and reply record accordingly.
Preferably, in above-mentioned dns caching server, the response results received is stored to the first spatial cache by described reply process module, is specially:
The response results received is resolved, obtains the IP address of subscriber equipment, domain name, record type and response record;
Determine belonging to IP address second set of resolving the subscriber equipment obtained;
Utilize described second being identified in ground floor Hash table of set to search, determine the memory address of pending Hash table;
If there is to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then utilize and resolve the response record obtained the numerical value in this data structure is upgraded;
If there is not to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then in described pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
Preferably, in above-mentioned dns caching server, described second spatial cache stores intelligent strategy with two-level-tree structure, wherein, the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy;
Described intelligent strategy processing module, according to IP address lookup second spatial cache of domain name and described subscriber equipment, is specially: utilize domain name to search in ground floor tree, determine the memory address of goal tree; Determine the 3rd set belonging to IP address of described subscriber equipment; Utilize described 3rd being identified in described goal tree of set to search, obtain corresponding intelligent strategy.
Preferably, in above-mentioned dns caching server, also pretreatment module is comprised;
Described pretreatment module is resolved the DNS request message that described DNS request receiver module receives, obtain the domain name to be resolved that described DNS request message carries, judge whether described domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored afterwards, if described domain name to be resolved belongs to the blacklist prestored, then send the first response message to described caching process subsystem, so that the first response message is sent to described subscriber equipment by described caching process subsystem, if described domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to described caching process subsystem, so that the second response message is sent to subscriber equipment by described caching process subsystem, if described domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then trigger described data transmit-receive module and send described DNS request message to recursion server.
As can be seen here, beneficial effect of the present invention is: information processing method disclosed by the invention, after inner nuclear layer is truncated to DNS request message, DNS request message is resolved, obtain domain name to be resolved, the IP address of record type and subscriber equipment, inner nuclear layer is inquired about at the first spatial cache afterwards, if inquired and domain name to be resolved, the effective response record of the IP matching addresses of record type and subscriber equipment, then effective response record is sent to subscriber equipment, and do not need to send DNS request message to client layer, client layer is not needed to send data to inner nuclear layer yet, decrease the volume of transmitted data between client layer and inner nuclear layer, therefore, it is possible to raising handling property.When inner nuclear layer does not inquire the effective response record of coupling, client layer receives the DNS request message that inner nuclear layer sends, the DNS request message received is sent to recursion server, receive the response results that recursion server returns afterwards, the intelligent strategy stored at the second spatial cache is utilized to process response results, response results after process is sent to inner nuclear layer, is sent to subscriber equipment by inner nuclear layer, the response results after process is stored to the first spatial cache simultaneously.Because the process of intelligent strategy realizes at client layer, and the programming of client layer is comparatively simple, therefore, it is possible to support various intelligent strategy, simultaneously when needing work difficulty when revising intelligent strategy also less.To sum up, based on information processing method disclosed by the invention, make client layer and the inner nuclear layer collaborative work of dns caching server, while possessing higher position rationality energy, various intelligent strategy can be supported.In addition, along with the continuous service of dns caching server, the effective response record that its memory space stores also can correspondingly increase, this makes dns caching server in the probability also corresponding increase of inner nuclear layer complete independently domain name mapping, thus reduce the number of times of data interaction between inner nuclear layer and client layer further, improve handling property further.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only embodiments of the invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to the accompanying drawing provided.
Fig. 1 is the flow chart of a kind of information processing method disclosed by the invention;
Fig. 2 is the flow chart of inner nuclear layer at the first spatial cache inquiry response record;
Fig. 3 is the flow chart that response results is stored to the first spatial cache by inner nuclear layer;
Fig. 4 is the flow chart of client layer in the second spatial cache inquiry intelligent strategy;
Fig. 5 is the structural representation of a kind of dns caching server disclosed by the invention;
Fig. 6 is the structural representation of another kind of dns caching server disclosed by the invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
The present invention discloses a kind of information processing method, and the method is applied to dns caching server.Based on this information processing method, make dns caching server have preferably handling property, various intelligent strategy can be supported simultaneously.
See the flow chart that Fig. 1, Fig. 1 are a kind of information processing method disclosed by the invention.This information processing method comprises:
Step S11: intercept DNS request message at inner nuclear layer.
At the NF_IP_LOCAL_IN HOOK place of netfilter framework registration Hook Function, this Hook Function filters request data package, if be DNS request message, then intercept and stores this DNS request message, if not DNS request message, then return NF_ACCEPT.In enforcement, can by the DNS request packet storage that is truncated in DNS request queue.
Here brief description is carried out to netfilter framework.The framework of netfilter is exactly placed some test points (HOOK) in some positions of whole flow through a network, and register on each test point some process functions process.
Step S12: resolve DNS request message at inner nuclear layer, obtains the IP address of domain name, record type and the subscriber equipment to be resolved that DNS request message carries.
Step S13: at IP address lookup first spatial cache of inner nuclear layer according to domain name, record type and subscriber equipment.
The response record corresponding with domain name, record type and IP address is stored at the memory space of dns caching server.For convenience of description, in the present invention, the memory space storing response record is designated as the first spatial cache, it should be noted that here, the first spatial cache can be continuous print memory space, also can be made up of multiple memory space.
Step S14: when inquiring the effective response record with the IP matching addresses of domain name, record type and subscriber equipment, effective response record is sent to subscriber equipment.
Step S15: when not inquiring the effective response record with the IP matching addresses of domain name, record type and subscriber equipment, sends DNS request message to client layer.
