CN114500456A - DNS scheduling optimization method and device based on full-network sniffing and computing equipment - Google Patents

DNS scheduling optimization method and device based on full-network sniffing and computing equipment Download PDF

Info

Publication number
CN114500456A
CN114500456A CN202011146314.4A CN202011146314A CN114500456A CN 114500456 A CN114500456 A CN 114500456A CN 202011146314 A CN202011146314 A CN 202011146314A CN 114500456 A CN114500456 A CN 114500456A
Authority
CN
China
Prior art keywords
domain name
dns
resource
user
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202011146314.4A
Other languages
Chinese (zh)
Other versions
CN114500456B (en
Inventor
唐蓉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
China Mobile Group Hebei Co Ltd
Original Assignee
China Mobile Communications Group Co Ltd
China Mobile Group Hebei Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd, China Mobile Group Hebei Co Ltd filed Critical China Mobile Communications Group Co Ltd
Priority to CN202011146314.4A priority Critical patent/CN114500456B/en
Publication of CN114500456A publication Critical patent/CN114500456A/en
Application granted granted Critical
Publication of CN114500456B publication Critical patent/CN114500456B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The embodiment of the invention relates to the technical field of communication, and discloses a DNS scheduling optimization method, a device and computing equipment based on full-network sniffing, wherein the method comprises the following steps: receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user. Through the mode, the embodiment of the invention can realize DNS scheduling optimization, effectively improve the probability of resource access in the internet user network, and further improve the access perception.

