CN106470251A - Domain name analytic method and virtual DNS authority server - Google Patents
Domain name analytic method and virtual DNS authority server Download PDFInfo
- Publication number
- CN106470251A CN106470251A CN201510512839.8A CN201510512839A CN106470251A CN 106470251 A CN106470251 A CN 106470251A CN 201510512839 A CN201510512839 A CN 201510512839A CN 106470251 A CN106470251 A CN 106470251A
- Authority
- CN
- China
- Prior art keywords
- server
- domain name
- response message
- address
- virtual dns
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention provides a kind of domain name analytic method and virtual DNS authority server.Domain name analytic method of the present invention, including:Virtual Domain Name system DNS authority server receives the first domain name mapping request that recursion server sends, and wherein, comprises the domain name of needs parsing in the first domain name mapping request;Whether virtual DNS authority server has the network protocol IP address of domain name according to the first domain name mapping requesting query in caching;Virtual DNS authority server sends the first response message according to Query Result to recursion server, comprises the IP address of domain name in the first response message.The present invention can improve the performance of domain name mapping.
Description
Technical field
The present invention relates to computer technology, more particularly, to a kind of domain name analytic method and virtual DNS authority clothes
Business device.
Background technology
When client needs to access network, in a browser after inputs domain name, need first domain name to be entered
Row parsing, parses this domain name corresponding procotol (Internet Protocol;Referred to as:IP) address
Afterwards, just enable the access to the server corresponding to this IP address for the client.
In prior art, domain name system (Domain Name System;Referred to as:DNS) include root
Server, DNS authority server, recursion server and local dns server.Wherein, DNS
Authoritative server includes TLD authoritative server, for example, the domain such as .com .cn authoritative server,
Also include the domain such as baidu.com, sina.com authoritative server.Domain name resolution process is:Client is sent out
Playing a domain name mapping request, comprising domain name in this analysis request, if there is no institute in client-cache
Inquire the corresponding IP address of this domain name, client can be initiated DNS to local dns server and look into
Ask request.After local dns server receives request, whether first check in the caching of oneself
Inquiry the corresponding IP address of domain name, if having, local dns server can directly in response to client,
If not having in caching, local dns server can initiate recursive query request to recursion server,
Recursion server checks the content whether inquired about in the caching of oneself, if having, directly in response to this
Ground dns server, if not having in caching, initiating inquiry from recursion server to root server please
Ask, root server sends the ground of this domain name corresponding TLD authoritative server to recursion server
Location, recursion server initiates inquiry request to this TLD authoritative server, until authoritative server
Return the corresponding IP address of this domain name to recursion server, this IP address is fed back to by recursion server
Client, completes the process of a domain name mapping.
But, in above-mentioned domain name resolution process, the query flows of DNS authority server are larger, domain name
Repeat request for information also more, so the burden load of DNS authority server is larger, domain name mapping
The required time can be long, the performance of impact domain name mapping.
Content of the invention
The present invention provides a kind of domain name analytic method and virtual DNS authority server, to improve domain name mapping
Performance.
The present invention provides a kind of domain name analytic method, including:
Virtual DNS authority server receives the first domain name mapping request that recursion server sends, wherein,
The domain name of needs parsing is comprised in described first domain name mapping request;
Virtual DNS authority server according to described first domain name mapping requesting query caching in whether
State the network protocol IP address of domain name;
Virtual DNS authority server sends the first response according to Query Result to described recursion server and disappears
Breath, comprises the IP address of domain name in described first response message.
Further, described virtual DNS authority server is sent out to described recursion server according to Query Result
Send the first response message, including:
If described virtual DNS authority server lookup has in described virtual DNS authority server buffer
The IP address of domain name, then described virtual DNS authority server is to described recursion server transmission institute
State the first response message;
If described virtual DNS authority server lookup does not have in described virtual DNS authority server buffer
There is the IP address of domain name, then described virtual DNS authority server judges that user's authoritative server is
No normal work, sends described first response message according to judged result to described recursion server.
Further, described virtual DNS authority server judges the whether normal work of user's authoritative server
Make, described first response message is sent to described recursion server according to judged result, including:
If described virtual DNS authority server judges described user's authoritative server energy normal work,:
Purpose IP address in described first domain name mapping request are repaiied by described virtual DNS authority server
It is changed to the IP address of described user's authoritative server, form the second domain name mapping request;
Described second domain name mapping request is sent to described user's power by described virtual DNS authority server
Prestige server, and receive the second response message that described user's authoritative server sends, wherein, described the
The IP address of domain name is comprised in two response messages;
Described user authority in described second response message is serviced by described virtual DNS authority server
The IP address of device is revised as the IP address of described virtual DNS authority server, and described second is responded
Authoritative flag bit AA in message is set to 1, forms described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
Further, described virtual DNS authority server judges the whether normal work of user's authoritative server
Make, described first response message is sent to described recursion server according to judged result, including:
If described virtual DNS authority server judges described user's authoritative server cisco unity malfunction,
Then:
Purpose IP address during first domain name mapping is asked by described virtual DNS authority server are revised as
The IP address of Disaster Preparation Center, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described use
The backup of family authoritative server;
Described virtual DNS authority server by described 3rd domain name mapping request be sent to described calamity standby in
The heart, and receive the 3rd response message that described Disaster Preparation Center sends, wherein, in described 3rd response message
Comprise the IP address of domain name;
Described virtual DNS authority server is by the IP of the described Disaster Preparation Center in described 3rd response message
The IP address of described virtual DNS authority server is revised as in address, and by described 3rd response message
Authoritative flag bit AA be set to 1, form described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
The present invention also provides a kind of virtual DNS authority server, including:
Receiver module, for receiving the first domain name mapping request of recursion server transmission, wherein, described
The domain name of needs parsing is comprised in first domain name mapping request;
Whether enquiry module, for having domain name according in described first domain name mapping requesting query caching
Network protocol IP address;
Sending module, for sending the first response message, institute according to Query Result to described recursion server
State the IP address comprising domain name in the first response message.