After DNS request message being resolved to the IP address determining domain name to be resolved, record type and subscriber equipment, inquire about at the first spatial cache, determine whether the first spatial cache stores the effective response record with the IP matching addresses of domain name to be resolved, record type and subscriber equipment.If inquire the effective response record of coupling, then this effective response record is sent to subscriber equipment, if do not inquire the effective response record of coupling, then needs DNS request message to send to client layer.
Here it should be noted that, when the ttl value (lifetime value) of a certain response record is effective, then this response record is effective, and when the ttl value of a certain response record is invalid, then this response record is invalid.
Step S16: the DNS request message receiving inner nuclear layer transmission at client layer, sends DNS request message to recursion server, receives the response results that recursion server returns.
After client layer receives the DNS request message of inner nuclear layer transmission, send DNS request message to recursion server.Recursion server sends inquiry request to authorization server after receiving DNS request message, to determine whole IP addresses that domain name to be checked is corresponding, returns response results afterwards.The response results that recursion server returns comprises whole IP addresses of domain name and this domain name.
Step S17: at IP address lookup second spatial cache of client layer according to domain name and subscriber equipment, obtains the intelligent strategy with the IP matching addresses of domain name and subscriber equipment.
The intelligent strategy corresponding with the IP address of domain name and user is stored at the memory space of dns caching server.For convenience of description, in the present invention, the memory space storing intelligent strategy is designated as the second spatial cache, it should be noted that here, the second spatial cache can be continuous print memory space, also can be made up of multiple memory space.
Step S18: utilize intelligent strategy to process response results, is sent to inner nuclear layer by the response results after process.Wherein, the response results after process comprises the IP address of subscriber equipment, domain name, record type and response record.
Utilize the intelligent strategy got to process the response results that recursion server returns at client layer, concrete processing procedure is determined by intelligent strategy.Usually screening to IP address, the sequence to IP address and the amendment to ttl value is comprised for the process of response results.
Step S19: the response results received is sent to subscriber equipment at inner nuclear layer, is stored to the first spatial cache by the response results received.
Response results, after inner nuclear layer receives response results, is sent to subscriber equipment by dns caching server, also response results will be stored to the first spatial cache, the response record of progressively abundant first spatial cache storage.
The existing dns caching server built at client layer, in its running, it is each after inner nuclear layer is truncated to DNS request message, need by inner nuclear layer by DNS request message transmissions to client layer, again result is transferred to inner nuclear layer after carrying out domain name mapping by client layer, by inner nuclear layer, result is sent to subscriber equipment afterwards.Can see, at the dns caching server that client layer builds, in each domain name resolution process, all relate to the transfer of data between twice client layer and inner nuclear layer, therefore its handling property is lower.
The existing dns caching server built at inner nuclear layer, because the kernel programming of operating system is very complicated, therefore it only can support simple intelligent strategy, as the amendment of ttl value.And because kernel programming is very complicated, when needs adjustment intelligent strategy, work difficulty is very large.
Information processing method disclosed by the invention, after inner nuclear layer is truncated to DNS request message, DNS request message is resolved, obtain domain name to be resolved, the IP address of record type and subscriber equipment, inner nuclear layer is inquired about at the first spatial cache afterwards, if inquired and domain name to be resolved, the effective response record of the IP matching addresses of record type and subscriber equipment, then effective response record is sent to subscriber equipment, and do not need to send DNS request message to client layer, client layer is not needed to send data to inner nuclear layer yet, decrease the volume of transmitted data between client layer and inner nuclear layer, therefore, it is possible to raising handling property.When inner nuclear layer does not inquire the effective response record of coupling, client layer receives the DNS request message that inner nuclear layer sends, the DNS request message received is sent to recursion server, receive the response results that recursion server returns afterwards, the intelligent strategy stored at the second spatial cache is utilized to process response results, response results after process is sent to inner nuclear layer, is sent to subscriber equipment by inner nuclear layer, the response results after process is stored to the first spatial cache simultaneously.Because the process of intelligent strategy realizes at client layer, and the programming of client layer is comparatively simple, therefore, it is possible to support various intelligent strategy, simultaneously when needing work difficulty when revising intelligent strategy also less.
To sum up, based on information processing method disclosed by the invention, make client layer and the inner nuclear layer collaborative work of dns caching server, while possessing higher position rationality energy, various intelligent strategy can be supported.In addition, along with the continuous service of dns caching server, the effective response record that its memory space stores also can correspondingly increase, this makes dns caching server in the probability also corresponding increase of inner nuclear layer complete independently domain name mapping, thus the number of times of data interaction between inner nuclear layer and client layer can be reduced further, improve handling property further.
State in disclosed information processing method on the invention, the response record in the first spatial cache can store in a variety of forms, if the IP address of domain name, record type and subscriber equipment and response record between mapping relations be clear and definite.
In order to reduce the operand of inner nuclear layer at the first spatial cache inquiry response record, thus improve the handling property of dns caching server further.As a kind of optimal way, the first spatial cache stores response record with two-layer Hash table structure.Concrete: the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record.
In this case, in the operation of inner nuclear layer according to IP address lookup first spatial cache of domain name, record type and subscriber equipment, as shown in Figure 2.Comprise:
Step S21: the belonging to IP address first set determining subscriber equipment.
Divide the IP address of a large number of users equipment in advance, the IP address of same subscriber equipment only belongs to a set.In enforcement, can divide the IP address of subscriber equipment according to demand.Such as: broadband user can be divided into a set, cellphone subscriber is divided into a combination.And for example: the user in an area is divided into a set.The present invention does not divide the IP address of subscriber equipment and limits.
Here for the ease of statement, the set belonging to the IP address of subscriber equipment is designated as the first set.
Step S22: utilize being identified in ground floor Hash table of the first set to search, determine the memory address of target Hash table.
The memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table.After determining the belonging to the IP address of subscriber equipment first set, utilize being identified in ground floor Hash table of the first set to search, the numerical value corresponding with keyword " the first mark gathered " is the memory address of a second layer Hash table (target Hash table).
Step S23: utilize domain name and record type to search in target Hash table, obtains and replys record accordingly.
The keyword of second layer Hash table is domain name and record type, data is response record.After determining target Hash table, utilize domain name and record type to search in target Hash table, can obtain and reply record accordingly.
Based on the method shown in Fig. 2 of the present invention, the operand of inner nuclear layer at the first spatial cache inquiry response record can be reduced, thus improve the handling property of dns caching server further.
In addition, the process that the response results received is stored to the first spatial cache by inner nuclear layer adopts mode shown in Fig. 3.Comprise:
Step S31: resolve the response results received, obtains the IP address of subscriber equipment, domain name, record type and response record.
Step S32: determine belonging to IP address second set of resolving the subscriber equipment obtained.
For the ease of statement, the set belonging to the IP address of the subscriber equipment parsed from the response results received is designated as the second set.
Step S33: utilize being identified in ground floor Hash table of the second set to search, determine the memory address of pending Hash table.
The memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table.After determining the belonging to the IP address of subscriber equipment second set, utilize being identified in ground floor Hash table of the second set to search, the numerical value corresponding with keyword " the second mark gathered " is the memory address of a second layer Hash table (pending Hash table).
Step S34: if there is to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table, then utilize and resolve the response record obtained and upgrade the numerical value in this data structure.
Step S35: if there is not to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table, then add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value in pending Hash table.
There are two kinds of situations in pending Hash table, one is: there is to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table, but the response protocol failure in this data structure; Two are: there is not to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table.For the first situation, the response record utilizing parsing to obtain upgrades the numerical value in this data structure.For the second situation, in pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
State in disclosed information processing method on the invention, the intelligent strategy in the second spatial cache can store in a variety of forms, as long as the mapping relations between the IP address of domain name, subscriber equipment and intelligent strategy are clear and definite.
In order to reduce the operand of client layer in the second spatial cache inquiry intelligent strategy, thus improve the handling property of dns caching server further.As a kind of optimal way, the second spatial cache stores intelligent strategy with two-level-tree structure.Concrete: the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy.
In this case, at IP address lookup second spatial cache of client layer according to domain name and subscriber equipment, as shown in Figure 4.Comprise:
Step S41: utilize domain name to search in ground floor tree, determine the memory address of goal tree.
The index of ground floor tree is domain suffix.Utilize the suffix of domain name to search in ground floor tree at client layer, just can obtain the memory address of second layer tree (goal tree).
Step S42: the 3rd set belonging to IP address determining subscriber equipment.
Step S43: being identified in goal tree of utilizing the 3rd to gather is searched, and obtains corresponding intelligent strategy.
The index of second layer tree is set identification, data are intelligent strategy.After determining the belonging to the IP address of subscriber equipment the 3rd set, being identified in goal tree of utilizing the 3rd to gather is searched, and can obtain corresponding intelligent strategy.
Based on the method shown in Fig. 4, the operand of client layer in the second spatial cache inquiry intelligent strategy can be reduced, thus improve the handling property of dns caching server further.
Preferably, the second spatial cache is configured to store intelligent strategy with two-layer Adelson-Velskii-Landis tree (self-balancing binary search tree) structure.
In the information processing method shown in Fig. 1, the DNS request message received, after the DNS request message receiving inner nuclear layer transmission, can directly send to recursion server by client layer.In actual application, the DNS request message that subscriber equipment sends may be abnormal, such as user equipment requests carries out domain name mapping to a non-existent domain name, if client layer directly by the DNS request that receives from inner nuclear layer to recursion server, be unfavorable for the operation of recursion server.
As a kind of preferred implementation, the information processing method shown in Fig. 1 is improved.Concrete, after client layer receives the DNS request message of inner nuclear layer transmission, also comprise:
DNS request message is resolved, obtains the domain name to be resolved that DNS request message carries;
Judge whether domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored;
If domain name to be resolved belongs to the blacklist prestored, then send the first response message to inner nuclear layer, at inner nuclear layer, the first response message is sent to subscriber equipment, if domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to inner nuclear layer, at inner nuclear layer, the second response message is sent to subscriber equipment, if domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then sends DNS request message to recursion server.Wherein, the first response message is for pointing out user access exception.Second response message can be a pre-configured IP address.
That is, dns caching server prestores blacklist and domain name strong solution list, after client layer receives the DNS request message of inner nuclear layer transmission, client layer is resolved this DNS request message and is obtained domain name to be resolved, judge whether this domain name belongs to the blacklist prestored and the domain name strong solution list prestored afterwards, if this domain name belongs to the blacklist that prestores or belongs to the domain name strong solution list prestored, then replied according to the strategy prestored by client layer, and do not send DNS request message to recursion server.Based on above-mentioned preferred implementation, the blacklist prestored only is not belonged in domain name to be resolved, when not belonging to the domain name strong solution list prestored yet, just can send DNS request message to recursion server, thus avoid the DNS request message of exception to be sent to recursion server, be conducive to the normal operation of recursion server.
The present invention also discloses a kind of dns caching server.See the structural representation that Fig. 5, Fig. 5 are a kind of dns caching server disclosed by the invention, comprising: operate in the caching process subsystem 10 of inner nuclear layer and operate in the intelligent strategy processing subsystem 20 of client layer.