Description

DNS scheduling optimization method and device based on full-network sniffing and computing equipment
Technical Field
The embodiment of the invention relates to the technical field of communication, in particular to a DNS scheduling optimization method and device based on full-network sniffing and a computing device.
Background
With the rapid development of services such as 4G and home broadband in recent years, increasing internet access perception of internet users becomes one of the important jobs of operators. The Domain Name System (DNS) is a System for converting an IP address and a Domain Name, and plays a major role in the internet, and is a cornerstone of the internet. DNS is required for almost all internet applications and is used by almost all internet users anytime and anywhere. A network Content Provider (ICP) often has multiple authoritative servers, a unified domain name request may reply to multiple authoritative resolution results, and the same user accesses different authoritative servers to perceive the difference, and generally, the access quality of the in-network resolution results is better than that of the out-network resolution results. At present, the means for improving the resource access in the Internet mainly comprises that an Internet Service Provider (ISP) strengthens the resource introduction and the ICP ensures the correct scheduling.
For ISP enhanced resource introduction, the main introduction methods are IDC content introduction, self-built CDN distribution and cache supplement introduction. By means of resource introduction, the resource occupation ratio in the ISP network can be fundamentally improved. However, IDC content introduction and CDN delivery resources are long-term work, a large amount of communication work with an ICP is required, which is difficult to implement in a short term, and a cache introduction manner has problems that a hit rate cannot be guaranteed, and it is not possible to ensure that one hundred percent of cache domain names are hit.
For the ICP to ensure correct scheduling, ICP resources generally correspond to a plurality of authorization servers, the authorization servers are distributed throughout a plurality of ISPs, and the ICP schedules the nearest resources of the user to the user according to conditions such as attribution of a user source address. However, it is not uncommon for each ICP to have its own scheduling rules, not controlled by an ISP, and to have resources within an ISP network, but to have scheduling errors in returning other network addresses to the Local domain name system (Local DNS, LDNS).
Disclosure of Invention
In view of the foregoing problems, embodiments of the present invention provide a DNS scheduling optimization method, device and computing device based on full-network sniffing, which overcome or at least partially solve the above problems.
According to an aspect of an embodiment of the present invention, a DNS scheduling optimization method based on full-network sniffing is provided, where the method includes: receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user.
In an optional manner, the DNS log at least includes a user IP, the request domain name, and an a-record resolution address, and before the query indicates that the request domain name does not match the repository accessed by the user, the method includes: establishing a user access resource library for different users to access the TOP domain name and the resolution address according to the user IP, the request domain name and the A record resolution address, wherein each resource record q is equal to<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis method is composed of an attribute pair domain name r (d) and an A record analysis result r (a), wherein K is a positive integer.
In an optional manner, the method further comprises: if the query result shows that the request domain name is not matched with the user access resource library, adding 1 to the query times of the request domain name, and if the single-day access times of the request domain name are accumulated to a preset threshold value, supplementing the request domain name to the user access resource library; and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name.
In an optional manner, the obtaining a domain name repository to be sniffed according to the user access repository includes: obtaining a plurality of domain names to be sniffed at the front of the rank according to the user access resource library, and constructing the domain name resource library; updating a plurality of domain names which are ranked at the front every first preset time; and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names.
In an optional manner, the deploying, according to the user access manner, a full-network sniffing probe for a domain name in the domain name repository to perform DNS dial testing and application quality dial testing to obtain an analysis result ranked ahead includes: starting sniffing DNS recursive service for the outgoing/semi-outgoing domain name in the domain name resource library to acquire a new resource record; deploying probes for multiple IP resource domain names in the domain name resource library, and performing dial testing analysis to select an optimal access result; for any domain name rK(d) Correspond toAll resource A records rKAnd (an), scoring by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, transmitting all IP resource records if the quality difference between the multiple IP resources existing in the domain name is within 20%, and transmitting the optimal IP resource record if the quality difference between the multiple IP resources is more than 20%, so as to obtain an analysis result ranked in the front.
In an optional manner, the starting of a sniffing DNS recursive service for an outbound/semi-outbound domain name in the domain name repository to obtain a new resource record includes: transmitting the outgoing/semi-outgoing domain name to a first class probe, configuring a mobile DNS of other provinces, testing the domain name resolution result of each province, and establishing an association library; and transmitting the outgoing/semi-outgoing domain name to a second type of probe, configuring a DNS same address field with an ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority analysis result, and establishing an association library.
In an optional manner, the performing dial-up test analysis on the multiple IP resource domain name deployment probes in the domain name resource library to select an optimal access result includes: classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IP; the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing; and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource.
According to another aspect of the embodiments of the present invention, there is provided a DNS scheduling optimization apparatus based on full network sniffing, the apparatus including: the DNS log module is used for receiving a domain name resolution request of a user and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; the DNS log analysis module is used for acquiring a domain name resource library to be sniffed according to the user access resource library if the request domain name is not matched with the user access resource library; the full-network sniffing module is used for deploying a full-network sniffing probe for the domain name in the domain name resource library according to a user access mode to carry out DNS dial test and application quality dial test, and acquiring an analysis result with a front rank; and the optimized domain name scheduling module is used for forming a DNS response message from the resolution result with the top rank, returning the DNS response message to the LDNS, and preemptively replying the DNS response message to the user.
According to another aspect of embodiments of the present invention, there is provided a computing device including: the system comprises a processor, a memory, a communication interface and a communication bus, wherein the processor, the memory and the communication interface complete mutual communication through the communication bus;
the memory is used for storing at least one executable instruction, and the executable instruction enables the processor to execute the steps of the DNS scheduling optimization method based on the full-network sniffing.
According to another aspect of the embodiments of the present invention, a computer storage medium is provided, where at least one executable instruction is stored in the storage medium, and the executable instruction causes the processor to execute the steps of the above DNS schedule optimization method based on full network sniffing.
Receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank, returning the DNS response message to the LDNS, and preemptively returning the DNS response message to the user, so that DNS scheduling optimization can be realized, the resource access probability in the internet user network is effectively improved, and the access perception is improved.
The foregoing description is only an overview of the technical solutions of the embodiments of the present invention, and the embodiments of the present invention can be implemented according to the content of the description in order to make the technical means of the embodiments of the present invention more clearly understood, and the detailed description of the present invention is provided below in order to make the foregoing and other objects, features, and advantages of the embodiments of the present invention more clearly understandable.
Drawings
Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiments. The drawings are only for purposes of illustrating the preferred embodiments and are not to be construed as limiting the invention. Also, like reference numerals are used to refer to like parts throughout the drawings. In the drawings:
FIG. 1 is a diagram illustrating a prior art generic domain name iterative query process;
fig. 2 is a schematic diagram illustrating DNS schedule optimization of a DNS schedule optimization method based on full-network sniffing according to an embodiment of the present invention;
fig. 3 is a flowchart illustrating a DNS scheduling optimization method based on full network sniffing according to an embodiment of the present invention;
fig. 4 is a schematic diagram illustrating a flow of a user resolution request of a DNS scheduling optimization method based on full-network sniffing according to an embodiment of the present invention;
fig. 5 is a schematic diagram illustrating a normal DNS resolution process of a DNS scheduling optimization method based on full network sniffing according to an embodiment of the present invention;
fig. 6 is a schematic diagram illustrating a further DNS resolution process of the DNS scheduling optimization method based on full-network sniffing according to the embodiment of the present invention;
fig. 7 is a schematic structural diagram illustrating a DNS scheduling optimization apparatus based on full-network sniffing according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a computing device provided in an embodiment of the present invention.
Detailed Description
Exemplary embodiments of the present invention will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the invention are shown in the drawings, it should be understood that the invention can be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art.
DNS is used as a translation system for IP addresses and domain names, and is required by almost all internet applications, and is used by almost all internet users anytime and anywhere. An ICP often builds a plurality of authority servers to manage different service domain names according to service types (fixed network, mobile phone), each authority includes a plurality of analysis results, different authority servers return analysis IP according to DNS address attribution, and different domain attributions of the analysis IP resources cause difference in user perception. The ordinary domain name iterative query process is shown in fig. 1, where a user resolves a domain name and first enters a LOCAL DNS query of an operator, and if there are records of the domain name and an IP in a DNS cache, the user is answered. If the domain name TTL is out of date and no record exists, the DNS queries step by step according to the data structure of the DNS, and the DNS returns a response to the user from the root node, the top level domain and the domain authorization server until the IP record of the queried domain name is obtained.