Further, if described enquiry module inquires the IP address having domain name in caching, send
Module is used for sending described first response message to described recursion server;
If described enquiry module inquires the IP address not having domain name in caching, described virtual DNS
Authoritative server also includes judge module, and just whether described judge module be used for judging user's authoritative server
Often work, described sending module is additionally operable to judged result according to described judge module to described recursion service
Device sends described first response message.
Further, if described judge module judges described user's authoritative server energy normal work, institute
State sending module also to include:
First modification unit, for being revised as institute by the purpose IP address in described first domain name mapping request
State the IP address of user's authoritative server, form the second domain name mapping request;
First transmission receiving unit, for being sent to described user authority by described second domain name mapping request
Server, and receive the second response message that described user's authoritative server sends, wherein, described second
The IP address of domain name is comprised in response message;
Second modification unit, for by the IP of the described user's authoritative server in described second response message
The IP address of described virtual DNS authority server is revised as in address, and by described second response message
Authoritative flag bit AA be set to 1, form described first response message;
First transmitting element, for sending described first response message to described recursion server.
Further, if described judge module judges described user's authoritative server cisco unity malfunction,
Described sending module also includes:
3rd modification unit, for by the purpose IP address in the first domain name mapping request be revised as calamity standby in
The IP address of the heart, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described user authority
The backup of server;
Second transmission receiving unit, for described 3rd domain name mapping request is sent to described Disaster Preparation Center,
And receive the 3rd response message that described Disaster Preparation Center sends, wherein, comprise in described 3rd response message
The IP address of domain name;
4th modification unit, for repairing the IP address of the described Disaster Preparation Center in described 3rd response message
It is changed to the IP address of described virtual DNS authority server, and by the authority in described 3rd response message
Flag AA is set to 1, forms described first response message;
Second transmitting element, for sending described first response message to described recursion server.
Domain name analytic method and virtual DNS authority server that the present invention provides, by virtual Domain Name system
DNS authority server receives the first domain name mapping request that recursion server sends, wherein, described first
The domain name of needs parsing is comprised, virtual DNS authority server is according to the first domain name solution in domain name mapping request
Network protocol IP address corresponding with domain name, virtual DNS authority clothes whether are had in analysis requesting query caching
Business device sends the first response message according to Query Result to recursion server, comprises IP in the first response message
Address, receives the first domain name mapping request of recursion server by virtual DNS authority server, and root
With the presence or absence of the corresponding IP address of domain name with needs parsing, send first according in caching to recursion server
Response message, thus, virtual DNS authority server has shared the query flows of DNS authority server,
Reduce it and bear load, shorten the time of domain name mapping, improve domain name mapping performance.
Brief description
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to reality
The accompanying drawing applying required use in example or description of the prior art be briefly described it should be apparent that, under
Accompanying drawing in the description of face is some embodiments of the present invention, for those of ordinary skill in the art,
On the premise of not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
Fig. 1 is the flow chart of domain name analytic method embodiment one of the present invention;
Fig. 2 is the flow chart of domain name analytic method embodiment two of the present invention;
Fig. 3 is a kind of flow chart of implementation of S202 in domain name analytic method embodiment two of the present invention;
Fig. 4 is the flow process of another kind of implementation of S202 in domain name analytic method embodiment two of the present invention
Figure;
Fig. 5 is the structural representation of the present invention virtual DNS authority server example one;
Fig. 6 is the structural representation of the present invention virtual DNS authority server example two;
Fig. 7 is a kind of implementation of sending module in the present invention virtual DNS authority server example two
Structural representation;
Fig. 8 is another kind of realization side of sending module in the present invention virtual DNS authority server example two
The structural representation of formula.
Specific embodiment
Purpose, technical scheme and advantage for making the embodiment of the present invention are clearer, below in conjunction with this
Accompanying drawing in bright embodiment, is clearly and completely described to the technical scheme in the embodiment of the present invention,
Obviously, described embodiment is a part of embodiment of the present invention, rather than whole embodiments.It is based on
Embodiment in the present invention, those of ordinary skill in the art are obtained under the premise of not making creative work
The every other embodiment obtaining, broadly falls into the scope of protection of the invention.
Fig. 1 is the flow chart of domain name analytic method embodiment one of the present invention.As shown in figure 1, the present embodiment
The domain name analytic method providing includes:
S101:Virtual DNS authority server receives the first domain name mapping request that recursion server sends.
Wherein, comprise the domain name of needs parsing in the first domain name mapping request.
Specifically, virtual DNS authority server be arranged on recursion server and user's authoritative server it
Between.User's authoritative server refer to TLD server subordinate baidu.com, sina.com or
The domain such as AAA.com authoritative server, what user here referred to is exactly the application such as baidu, sina or AAA
Carry out company or the mechanism of domain name mapping using virtual DNS authority server.The domain name solution that client sends
After analysis request reaches recursion server, recursion server can send the first domain name mapping and ask to virtual
DNS authority server.First domain name mapping request includes needs parse domain name, here need solution
The domain name of analysis represents that client initiates the domain name accessing.Client can be computer and mobile phone etc..First domain
Can also include in name analysis request:Source IP address is IP address and the purpose IP address of recursion server
The i.e. IP address of virtual DNS authority server.
It should be noted that user is before the domain name analytic method providing using the present embodiment, need to accuse
Know that the IP address of user's authoritative server is revised as the IP of virtual DNS authority server by Domain Name Registrar
Address, makes virtual DNS authority server be located in DNS framework.
S102:Whether virtual DNS authority server has domain in caching according to the first domain name mapping requesting query
The IP address of name.
Specifically, whether virtual DNS authority server is inquired about to have in its caching and is asked with the first domain name mapping
Seek the corresponding IP address of domain name that the needs including parse.Optionally, if client is frequently initiated to wrap
Domain name mapping request containing certain domain name, then may be stored with the caching of virtual DNS authority server
IP address corresponding with this domain name.
S103:Virtual DNS authority server sends the first response according to Query Result to recursion server and disappears
Breath, comprises the IP address of domain name in the first response message.
Specifically, virtual DNS authority server sends the according to different Query Results to recursion server
One response message.Include corresponding with the domain name comprising in the first domain name mapping request in first response message
IP address.Can also include in first response message:Destination address is IP address and the source of recursion server
Address is the IP address of virtual DNS authority server.
First response message is sent to recursion server, recursion server pair by virtual DNS authority server
It is sent to local dns server after first response message Reseal.Local dns server is more again
It is sent to client after encapsulation, complete a domain name mapping.
The domain name analytic method that the present embodiment provides, is received by virtual Domain Name system DNS authority server
The first domain name mapping request that recursion server sends, wherein, comprises needs in the first domain name mapping request
The domain name of parsing, whether virtual DNS authority server has in being cached according to the first domain name mapping requesting query
The IP address of domain name, virtual DNS authority server sends first according to Query Result to recursion server
Response message, comprises the IP address of domain name in the first response message, by virtual DNS authority server
Receive recursion server first domain name mapping request, and according to caching in the presence or absence of and need parsing
The corresponding IP address of domain name, sends the first response message to recursion server, thus, virtual DNS power
Prestige server has shared the query flows of user's authoritative server, reduces the burden of user's authoritative server
Load, shortens the time of domain name mapping, improves domain name mapping performance.
Fig. 2 is the flow chart of domain name analytic method embodiment two of the present invention.As shown in Fig. 2 the present embodiment
On the basis of above-described embodiment one, S103 specifically includes the domain name analytic method providing:
S201:If virtual DNS authority server lookup has domain in virtual DNS authority server buffer
The IP address of name, then virtual DNS authority server is to recursion server transmission the first response message.
Specifically, if there being the IP address of domain name in the caching of virtual DNS authority server, just will delay
The IP address deposited is encapsulated in the first response message, is sent to recursion server.
S202:If virtual DNS authority server lookup does not have in virtual DNS authority server buffer
The IP address of domain name, then virtual DNS authority server judge user's authoritative server whether normal work,
First response message is sent to recursion server according to judged result.
Specifically, without the IP address of domain name in the caching of virtual DNS authority server, then empty
Intending DNS authority server needs to send domain name analysis request to user's authoritative server.But can there is user
The situation that authoritative server breaks down, if user's authoritative server breaks down, it can not be to void
Intend the domain name mapping request that DNS authority server sends to be responded, now it is necessary to virtual DNS
Authoritative server judges user's authoritative server whether normal work, and according to judged result to recursion service
Device sends the first response message.
With certain frequency, virtual DNS authority server can detect whether user's authoritative server is just in
Often work.For example, virtual DNS authority server can judge to use by way of sending probe message
Whether family authoritative server is in normal work, can comprise to detect domain name in probe message.If user
Authoritative server can normally parse the detection domain name in probe message and correctly feed back to virtual DNS power
Then it is assumed that user's authoritative server is in normal work if prestige server, otherwise it is assumed that user is authoritative
Server has been likely to occur fault, for example, power-off or machine of delaying etc..Certainly, virtual DNS authority server
Can also judge whether user's authoritative server is in normal work by other means, the present embodiment is not
As limit.
The domain name analytic method that the present embodiment provides, if virtual DNS authority server lookup is to virtual DNS
There is the IP address of domain name, then virtual DNS authority server is to recursion server in authoritative server caching
Send the first response message, if virtual DNS authority server lookup is delayed to virtual DNS authority server
There is no the IP address of domain name, then whether virtual DNS authority server judges user's authoritative server in depositing
Normal work, sends the first response message according to judged result to recursion server, thus, virtual DNS
Authoritative server has shared the query flows of user's authoritative server, reduces the negative of user's authoritative server
Support lotus, shorten the time of domain name mapping, improve domain name mapping performance.
Judge whether user's authoritative server is in normal operating conditions according to virtual DNS authority server
Judged result difference, in above-described embodiment two, S202 has following two implementations:
Fig. 3 is a kind of flow chart of implementation of S202 in domain name analytic method embodiment two of the present invention.
If as shown in figure 3, for virtual DNS authority server, this implementation judges that user's authoritative server can be just
When often working, including:
S301:Purpose IP address during first domain name mapping is asked by virtual DNS authority server are changed
For the IP address of user's authoritative server, form the second domain name mapping request.
Wherein, comprise the domain name of needs parsing in the second domain name mapping request.
S302:Second domain name mapping request is sent to user's authority's service by virtual DNS authority server
Device, and the second response message that receive user authoritative server sends.
Wherein, comprise the IP address of domain name in the second response message.
S303:Virtual DNS authority server is by the IP of the user's authoritative server in the second response message
The IP address of virtual DNS authority server is revised as in address, and the authority in the second response message is marked
Will position AA is set to 1, forms the first response message.
Specifically, the authoritative flag bit AA in the second response message can be set to 1, to represent first
Response message is authoritative response.The IP address of user's authoritative server is revised as virtual DNS authority clothes
The IP address of business device can to client hidden user's authoritative server, it is to avoid user's authoritative server is subject to
Attack to client.
It is understood that the authoritative flag bit in the first response message in embodiment one and the present embodiment
AA is 1, with represent virtual DNS authority server response for authoritative response.
S304:Virtual DNS authority server sends the first response message to recursion server.
Optionally, before S302, virtual DNS authority server can also be to user's authoritative server
Circuit be analyzed.
Specifically, user's authoritative server can have much individual, and the access load of each is different,
There may exist the unbalanced situation of load, now, virtual DNS authority server is different from multiple to it
User's authoritative server between circuit carry out intelligently parsing, can be by user's authoritative server
Circuit carries out statistics to carry out intelligently parsing, less to judge the load on which bar circuit, thus, by
Two domain name mapping requests are sent to this circuit corresponding user authoritative server by this circuit, realize load
Purpose in a balanced way, improves the speed of domain name mapping further.Wherein, have in virtual DNS authority server
Different circuit IP outlet its different circuits between user's authoritative server corresponding.
In this implementation, the IP address of user's authoritative server is changed by virtual DNS authority server
IP address for virtual DNS authority server can be realized to client hidden user's authoritative server,
Compared to the DNS being not provided with virtual DNS authority server, client can not obtain user's authority's service
The address of device, thus, it is to avoid user authoritative server is attacked by client, further increases
The performance of domain name mapping.
Fig. 4 is the flow chart of S202 another kind implementation in domain name analytic method embodiment two of the present invention.
If as shown in figure 4, for virtual DNS authority server, this implementation judges that user's authoritative server can not
During normal work, including:
S401:Purpose IP address during first domain name mapping is asked by virtual DNS authority server are changed
For the IP address of Disaster Preparation Center, form the 3rd domain name mapping request.
Wherein, Disaster Preparation Center is the backup of user's authoritative server.
Whether it can periodically be inquired about by Disaster Preparation Center consistent with the data in user's authoritative server, if not
Unanimously, then carry out data syn-chronization, to guarantee the data in the data of Disaster Preparation Center and user's authoritative server
Unanimously.For example, it is possible to be inquired about in itself and user's authoritative server by way of regular initiation inquiry request
Data whether consistent.
S402:3rd domain name mapping request is sent to Disaster Preparation Center by virtual DNS authority server, and connects
Receive the 3rd response message that Disaster Preparation Center sends.
Wherein, comprise the IP address of domain name in the 3rd response message.
S403:The IP address of the Disaster Preparation Center in the 3rd response message is repaiied by virtual DNS authority server
It is changed to the IP address of virtual DNS authority server, and by the authoritative flag bit AA in the 3rd response message
It is set to 1, form the first response message.
Specifically, the authoritative flag bit AA in the 3rd response message can be set to 1, to represent first
Response message is authoritative response.
S404:Virtual DNS authority server sends the first response message to recursion server.
This implementation in user's authoritative server cisco unity malfunction, virtual DNS authority server to
Disaster Preparation Center sends analysis request, so that the fault unaware to user's authoritative server for the client, protects
Demonstrate,prove the stability of domain name mapping.
It should be noted that in above-mentioned any embodiment, user can be to virtual DNS authority server
Caching be configured, for example, it is possible to the data cached renewal preserving data in duration and caching of setting
Frequency.
Fig. 5 is the structural representation of the present invention virtual DNS authority server example one.As shown in figure 5,
The virtual DNS authority server that the present embodiment provides includes:
Receiver module 501, for receiving the first domain name mapping request of recursion server transmission.
Wherein, comprise the domain name of needs parsing in the first domain name mapping request.
Enquiry module 502, for according to the IP whether having domain name in the first domain name mapping requesting query caching
Address.
Sending module 503, for the first response message is sent to recursion server according to Query Result, the
The IP address of domain name is comprised in one response message.
The virtual DNS authority server of the present embodiment can correspond to embodiment of the method shown in execution Fig. 1.Its
Realize principle identical, here is omitted.
The virtual DNS authority server that the present embodiment provides, by arranging receiver module, passs for receiving
Return the first domain name mapping request that server sends, wherein, comprise to need to solve in the first domain name mapping request
The domain name of analysis.Whether enquiry module, for having domain name according in the first domain name mapping requesting query caching
IP address.Sending module, for the first response message is sent to recursion server according to Query Result, the
The IP address of domain name is comprised in one response message.Recursion service is received by virtual DNS authority server
First domain name mapping request of device, and according to the corresponding IP of domain name that whether there is in caching and needs parse
Address, sending module sends the first response message to recursion server, thus, virtual DNS authority service
The query flows of user's authoritative server shared by device, reduce the burden load of user's authoritative server,
Shorten the time of domain name mapping, improve domain name mapping performance.
Fig. 6 is the structural representation of the present invention virtual DNS authority server example two.As shown in fig. 6,
The present embodiment provide virtual DNS authority server on the basis of above-described embodiment, if enquiry module
502 inquire the IP address having domain name in caching, then sending module 503 is used for sending to recursion server
First response message.If enquiry module 502 inquires the IP address not having domain name in caching, virtual
DNS authority server also includes judge module 601, for judging the whether normal work of user's authoritative server
Make, sending module 503 is additionally operable to judged result according to judge module 601 and sends the to recursion server
One response message.
The virtual DNS authority server of the present embodiment can correspond to embodiment of the method shown in execution Fig. 2.Its
Realize principle identical, here is omitted.
The virtual DNS authority server that the present embodiment provides, if enquiry module inquires virtual DNS power
There is the IP address of domain name, then sending module is used for sending the first sound to recursion server in prestige server buffer
Answer message, if enquiry module inquires the IP address not having domain name in virtual DNS authority server buffer,
Whether then virtual DNS authority server also includes judge module, normal for judging user's authoritative server
Work, the judged result that sending module is additionally operable to according to judge module sends the first response to recursion server
Message, thus, virtual DNS authority server has shared the query flows of user's authoritative server, reduces
The burden load of user's authoritative server, shortens the time of domain name mapping, improves domain name mapping
Energy.
Fig. 7 is a kind of implementation of sending module in the present invention virtual DNS authority server example two
Structural representation.If as shown in fig. 7, judge module judges user's authoritative server energy normal work,
Then in above-described embodiment two, sending module also includes:
First modification unit 7001, for being revised as using by the purpose IP address in the first domain name mapping request
The IP address of family authoritative server, forms the second domain name mapping request.
First transmission receiving unit 7002, for being sent to user's authority's service by the second domain name mapping request
Device, and the second response message that receive user authoritative server sends, wherein, wrap in the second response message
IP address containing domain name.
Second modification unit 7003, for by the IP address of the user's authoritative server in the second response message
It is revised as the IP address of virtual DNS authority server, and by the authoritative flag bit in the second response message
AA is set to 1, forms the first response message.
First transmitting element 7004, for sending the first response message to recursion server.
This implementation can correspond to embodiment of the method shown in execution Fig. 3.It is identical, herein that it realizes principle
Repeat no more.
In this implementation, the IP address of user's authoritative server is revised as virtual by the second modification unit
The IP address of DNS authority server can be realized to client hidden user's authoritative server, compared to not
The DNS of virtual DNS authority server is set, and client can not obtain the address of user's authoritative server,
Thus, it is to avoid user authoritative server is attacked by client, further increases domain name mapping
Performance.
Fig. 8 is another kind of realization side of sending module in the present invention virtual DNS authority server example two
The structural representation of formula.If as shown in figure 8, judge module judges user's authoritative server energy normal work,
Then in above-described embodiment two, sending module also includes:
3rd modification unit 8001, for being revised as calamity by the purpose IP address in the first domain name mapping request
The IP address at standby center, forms the 3rd domain name mapping request, and wherein, Disaster Preparation Center is user's authority's service
The backup of device;
Second transmission receiving unit 8002, for the 3rd domain name mapping request is sent to Disaster Preparation Center, and
Receive the 3rd response message that Disaster Preparation Center sends, wherein, in the 3rd response message, comprise the IP ground of domain name
Location;
4th modification unit 8003, for being revised as the IP address of the Disaster Preparation Center in the 3rd response message
The IP address of virtual DNS authority server, and the authoritative flag bit AA in the 3rd response message is set
It is set to 1, form the first response message;
Second transmitting element 8004, for sending the first response message to recursion server.
This implementation can correspond to embodiment of the method shown in execution Fig. 4.It is identical, herein that it realizes principle
Repeat no more.
This implementation in user's authoritative server cisco unity malfunction, virtual DNS authority server to
Disaster Preparation Center sends analysis request, so that the fault unaware to user's authoritative server for the client, protects
Demonstrate,prove the stability of domain name mapping.
One of ordinary skill in the art will appreciate that:Realize all or part step of above-mentioned each method embodiment
Suddenly can be completed by the related hardware of programmed instruction.Aforesaid program can be stored in a computer can
Read in storage medium.This program upon execution, executes the step including above-mentioned each method embodiment;And
Aforesaid storage medium includes:ROM, RAM, magnetic disc or CD etc. are various can be with store program codes
Medium.
Finally it should be noted that:Various embodiments above is only in order to illustrating technical scheme rather than right
It limits;Although being described in detail to the present invention with reference to foregoing embodiments, this area common
Technical staff should be understood:It still can be modified to the technical scheme described in foregoing embodiments,
Or equivalent is carried out to wherein some or all of technical characteristic;And these modifications or replacement, and
Do not make the scope of the essence disengaging various embodiments of the present invention technical scheme of appropriate technical solution.
Claims (8)
1. a kind of domain name analytic method is it is characterised in that include:
The first domain name mapping that virtual Domain Name system DNS authority server receives recursion server transmission please
Ask, wherein, in described first domain name mapping request, comprise the domain name of needs parsing;
Virtual DNS authority server according to described first domain name mapping requesting query caching in whether
State the network protocol IP address of domain name;
Virtual DNS authority server sends the first response according to Query Result to described recursion server and disappears
Breath, comprises the IP address of domain name in described first response message.
2. method according to claim 1 is it is characterised in that described virtual DNS authority service
Device sends the first response message according to Query Result to described recursion server, including:
If described virtual DNS authority server lookup has in described virtual DNS authority server buffer
The IP address of domain name, then described virtual DNS authority server is to described recursion server transmission institute
State the first response message;
If described virtual DNS authority server lookup does not have in described virtual DNS authority server buffer
There is the IP address of domain name, then described virtual DNS authority server judges that user's authoritative server is
No normal work, sends described first response message according to judged result to described recursion server.
3. method according to claim 2 is it is characterised in that described virtual DNS authority service
Device judges user's authoritative server whether normal work, is sent to described recursion server according to judged result
Described first response message, including:
If described virtual DNS authority server judges described user's authoritative server energy normal work,:
Purpose IP address in described first domain name mapping request are repaiied by described virtual DNS authority server
It is changed to the IP address of described user's authoritative server, form the second domain name mapping request;
Described second domain name mapping request is sent to described user's power by described virtual DNS authority server
Prestige server, and receive the second response message that described user's authoritative server sends, wherein, described the
The IP address of domain name is comprised in two response messages;
Described user authority in described second response message is serviced by described virtual DNS authority server
The IP address of device is revised as the IP address of described virtual DNS authority server, and described second is responded
Authoritative flag bit AA in message is set to 1, forms described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
4. according to the method in claim 2 or 3 it is characterised in that described virtual DNS authority
Server judges user's authoritative server whether normal work, according to judged result to described recursion server
Send described first response message, including:
If described virtual DNS authority server judges described user's authoritative server cisco unity malfunction,
Then:
Purpose IP address during first domain name mapping is asked by described virtual DNS authority server are revised as
The IP address of Disaster Preparation Center, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described use
The backup of family authoritative server;
Described virtual DNS authority server by described 3rd domain name mapping request be sent to described calamity standby in
The heart, and receive the 3rd response message that described Disaster Preparation Center sends, wherein, in described 3rd response message
Comprise the IP address of domain name;
Described virtual DNS authority server is by the IP of the described Disaster Preparation Center in described 3rd response message
The IP address of described virtual DNS authority server is revised as in address, and by described 3rd response message
Authoritative flag bit AA be set to 1, form described first response message;
Described virtual DNS authority server sends described first response message to described recursion server.
5. a kind of virtual DNS authority server is it is characterised in that include:
Receiver module, for receiving the first domain name mapping request of recursion server transmission, wherein, described
The domain name of needs parsing is comprised in first domain name mapping request;
Whether enquiry module, for having domain name according in described first domain name mapping requesting query caching
Network protocol IP address;
Sending module, for sending the first response message, institute according to Query Result to described recursion server
State the IP address comprising domain name in the first response message.
If 6. virtual DNS authority server according to claim 5 is it is characterised in that described
Enquiry module inquires the IP address having domain name in caching, then sending module is used for described recurrence clothes
Business device sends described first response message;
If described enquiry module inquires the IP address not having domain name in caching, described virtual DNS
Authoritative server also includes judge module, and just whether described judge module be used for judging user's authoritative server
Often work, described sending module is additionally operable to judged result according to described judge module to described recursion service
Device sends described first response message.
If 7. virtual DNS authority server according to claim 6 is it is characterised in that described
Judge module judges described user's authoritative server energy normal work, then described sending module also includes:
First modification unit, for being revised as institute by the purpose IP address in described first domain name mapping request
State the IP address of user's authoritative server, form the second domain name mapping request;
First transmission receiving unit, for being sent to described user authority by described second domain name mapping request
Server, and receive the second response message that described user's authoritative server sends, wherein, described second
The IP address of domain name is comprised in response message;
Second modification unit, for by the IP of the described user's authoritative server in described second response message
The IP address of described virtual DNS authority server is revised as in address, and by described second response message
Authoritative flag bit AA be set to 1, form described first response message;
First transmitting element, for sending described first response message to described recursion server.
If 8. the virtual DNS authority server according to claim 6 or 7 it is characterised in that
Described judge module judges described user's authoritative server cisco unity malfunction, then described sending module also wraps
Include:
3rd modification unit, for by the purpose IP address in the first domain name mapping request be revised as calamity standby in
The IP address of the heart, forms the 3rd domain name mapping request, and wherein, described Disaster Preparation Center is described user authority
The backup of server;
Second transmission receiving unit, for described 3rd domain name mapping request is sent to described Disaster Preparation Center,
And receive the 3rd response message that described Disaster Preparation Center sends, wherein, comprise in described 3rd response message
The IP address of domain name;
4th modification unit, for repairing the IP address of the described Disaster Preparation Center in described 3rd response message
It is changed to the IP address of described virtual DNS authority server, and by the authority in described 3rd response message
Flag bit AA is set to 1, forms described first response message;
Second transmitting element, for sending described first response message to described recursion server.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510512839.8A CN106470251B (en) | 2015-08-19 | 2015-08-19 | Domain name resolution method and virtual DNS authoritative server |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510512839.8A CN106470251B (en) | 2015-08-19 | 2015-08-19 | Domain name resolution method and virtual DNS authoritative server |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106470251A true CN106470251A (en) | 2017-03-01 |
CN106470251B CN106470251B (en) | 2019-12-17 |
Family
ID=58228762
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510512839.8A Active CN106470251B (en) | 2015-08-19 | 2015-08-19 | Domain name resolution method and virtual DNS authoritative server |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106470251B (en) |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107689987A (en) * | 2017-08-11 | 2018-02-13 | 东软集团股份有限公司 | Virtual network service process for exposing and device |
WO2019028683A1 (en) * | 2017-08-08 | 2019-02-14 | 深圳前海达闼云端智能科技有限公司 | Method and system for acquiring and collecting client local dns server |
CN110392123A (en) * | 2018-04-23 | 2019-10-29 | 阿里巴巴集团控股有限公司 | The methods, devices and systems of detection outlet IP address |
CN111092966A (en) * | 2019-12-30 | 2020-05-01 | 中国联合网络通信集团有限公司 | Domain name system, domain name access method and device |
CN111726428A (en) * | 2020-06-12 | 2020-09-29 | 网宿科技股份有限公司 | Method, device, equipment and storage medium for selecting authoritative server |
CN112769967A (en) * | 2019-10-21 | 2021-05-07 | 阿里巴巴集团控股有限公司 | Domain name resolution processing method and device and electronic equipment |
CN113301176A (en) * | 2020-11-12 | 2021-08-24 | 阿里巴巴集团控股有限公司 | Domain name resolution method and device for content distribution network, electronic equipment and medium |
CN113301001A (en) * | 2020-04-07 | 2021-08-24 | 阿里巴巴集团控股有限公司 | Attacker determination method, device, computing equipment and medium |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101841575A (en) * | 2010-04-30 | 2010-09-22 | 中国科学院计算机网络信息中心 | Domain name resolution usability evaluation method, server and system |
CN101984637A (en) * | 2010-11-02 | 2011-03-09 | 中兴通讯股份有限公司 | Content distribution implementation method and system |
CN103957285A (en) * | 2014-04-18 | 2014-07-30 | 上海聚流软件科技有限公司 | Method and system for providing root domain name analysis services |
US20140304412A1 (en) * | 2013-04-06 | 2014-10-09 | Citrix Systems, Inc. | Systems and methods for gslb preferred backup list |
CN104184775A (en) * | 2013-05-27 | 2014-12-03 | 电子科技大学 | CDN-based domain name parse service model |
-
2015
- 2015-08-19 CN CN201510512839.8A patent/CN106470251B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101841575A (en) * | 2010-04-30 | 2010-09-22 | 中国科学院计算机网络信息中心 | Domain name resolution usability evaluation method, server and system |
CN101984637A (en) * | 2010-11-02 | 2011-03-09 | 中兴通讯股份有限公司 | Content distribution implementation method and system |
US20140304412A1 (en) * | 2013-04-06 | 2014-10-09 | Citrix Systems, Inc. | Systems and methods for gslb preferred backup list |
CN104184775A (en) * | 2013-05-27 | 2014-12-03 | 电子科技大学 | CDN-based domain name parse service model |
CN103957285A (en) * | 2014-04-18 | 2014-07-30 | 上海聚流软件科技有限公司 | Method and system for providing root domain name analysis services |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108702397B (en) * | 2017-08-08 | 2021-07-06 | 达闼机器人有限公司 | Method and system for acquiring and collecting local DNS (Domain name Server) server of client |
WO2019028683A1 (en) * | 2017-08-08 | 2019-02-14 | 深圳前海达闼云端智能科技有限公司 | Method and system for acquiring and collecting client local dns server |
CN107689987A (en) * | 2017-08-11 | 2018-02-13 | 东软集团股份有限公司 | Virtual network service process for exposing and device |
CN107689987B (en) * | 2017-08-11 | 2021-01-08 | 东软集团股份有限公司 | Virtual network service exposure method and device |
CN110392123A (en) * | 2018-04-23 | 2019-10-29 | 阿里巴巴集团控股有限公司 | The methods, devices and systems of detection outlet IP address |
CN112769967B (en) * | 2019-10-21 | 2023-06-27 | 阿里巴巴集团控股有限公司 | Domain name resolution processing method and device and electronic equipment |
CN112769967A (en) * | 2019-10-21 | 2021-05-07 | 阿里巴巴集团控股有限公司 | Domain name resolution processing method and device and electronic equipment |
CN111092966A (en) * | 2019-12-30 | 2020-05-01 | 中国联合网络通信集团有限公司 | Domain name system, domain name access method and device |
CN111092966B (en) * | 2019-12-30 | 2022-04-26 | 中国联合网络通信集团有限公司 | Domain name system, domain name access method and device |
CN113301001A (en) * | 2020-04-07 | 2021-08-24 | 阿里巴巴集团控股有限公司 | Attacker determination method, device, computing equipment and medium |
CN113301001B (en) * | 2020-04-07 | 2023-05-23 | 阿里巴巴集团控股有限公司 | Attacker determination method, attacker determination device, computing equipment and attacker determination medium |
CN111726428A (en) * | 2020-06-12 | 2020-09-29 | 网宿科技股份有限公司 | Method, device, equipment and storage medium for selecting authoritative server |
CN111726428B (en) * | 2020-06-12 | 2023-09-22 | 网宿科技股份有限公司 | Authoritative server selection method, device, equipment and storage medium |
CN113301176A (en) * | 2020-11-12 | 2021-08-24 | 阿里巴巴集团控股有限公司 | Domain name resolution method and device for content distribution network, electronic equipment and medium |
Also Published As
Publication number | Publication date |
---|---|
CN106470251B (en) | 2019-12-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106470251A (en) | Domain name analytic method and virtual DNS authority server | |
US10374955B2 (en) | Managing network computing components utilizing request routing | |
US8706906B2 (en) | Multipath routing process | |
US8583801B2 (en) | DNS outage avoidance method for recursive DNS servers | |
WO2021120969A1 (en) | Domain name resolution method, domain name resolution server, and terminal device | |
EP2769307B1 (en) | Answer augmentation system for authoritative dns servers | |
CN103338279B (en) | Based on optimization sequencing method and the system of domain name mapping | |
EP2787742B1 (en) | Method and system for transmitting network video | |
US20130080575A1 (en) | Distributing transmission of requests across multiple ip addresses of a proxy server in a cloud-based proxy service | |
RU2464722C2 (en) | Method, device and system for distribution of messages | |
US9276901B2 (en) | Method, system, and apparatus for transitioning from IPv4 to IPv6 | |
CN103095676A (en) | Filtrating system and filtrating method | |
US20120311185A1 (en) | Data transmission based on address translation | |
EP2633667A2 (en) | System and method for on the fly protocol conversion in obtaining policy enforcement information | |
WO2015085850A1 (en) | Application identification method and device | |
CN103780654A (en) | Business request processing method, user terminal, business router and network system | |
CN104079683B (en) | A kind of authoritative domain name server directly in response to domain name analytic method and system | |
US9467416B2 (en) | Methods and systems for dynamic domain name system (DDNS) | |
WO2017161965A1 (en) | Method, device, and system for dynamic domain name system (dns) redirection | |
WO2018214853A1 (en) | Method, apparatus, medium and device for reducing length of dns message | |
CN104144123A (en) | Method and system for having access to internet and routing type gateway device | |
CN106464745A (en) | Dns server, client and data synchronization method | |
EP4035336A1 (en) | System and method for improving network performance when using secure dns access schemes | |
CN108243265A (en) | A kind of dns resolution processing method and processing device | |
CN103795581A (en) | Address processing method and address processing device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210510 Address after: 101407 room 322, building 1, yard 3, xingkenan 2nd Street, Yanqi Economic Development Zone, Huairou District, Beijing Patentee after: INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER Address before: 101400 D9, 1st floor, 88 Yangyan Road, Yanqi Economic Development Zone, Huairou District, Beijing Patentee before: INTERNET DOMAIN NAME SYSTEM BEIJING ENGINEERING RESEARCH CENTER Patentee before: KNET Co.,Ltd. |