Wherein:
Caching process subsystem 10 comprises DNS request interception module 101, DNS request message processing module (MPM) 102 and reply process module 103.Intelligent strategy processing subsystem 20 comprises DNS request receiver module 201, data transmit-receive module 202 and intelligent strategy processing module 203.
DNS request interception module 101, for intercepting DNS request message.At the NF_IP_LOCAL_IN HOOK place of netfilter framework registration Hook Function, this Hook Function filters request data package, if be DNS request message, then intercept and stores this DNS request message, if not DNS request message, then return NF_ACCEPT.
DNS request message processing module (MPM) 102, for resolving DNS request message, obtain the domain name to be resolved that DNS request message carries, the IP address of record type and subscriber equipment, afterwards according to domain name, IP address lookup first spatial cache of record type and subscriber equipment, inquiring and domain name, when the effective response record of the IP matching addresses of record type and subscriber equipment, effective response record is sent to subscriber equipment, do not inquiring and domain name, when the effective response record of the IP matching addresses of record type and subscriber equipment, DNS request message is sent to intelligent strategy process subelement.
Reply process module 103, for receiving the response results that intelligent strategy process subelement 20 sends, being sent to subscriber equipment by the response results received, and the response results received is stored to the first spatial cache.
DNS request receiver module 201, for receiving the DNS request message that caching process subsystem 10 sends, specifically receives the DNS request message that DNS request message processing module (MPM) 102 sends.
Data transmit-receive module 202, for sending the DNS request message that DNS request receiver module 201 receives to recursion server, receives the response results that recursion server returns.
Intelligent strategy processing module 203, for IP address lookup second spatial cache according to domain name and subscriber equipment, the intelligent strategy of the IP matching addresses of acquisition and domain name and subscriber equipment, intelligent strategy is utilized to process the response results that data transmit-receive module 202 receives, response results after process is sent to caching process subsystem 10, is specifically sent to reply process module 103.Wherein, the response results after process comprises the IP address of subscriber equipment, domain name, record type and response record.
Dns caching server disclosed by the invention, comprise the caching process subsystem operating in inner nuclear layer and the intelligent strategy processing subsystem operating in client layer, by the collaborative work of caching process subsystem and intelligent strategy processing subsystem, while possessing higher position rationality energy, various intelligent strategy can be supported.In addition, along with the continuous service of dns caching server, the effective response record that its memory space stores also can correspondingly increase, this makes dns caching server in the probability also corresponding increase of inner nuclear layer complete independently domain name mapping, thus the number of times of data interaction between inner nuclear layer and client layer can be reduced further, improve handling property further.
State in disclosed dns caching server on the invention, the response record in the first spatial cache can store in a variety of forms, if the IP address of domain name, record type and subscriber equipment and response record between mapping relations be clear and definite.
In order to reduce the operand of caching process subsystem 10 at the first spatial cache inquiry response record, thus improve the handling property of dns caching server further.As a kind of optimal way, the first spatial cache stores response record with two-layer Hash table structure.Concrete: the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record.
Accordingly, DNS request message processing module (MPM) 102, according to IP address lookup first spatial cache of domain name, record type and subscriber equipment, is specially: the belonging to IP address first set determining subscriber equipment; Utilize being identified in ground floor Hash table of the first set to search, determine the memory address of target Hash table; Utilize domain name and record type to search in target Hash table, obtain and reply record accordingly.
The response results received is stored to the first spatial cache by reply process module 103, is specially: resolve the response results received, and obtains the IP address of subscriber equipment, domain name, record type and response record; Determine belonging to IP address second set of resolving the subscriber equipment obtained; Utilize being identified in ground floor Hash table of the second set to search, determine the memory address of pending Hash table; If there is to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table, then utilize and resolve the response record obtained the numerical value in this data structure is upgraded; If there is not to resolve the domain name that obtains and the record type data structure as keyword in pending Hash table, then in pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
State in disclosed dns caching server on the invention, the intelligent strategy in the second spatial cache can store in a variety of forms, as long as the mapping relations between the IP address of domain name, subscriber equipment and intelligent strategy are clear and definite.
In order to reduce the operand of intelligent strategy processing subsystem 20 in the second spatial cache inquiry intelligent strategy, thus improve the handling property of dns caching server further.As a kind of optimal way, the second spatial cache stores intelligent strategy with two-level-tree structure.Concrete: the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy.
Accordingly, intelligent strategy processing module 203, according to IP address lookup second spatial cache of domain name and subscriber equipment, is specially: utilize domain name to search in ground floor tree, determine the memory address of goal tree; Determine the 3rd set belonging to IP address of subscriber equipment; Being identified in goal tree of utilizing the 3rd to gather is searched, and obtains corresponding intelligent strategy.
On the basis of dns caching server shown in Fig. 5, can also pretreatment module 204 be set further, as shown in Figure 6.
The DNS request message that pretreatment module 204 pairs of DNS request receiver modules 201 receive is resolved, obtain the domain name to be resolved that DNS request message carries, judge whether domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored afterwards, if domain name to be resolved belongs to the blacklist prestored, then send the first response message to caching process subsystem, so that the first response message is sent to subscriber equipment by caching process subsystem, if domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to caching process subsystem, so that the second response message is sent to subscriber equipment by caching process subsystem, if domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then trigger data transceiver module 202 sends DNS request message to recursion server.
Dns caching server shown in Fig. 5 of the present invention, the blacklist prestored only is not belonged in domain name to be resolved, when not belonging to the domain name strong solution list prestored yet, just can send DNS request message to recursion server, thus avoid the DNS request message of exception to be sent to recursion server, be conducive to the normal operation of recursion server.
Finally, also it should be noted that, in this article, the such as relational terms of first and second grades and so on is only used for an entity or operation to separate with another entity or operating space, and not necessarily requires or imply the relation that there is any this reality between these entities or operation or sequentially.And, term " comprises ", " comprising " or its any other variant are intended to contain comprising of nonexcludability, thus make to comprise the process of a series of key element, method, article or equipment and not only comprise those key elements, but also comprise other key elements clearly do not listed, or also comprise by the intrinsic key element of this process, method, article or equipment.When not more restrictions, the key element limited by statement " comprising ... ", and be not precluded within process, method, article or the equipment comprising described key element and also there is other identical element.
In this specification, each embodiment adopts the mode of going forward one by one to describe, and what each embodiment stressed is the difference with other embodiments, between each embodiment identical similar portion mutually see.For device disclosed in embodiment, because it corresponds to the method disclosed in Example, so description is fairly simple, relevant part illustrates see method part.
To the above-mentioned explanation of the disclosed embodiments, professional and technical personnel in the field are realized or uses the present invention.To be apparent for those skilled in the art to the multiple amendment of these embodiments, General Principle as defined herein can without departing from the spirit or scope of the present invention, realize in other embodiments.Therefore, the present invention can not be restricted to these embodiments shown in this article, but will meet the widest scope consistent with principle disclosed herein and features of novelty.
Claims (10)
1. an information processing method, is characterized in that, is applied to domain name system DNS caching server, and described method comprises:
Intercept DNS request message at inner nuclear layer, described DNS request message is resolved, obtains the IP address of domain name, record type and the subscriber equipment to be resolved that described DNS request message carries;
At IP address lookup first spatial cache of inner nuclear layer according to domain name, record type and subscriber equipment, when inquiring the effective response record with the IP matching addresses of domain name, record type and described subscriber equipment, described effective response record is sent to described subscriber equipment, when not inquiring the effective response record with the IP matching addresses of domain name, record type and described subscriber equipment, send described DNS request message to client layer;
Receive the DNS request message of inner nuclear layer transmission at client layer, send described DNS request message to recursion server, receive the response results that described recursion server returns;
At IP address lookup second spatial cache of client layer according to domain name and described subscriber equipment, the intelligent strategy of the IP matching addresses of acquisition and domain name and described subscriber equipment, described intelligent strategy is utilized to process described response results, response results after process is sent to inner nuclear layer, and the response results after described process comprises the IP address of subscriber equipment, domain name, record type and response record;
At inner nuclear layer, the response results received is sent to described subscriber equipment, the response results received is stored to described first spatial cache.
2. information processing method according to claim 1, it is characterized in that, described first spatial cache stores response record with two-layer Hash table structure, wherein, the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record;
At IP address lookup first spatial cache of inner nuclear layer according to domain name, record type and subscriber equipment, comprising: the belonging to IP address first set determining described subscriber equipment; Utilize described first being identified in ground floor Hash table of set to search, determine the memory address of target Hash table; Utilize domain name and record type to search in described target Hash table, obtain and reply record accordingly.
3. information processing method according to claim 2, is characterized in that, described the response results received is stored to the first spatial cache, comprising:
The response results received is resolved, obtains the IP address of subscriber equipment, domain name, record type and response record;
Determine belonging to IP address second set of resolving the subscriber equipment obtained;
Utilize described second being identified in ground floor Hash table of set to search, determine the memory address of pending Hash table;
If there is to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then utilize and resolve the response record obtained the numerical value in this data structure is upgraded;
If there is not to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then in described pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
4. information processing method according to claim 1, it is characterized in that, described second spatial cache stores intelligent strategy with two-level-tree structure, wherein, the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy;
At IP address lookup second spatial cache of client layer according to domain name and described subscriber equipment, comprising: utilize domain name to search in ground floor tree, determine the memory address of goal tree; Determine the 3rd set belonging to IP address of described subscriber equipment; Utilize described 3rd being identified in described goal tree of set to search, obtain corresponding intelligent strategy.
5. information processing method according to claim 1, is characterized in that, also comprises after client layer receives the DNS request message of inner nuclear layer transmission:
Described DNS request message is resolved, obtains the domain name to be resolved that described DNS request message carries;
Judge whether described domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored;
If described domain name to be resolved belongs to the blacklist prestored, then send the first response message to inner nuclear layer, at inner nuclear layer, the first response message is sent to described subscriber equipment, if described domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to inner nuclear layer, at inner nuclear layer, the second response message is sent to subscriber equipment, if described domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then send described DNS request message to recursion server.
6. a domain name system DNS caching server, is characterized in that, comprises the caching process subsystem operating in inner nuclear layer and the intelligent strategy processing subsystem operating in client layer;
Described caching process subsystem comprises:
DNS request interception module, for intercepting DNS request message;
DNS request message processing module (MPM), for resolving described DNS request message, obtain the domain name to be resolved that described DNS request message carries, the IP address of record type and subscriber equipment, afterwards according to domain name, IP address lookup first spatial cache of record type and subscriber equipment, inquiring and domain name, when the effective response record of the IP matching addresses of record type and described subscriber equipment, described effective response record is sent to described subscriber equipment, do not inquiring and domain name, when the effective response record of the IP matching addresses of record type and described subscriber equipment, described DNS request message is sent to described intelligent strategy process subelement,
Reply process module, for receiving the response results that described intelligent strategy process subelement sends, being sent to subscriber equipment by the response results received, and the response results received is stored to the first spatial cache;
Described intelligent strategy processing subsystem comprises:
DNS request receiver module, for receiving the DNS request message that described caching process subsystem sends;
Data transmit-receive module, for sending the DNS request message that described DNS request receiver module receives to recursion server, receives the response results that described recursion server returns;
Intelligent strategy processing module, for IP address lookup second spatial cache according to domain name and described subscriber equipment, the intelligent strategy of the IP matching addresses of acquisition and domain name and described subscriber equipment, described intelligent strategy is utilized to process the response results that described data transmit-receive module receives, response results after process is sent to described caching process subsystem, and the response results after described process comprises the IP address of subscriber equipment, domain name, record type and response record.