According to the embodiment of the invention, the dynamic relation library between domain name-authority-resource IP-quality is established in the network layer through the ISP, the quality between domain name resources of different service types is monitored and evaluated by combining with the DNS log analysis result, the reply user analysis request is optimized, the probability of better authorization for internet user access can be improved, and thus the access perception is improved. As shown in fig. 2, a user initiates a domain name resolution request, the user resolves a domain name first to a LOCAL DNS query of an operator, and the LOCAL DNS of the operator is composed of two functions of DNS caching and recursion. The user accesses the LOCAL DNS of the operator, firstly, the user enters the cache server for inquiry, if the cache server does not exist, the user can carry out recursive inquiry, and the cache can inquire different recursive servers according to the attribute of the domain name to obtain the domain name record. The DNS log unit copies the user request flow of the LDNS in a mirror image or light splitting mode, and obtains a user request domain name from the DNS message. Analyzing, screening and analyzing DNS logs of the whole network, counting IP domain names of the network, provinces and multi-resources according to user groups, analyzing domain name access trends, establishing a domain name resource library, and transmitting the domain name resource library to a probe through an interface for sniffing and dialing detection. Sniffing and dialing are classified into 2 types, one type of probes configures the mobile DNS address of other provinces or the LOCAL DNS same address field of the province, DNS dialing and detection and iterative recursion request are carried out, province/network-out domain names are detected, and a domain name-authority-resource relation library is established. If the network exit/province exists in the network/province address, the dial testing verifies the availability, if the available interface is sent to the domain name optimization scheduling system, and an instruction is formed and sent to the optimization recursion server. And the other probe is used for dial testing and multi-resolution IP resource domain names, comprises mobile phone dial testing and fixed network dial testing, evaluates each IP quality through quality log analysis, automatically optimizes and schedules the domain names if the quality difference of the IP qualities is less than 20%, all the domain names are issued to domain name optimization scheduling management, the interface is issued to an optimization recursive server and DNS cache, and polling is returned to the user.
Fig. 3 is a flowchart illustrating a DNS schedule optimization method based on full network sniffing according to an embodiment of the present invention. The DNS scheduling optimization method based on the whole network sniffing is applied to a network layer, and as shown in FIG. 3, the DNS scheduling optimization method based on the whole network sniffing comprises the following steps:
step S11: receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name.
In the embodiment of the invention, a domain name resolution request initiated by a user is received, and the domain name resolution of the user firstly arrives at the LOCAL DNS query of an operator. And copying the user request flow of the LDNS in a mirroring or light splitting mode, acquiring a DNS log, and obtaining a user request domain name from the DNS message. The ldns (local dns) is responsible for executing recursive queries and is provided by various operators.
The content format of the DNS log is 9 fields, and the specific format is as follows: the user IP | requests the domain name | resolution time | a record resolution address | resolution result code | requests the DNS record type | cname | AAAA record resolution address | service IP. Wherein the content of the first and second substances,
the user IP is the user IP for initiating the DNS request and requires to support IPv4 and IPv6 user addresses. Requesting a domain name is a user request domain name (value of Query field). The resolution time is the time when the DNS server replies to the user. The A records the resolution address as the IP address of the first A record in the answer packet of the user domain name resolution request in the Answers field. The analysis Result Code (RCODE) is identified by decimal number, wherein 0-NOERROR, 1-FORMERR, 2-SERVFAIL, 3-NXDOMAIN, 4-NOTAMP, 5-REFUSED, 6-15-reserved. The request DNS record type is a user request type, such as A, AAAA, CNAME and the like, and is marked by decimal numbers, wherein 1-A, 28-AAAA and 5-CNAME are included. The cname is all the cname domain names of the domain names requested by the user, and the cname is stored in sequence and separated by a semicolon. And in the response packet of which the AAAA record resolution address is the user domain name resolution request, the first AAAA record IP address in the Answers field. The service IP is an IP address of a DNS (domain name system) server for providing service, and a required province is recommended to be reported to a DNS cache actual address; no provinces that are not in demand may be reported, but this field must be reserved. Resolving latency is optional. The a (address) record is used to specify the IP address record corresponding to the domain name.
Step S12: and if the request domain name is not matched with the user access resource library, acquiring the domain name resource library to be sniffed according to the user access resource library.
In the embodiment of the present invention, before step S12, a user access resource pool for different users to access a TOP domain name and a resolution address is established according to the user IP, the request domain name, and the a record resolution address, where each resource record q is ═ q ═ c<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis system consists of an attribute pair domain name (domain) r (d) and an A record analysis result r (a), wherein K is a positive integer. Different users include mobile phone users and fixed network users.
When a user access resource library is established, firstly, an initial data set which is a direct relation set of a domain name and an analysis result is established, and the initial data set is expressed as follows: great-size check<r1(d),r1(a1),r1(a2),…r1(an)>,…,<rx(d),rx(a1),rx(a2),…rx(an') }. The size of the set Q is X, which is the number of entries corresponding to the domain name and the resolution record. Each domain name r (d) may correspond to a plurality of A record resolution results r (a), i.e., r (a1) … r (an). Indicating that there are one or more resolution results for each domain name, the resolution results indicate the IP address of the authority server of domain name r (d), e.g. www.baidu.com whose corresponding resolution IP may be 1.1.1.1, 2.2.2.2 or 3.3.3.3.
In the embodiment of the invention, if the query result shows that the request domain name is not matched with the user access resource library, the query times of the request domain name is added by 1, and if the single-day access times of the request domain name are accumulated to a preset threshold value, the request domain name is supplemented to the user access resource library; and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name. Specifically, each domain name record queries whether the user access repository is matched, and if the domain name exists, the query is performed. And if the domain name does not exist, adding 1 in the built-in query frequency counter, and supplementing the domain name to a user access resource library when the single-day access frequency is accumulated to a preset threshold value N.
In step S12, if the requested domain name is not matched with the user access resource pool, the domain name resource pool is constructed according to the multiple domain names to be sniffed that are obtained from the user access resource pool. All domain name sets form a set D ═ { D1, D2, …, dx }, and the set can be analyzed by referring to an LDNS (local DNS) log initially to obtain a domain name access TOPX list, wherein the number X of sets is determined by the performance of an optimization module and the actual production needs. Then, updating the domain names which are ranked at the front every first preset time; and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names. Namely, on the one hand, updating is performed according to the domain name TOPX list at intervals of a first preset time T1. On the other hand, timely supplement can be carried out according to the counting condition in the query module. The first preset time T1 may be set to be a long time so as not to affect the device performance due to frequent massive reconfiguration of the user access to the resource library.
Step S13: and performing DNS dial test and application quality dial test on the domain name deployment full-network sniffing probe in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front.
In the embodiment of the invention, the full-network sniffing probe is deployed, and corresponding probes are deployed according to various user access modes (home wide, 4G and private line) to test DNS and application quality. And according to the domain name resource library constructed in the step S12, transmitting the TOPX domain name therein to the probe through the interface for sniffing and dial-up detection.
In step S13, on one hand, a sniffing DNS recursive service is started for the outgoing/semi-outgoing domain name in the domain name repository, and a new resource record is acquired. Specifically, the outgoing/semi-outgoing domain name is transmitted to the first type probe, a mobile DNS of other provinces is configured, domain name resolution results of all provinces are tested, and an association library is established. Will go out of the netAnd transmitting the semi-outgoing domain name to a second type of probe, configuring a DNS same address field with an ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority resolution result, and establishing an association library. Performing iterative recursion on each domain name dn in the domain name set D ═ { D1, D2, …, dx } by taking the second preset time T2 as a period, thereby obtaining a new resource record s ═<rK(d),rK(a1),…rK(an’)>. The second preset time T2 is selected according to the performance of the device and the TTL life cycle of the domain name, and if the second preset time T2 is selected to be longer than the TTL of the domain name itself, the function will be disabled in a certain proportion, and if the second preset time T2 is selected to be too short, the performance will be consumed greatly. The domain name records of the DNS are managed by the authorization servers of the domain name, and usually, a plurality of authorization servers respond to different domain name IPs according to customized rules or DNS operator attributes, so that an association library is established to find the corresponding relation. The DNS name server stores data of partial areas in the domain name space, and if the DNS server is responsible for managing one or more areas, the DNS server is called as an authorized server of the areas.
And on the other hand, carrying out dial testing analysis on the multi-IP resource domain name deployment probe in the domain name resource library to select the optimal access result. Specifically, classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IPs; the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing; and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource. Each resource record qK=<rK(d),rK(a1),…rK(an’)>New record A of (2) has an analysis result of rK(a1),…,rK(an'). And after the outbound/semi-outbound domain name is compared with the authoritative association library, establishing a final domain name resource library, and simulating users to respectively perform quality dial testing according to the source IP access quantity. Selecting the optimal access result by dial test analysis, and recording each resource qK=<rK(d),rK(a1),…rK(an’)>New record A of (2) has an analysis result of rK(a1),…,rK(an'). Wherein, the out-of-network and semi-out-of-network (out province) are defined according to the operator attribution of the domain name resolution IP, if all the domain name resolution IPs are attributed to telecommunication and are communicated, the domain name resolution IP is defined as an out-of-network domain name; if the domain name resolution IP contains a mobile address and a telecom-Unicom address, the domain name resolution IP is defined as a semi-outbound domain name, and the multi-IP resource domain name means that a plurality of domain name resolution IPs exist, but the operator attribution may be all mobile, and may be telecom, Unicom or mobile.
Then, for any domain name rK(d) Corresponding all resource A records rK(an), scoring by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, and if the quality difference between multiple IP resources existing in the domain name is within 20%, transmitting all IP resource records (q)KRecord), if the quality difference between multiple IP resources is more than 20%, transmitting the optimal IP resource record (q)KRecord) to obtain the top-ranked analysis result.
Step S14: and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user.
In the embodiment of the present invention, the top-ranked parsing result r obtained in step S13 is usedK(a1) And forming a DNS response message, and returning a high-quality analysis result to the LDNS in a manner of answering so as to reply to the user.
A user analysis request flow corresponding to the embodiment of the present invention is shown in fig. 4, and includes:
step S20: and starting.
Step S21: and acquiring a user domain name resolution request.
Specifically, a domain name resolution request initiated by a user is received, and the domain name resolution of the user is firstly queried by a LOCAL DNS of an operator. And copying the user request flow of the LDNS in a mirroring or light splitting mode, acquiring a DNS log, and obtaining a user request domain name from the DNS message. The DNS log includes at least the user IP, the request domain name, and the a-record resolution address.
Step S22: and judging whether the matched user accesses the resource library. If so, go to step S24; if not, step S23 is performed.
According to the user IP, the request domain name and the A record resolution address, establishing a user access resource library of different user access TOP domain names and resolution addresses, wherein the user access resource library comprises a relation set Q (a) of the domain name and the resolution result<r1(d),r1(a1),r1(a2),…r1(an)>,…,<rx(d),rx(a1),rx(a2),…rx(an') }, each domain name r (d) may correspond to a plurality of A record resolution results r (a), i.e., r (a1) … r (an). It is determined in step S22 whether the requested domain name matches the user' S access to the repository. If the query does not match the user access repository, step S23 is performed. If the query shows that the requested domain name matches the user access repository, step S24 is performed.
Step S23: normal recursive resolution, the number of domain name visits plus 1.
Namely adding 1 to the query times of the requested domain name, and supplementing the requested domain name to a user access resource library if the single-day access times of the requested domain name are accumulated to a preset threshold value.
Step S24: and (4) recursively optimizing issued instructions.
And acquiring a plurality of domain names to be sniffed at the front according to the access of a user to the resource library, and constructing the domain name resource library for recursive optimization.
Step S25: and selecting the optimal analysis record from the analysis record set detected in the whole network by means of dial testing statistics and the like.
Specifically, a domain name deployment full-network sniffing probe in a domain name resource library is subjected to DNS dial test and application quality dial test, and an optimal analysis record is selected. The more detailed process is referred to the content of the previous step S13, and is not described herein again.
Step S26: preemptively answering user DNS requests.
And forming a DNS response message by the obtained optimal analysis record, returning a high-quality analysis result to the LDNS in a preemptive answer mode, and replying the high-quality analysis result to the user to realize preemptive answer to the DNS request of the user.
Step S27: and (6) ending.
According to the embodiment of the invention, DNS recursion optimization based on full-network sniffing is carried out on the network layer through the ISP, the full-network sniffing obtains all analysis results, the results outside the network are screened out, the quality screening comparison is dialed and measured to obtain the optimal analysis result, the optimal analysis result is preemptively replied to the user, DNS scheduling optimization is realized, the resource access probability in the internet user network can be effectively improved, and thus the access perception is improved.
For example, the domain name resolution request of the end user resolves the domain name into the IP address corresponding to the authoritative server through each ISP DNS system, thereby implementing routing forwarding of data between routers. The normal DNS resolution process can be simplified as shown in fig. 5, including:
step 101: the end user initiates a DNS query request to the ISP DNS requesting www.test.com the IP address.
Step 102: and the ISP DNS receives the query request, and obtains the IP resolved by the domain name authority DNS after a series of recursive queries.
Step 103: the ISP DNS returns the user www.test.com as Server A (IP: 1.1.1.1).
Step 104: the end user initiates a normal service request to server a (IP: 1.1.1.1).
Step 105: the server A (IP: 1.1.1.1) returns the normal service response message of the terminal user.
Still another DNS resolution process according to an embodiment of the present invention can be simplified as shown in fig. 6, including:
step 201: the end user initiates a DNS query request to an ISP DNS: the request obtains www.test.com the IP address.
Step 202: the ISP DNS receives the query request and transmits the user query request in a split or mirrored manner to the optimized recursive DNS.
Step 203-step 208: the recursion optimization DNS simulates recursion through a full-network deployment probe to obtain authorization information of all analysis results: server a (IP: 1.1.1.1), server B (IP: 2.2.2), server C (IP: 3.3.3.3), i.e. the resolution set { www.test.com, 1.1.1.1, 2.2.2.2, 3.3.3} that constitutes domain name www.test.com, wherein 3.3.3.3 is an extranet address, and the elimination is performed first, the quality is measured by probe dialing, the comparison and sorting are performed, the quality score of 2.2.2.2 is better than 1.1.1, and the optimum resolution result is selected to be 2.2.2.2.
Step 209: the pre-recursive DNS device replies the optimal resolution result to the ISP DNS in a preemptive response mode.
Step 210: the ISP DNS returns the user: www.test.com, the result of the analysis is server B (IP: 2.2.2.2).
Step 211: the end user initiates a normal service request to server B (IP: 2.2.2.2).
Step 212: and the server B (IP: 2.2.2.2) returns a normal service response message of the user terminal.
Receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with the user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank, returning the DNS response message to the LDNS, and preemptively returning the DNS response message to the user, so that DNS scheduling optimization can be realized, the resource access probability in the internet user network is effectively improved, and the access perception is improved.
Fig. 7 is a schematic structural diagram illustrating a DNS schedule optimizing apparatus based on full network sniffing according to an embodiment of the present invention. This DNS scheduling optimization device based on full network sniffing sets up in the network layer, as shown in FIG. 7, this DNS scheduling optimization device based on full network sniffing includes: a DNS log module 701, a DNS log analysis module 702, a full-network sniffing module 703, and an optimized domain name scheduling module 704. Wherein:
the DNS log module 701 is configured to receive a domain name resolution request of a user, and obtain a DNS log, where the DNS log at least includes a request domain name; the DNS log analyzing module 702 is configured to, if the requested domain name is not matched with the user access repository in the query, obtain a domain name repository to be sniffed according to the user access repository; the full-network sniffing module 703 is configured to perform DNS dial-up and application quality dial-up for domain name deployment full-network sniffing probes in the domain name repository according to a user access manner, and obtain an analysis result ranked in the top; the optimized domain name scheduling module 704 is configured to form a DNS response message from the resolution result ranked earlier, return the DNS response message to the LDNS, and preemptively reply the DNS response message to the user.
In an optional manner, the DNS log at least includes a user IP, the request domain name, and an a record resolution address, and the DNS log analyzing module 702 is configured to: establishing a user access resource library for different users to access the TOP domain name and the resolution address according to the user IP, the request domain name and the A record resolution address, wherein each resource record q is equal to<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis method is composed of an attribute pair domain name r (d) and an A record analysis result r (a), wherein K is a positive integer.
In an alternative approach, the DNS log analysis module 702 is configured to: if the query result shows that the request domain name is not matched with the user access resource library, adding 1 to the query times of the request domain name, and if the single-day access times of the request domain name are accumulated to a preset threshold value, supplementing the request domain name to the user access resource library; and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name.
In an alternative manner, the DNS log analysis module 702 is configured to: obtaining a plurality of domain names to be sniffed at the front of the rank according to the user access resource library, and constructing the domain name resource library; updating a plurality of domain names which are ranked at the front every first preset time; and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names.
In an alternative approach, the full-network sniffing module 703 is configured to: starting sniffing DNS recursive service for the outgoing/semi-outgoing domain name in the domain name resource library to acquire a new resource record; deploying probes for multiple IP resource domain names in the domain name resource library, and performing dial testing analysis to select an optimal access result; for any domain name rK(d) Corresponding all resource A records rKAnd (an), scoring by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, transmitting all IP resource records if the quality difference between the multiple IP resources existing in the domain name is within 20%, and transmitting the optimal IP resource record if the quality difference between the multiple IP resources is more than 20%, so as to obtain an analysis result ranked in the front.
In an alternative approach, the full-network sniffing module 703 is configured to: transmitting the outgoing/semi-outgoing domain name to a first class probe, configuring a mobile DNS of other provinces, testing the domain name resolution result of each province, and establishing an association library; and transmitting the outgoing/semi-outgoing domain name to a second type of probe, configuring a DNS same address field with an ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority analysis result, and establishing an association library.
In an alternative approach, the full-network sniffing module 703 is configured to: classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IP; the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing; and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource.
Receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank, returning the DNS response message to the LDNS, and preemptively returning the DNS response message to the user, so that DNS scheduling optimization can be realized, the resource access probability in the internet user network is effectively improved, and the access perception is improved.
The embodiment of the invention provides a nonvolatile computer storage medium, wherein at least one executable instruction is stored in the computer storage medium, and the computer executable instruction can execute the DNS scheduling optimization method based on the full-network sniffing in any method embodiment.
The executable instructions may be specifically configured to cause the processor to:
receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name;
if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library;
performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front;
and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user.
In an alternative, where the DNS log includes at least a user IP, the requested domain name, and an a-record resolution address, the executable instructions cause the processor to:
establishing a user access resource library for different users to access the TOP domain name and the resolution address according to the user IP, the request domain name and the A record resolution address, wherein each resource record q is equal to<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis method is composed of an attribute pair domain name r (d) and an A record analysis result r (a), wherein K is a positive integer.
In an alternative, the executable instructions cause the processor to:
if the query result shows that the request domain name is not matched with the user access resource library, adding 1 to the query times of the request domain name, and if the single-day access times of the request domain name are accumulated to a preset threshold value, supplementing the request domain name to the user access resource library;
and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name.
In an alternative, the executable instructions cause the processor to:
obtaining a plurality of domain names to be sniffed at the front of the rank according to the user access resource library, and constructing the domain name resource library;
updating a plurality of domain names which are ranked at the front every first preset time;
and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names.
In an alternative, the executable instructions cause the processor to:
starting sniffing DNS recursive service for the outgoing/semi-outgoing domain name in the domain name resource library to acquire a new resource record;
deploying probes for multiple IP resource domain names in the domain name resource library, and performing dial testing analysis to select an optimal access result;
for any domain name rK(d) Corresponding all resource A records rKAnd (an), scoring by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, transmitting all IP resource records if the quality difference between the multiple IP resources existing in the domain name is within 20%, and transmitting the optimal IP resource record if the quality difference between the multiple IP resources is more than 20%, so as to obtain an analysis result ranked in the front.
In an alternative, the executable instructions cause the processor to:
transmitting the outgoing/semi-outgoing domain name to a first class probe, configuring a mobile DNS of other provinces, testing the domain name resolution result of each province, and establishing an association library;
and transmitting the outgoing/semi-outgoing domain name to a second type of probe, configuring a DNS same address field with an ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority analysis result, and establishing an association library.
In an alternative, the executable instructions cause the processor to:
classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IPs;
the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing;
and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource.
Receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank, returning the DNS response message to the LDNS, and preemptively returning the DNS response message to the user, so that DNS scheduling optimization can be realized, the resource access probability in the internet user network is effectively improved, and the access perception is improved.
An embodiment of the present invention provides a computer program product, which includes a computer program stored on a computer storage medium, where the computer program includes program instructions, and when the program instructions are executed by a computer, the computer executes the DNS schedule optimization method based on full network sniffing in any of the above method embodiments.
Fig. 8 is a schematic structural diagram of a computing device according to an embodiment of the present invention, and a specific embodiment of the present invention does not limit a specific implementation of the device.
As shown in fig. 8, the computing device may include: a processor (processor)802, a Communications Interface 804, a memory 806, and a communication bus 808.
Wherein: the processor 802, communication interface 804, and memory 806 communicate with one another via a communication bus 808. A communication interface 804 for communicating with network elements of other devices, such as clients or other servers. The processor 802 is configured to execute the program 810, and may specifically perform relevant steps in the above DNS schedule optimization method embodiment based on full-network sniffing.
In particular, the program 810 may include program code comprising computer operating instructions.
The processor 802 may be a central processing unit CPU, or an Application Specific Integrated Circuit (ASIC), or one or more Integrated circuits configured to implement embodiments of the present invention. The one or each processor included in the device may be the same type of processor, such as one or each CPU; or may be different types of processors such as one or each CPU and one or each ASIC.
The memory 806 stores a program 810. The memory 806 may include high-speed RAM memory, and may also include non-volatile memory (non-volatile memory), such as at least one disk memory.
The program 810 may be specifically configured to cause the processor 802 to perform the following operations:
receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name;
if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library;
performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front;
and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user.
In an alternative approach, where the DNS log includes at least a user IP, the requested domain name, and an a-record resolution address, the program 810 causes the processor to:
establishing a user access resource library of different user access TOP domain names and resolution addresses according to the user IP, the request domain name and the A record resolution address, wherein each resource record q is equal to<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis method is composed of an attribute pair domain name r (d) and an A record analysis result r (a), wherein K is a positive integer.
In an alternative, the program 810 causes the processor to:
if the query result shows that the request domain name is not matched with the user access resource library, adding 1 to the query times of the request domain name, and if the single-day access times of the request domain name are accumulated to a preset threshold value, supplementing the request domain name to the user access resource library;
and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name.
In an alternative, the program 810 causes the processor to:
obtaining a plurality of domain names to be sniffed at the front of the rank according to the user access resource library, and constructing the domain name resource library;
updating a plurality of domain names which are ranked at the front every first preset time;
and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names.
In an alternative, the program 810 causes the processor to:
starting sniffing DNS recursive service for the outgoing/semi-outgoing domain name in the domain name resource library to acquire a new resource record;
deploying probes for multiple IP resource domain names in the domain name resource library, and performing dial testing analysis to select an optimal access result;
for any domain name rK(d) Corresponding all resource A records rK(an), scoring is carried out by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, if the quality difference between the multiple IP resources existing in the domain name is within 20%, all IP resource records are transmitted, and if the quality difference between the multiple IP resources is more than 20%, the optimal IP resource record is transmitted, so that the analysis ranked at the front is obtainedAnd (6) obtaining the result.
In an alternative, the program 810 causes the processor to:
transmitting the outgoing/semi-outgoing domain name to a first class probe, configuring a mobile DNS of other provinces, testing the domain name resolution result of each province, and establishing an association library;
and transmitting the outgoing/semi-outgoing domain name to a second type of probe, configuring a DNS same address field with an ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority analysis result, and establishing an association library.
In an alternative, the program 810 causes the processor to:
classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IP;
the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing;
and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource.
Receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name; if the request domain name is not matched with a user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library; performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front; and forming a DNS response message by the analysis result with the top rank, returning the DNS response message to the LDNS, and preemptively returning the DNS response message to the user, so that DNS scheduling optimization can be realized, the resource access probability in the internet user network is effectively improved, and the access perception is improved.
The algorithms or displays presented herein are not inherently related to any particular computer, virtual system, or other apparatus. Various general purpose systems may also be used with the teachings herein. The required structure for constructing such a system will be apparent from the description above. In addition, embodiments of the present invention are not directed to any particular programming language. It is appreciated that a variety of programming languages may be used to implement the teachings of the present invention as described herein, and any descriptions of specific languages are provided above to disclose the best mode of the invention.
In the description provided herein, numerous specific details are set forth. It is understood, however, that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure an understanding of this description.
Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, various features of the embodiments of the invention are sometimes grouped together in a single embodiment, figure, or description thereof for the purpose of streamlining the invention and aiding in the understanding of one or more of the various inventive aspects. However, the disclosed method should not be interpreted as reflecting an intention that: that the invention as claimed requires more features than are expressly recited in each claim.
Those skilled in the art will appreciate that the modules in the device in an embodiment may be adaptively changed and disposed in one or more devices different from the embodiment. The modules or units or components of the embodiments may be combined into one module or unit or component, and furthermore they may be divided into a plurality of sub-modules or sub-units or sub-components. All of the features disclosed in this specification (including any accompanying claims, abstract and drawings), and all of the processes or elements of any method or apparatus so disclosed, may be combined in any combination, except combinations where at least some of such features and/or processes or elements are mutually exclusive. Each feature disclosed in this specification (including any accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.
It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention may be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In the unit claims enumerating several means, several of these means may be embodied by one and the same item of hardware. The usage of the words first, second and third, etcetera do not indicate any ordering. These words may be interpreted as names. The steps in the above embodiments should not be construed as limiting the order of execution unless specified otherwise.

Claims (10)

1. A DNS scheduling optimization method based on full network sniffing is characterized by comprising the following steps:
receiving a domain name resolution request of a user, and acquiring a DNS log, wherein the DNS log at least comprises a request domain name;
if the request domain name is not matched with the user access resource library, acquiring a domain name resource library to be sniffed according to the user access resource library;
performing DNS dial test and application quality dial test on domain name deployment full-network sniffing probes in the domain name resource library according to a user access mode, and acquiring an analysis result ranked in the front;
and forming a DNS response message by the analysis result with the top rank to return to the LDNS, and preemptively replying to the user.
2. The method of claim 1, wherein the DNS log includes at least a user IP, the requested domain name, and an a-record resolution address, and wherein the querying comprises, until the requested domain name does not match a user access repository:
establishing according to the user IP, the request domain name and the A record resolution addressDifferent users access the TOP domain name and resolve the user access resource bank of the address, wherein, each resource record q ═ is<rK(d),rK(a1),rK(a2),…rK(an)>The domain name analysis method is composed of an attribute pair domain name r (d) and an A record analysis result r (a), wherein K is a positive integer.
3. The method of claim 1, further comprising:
if the query result shows that the request domain name is not matched with the user access resource library, adding 1 to the query times of the request domain name, and if the single-day access times of the request domain name are accumulated to a preset threshold value, supplementing the request domain name to the user access resource library;
and if the query result shows that the request domain name is matched with a user access resource library, directly querying the resolution result of the request domain name.
4. The method according to claim 1, wherein the obtaining a domain name repository to be sniffed according to the user access repository comprises:
obtaining a plurality of domain names to be sniffed at the front of the rank according to the user access resource library, and constructing the domain name resource library;
updating a plurality of domain names which are ranked at the front every first preset time;
and supplementing a plurality of domain names which are ranked at the top according to the query times records of the domain names.
5. The method according to claim 1, wherein the deploying a full-network sniffing probe for a domain name in the domain name repository according to a user access manner to perform DNS dial testing and application quality dial testing to obtain an analysis result ranked at the top comprises:
starting sniffing DNS recursive service for the outgoing/semi-outgoing domain name in the domain name resource library to acquire a new resource record;
deploying probes for multiple IP resource domain names in the domain name resource library, and performing dial testing analysis to select an optimal access result;
for any domain name rK(d) Corresponding all resource A records rKAnd (an), scoring by taking page opening time delay, connection time, downloading speed, in-network and out-network resource attribution and the like as scoring standards, transmitting all IP resource records if the quality difference between the multiple IP resources existing in the domain name is within 20%, and transmitting the optimal IP resource record if the quality difference between the multiple IP resources is more than 20%, so as to obtain an analysis result ranked in the front.
6. The method according to claim 5, wherein said starting sniffing DNS recursive services for outbound/semi-outbound domain names in the domain name repository to obtain new resource records comprises:
transmitting the outgoing/semi-outgoing domain name to a first class probe, configuring a mobile DNS of other provinces, testing the domain name resolution result of each province, and establishing an association library;
and transmitting the outgoing/semi-outgoing domain name to a second type probe, configuring a domain with the same address as the DNS of the ISP, carrying out iterative recursion request by taking second preset time as a period, testing a domain name authority resolution result, and establishing an association library.
7. The method according to claim 5, wherein the performing of dial-up test analysis on the multiple IP resource domain name deployment probes in the domain name resource repository to select an optimal access result comprises:
classifying and summarizing the multi-IP resource domain names in the domain name resource library according to source IP;
the mobile phone access quantity multi-domain name issuing task is sent to a mobile phone probe for quality dial testing, the fixed network access quantity multi-domain name issuing task is sent to a fixed network probe for quality dial testing, the mobile phone and fixed network access quantities are balanced, and the two probes are subjected to quality dial testing;
and issuing and selecting an optimal access result by dialing, testing and analyzing the IP resource.
8. A DNS scheduling optimization device based on full network sniffing, the device comprising:
the DNS log module is used for receiving a domain name resolution request of a user and acquiring a DNS log, wherein the DNS log at least comprises a request domain name;
the DNS log analysis module is used for acquiring a domain name resource library to be sniffed according to the user access resource library if the request domain name is not matched with the user access resource library;
the full-network sniffing module is used for deploying a full-network sniffing probe for the domain name in the domain name resource library according to a user access mode to carry out DNS dial test and application quality dial test, and acquiring an analysis result with a front rank;
and the optimized domain name scheduling module is used for forming a DNS response message from the resolution result with the top rank, returning the DNS response message to the LDNS, and preemptively replying the DNS response message to the user.
9. A computing device, comprising: the system comprises a processor, a memory, a communication interface and a communication bus, wherein the processor, the memory and the communication interface are communicated with each other through the communication bus;
the memory is configured to store at least one executable instruction that causes the processor to perform the steps of the full network sniffing based DNS schedule optimization method according to any of claims 1-7.
10. A computer storage medium having stored therein at least one executable instruction for causing a processor to perform the steps of the full mesh sniffing based DNS schedule optimization method according to any of claims 1-7.
CN202011146314.4A 2020-10-23 2020-10-23 DNS (Domain name System) scheduling optimization method and device based on whole network sniffing and computing equipment Active CN114500456B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011146314.4A CN114500456B (en) 2020-10-23 2020-10-23 DNS (Domain name System) scheduling optimization method and device based on whole network sniffing and computing equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011146314.4A CN114500456B (en) 2020-10-23 2020-10-23 DNS (Domain name System) scheduling optimization method and device based on whole network sniffing and computing equipment

Publications (2)

Publication Number Publication Date
CN114500456A true CN114500456A (en) 2022-05-13
CN114500456B CN114500456B (en) 2024-01-12

Family

ID=81470827

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011146314.4A Active CN114500456B (en) 2020-10-23 2020-10-23 DNS (Domain name System) scheduling optimization method and device based on whole network sniffing and computing equipment

Country Status (1)

Country Link
CN (1) CN114500456B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115914240A (en) * 2023-01-06 2023-04-04 江苏荣泽信息科技股份有限公司 Cross-chain transaction template management system based on DNS (Domain name System) analysis

Citations (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000052594A2 (en) * 1999-03-03 2000-09-08 Ultradns, Inc. Scalable and efficient domain name resolution
EP1343296A2 (en) * 2002-02-25 2003-09-10 Broadcom Corporation System, method and computer program product for selectively caching domain name system information on a network gateway
CN101217576A (en) * 2008-01-18 2008-07-09 厦门纳网科技有限公司 A dynamic domain name analysis system and the corresponding dynamic analysis method
US20100036969A1 (en) * 2007-08-27 2010-02-11 Declude, Inc. Method, System, and Apparatus for Discovering User Agent DNS Settings
US20100274970A1 (en) * 2009-04-23 2010-10-28 Opendns, Inc. Robust Domain Name Resolution
CN102025793A (en) * 2010-01-22 2011-04-20 中国移动通信集团北京有限公司 Domain name resolution method and system and DNS in IP network
CN103037025A (en) * 2012-11-21 2013-04-10 哈尔滨理工大学 Multilink self-adaption domain name server (DNS) parsing method and device
CN104092791A (en) * 2014-07-11 2014-10-08 中国科学院声学研究所 Internet content resource scheduling method and system taking quality and cost into consideration
CN106067905A (en) * 2016-02-24 2016-11-02 北京肇煜宏泰信息科技有限公司 The method and system that a kind of virtual net user accesses
CN106657374A (en) * 2017-01-04 2017-05-10 贵州力创科技发展有限公司 Internet traffic and flow direction big data intelligent analysis and decision-making method and system
CN108156277A (en) * 2018-03-19 2018-06-12 北京泰策科技有限公司 Domain name based on open dns server corresponds to the detection method of Internet resources
US10033692B1 (en) * 2017-10-05 2018-07-24 Cloudflare, Inc. Managing domain name system (DNS) queries using a proxy DNS server
CN108400878A (en) * 2017-02-04 2018-08-14 中国移动通信集团河北有限公司 A kind of method and apparatus of address scheduling
CN108989487A (en) * 2018-09-06 2018-12-11 北京泰策科技有限公司 CDN Optimization Scheduling based on local dns
CN109981805A (en) * 2017-12-28 2019-07-05 中国移动通信集团山东有限公司 A kind of method and device of domain name mapping

Patent Citations (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040039798A1 (en) * 1999-03-03 2004-02-26 Ultradns, Inc. Domain name resolution system and method
WO2000052594A2 (en) * 1999-03-03 2000-09-08 Ultradns, Inc. Scalable and efficient domain name resolution
EP1343296A2 (en) * 2002-02-25 2003-09-10 Broadcom Corporation System, method and computer program product for selectively caching domain name system information on a network gateway
US20100036969A1 (en) * 2007-08-27 2010-02-11 Declude, Inc. Method, System, and Apparatus for Discovering User Agent DNS Settings
CN101217576A (en) * 2008-01-18 2008-07-09 厦门纳网科技有限公司 A dynamic domain name analysis system and the corresponding dynamic analysis method
US20160164827A1 (en) * 2009-04-23 2016-06-09 Opendns, Inc. Robust Domain Name Resolution
US20100274970A1 (en) * 2009-04-23 2010-10-28 Opendns, Inc. Robust Domain Name Resolution
CN102025793A (en) * 2010-01-22 2011-04-20 中国移动通信集团北京有限公司 Domain name resolution method and system and DNS in IP network
CN103037025A (en) * 2012-11-21 2013-04-10 哈尔滨理工大学 Multilink self-adaption domain name server (DNS) parsing method and device
CN104092791A (en) * 2014-07-11 2014-10-08 中国科学院声学研究所 Internet content resource scheduling method and system taking quality and cost into consideration
CN106067905A (en) * 2016-02-24 2016-11-02 北京肇煜宏泰信息科技有限公司 The method and system that a kind of virtual net user accesses
CN106657374A (en) * 2017-01-04 2017-05-10 贵州力创科技发展有限公司 Internet traffic and flow direction big data intelligent analysis and decision-making method and system
CN108400878A (en) * 2017-02-04 2018-08-14 中国移动通信集团河北有限公司 A kind of method and apparatus of address scheduling
US10033692B1 (en) * 2017-10-05 2018-07-24 Cloudflare, Inc. Managing domain name system (DNS) queries using a proxy DNS server
CN109981805A (en) * 2017-12-28 2019-07-05 中国移动通信集团山东有限公司 A kind of method and device of domain name mapping
CN108156277A (en) * 2018-03-19 2018-06-12 北京泰策科技有限公司 Domain name based on open dns server corresponds to the detection method of Internet resources
CN108989487A (en) * 2018-09-06 2018-12-11 北京泰策科技有限公司 CDN Optimization Scheduling based on local dns

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
冯辰;: "智能DNS解析在互联网流量引导中的应用与分析", 铁道通信信号, no. 08 *
巫俊峰;张峰铭;黄钟;王兆云;王济晟;曹庆皇;: "优化用户终端域名缓存的DNS调度研究", 电信技术, no. 10 *
程琦;: "基于DNS日志分析调度及优化设计与实现", 福建电脑, no. 11 *
胡立强;崔萌;: "互联网业务及内容资源调度分析", 电信技术, no. 01 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115914240A (en) * 2023-01-06 2023-04-04 江苏荣泽信息科技股份有限公司 Cross-chain transaction template management system based on DNS (Domain name System) analysis
CN115914240B (en) * 2023-01-06 2023-05-26 江苏荣泽信息科技股份有限公司 Cross-chain transaction template management system based on DNS analysis

Also Published As

Publication number Publication date
CN114500456B (en) 2024-01-12

Similar Documents

Publication Publication Date Title
US11606388B2 (en) Method for minimizing the risk and exposure duration of improper or hijacked DNS records
US20190081922A1 (en) Method and system for increasing speed of domain name system resolution within a computing device
US11347797B2 (en) Asset search and discovery system using graph data structures
US8326980B2 (en) Using DNS reflection to measure network performance
US11025584B2 (en) Client subnet efficiency by equivalence class aggregation
CN103780715B (en) Domain name mapping implementation method, client and Cloud Server
CN114205330A (en) Domain name resolution method, domain name resolution device, server, and storage medium
CN113992626A (en) Method, device and storage medium for realizing DNS
CN108111639A (en) A kind of method and system for improving domain name system availability
CN112333299A (en) Domain name resolution method, configuration method and equipment
CN115297088A (en) Domain name resolution system and method in cloud computing environment
CN108833424B (en) System for acquiring all resource records of domain name
CN114500456B (en) DNS (Domain name System) scheduling optimization method and device based on whole network sniffing and computing equipment
EP2426894A1 (en) System and method of processing DNS request and DNS reply
CN111447297B (en) IPv4 and IPv6 DNS unified access management method and system
CN115037720A (en) Method and device for processing domain name resolution request, electronic equipment and storage medium
CN105245626A (en) Method for realizing website addressing by using shortcut domain name in private network
CN113472914B (en) DNS directional prefetching caching method and system
CN114760270B (en) Method and device for generating user equipment fingerprint
CN116888941A (en) Domain name system for data discovery
EP2076849A1 (en) Method for processing native language internet address and storage medium for saving program of executing the same
CN116708361A (en) Domain name resolver identification method and device and electronic equipment
JP3834770B2 (en) Name resolution method and apparatus
CN117614932A (en) Domain name resolution method, device, electronic equipment and readable storage medium
CN117692173A (en) Request message processing method, system and related equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant