CN106470251A - Domain name analytic method and virtual DNS authority server - Google Patents

Domain name analytic method and virtual DNS authority server Download PDF

Info

Publication number
CN106470251A
CN106470251A CN201510512839.8A CN201510512839A CN106470251A CN 106470251 A CN106470251 A CN 106470251A CN 201510512839 A CN201510512839 A CN 201510512839A CN 106470251 A CN106470251 A CN 106470251A
Authority
CN
China
Prior art keywords
server
domain name
response message
address
virtual dns
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510512839.8A
Other languages
Chinese (zh)
Other versions
CN106470251B (en
Inventor
韩枫
刘风成
毛伟
邢志杰
马迪
王伟
童小海
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER
Original Assignee
BEILONG KNET (BEIJING) TECHNOLOGY Co Ltd
INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEILONG KNET (BEIJING) TECHNOLOGY Co Ltd, INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER LLC filed Critical BEILONG KNET (BEIJING) TECHNOLOGY Co Ltd
Priority to CN201510512839.8A priority Critical patent/CN106470251B/en
Publication of CN106470251A publication Critical patent/CN106470251A/en
Application granted granted Critical
Publication of CN106470251B publication Critical patent/CN106470251B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides a kind of domain name analytic method and virtual DNS authority server.Domain name analytic method of the present invention, including:Virtual Domain Name system DNS authority server receives the first domain name mapping request that recursion server sends, and wherein, comprises the domain name of needs parsing in the first domain name mapping request;Whether virtual DNS authority server has the network protocol IP address of domain name according to the first domain name mapping requesting query in caching;Virtual DNS authority server sends the first response message according to Query Result to recursion server, comprises the IP address of domain name in the first response message.The present invention can improve the performance of domain name mapping.

Description

Domain name analytic method and virtual DNS authority server
Technical field
The present invention relates to computer technology, more particularly, to a kind of domain name analytic method and virtual DNS authority clothes Business device.
Background technology
When client needs to access network, in a browser after inputs domain name, need first domain name to be entered Row parsing, parses this domain name corresponding procotol (Internet Protocol;Referred to as:IP) address Afterwards, just enable the access to the server corresponding to this IP address for the client.
In prior art, domain name system (Domain Name System;Referred to as:DNS) include root Server, DNS authority server, recursion server and local dns server.Wherein, DNS Authoritative server includes TLD authoritative server, for example, the domain such as .com .cn authoritative server, Also include the domain such as baidu.com, sina.com authoritative server.Domain name resolution process is:Client is sent out Playing a domain name mapping request, comprising domain name in this analysis request, if there is no institute in client-cache Inquire the corresponding IP address of this domain name, client can be initiated DNS to local dns server and look into Ask request.After local dns server receives request, whether first check in the caching of oneself Inquiry the corresponding IP address of domain name, if having, local dns server can directly in response to client, If not having in caching, local dns server can initiate recursive query request to recursion server, Recursion server checks the content whether inquired about in the caching of oneself, if having, directly in response to this Ground dns server, if not having in caching, initiating inquiry from recursion server to root server please Ask, root server sends the ground of this domain name corresponding TLD authoritative server to recursion server Location, recursion server initiates inquiry request to this TLD authoritative server, until authoritative server Return the corresponding IP address of this domain name to recursion server, this IP address is fed back to by recursion server Client, completes the process of a domain name mapping.
But, in above-mentioned domain name resolution process, the query flows of DNS authority server are larger, domain name Repeat request for information also more, so the burden load of DNS authority server is larger, domain name mapping The required time can be long, the performance of impact domain name mapping.
Content of the invention
The present invention provides a kind of domain name analytic method and virtual DNS authority server, to improve domain name mapping Performance.
The present invention provides a kind of domain name analytic method, including:
Virtual DNS authority server receives the first domain name mapping request that recursion server sends, wherein, The domain name of needs parsing is comprised in described first domain name mapping request;
Virtual DNS authority server according to described first domain name mapping requesting query caching in whether State the network protocol IP address of domain name;
Virtual DNS authority server sends the first response according to Query Result to described recursion server and disappears Breath, comprises the IP address of domain name in described first response message.
Further, described virtual DNS authority server is sent out to described recursion server according to Query Result Send the first response message, including:
If described virtual DNS authority server lookup has in described virtual DNS authority server buffer The IP address of domain name, then described virtual DNS authority server is to described recursion server transmission institute State the first response message;
If described virtual DNS authority server lookup does not have in described virtual DNS authority server buffer There is the IP address of domain name, then described virtual DNS authority server judges that user's authoritative server is No normal work, sends described first response message according to judged result to described recursion server.
Further, described virtual DNS authority server judges the whether normal work of user's authoritative server Make, described first response message is sent to described recursion server according to judged result, including:
If described virtual DNS authority server judges described user's authoritative server energy normal work,:
Purpose IP address in described first domain name mapping request are repaiied by described virtual DNS authority server It is changed to the IP address of described user's authoritative server, form the second domain name mapping request;
Described second domain name mapping request is sent to described user's power by described virtual DNS authority server Prestige server, and receive the second response message that described user's authoritative server sends, wherein, described the The IP address of domain name is comprised in two response messages;
Described user authority in described second response message is serviced by described virtual DNS authority server The IP address of device is revised as the IP address of described virtual DNS authority server, and described second is responded Authoritative flag bit AA in message is set to 1, forms described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
Further, described virtual DNS authority server judges the whether normal work of user's authoritative server Make, described first response message is sent to described recursion server according to judged result, including:
If described virtual DNS authority server judges described user's authoritative server cisco unity malfunction, Then:
Purpose IP address during first domain name mapping is asked by described virtual DNS authority server are revised as The IP address of Disaster Preparation Center, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described use The backup of family authoritative server;
Described virtual DNS authority server by described 3rd domain name mapping request be sent to described calamity standby in The heart, and receive the 3rd response message that described Disaster Preparation Center sends, wherein, in described 3rd response message Comprise the IP address of domain name;
Described virtual DNS authority server is by the IP of the described Disaster Preparation Center in described 3rd response message The IP address of described virtual DNS authority server is revised as in address, and by described 3rd response message Authoritative flag bit AA be set to 1, form described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
The present invention also provides a kind of virtual DNS authority server, including:
Receiver module, for receiving the first domain name mapping request of recursion server transmission, wherein, described The domain name of needs parsing is comprised in first domain name mapping request;
Whether enquiry module, for having domain name according in described first domain name mapping requesting query caching Network protocol IP address;
Sending module, for sending the first response message, institute according to Query Result to described recursion server State the IP address comprising domain name in the first response message.
Further, if described enquiry module inquires the IP address having domain name in caching, send Module is used for sending described first response message to described recursion server;
If described enquiry module inquires the IP address not having domain name in caching, described virtual DNS Authoritative server also includes judge module, and just whether described judge module be used for judging user's authoritative server Often work, described sending module is additionally operable to judged result according to described judge module to described recursion service Device sends described first response message.
Further, if described judge module judges described user's authoritative server energy normal work, institute State sending module also to include:
First modification unit, for being revised as institute by the purpose IP address in described first domain name mapping request State the IP address of user's authoritative server, form the second domain name mapping request;
First transmission receiving unit, for being sent to described user authority by described second domain name mapping request Server, and receive the second response message that described user's authoritative server sends, wherein, described second The IP address of domain name is comprised in response message;
Second modification unit, for by the IP of the described user's authoritative server in described second response message The IP address of described virtual DNS authority server is revised as in address, and by described second response message Authoritative flag bit AA be set to 1, form described first response message;
First transmitting element, for sending described first response message to described recursion server.
Further, if described judge module judges described user's authoritative server cisco unity malfunction, Described sending module also includes:
3rd modification unit, for by the purpose IP address in the first domain name mapping request be revised as calamity standby in The IP address of the heart, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described user authority The backup of server;
Second transmission receiving unit, for described 3rd domain name mapping request is sent to described Disaster Preparation Center, And receive the 3rd response message that described Disaster Preparation Center sends, wherein, comprise in described 3rd response message The IP address of domain name;
4th modification unit, for repairing the IP address of the described Disaster Preparation Center in described 3rd response message It is changed to the IP address of described virtual DNS authority server, and by the authority in described 3rd response message Flag AA is set to 1, forms described first response message;
Second transmitting element, for sending described first response message to described recursion server.
Domain name analytic method and virtual DNS authority server that the present invention provides, by virtual Domain Name system DNS authority server receives the first domain name mapping request that recursion server sends, wherein, described first The domain name of needs parsing is comprised, virtual DNS authority server is according to the first domain name solution in domain name mapping request Network protocol IP address corresponding with domain name, virtual DNS authority clothes whether are had in analysis requesting query caching Business device sends the first response message according to Query Result to recursion server, comprises IP in the first response message Address, receives the first domain name mapping request of recursion server by virtual DNS authority server, and root With the presence or absence of the corresponding IP address of domain name with needs parsing, send first according in caching to recursion server Response message, thus, virtual DNS authority server has shared the query flows of DNS authority server, Reduce it and bear load, shorten the time of domain name mapping, improve domain name mapping performance.
Brief description
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to reality The accompanying drawing applying required use in example or description of the prior art be briefly described it should be apparent that, under Accompanying drawing in the description of face is some embodiments of the present invention, for those of ordinary skill in the art, On the premise of not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
Fig. 1 is the flow chart of domain name analytic method embodiment one of the present invention;
Fig. 2 is the flow chart of domain name analytic method embodiment two of the present invention;
Fig. 3 is a kind of flow chart of implementation of S202 in domain name analytic method embodiment two of the present invention;
Fig. 4 is the flow process of another kind of implementation of S202 in domain name analytic method embodiment two of the present invention Figure;
Fig. 5 is the structural representation of the present invention virtual DNS authority server example one;
Fig. 6 is the structural representation of the present invention virtual DNS authority server example two;
Fig. 7 is a kind of implementation of sending module in the present invention virtual DNS authority server example two Structural representation;
Fig. 8 is another kind of realization side of sending module in the present invention virtual DNS authority server example two The structural representation of formula.
Specific embodiment
Purpose, technical scheme and advantage for making the embodiment of the present invention are clearer, below in conjunction with this Accompanying drawing in bright embodiment, is clearly and completely described to the technical scheme in the embodiment of the present invention, Obviously, described embodiment is a part of embodiment of the present invention, rather than whole embodiments.It is based on Embodiment in the present invention, those of ordinary skill in the art are obtained under the premise of not making creative work The every other embodiment obtaining, broadly falls into the scope of protection of the invention.
Fig. 1 is the flow chart of domain name analytic method embodiment one of the present invention.As shown in figure 1, the present embodiment The domain name analytic method providing includes:
S101:Virtual DNS authority server receives the first domain name mapping request that recursion server sends.
Wherein, comprise the domain name of needs parsing in the first domain name mapping request.
Specifically, virtual DNS authority server be arranged on recursion server and user's authoritative server it Between.User's authoritative server refer to TLD server subordinate baidu.com, sina.com or The domain such as AAA.com authoritative server, what user here referred to is exactly the application such as baidu, sina or AAA Carry out company or the mechanism of domain name mapping using virtual DNS authority server.The domain name solution that client sends After analysis request reaches recursion server, recursion server can send the first domain name mapping and ask to virtual DNS authority server.First domain name mapping request includes needs parse domain name, here need solution The domain name of analysis represents that client initiates the domain name accessing.Client can be computer and mobile phone etc..First domain Can also include in name analysis request:Source IP address is IP address and the purpose IP address of recursion server The i.e. IP address of virtual DNS authority server.
It should be noted that user is before the domain name analytic method providing using the present embodiment, need to accuse Know that the IP address of user's authoritative server is revised as the IP of virtual DNS authority server by Domain Name Registrar Address, makes virtual DNS authority server be located in DNS framework.
S102:Whether virtual DNS authority server has domain in caching according to the first domain name mapping requesting query The IP address of name.
Specifically, whether virtual DNS authority server is inquired about to have in its caching and is asked with the first domain name mapping Seek the corresponding IP address of domain name that the needs including parse.Optionally, if client is frequently initiated to wrap Domain name mapping request containing certain domain name, then may be stored with the caching of virtual DNS authority server IP address corresponding with this domain name.
S103:Virtual DNS authority server sends the first response according to Query Result to recursion server and disappears Breath, comprises the IP address of domain name in the first response message.
Specifically, virtual DNS authority server sends the according to different Query Results to recursion server One response message.Include corresponding with the domain name comprising in the first domain name mapping request in first response message IP address.Can also include in first response message:Destination address is IP address and the source of recursion server Address is the IP address of virtual DNS authority server.
First response message is sent to recursion server, recursion server pair by virtual DNS authority server It is sent to local dns server after first response message Reseal.Local dns server is more again It is sent to client after encapsulation, complete a domain name mapping.
The domain name analytic method that the present embodiment provides, is received by virtual Domain Name system DNS authority server The first domain name mapping request that recursion server sends, wherein, comprises needs in the first domain name mapping request The domain name of parsing, whether virtual DNS authority server has in being cached according to the first domain name mapping requesting query The IP address of domain name, virtual DNS authority server sends first according to Query Result to recursion server Response message, comprises the IP address of domain name in the first response message, by virtual DNS authority server Receive recursion server first domain name mapping request, and according to caching in the presence or absence of and need parsing The corresponding IP address of domain name, sends the first response message to recursion server, thus, virtual DNS power Prestige server has shared the query flows of user's authoritative server, reduces the burden of user's authoritative server Load, shortens the time of domain name mapping, improves domain name mapping performance.
Fig. 2 is the flow chart of domain name analytic method embodiment two of the present invention.As shown in Fig. 2 the present embodiment On the basis of above-described embodiment one, S103 specifically includes the domain name analytic method providing:
S201:If virtual DNS authority server lookup has domain in virtual DNS authority server buffer The IP address of name, then virtual DNS authority server is to recursion server transmission the first response message.
Specifically, if there being the IP address of domain name in the caching of virtual DNS authority server, just will delay The IP address deposited is encapsulated in the first response message, is sent to recursion server.
S202:If virtual DNS authority server lookup does not have in virtual DNS authority server buffer The IP address of domain name, then virtual DNS authority server judge user's authoritative server whether normal work, First response message is sent to recursion server according to judged result.
Specifically, without the IP address of domain name in the caching of virtual DNS authority server, then empty Intending DNS authority server needs to send domain name analysis request to user's authoritative server.But can there is user The situation that authoritative server breaks down, if user's authoritative server breaks down, it can not be to void Intend the domain name mapping request that DNS authority server sends to be responded, now it is necessary to virtual DNS Authoritative server judges user's authoritative server whether normal work, and according to judged result to recursion service Device sends the first response message.
With certain frequency, virtual DNS authority server can detect whether user's authoritative server is just in Often work.For example, virtual DNS authority server can judge to use by way of sending probe message Whether family authoritative server is in normal work, can comprise to detect domain name in probe message.If user Authoritative server can normally parse the detection domain name in probe message and correctly feed back to virtual DNS power Then it is assumed that user's authoritative server is in normal work if prestige server, otherwise it is assumed that user is authoritative Server has been likely to occur fault, for example, power-off or machine of delaying etc..Certainly, virtual DNS authority server Can also judge whether user's authoritative server is in normal work by other means, the present embodiment is not As limit.
The domain name analytic method that the present embodiment provides, if virtual DNS authority server lookup is to virtual DNS There is the IP address of domain name, then virtual DNS authority server is to recursion server in authoritative server caching Send the first response message, if virtual DNS authority server lookup is delayed to virtual DNS authority server There is no the IP address of domain name, then whether virtual DNS authority server judges user's authoritative server in depositing Normal work, sends the first response message according to judged result to recursion server, thus, virtual DNS Authoritative server has shared the query flows of user's authoritative server, reduces the negative of user's authoritative server Support lotus, shorten the time of domain name mapping, improve domain name mapping performance.
Judge whether user's authoritative server is in normal operating conditions according to virtual DNS authority server Judged result difference, in above-described embodiment two, S202 has following two implementations:
Fig. 3 is a kind of flow chart of implementation of S202 in domain name analytic method embodiment two of the present invention. If as shown in figure 3, for virtual DNS authority server, this implementation judges that user's authoritative server can be just When often working, including:
S301:Purpose IP address during first domain name mapping is asked by virtual DNS authority server are changed For the IP address of user's authoritative server, form the second domain name mapping request.
Wherein, comprise the domain name of needs parsing in the second domain name mapping request.
S302:Second domain name mapping request is sent to user's authority's service by virtual DNS authority server Device, and the second response message that receive user authoritative server sends.
Wherein, comprise the IP address of domain name in the second response message.
S303:Virtual DNS authority server is by the IP of the user's authoritative server in the second response message The IP address of virtual DNS authority server is revised as in address, and the authority in the second response message is marked Will position AA is set to 1, forms the first response message.
Specifically, the authoritative flag bit AA in the second response message can be set to 1, to represent first Response message is authoritative response.The IP address of user's authoritative server is revised as virtual DNS authority clothes The IP address of business device can to client hidden user's authoritative server, it is to avoid user's authoritative server is subject to Attack to client.
It is understood that the authoritative flag bit in the first response message in embodiment one and the present embodiment AA is 1, with represent virtual DNS authority server response for authoritative response.
S304:Virtual DNS authority server sends the first response message to recursion server.
Optionally, before S302, virtual DNS authority server can also be to user's authoritative server Circuit be analyzed.
Specifically, user's authoritative server can have much individual, and the access load of each is different, There may exist the unbalanced situation of load, now, virtual DNS authority server is different from multiple to it User's authoritative server between circuit carry out intelligently parsing, can be by user's authoritative server Circuit carries out statistics to carry out intelligently parsing, less to judge the load on which bar circuit, thus, by Two domain name mapping requests are sent to this circuit corresponding user authoritative server by this circuit, realize load Purpose in a balanced way, improves the speed of domain name mapping further.Wherein, have in virtual DNS authority server Different circuit IP outlet its different circuits between user's authoritative server corresponding.
In this implementation, the IP address of user's authoritative server is changed by virtual DNS authority server IP address for virtual DNS authority server can be realized to client hidden user's authoritative server, Compared to the DNS being not provided with virtual DNS authority server, client can not obtain user's authority's service The address of device, thus, it is to avoid user authoritative server is attacked by client, further increases The performance of domain name mapping.
Fig. 4 is the flow chart of S202 another kind implementation in domain name analytic method embodiment two of the present invention. If as shown in figure 4, for virtual DNS authority server, this implementation judges that user's authoritative server can not During normal work, including:
S401:Purpose IP address during first domain name mapping is asked by virtual DNS authority server are changed For the IP address of Disaster Preparation Center, form the 3rd domain name mapping request.
Wherein, Disaster Preparation Center is the backup of user's authoritative server.
Whether it can periodically be inquired about by Disaster Preparation Center consistent with the data in user's authoritative server, if not Unanimously, then carry out data syn-chronization, to guarantee the data in the data of Disaster Preparation Center and user's authoritative server Unanimously.For example, it is possible to be inquired about in itself and user's authoritative server by way of regular initiation inquiry request Data whether consistent.
S402:3rd domain name mapping request is sent to Disaster Preparation Center by virtual DNS authority server, and connects Receive the 3rd response message that Disaster Preparation Center sends.
Wherein, comprise the IP address of domain name in the 3rd response message.
S403:The IP address of the Disaster Preparation Center in the 3rd response message is repaiied by virtual DNS authority server It is changed to the IP address of virtual DNS authority server, and by the authoritative flag bit AA in the 3rd response message It is set to 1, form the first response message.
Specifically, the authoritative flag bit AA in the 3rd response message can be set to 1, to represent first Response message is authoritative response.
S404:Virtual DNS authority server sends the first response message to recursion server.
This implementation in user's authoritative server cisco unity malfunction, virtual DNS authority server to Disaster Preparation Center sends analysis request, so that the fault unaware to user's authoritative server for the client, protects Demonstrate,prove the stability of domain name mapping.
It should be noted that in above-mentioned any embodiment, user can be to virtual DNS authority server Caching be configured, for example, it is possible to the data cached renewal preserving data in duration and caching of setting Frequency.
Fig. 5 is the structural representation of the present invention virtual DNS authority server example one.As shown in figure 5, The virtual DNS authority server that the present embodiment provides includes:
Receiver module 501, for receiving the first domain name mapping request of recursion server transmission.
Wherein, comprise the domain name of needs parsing in the first domain name mapping request.
Enquiry module 502, for according to the IP whether having domain name in the first domain name mapping requesting query caching Address.
Sending module 503, for the first response message is sent to recursion server according to Query Result, the The IP address of domain name is comprised in one response message.
The virtual DNS authority server of the present embodiment can correspond to embodiment of the method shown in execution Fig. 1.Its Realize principle identical, here is omitted.
The virtual DNS authority server that the present embodiment provides, by arranging receiver module, passs for receiving Return the first domain name mapping request that server sends, wherein, comprise to need to solve in the first domain name mapping request The domain name of analysis.Whether enquiry module, for having domain name according in the first domain name mapping requesting query caching IP address.Sending module, for the first response message is sent to recursion server according to Query Result, the The IP address of domain name is comprised in one response message.Recursion service is received by virtual DNS authority server First domain name mapping request of device, and according to the corresponding IP of domain name that whether there is in caching and needs parse Address, sending module sends the first response message to recursion server, thus, virtual DNS authority service The query flows of user's authoritative server shared by device, reduce the burden load of user's authoritative server, Shorten the time of domain name mapping, improve domain name mapping performance.
Fig. 6 is the structural representation of the present invention virtual DNS authority server example two.As shown in fig. 6, The present embodiment provide virtual DNS authority server on the basis of above-described embodiment, if enquiry module 502 inquire the IP address having domain name in caching, then sending module 503 is used for sending to recursion server First response message.If enquiry module 502 inquires the IP address not having domain name in caching, virtual DNS authority server also includes judge module 601, for judging the whether normal work of user's authoritative server Make, sending module 503 is additionally operable to judged result according to judge module 601 and sends the to recursion server One response message.
The virtual DNS authority server of the present embodiment can correspond to embodiment of the method shown in execution Fig. 2.Its Realize principle identical, here is omitted.
The virtual DNS authority server that the present embodiment provides, if enquiry module inquires virtual DNS power There is the IP address of domain name, then sending module is used for sending the first sound to recursion server in prestige server buffer Answer message, if enquiry module inquires the IP address not having domain name in virtual DNS authority server buffer, Whether then virtual DNS authority server also includes judge module, normal for judging user's authoritative server Work, the judged result that sending module is additionally operable to according to judge module sends the first response to recursion server Message, thus, virtual DNS authority server has shared the query flows of user's authoritative server, reduces The burden load of user's authoritative server, shortens the time of domain name mapping, improves domain name mapping Energy.
Fig. 7 is a kind of implementation of sending module in the present invention virtual DNS authority server example two Structural representation.If as shown in fig. 7, judge module judges user's authoritative server energy normal work, Then in above-described embodiment two, sending module also includes:
First modification unit 7001, for being revised as using by the purpose IP address in the first domain name mapping request The IP address of family authoritative server, forms the second domain name mapping request.
First transmission receiving unit 7002, for being sent to user's authority's service by the second domain name mapping request Device, and the second response message that receive user authoritative server sends, wherein, wrap in the second response message IP address containing domain name.
Second modification unit 7003, for by the IP address of the user's authoritative server in the second response message It is revised as the IP address of virtual DNS authority server, and by the authoritative flag bit in the second response message AA is set to 1, forms the first response message.
First transmitting element 7004, for sending the first response message to recursion server.
This implementation can correspond to embodiment of the method shown in execution Fig. 3.It is identical, herein that it realizes principle Repeat no more.
In this implementation, the IP address of user's authoritative server is revised as virtual by the second modification unit The IP address of DNS authority server can be realized to client hidden user's authoritative server, compared to not The DNS of virtual DNS authority server is set, and client can not obtain the address of user's authoritative server, Thus, it is to avoid user authoritative server is attacked by client, further increases domain name mapping Performance.
Fig. 8 is another kind of realization side of sending module in the present invention virtual DNS authority server example two The structural representation of formula.If as shown in figure 8, judge module judges user's authoritative server energy normal work, Then in above-described embodiment two, sending module also includes:
3rd modification unit 8001, for being revised as calamity by the purpose IP address in the first domain name mapping request The IP address at standby center, forms the 3rd domain name mapping request, and wherein, Disaster Preparation Center is user's authority's service The backup of device;
Second transmission receiving unit 8002, for the 3rd domain name mapping request is sent to Disaster Preparation Center, and Receive the 3rd response message that Disaster Preparation Center sends, wherein, in the 3rd response message, comprise the IP ground of domain name Location;
4th modification unit 8003, for being revised as the IP address of the Disaster Preparation Center in the 3rd response message The IP address of virtual DNS authority server, and the authoritative flag bit AA in the 3rd response message is set It is set to 1, form the first response message;
Second transmitting element 8004, for sending the first response message to recursion server.
This implementation can correspond to embodiment of the method shown in execution Fig. 4.It is identical, herein that it realizes principle Repeat no more.
This implementation in user's authoritative server cisco unity malfunction, virtual DNS authority server to Disaster Preparation Center sends analysis request, so that the fault unaware to user's authoritative server for the client, protects Demonstrate,prove the stability of domain name mapping.
One of ordinary skill in the art will appreciate that:Realize all or part step of above-mentioned each method embodiment Suddenly can be completed by the related hardware of programmed instruction.Aforesaid program can be stored in a computer can Read in storage medium.This program upon execution, executes the step including above-mentioned each method embodiment;And Aforesaid storage medium includes:ROM, RAM, magnetic disc or CD etc. are various can be with store program codes Medium.
Finally it should be noted that:Various embodiments above is only in order to illustrating technical scheme rather than right It limits;Although being described in detail to the present invention with reference to foregoing embodiments, this area common Technical staff should be understood:It still can be modified to the technical scheme described in foregoing embodiments, Or equivalent is carried out to wherein some or all of technical characteristic;And these modifications or replacement, and Do not make the scope of the essence disengaging various embodiments of the present invention technical scheme of appropriate technical solution.

Claims (8)

1. a kind of domain name analytic method is it is characterised in that include:
The first domain name mapping that virtual Domain Name system DNS authority server receives recursion server transmission please Ask, wherein, in described first domain name mapping request, comprise the domain name of needs parsing;
Virtual DNS authority server according to described first domain name mapping requesting query caching in whether State the network protocol IP address of domain name;
Virtual DNS authority server sends the first response according to Query Result to described recursion server and disappears Breath, comprises the IP address of domain name in described first response message.
2. method according to claim 1 is it is characterised in that described virtual DNS authority service Device sends the first response message according to Query Result to described recursion server, including:
If described virtual DNS authority server lookup has in described virtual DNS authority server buffer The IP address of domain name, then described virtual DNS authority server is to described recursion server transmission institute State the first response message;
If described virtual DNS authority server lookup does not have in described virtual DNS authority server buffer There is the IP address of domain name, then described virtual DNS authority server judges that user's authoritative server is No normal work, sends described first response message according to judged result to described recursion server.
3. method according to claim 2 is it is characterised in that described virtual DNS authority service Device judges user's authoritative server whether normal work, is sent to described recursion server according to judged result Described first response message, including:
If described virtual DNS authority server judges described user's authoritative server energy normal work,:
Purpose IP address in described first domain name mapping request are repaiied by described virtual DNS authority server It is changed to the IP address of described user's authoritative server, form the second domain name mapping request;
Described second domain name mapping request is sent to described user's power by described virtual DNS authority server Prestige server, and receive the second response message that described user's authoritative server sends, wherein, described the The IP address of domain name is comprised in two response messages;
Described user authority in described second response message is serviced by described virtual DNS authority server The IP address of device is revised as the IP address of described virtual DNS authority server, and described second is responded Authoritative flag bit AA in message is set to 1, forms described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
4. according to the method in claim 2 or 3 it is characterised in that described virtual DNS authority Server judges user's authoritative server whether normal work, according to judged result to described recursion server Send described first response message, including:
If described virtual DNS authority server judges described user's authoritative server cisco unity malfunction, Then:
Purpose IP address during first domain name mapping is asked by described virtual DNS authority server are revised as The IP address of Disaster Preparation Center, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described use The backup of family authoritative server;
Described virtual DNS authority server by described 3rd domain name mapping request be sent to described calamity standby in The heart, and receive the 3rd response message that described Disaster Preparation Center sends, wherein, in described 3rd response message Comprise the IP address of domain name;
Described virtual DNS authority server is by the IP of the described Disaster Preparation Center in described 3rd response message The IP address of described virtual DNS authority server is revised as in address, and by described 3rd response message Authoritative flag bit AA be set to 1, form described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
5. a kind of virtual DNS authority server is it is characterised in that include:
Receiver module, for receiving the first domain name mapping request of recursion server transmission, wherein, described The domain name of needs parsing is comprised in first domain name mapping request;
Whether enquiry module, for having domain name according in described first domain name mapping requesting query caching Network protocol IP address;
Sending module, for sending the first response message, institute according to Query Result to described recursion server State the IP address comprising domain name in the first response message.
If 6. virtual DNS authority server according to claim 5 is it is characterised in that described Enquiry module inquires the IP address having domain name in caching, then sending module is used for described recurrence clothes Business device sends described first response message;
If described enquiry module inquires the IP address not having domain name in caching, described virtual DNS Authoritative server also includes judge module, and just whether described judge module be used for judging user's authoritative server Often work, described sending module is additionally operable to judged result according to described judge module to described recursion service Device sends described first response message.
If 7. virtual DNS authority server according to claim 6 is it is characterised in that described Judge module judges described user's authoritative server energy normal work, then described sending module also includes:
First modification unit, for being revised as institute by the purpose IP address in described first domain name mapping request State the IP address of user's authoritative server, form the second domain name mapping request;
First transmission receiving unit, for being sent to described user authority by described second domain name mapping request Server, and receive the second response message that described user's authoritative server sends, wherein, described second The IP address of domain name is comprised in response message;
Second modification unit, for by the IP of the described user's authoritative server in described second response message The IP address of described virtual DNS authority server is revised as in address, and by described second response message Authoritative flag bit AA be set to 1, form described first response message;
First transmitting element, for sending described first response message to described recursion server.
If 8. the virtual DNS authority server according to claim 6 or 7 it is characterised in that Described judge module judges described user's authoritative server cisco unity malfunction, then described sending module also wraps Include:
3rd modification unit, for by the purpose IP address in the first domain name mapping request be revised as calamity standby in The IP address of the heart, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described user authority The backup of server;
Second transmission receiving unit, for described 3rd domain name mapping request is sent to described Disaster Preparation Center, And receive the 3rd response message that described Disaster Preparation Center sends, wherein, comprise in described 3rd response message The IP address of domain name;
4th modification unit, for repairing the IP address of the described Disaster Preparation Center in described 3rd response message It is changed to the IP address of described virtual DNS authority server, and by the authority in described 3rd response message Flag bit AA is set to 1, forms described first response message;
Second transmitting element, for sending described first response message to described recursion server.
CN201510512839.8A 2015-08-19 2015-08-19 Domain name resolution method and virtual DNS authoritative server Active CN106470251B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510512839.8A CN106470251B (en) 2015-08-19 2015-08-19 Domain name resolution method and virtual DNS authoritative server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510512839.8A CN106470251B (en) 2015-08-19 2015-08-19 Domain name resolution method and virtual DNS authoritative server

Publications (2)

Publication Number Publication Date
CN106470251A true CN106470251A (en) 2017-03-01
CN106470251B CN106470251B (en) 2019-12-17

Family

ID=58228762

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510512839.8A Active CN106470251B (en) 2015-08-19 2015-08-19 Domain name resolution method and virtual DNS authoritative server

Country Status (1)

Country Link
CN (1) CN106470251B (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107689987A (en) * 2017-08-11 2018-02-13 东软集团股份有限公司 Virtual network service process for exposing and device
WO2019028683A1 (en) * 2017-08-08 2019-02-14 深圳前海达闼云端智能科技有限公司 Method and system for acquiring and collecting client local dns server
CN110392123A (en) * 2018-04-23 2019-10-29 阿里巴巴集团控股有限公司 The methods, devices and systems of detection outlet IP address
CN111092966A (en) * 2019-12-30 2020-05-01 中国联合网络通信集团有限公司 Domain name system, domain name access method and device
CN111726428A (en) * 2020-06-12 2020-09-29 网宿科技股份有限公司 Method, device, equipment and storage medium for selecting authoritative server
CN112769967A (en) * 2019-10-21 2021-05-07 阿里巴巴集团控股有限公司 Domain name resolution processing method and device and electronic equipment
CN113301176A (en) * 2020-11-12 2021-08-24 阿里巴巴集团控股有限公司 Domain name resolution method and device for content distribution network, electronic equipment and medium
CN113301001A (en) * 2020-04-07 2021-08-24 阿里巴巴集团控股有限公司 Attacker determination method, device, computing equipment and medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101841575A (en) * 2010-04-30 2010-09-22 中国科学院计算机网络信息中心 Domain name resolution usability evaluation method, server and system
CN101984637A (en) * 2010-11-02 2011-03-09 中兴通讯股份有限公司 Content distribution implementation method and system
CN103957285A (en) * 2014-04-18 2014-07-30 上海聚流软件科技有限公司 Method and system for providing root domain name analysis services
US20140304412A1 (en) * 2013-04-06 2014-10-09 Citrix Systems, Inc. Systems and methods for gslb preferred backup list
CN104184775A (en) * 2013-05-27 2014-12-03 电子科技大学 CDN-based domain name parse service model

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101841575A (en) * 2010-04-30 2010-09-22 中国科学院计算机网络信息中心 Domain name resolution usability evaluation method, server and system
CN101984637A (en) * 2010-11-02 2011-03-09 中兴通讯股份有限公司 Content distribution implementation method and system
US20140304412A1 (en) * 2013-04-06 2014-10-09 Citrix Systems, Inc. Systems and methods for gslb preferred backup list
CN104184775A (en) * 2013-05-27 2014-12-03 电子科技大学 CDN-based domain name parse service model
CN103957285A (en) * 2014-04-18 2014-07-30 上海聚流软件科技有限公司 Method and system for providing root domain name analysis services

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108702397B (en) * 2017-08-08 2021-07-06 达闼机器人有限公司 Method and system for acquiring and collecting local DNS (Domain name Server) server of client
WO2019028683A1 (en) * 2017-08-08 2019-02-14 深圳前海达闼云端智能科技有限公司 Method and system for acquiring and collecting client local dns server
CN107689987A (en) * 2017-08-11 2018-02-13 东软集团股份有限公司 Virtual network service process for exposing and device
CN107689987B (en) * 2017-08-11 2021-01-08 东软集团股份有限公司 Virtual network service exposure method and device
CN110392123A (en) * 2018-04-23 2019-10-29 阿里巴巴集团控股有限公司 The methods, devices and systems of detection outlet IP address
CN112769967B (en) * 2019-10-21 2023-06-27 阿里巴巴集团控股有限公司 Domain name resolution processing method and device and electronic equipment
CN112769967A (en) * 2019-10-21 2021-05-07 阿里巴巴集团控股有限公司 Domain name resolution processing method and device and electronic equipment
CN111092966A (en) * 2019-12-30 2020-05-01 中国联合网络通信集团有限公司 Domain name system, domain name access method and device
CN111092966B (en) * 2019-12-30 2022-04-26 中国联合网络通信集团有限公司 Domain name system, domain name access method and device
CN113301001A (en) * 2020-04-07 2021-08-24 阿里巴巴集团控股有限公司 Attacker determination method, device, computing equipment and medium
CN113301001B (en) * 2020-04-07 2023-05-23 阿里巴巴集团控股有限公司 Attacker determination method, attacker determination device, computing equipment and attacker determination medium
CN111726428A (en) * 2020-06-12 2020-09-29 网宿科技股份有限公司 Method, device, equipment and storage medium for selecting authoritative server
CN111726428B (en) * 2020-06-12 2023-09-22 网宿科技股份有限公司 Authoritative server selection method, device, equipment and storage medium
CN113301176A (en) * 2020-11-12 2021-08-24 阿里巴巴集团控股有限公司 Domain name resolution method and device for content distribution network, electronic equipment and medium

Also Published As

Publication number Publication date
CN106470251B (en) 2019-12-17

Similar Documents

Publication Publication Date Title
CN106470251A (en) Domain name analytic method and virtual DNS authority server
US10374955B2 (en) Managing network computing components utilizing request routing
US8706906B2 (en) Multipath routing process
US8583801B2 (en) DNS outage avoidance method for recursive DNS servers
WO2021120969A1 (en) Domain name resolution method, domain name resolution server, and terminal device
EP2769307B1 (en) Answer augmentation system for authoritative dns servers
CN103338279B (en) Based on optimization sequencing method and the system of domain name mapping
EP2787742B1 (en) Method and system for transmitting network video
US20130080575A1 (en) Distributing transmission of requests across multiple ip addresses of a proxy server in a cloud-based proxy service
RU2464722C2 (en) Method, device and system for distribution of messages
US9276901B2 (en) Method, system, and apparatus for transitioning from IPv4 to IPv6
CN103095676A (en) Filtrating system and filtrating method
US20120311185A1 (en) Data transmission based on address translation
EP2633667A2 (en) System and method for on the fly protocol conversion in obtaining policy enforcement information
WO2015085850A1 (en) Application identification method and device
CN103780654A (en) Business request processing method, user terminal, business router and network system
CN104079683B (en) A kind of authoritative domain name server directly in response to domain name analytic method and system
US9467416B2 (en) Methods and systems for dynamic domain name system (DDNS)
WO2017161965A1 (en) Method, device, and system for dynamic domain name system (dns) redirection
WO2018214853A1 (en) Method, apparatus, medium and device for reducing length of dns message
CN104144123A (en) Method and system for having access to internet and routing type gateway device
CN106464745A (en) Dns server, client and data synchronization method
EP4035336A1 (en) System and method for improving network performance when using secure dns access schemes
CN108243265A (en) A kind of dns resolution processing method and processing device
CN103795581A (en) Address processing method and address processing device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20210510

Address after: 101407 room 322, building 1, yard 3, xingkenan 2nd Street, Yanqi Economic Development Zone, Huairou District, Beijing

Patentee after: INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER

Address before: 101400 D9, 1st floor, 88 Yangyan Road, Yanqi Economic Development Zone, Huairou District, Beijing

Patentee before: INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER

Patentee before: KNET Co.,Ltd.