7. dns caching server according to claim 6, it is characterized in that, described first spatial cache stores response record with two-layer Hash table structure, wherein, the memory address that the keyword of ground floor Hash table is set identification, data are second layer Hash table, the keyword of second layer Hash table is domain name and record type, data is response record;
Described DNS request message processing module (MPM), according to IP address lookup first spatial cache of domain name, record type and subscriber equipment, is specially: the belonging to IP address first set determining described subscriber equipment; Utilize described first being identified in ground floor Hash table of set to search, determine the memory address of target Hash table; Utilize domain name and record type to search in described target Hash table, obtain and reply record accordingly.
8. dns caching server according to claim 7, is characterized in that, the response results received is stored to the first spatial cache by described reply process module, is specially:
The response results received is resolved, obtains the IP address of subscriber equipment, domain name, record type and response record;
Determine belonging to IP address second set of resolving the subscriber equipment obtained;
Utilize described second being identified in ground floor Hash table of set to search, determine the memory address of pending Hash table;
If there is to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then utilize and resolve the response record obtained the numerical value in this data structure is upgraded;
If there is not to resolve the domain name that obtains and the record type data structure as keyword in described pending Hash table, then in described pending Hash table, add to resolve the domain name and record type that obtain as keyword, to resolve the data structure that the response obtained is recorded as numerical value.
9. dns caching server according to claim 6, it is characterized in that, described second spatial cache stores intelligent strategy with two-level-tree structure, wherein, the memory address that the index of ground floor tree is domain suffix, data are second layer tree, the index of second layer tree is set identification, data are intelligent strategy;
Described intelligent strategy processing module, according to IP address lookup second spatial cache of domain name and described subscriber equipment, is specially: utilize domain name to search in ground floor tree, determine the memory address of goal tree; Determine the 3rd set belonging to IP address of described subscriber equipment; Utilize described 3rd being identified in described goal tree of set to search, obtain corresponding intelligent strategy.
10. dns caching server according to claim 6, is characterized in that, also comprises pretreatment module;
Described pretreatment module is resolved the DNS request message that described DNS request receiver module receives, obtain the domain name to be resolved that described DNS request message carries, judge whether described domain name to be resolved belongs to the blacklist prestored and the domain name strong solution list prestored afterwards, if described domain name to be resolved belongs to the blacklist prestored, then send the first response message to described caching process subsystem, so that the first response message is sent to described subscriber equipment by described caching process subsystem, if described domain name to be resolved belongs to the domain name strong solution list prestored, then send the second response message to described caching process subsystem, so that the second response message is sent to subscriber equipment by described caching process subsystem, if described domain name to be resolved does not belong to the blacklist prestored and the domain name strong solution list prestored, then trigger described data transmit-receive module and send described DNS request message to recursion server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510234057.2A CN104917851B (en) | 2015-05-08 | 2015-05-08 | Information processing method and dns caching server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510234057.2A CN104917851B (en) | 2015-05-08 | 2015-05-08 | Information processing method and dns caching server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104917851A true CN104917851A (en) | 2015-09-16 |
| CN104917851B CN104917851B (en) | 2019-01-22 |
Family
ID=54086546
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510234057.2A Active CN104917851B (en) | 2015-05-08 | 2015-05-08 | Information processing method and dns caching server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104917851B (en) |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105376344A (en) * | 2015-11-26 | 2016-03-02 | 中国互联网络信息中心 | Method and system for analyzing recursive domain name server related to source address |
| CN105681483A (en) * | 2015-12-29 | 2016-06-15 | 赛尔网络有限公司 | Method and system for measuring specific IP range analysis proportion based on DNS (Domain Name System) server |
| CN105721626A (en) * | 2016-02-23 | 2016-06-29 | 浪潮通信信息系统有限公司 | DNS node centralized management and control method |
| CN106331212A (en) * | 2016-08-25 | 2017-01-11 | 北京润通丰华科技有限公司 | Domain name server (DNS) cache camping-based domain name resolution method and system |
| CN106549944A (en) * | 2016-10-17 | 2017-03-29 | 上海斐讯数据通信技术有限公司 | A kind of domain filter method based on linux kernel Hash table |
| CN106685951A (en) * | 2016-12-26 | 2017-05-17 | 北京奇虎科技有限公司 | Network flow filtering system and method based on domain name rules |
| CN106797410A (en) * | 2016-12-23 | 2017-05-31 | 深圳前海达闼云端智能科技有限公司 | Domain name analytic method and device |
| CN106790762A (en) * | 2017-01-11 | 2017-05-31 | 腾讯科技(深圳)有限公司 | Domain name analytic method and device |
| CN106817436A (en) * | 2016-12-09 | 2017-06-09 | 互联网域名系统北京市工程研究中心有限公司 | One kind prevents the DNS contaminated method and system of strong solution result |
| CN107154927A (en) * | 2017-03-28 | 2017-09-12 | 北京安博通科技股份有限公司 | Message processing method and device |
| CN108449283A (en) * | 2018-06-22 | 2018-08-24 | 郑州云海信息技术有限公司 | Domain name analytic method, system, equipment based on load balancing and storage medium |
| CN108551494A (en) * | 2018-01-30 | 2018-09-18 | 北京邮电大学 | Domain name caching method and equipment |
| CN109040345A (en) * | 2018-09-30 | 2018-12-18 | 郑州冰川网络技术有限公司 | The parsing accelerated method and parsing accelerator of DNS cache |
| CN109218454A (en) * | 2017-04-13 | 2019-01-15 | 阿里巴巴集团控股有限公司 | The response method and dns server of DNS request |
| CN109756454A (en) * | 2017-11-03 | 2019-05-14 | 阿里巴巴集团控股有限公司 | The methods, devices and systems of data interaction |
| CN113158002A (en) * | 2021-04-28 | 2021-07-23 | 北京达佳互联信息技术有限公司 | Searching method, searching device, electronic equipment and storage medium |
| CN113660275A (en) * | 2021-08-18 | 2021-11-16 | 中国电信股份有限公司 | Domain name system request processing method and device, electronic equipment and storage medium |
| CN114221934A (en) * | 2021-12-13 | 2022-03-22 | 牙木科技股份有限公司 | Domain name resolution caching method, DNS (Domain name Server) and computer readable storage medium |
| CN115334040A (en) * | 2022-08-10 | 2022-11-11 | 北京百度网讯科技有限公司 | Method and device for determining Internet Protocol (IP) address of domain name |
| CN116094780A (en) * | 2022-12-29 | 2023-05-09 | 天翼云科技有限公司 | DNS response IP blacklist filtering method and system |
| WO2024146293A1 (en) * | 2023-01-06 | 2024-07-11 | 中国互联网络信息中心 | Resolution acceleration method and apparatus for domain name server |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102469167A (en) * | 2010-11-01 | 2012-05-23 | 中国移动通信集团北京有限公司 | Domain name query implementing method and system |
| CN102624750A (en) * | 2012-04-22 | 2012-08-01 | 吴兴利 | Method and system for resisting domain name system (DNS) recursion attack |
| CN103701957A (en) * | 2014-01-14 | 2014-04-02 | 互联网域名系统北京市工程研究中心有限公司 | Domain name server (DNS) recursive method and system thereof |
| CN103957286A (en) * | 2014-04-18 | 2014-07-30 | 上海聚流软件科技有限公司 | DNS safety system and fault processing method thereof |
| WO2014206118A1 (en) * | 2013-06-24 | 2014-12-31 | 广州市动景计算机科技有限公司 | Domain name resolution method based on tcp protocol in mobile internet and dns server |
| WO2015027743A1 (en) * | 2013-09-02 | 2015-03-05 | 中兴通讯股份有限公司 | Domain name resolution method, domain name cache server, and final domain name server |
-
2015
- 2015-05-08 CN CN201510234057.2A patent/CN104917851B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102469167A (en) * | 2010-11-01 | 2012-05-23 | 中国移动通信集团北京有限公司 | Domain name query implementing method and system |
| CN102624750A (en) * | 2012-04-22 | 2012-08-01 | 吴兴利 | Method and system for resisting domain name system (DNS) recursion attack |
| WO2014206118A1 (en) * | 2013-06-24 | 2014-12-31 | 广州市动景计算机科技有限公司 | Domain name resolution method based on tcp protocol in mobile internet and dns server |
| WO2015027743A1 (en) * | 2013-09-02 | 2015-03-05 | 中兴通讯股份有限公司 | Domain name resolution method, domain name cache server, and final domain name server |
| CN103701957A (en) * | 2014-01-14 | 2014-04-02 | 互联网域名系统北京市工程研究中心有限公司 | Domain name server (DNS) recursive method and system thereof |
| CN103957286A (en) * | 2014-04-18 | 2014-07-30 | 上海聚流软件科技有限公司 | DNS safety system and fault processing method thereof |
Cited By (31)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105376344A (en) * | 2015-11-26 | 2016-03-02 | 中国互联网络信息中心 | Method and system for analyzing recursive domain name server related to source address |
| CN105376344B (en) * | 2015-11-26 | 2019-01-04 | 中国互联网络信息中心 | A kind of analytic method and system of recurrence name server relevant to source address |
| CN105681483A (en) * | 2015-12-29 | 2016-06-15 | 赛尔网络有限公司 | Method and system for measuring specific IP range analysis proportion based on DNS (Domain Name System) server |
| CN105721626A (en) * | 2016-02-23 | 2016-06-29 | 浪潮通信信息系统有限公司 | DNS node centralized management and control method |
| CN106331212A (en) * | 2016-08-25 | 2017-01-11 | 北京润通丰华科技有限公司 | Domain name server (DNS) cache camping-based domain name resolution method and system |
| CN106331212B (en) * | 2016-08-25 | 2019-05-07 | 北京润通丰华科技有限公司 | A kind of domain name analytic method and system resident based on DNS cache |
| CN106549944A (en) * | 2016-10-17 | 2017-03-29 | 上海斐讯数据通信技术有限公司 | A kind of domain filter method based on linux kernel Hash table |
| CN106817436B (en) * | 2016-12-09 | 2020-06-02 | 互联网域名系统北京市工程研究中心有限公司 | Method and system for preventing DNS (domain name system) forced solution result from being polluted |
| CN106817436A (en) * | 2016-12-09 | 2017-06-09 | 互联网域名系统北京市工程研究中心有限公司 | One kind prevents the DNS contaminated method and system of strong solution result |
| WO2018112944A1 (en) * | 2016-12-23 | 2018-06-28 | 深圳前海达闼云端智能科技有限公司 | Domain name resolution method and apparatus |
| CN106797410A (en) * | 2016-12-23 | 2017-05-31 | 深圳前海达闼云端智能科技有限公司 | Domain name analytic method and device |
| CN106685951A (en) * | 2016-12-26 | 2017-05-17 | 北京奇虎科技有限公司 | Network flow filtering system and method based on domain name rules |
| WO2018130061A1 (en) * | 2017-01-11 | 2018-07-19 | 腾讯科技(深圳)有限公司 | Domain name resolution method, server and storage medium |
| CN106790762A (en) * | 2017-01-11 | 2017-05-31 | 腾讯科技(深圳)有限公司 | Domain name analytic method and device |
| US10826869B2 (en) | 2017-01-11 | 2020-11-03 | Tencent Technology (Shenzhen) Company Limited | Domain name resolution method, server and storage medium |
| CN106790762B (en) * | 2017-01-11 | 2022-05-24 | 腾讯科技(深圳)有限公司 | Domain name resolution method and device |
| CN107154927A (en) * | 2017-03-28 | 2017-09-12 | 北京安博通科技股份有限公司 | Message processing method and device |
| CN109218454A (en) * | 2017-04-13 | 2019-01-15 | 阿里巴巴集团控股有限公司 | The response method and dns server of DNS request |
| CN109756454B (en) * | 2017-11-03 | 2022-01-11 | 阿里巴巴集团控股有限公司 | Data interaction method, device and system |
| CN109756454A (en) * | 2017-11-03 | 2019-05-14 | 阿里巴巴集团控股有限公司 | The methods, devices and systems of data interaction |
| CN108551494A (en) * | 2018-01-30 | 2018-09-18 | 北京邮电大学 | Domain name caching method and equipment |
| CN108449283A (en) * | 2018-06-22 | 2018-08-24 | 郑州云海信息技术有限公司 | Domain name analytic method, system, equipment based on load balancing and storage medium |
| CN109040345A (en) * | 2018-09-30 | 2018-12-18 | 郑州冰川网络技术有限公司 | The parsing accelerated method and parsing accelerator of DNS cache |
| CN109040345B (en) * | 2018-09-30 | 2023-08-22 | 郑州冰川网络技术有限公司 | Analysis accelerating method and analysis accelerating device for DNS (Domain name System) cache |
| CN113158002A (en) * | 2021-04-28 | 2021-07-23 | 北京达佳互联信息技术有限公司 | Searching method, searching device, electronic equipment and storage medium |
| CN113660275A (en) * | 2021-08-18 | 2021-11-16 | 中国电信股份有限公司 | Domain name system request processing method and device, electronic equipment and storage medium |
| CN114221934A (en) * | 2021-12-13 | 2022-03-22 | 牙木科技股份有限公司 | Domain name resolution caching method, DNS (Domain name Server) and computer readable storage medium |
| CN114221934B (en) * | 2021-12-13 | 2024-05-07 | 牙木科技股份有限公司 | Domain name resolution caching method, DNS server and computer readable storage medium |
| CN115334040A (en) * | 2022-08-10 | 2022-11-11 | 北京百度网讯科技有限公司 | Method and device for determining Internet Protocol (IP) address of domain name |
| CN116094780A (en) * | 2022-12-29 | 2023-05-09 | 天翼云科技有限公司 | DNS response IP blacklist filtering method and system |
| WO2024146293A1 (en) * | 2023-01-06 | 2024-07-11 | 中国互联网络信息中心 | Resolution acceleration method and apparatus for domain name server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104917851B (en) | 2019-01-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104917851A (en) | Information processing method and DNS buffer server | |
| EP3389243B1 (en) | Dns network system, and domain name resolution method and system | |
| US8584195B2 (en) | Identities correlation infrastructure for passive network monitoring | |
| CN109981803B (en) | Service request processing method and device | |
| CN102469167B (en) | Domain name query implementing method and system | |
| KR100765238B1 (en) | Method for obtaining dns information of mobile terminal and mobile terminal thereof | |
| US10530745B2 (en) | Network address and hostname mapping in policy service | |
| US9225613B2 (en) | Method for accessing content in networks and a corresponding system | |
| CN105610867B (en) | A kind of anti-abduction method and apparatus of DNS | |
| US20130136126A1 (en) | Data center network system and packet forwarding method thereof | |
| CN106797410A (en) | Domain name analytic method and device | |
| CN102685074B (en) | Anti-phishing network communication system and method | |
| CN112600868B (en) | Domain name resolution method, domain name resolution device and electronic equipment | |
| CN105453488A (en) | Methods and systems for processing a DNS request | |
| JP2016506677A (en) | Method and apparatus for preventing unauthorized service access | |
| CN104378452A (en) | Method, device and system for domain name resolution | |
| CN107135499A (en) | Data transmission method, the network equipment and terminal | |
| CN105245629A (en) | DHCP-based host communication method and device | |
| CN105939347A (en) | Method and device for defending domain name attack | |
| CN104079683A (en) | Domain name resolution method and system authorizing direct response of domain name server | |
| CN102223422B (en) | Domain name system (DNS) message processing method and network safety equipment | |
| JP4009591B2 (en) | Domain naming system (DNS) for accessing databases | |
| CN108234632A (en) | A kind of data distributing method and device of content distributing network CDN | |
| US7908356B2 (en) | Name resolution device and name resolution method with automatic node information updating function | |
| US8316045B1 (en) | Database linking system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20180425 Address after: 610000 China (Sichuan) free trade pilot area Chengdu Tianfu New District, Zheng Xing street, 366 north section of lakeside road 8. Applicant after: Chengdu Yaxin Network Security Industry Technology Research Institute Co., Ltd. Address before: 210013 Nanjing, Jiangsu, Gulou District, Gulou 4 drum tower, Zijin Chi Meng Garden, block B. Applicant before: Asialnfo Technology (Nanjing) Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |