CN115037720A - Method and device for processing domain name resolution request, electronic equipment and storage medium - Google Patents

Method and device for processing domain name resolution request, electronic equipment and storage medium Download PDF

Info

Publication number
CN115037720A
CN115037720A CN202210899707.5A CN202210899707A CN115037720A CN 115037720 A CN115037720 A CN 115037720A CN 202210899707 A CN202210899707 A CN 202210899707A CN 115037720 A CN115037720 A CN 115037720A
Authority
CN
China
Prior art keywords
target
domain name
network identifier
configuration information
area
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210899707.5A
Other languages
Chinese (zh)
Other versions
CN115037720B (en
Inventor
吕逸凡
王剑
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Youzhuju Network Technology Co Ltd
Original Assignee
Beijing Youzhuju Network Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Youzhuju Network Technology Co Ltd filed Critical Beijing Youzhuju Network Technology Co Ltd
Priority to CN202210899707.5A priority Critical patent/CN115037720B/en
Publication of CN115037720A publication Critical patent/CN115037720A/en
Application granted granted Critical
Publication of CN115037720B publication Critical patent/CN115037720B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The disclosure discloses a method and a device for processing a domain name resolution request, electronic equipment and a storage medium. In the process of domain name resolution, the method provided by the present disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by using the domain name to be analyzed and the target network identifier carried in the domain name analysis request, and acquiring target configuration information corresponding to the client from at least one piece of configuration information included in the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the target configuration information. Therefore, the target private area is determined by using the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained for different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved.

Description

Method and device for processing domain name resolution request, electronic equipment and storage medium
Technical Field
The present disclosure relates to the field of communications technologies, and in particular, to a method and an apparatus for processing a domain name resolution request, an electronic device, and a storage medium.
Background
Tenant-isolated Domain Name System (DNS) resolution on the Cloud is a Private DNS service based on a Virtual Private Cloud (VPC) environment. The resolution service allows mapping of private domain names to IP addresses in the client's customized one or more virtual private clouds. The private domain name records can be conveniently used by the DNS server to manage resources such as host names, databases, terms of service, etc. in the virtual private cloud.
Although the current DNS resolution scheme can perform resolution for a DNS request of a client, different resolution results cannot be obtained for different VPCs where different clients are located during resolution.
Disclosure of Invention
In order to solve the technical problem or at least partially solve the technical problem, the present disclosure provides a method and an apparatus for processing a domain name resolution request, an electronic device, and a storage medium.
According to an aspect of the embodiments of the present disclosure, there is provided a method for processing a domain name resolution request, the method including:
receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: a domain name to be analyzed and a target network identifier of a virtual private cloud where the client is located;
according to the domain name to be resolved, a target area corresponding to the domain name to be resolved is inquired from at least one area, and a target private area associated with the target network identifier is inquired from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier;
determining a target domain name node corresponding to the domain name to be analyzed from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
and acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
According to another aspect of the embodiments of the present disclosure, there is also provided a device for processing a domain name resolution request, including:
a receiving module, configured to receive a domain name resolution request from a client, where the domain name resolution request includes: a domain name to be analyzed and a target network identifier of a virtual private cloud where the client is located;
the query module is used for querying a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and querying a target private area associated with the target network identifier from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier;
an obtaining module, configured to determine, according to the target network identifier, a target domain name node corresponding to the domain name to be resolved from the target private area, where the target domain name node includes at least one piece of configuration information;
and the analysis module is used for acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
According to another aspect of the embodiments of the present disclosure, there is also provided a storage medium including a stored program, which executes the above steps when the program is executed.
According to another aspect of the embodiments of the present disclosure, there is also provided an electronic device, including a processor, a communication interface, a memory and a communication bus, where the processor, the communication interface, and the memory complete communication with each other through the communication bus; wherein: a memory for storing a computer program; a processor for executing the steps of the method by running the program stored in the memory.
Embodiments of the present disclosure also provide a computer program product containing instructions which, when run on a computer, cause the computer to perform the steps of the above-described method.
The technical scheme provided by the embodiment of the disclosure has the following advantages: in the process of domain name resolution, the method provided by the present disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by using the domain name to be analyzed carried by the domain name analysis request and the target network identifier, and acquiring target configuration information corresponding to the client from at least one configuration information included in the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the target configuration information. Therefore, the target private area is determined by using the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained for different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. By the method for analyzing the domain name, the higher analyzing efficiency can be still kept under the condition of large quantity of the domain names to be analyzed.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present disclosure and together with the description, serve to explain the principles of the disclosure.
In order to more clearly illustrate the embodiments or technical solutions in the prior art of the present disclosure, the drawings used in the description of the embodiments or prior art will be briefly described below, and it is obvious for those skilled in the art that other drawings can be obtained according to the drawings without inventive exercise.
Fig. 1 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure;
fig. 2 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure;
fig. 3 is a schematic diagram of an architecture of an area in a DNS server according to an embodiment of the present disclosure;
fig. 4 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the disclosure;
fig. 5 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure;
fig. 6 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure;
fig. 7 is a flowchart illustrating a domain name resolution request according to an embodiment of the present disclosure;
fig. 8 is a flowchart illustrating a domain name resolution request according to an embodiment of the present disclosure;
fig. 9 is a block diagram of a device for processing a domain name resolution request according to an embodiment of the present disclosure;
fig. 10 is a schematic structural diagram of an electronic device according to an embodiment of the present disclosure.
Detailed Description
To make the objects, technical solutions and advantages of the embodiments of the present disclosure more clear, the embodiments of the present disclosure will be described in detail and completely with reference to the drawings in the embodiments of the present disclosure, it is obvious that the described embodiments are some, but not all embodiments of the present disclosure, and the exemplary embodiments and descriptions thereof of the present disclosure are used for explaining the present disclosure and do not constitute an undue limitation on the present disclosure. All other embodiments, which can be derived by a person skilled in the art from the embodiments disclosed herein without making any creative effort, shall fall within the protection scope of the present disclosure.
It is noted that, in this document, relational terms such as "first" and "second," and the like, may be used solely to distinguish one entity or action from another similar entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The embodiment of the disclosure provides a method and a device for processing a domain name resolution request, electronic equipment and a storage medium. The method provided by the embodiment of the present disclosure may be applied to any required electronic device, for example, the method may be applied to an electronic device such as a server and a terminal, and for convenience of description, the method is hereinafter simply referred to as an electronic device.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided. Fig. 1 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure, and as shown in fig. 1, the method includes:
step S11, receiving a domain name resolution request from the client, where the domain name resolution request includes: and the domain name to be analyzed and the target network identifier of the virtual private cloud where the client is located.
The method provided by the embodiment of the disclosure is applied to a public DNS server deployed in an Internet Data Center (IDC). It should be noted that, in order to obtain different DNS resolution results according to different VPCs of different clients in the DNS resolution process, in the embodiment of the present disclosure, a common DNS server is deployed in an internet data center, and the DNS server can distinguish the VPCs of the clients according to network identifiers in domain name resolution requests sent by the clients, thereby having tenant isolation capability.
Based on this, the public DNS server is deployed in the Internet data center, so that compared with the method of deploying the DNS server in each VPC, the cost is saved, and different DNS analysis results can be obtained according to different VPCs of different clients on the basis of realizing tenant isolation.
In the embodiment of the disclosure, after receiving a domain name resolution request sent by a Client, a DNS server resolves the domain name resolution request to obtain Client Subnet information and Client type information carried by the domain name resolution request, where the Client Subnet information (EDNS Client Subnet, abbreviation: ECS) includes a domain name to be resolved, an IP address of the Client, and the like, and the Client type information (EDNS Client VNI, abbreviation: ECV) includes a target Network Identifier (VXLAN Network Identifier, abbreviation: VNI) of a Virtual Private Cloud (VPC) in which the Client is located. The subsequent DNS server can analyze the domain name to be analyzed according to the target network identifier.
In addition, after receiving the domain name resolution request, the DNS server may first obtain the client type information from the domain name resolution request, and if the client type information does not exist in the domain name resolution request, the DNS server does not process the domain name resolution request.
It should be noted that the client may add a custom field in the domain name resolution request based on an extended domain name system mechanism (Extension Mechanisms for DNS, abbreviated as EDNS) before sending the domain name resolution request, and identify the client subnet information or the client type information through the custom field, etc.
Step S12, according to the domain name to be resolved, querying a target area corresponding to the domain name to be resolved from the at least one area, and querying a target private area associated with the target network identifier from the target area, where the target private area includes at least one domain name node associated with the network identifier.
In the embodiment of the present disclosure, after the DNS server resolves the target network identifier from the domain name resolution request, a target private area associated with the target network identifier is queried from at least one private area of the DNS server. Note that the private area of the DNS server is obtained by dividing the name space of the DNS server in advance. Each private area can be associated with at least one network identifier, each network identifier corresponds to one private area, and each private area comprises at least one domain name node.
Step S13, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, where the target domain name node includes at least one piece of configuration information.
In the embodiment of the present disclosure, the domain name nodes in the private area are divided according to the network identifiers associated with the private area, so that the private area includes at least one domain name node corresponding to each network identifier associated with the private area. Therefore, at least one candidate domain name node corresponding to the target network identifier can be obtained from the target private area, and then the domain name to be resolved is matched with each candidate domain name node, so that the candidate domain name node successfully matched with the domain name to be resolved is determined as the target domain name node.
As one example, the network identification associated with the target private area includes: network identification 105, network identification 162, and network identification 231. At this time, the target network identifier is 105, and the domain name to be resolved is text1.example. com. Then, at least one candidate domain name node corresponding to the target network identifier 105 is queried from within the target private area, where the candidate domain name node includes candidate domain name node 1: text1.example. com, candidate domain name node 2: text2.example. com. And then matching the domain name to be analyzed text1.example. com with two candidate domain name nodes, and determining the candidate domain name node 1 which is successfully matched as a target domain name node.
Step S14, obtaining target configuration information matched with the client from the at least one configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
In the embodiment of the present disclosure, after acquiring the target domain name node, the DNS server acquires target configuration information of the target domain name node, where the target configuration information may be configured in the target domain name node in advance. The target configuration information comprises an analysis type, such as subnet analysis or weight analysis, then a corresponding analysis strategy is obtained by utilizing the analysis type, and the domain name to be analyzed is analyzed through the analysis strategy to obtain a target analysis result.
In the method provided by the embodiment of the present disclosure, in the process of domain name resolution, a target private area corresponding to a target network identifier carried by a domain name resolution request is first obtained. And secondly, determining a target domain name node from the target private area by using the domain name to be analyzed and the target network identifier carried by the domain name analysis request, and acquiring configuration information corresponding to the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the configuration information. Therefore, the target private area is determined by using the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained for different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. And by means of the domain name resolution in the private area, high resolution efficiency can be still kept under the condition that the number of domain names to be resolved is large.
According to an aspect of the embodiments of the present disclosure, an embodiment of a method for processing a domain name resolution request is provided, and fig. 2 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 2, the method includes:
step S21, receiving a domain name resolution request from the client, where the domain name resolution request includes: and the domain name to be analyzed and the target network identifier of the virtual private cloud where the client is located. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S22, according to the domain name to be resolved, querying a target area corresponding to the domain name to be resolved from the at least one area, and querying a target private area associated with the target network identifier from the target area, where the target private area includes at least one domain name node associated with the network identifier.
In the embodiment of the present disclosure, according to a domain name to be resolved, a target region corresponding to the domain name to be resolved is queried from at least one region, including the following steps a1-a 2:
step A1, obtaining a target secondary domain name to which the domain name to be resolved belongs.
In the embodiment of the present disclosure, since the domain name to be resolved carried by the domain name resolution request is the sub-level domain name, in order to quickly locate the private area corresponding to the domain name to be resolved, the target second-level domain name to which the domain name to be resolved belongs is first searched.
As an example: the domain name to be resolved carried in the domain name resolution request is: term 1.example. com, the target secondary domain name to which the domain name to be resolved belongs can be obtained by analyzing the suffix of the domain name to be resolved: com.
Step A2, inquiring a target area corresponding to the target secondary domain name from at least one area.
In the embodiment of the disclosure, each region corresponds to a secondary domain name, each region includes at least one structure and a private region having a mapping relationship with each structure, and the structure includes a network identifier.
In the embodiment of the present disclosure, the DNS server may divide a name space in advance to obtain a plurality of zones (zones), and then associate a secondary domain name with each zone. Therefore, the DNS server can query the target zone corresponding to the target domain name from the plurality of zones by using the obtained target domain name.
In the embodiment of the present disclosure, querying the target private area associated with the target network identifier from the target area includes the following steps A3-a 4:
and A3, acquiring a target structure body corresponding to the target network identifier from the target area.
Step A4, determining a private area having a preset mapping relation with the target structure body as the target private area.
In the embodiment of the present disclosure, the target area includes at least one structure, each structure includes a network identifier, each structure establishes a mapping relationship with the private area by using the network identifier, and the mapping relationship can be represented by a pointer. Therefore, the embodiment of the present disclosure may perform matching between the target network identifier and the network identifiers in each structural body, determine the structural body successfully matched as the target structural body, and determine the private area pointed by the pointer of the target structural body as the target private area.
It should be noted that, since each private area corresponds to an account, the private area may be associated with the network identifier of the virtual private cloud of the account corresponding to the private area. Therefore, the embodiment of the disclosure sets at least one structural body in each area, and each structural body establishes a mapping relationship with the private area through the pointer. Finally, a mapping relation is established between each structural body and one private area, and each private area can be in a mapping relation with at least one structural body. Therefore, tenant isolation in the domain name resolution process can be achieved, and the DNS server can distinguish the environment of the virtual private cloud where the client is located by using the network identifier.
As one example, as shown in fig. 3, the DNS server includes: region 1 and region 2, region 1 being the target region, region 1 comprising: structure 11, structure 12, and structure 13, the network identifier associated with structure 11 is 105, the network identifier associated with structure 12 is 162, and the network identifier associated with structure 13 is 231. The target network identification is 105, and therefore, the structural body 11 may be determined as a target structural body, and the private area pointed to by the pointer of the target structural body 11 may be determined as a target private area.
Step S23, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, where the target domain name node includes at least one piece of configuration information. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S24, obtaining target configuration information matched with the client from the at least one configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result. For a detailed description, refer to the related description of the corresponding steps in the above embodiments, which are not repeated herein.
According to the method provided by the embodiment of the disclosure, the DNS server searches the target area by using the secondary domain name, searches the target structure from the target area by using the target network identifier, and finally searches the private area by using the pointer of the target structure, so that efficient query can be realized under the condition that the number of the private areas is large, and the domain name resolution can be effectively carried out in real time.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 4 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 4, the method includes:
step S31, receiving a domain name resolution request from a client, where the domain name resolution request includes: and the domain name to be analyzed and the target network identifier of the virtual private cloud where the client is located.
For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S32, according to the domain name to be resolved, querying a target area corresponding to the domain name to be resolved from the at least one area, and querying a target private area associated with the target network identifier from the target area, where the target private area includes at least one domain name node associated with the network identifier. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S33, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, where the target domain name node includes at least one piece of configuration information.
In the embodiment of the present disclosure, a target dictionary tree is arranged in the target private area, the target dictionary tree includes at least one network identifier node associated with the target private area, and the network identifier node is associated with at least one domain name node.
In the embodiment of the present disclosure, in step S33, according to the target network identifier and the domain name to be resolved, determining a target domain name node from the domain name nodes included in the target private area, includes the following steps B1-B2:
step B1, inquiring a target network identification node corresponding to the target network identification from the target dictionary tree, and obtaining at least one candidate domain name node corresponding to the target network identification node.
And step B2, determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
In the embodiment of the disclosure, in order to improve the efficiency of obtaining domain name nodes from private areas, a dictionary tree is set in each private area, the dictionary tree includes at least one network identification node, and each network identification node is associated with at least one domain name node.
Therefore, after the target private area is determined, the network identification node corresponding to the target network identification is determined from the target dictionary tree of the target private area, the network identification is matched with each network identification node in the target dictionary tree to obtain the target network identification node, and the domain name node corresponding to the target network identification is determined as the candidate domain name node. And matching the domain name to be analyzed with each candidate domain name node, determining the candidate domain name node successfully matched as a target domain name node, wherein the target domain name node comprises at least one piece of configuration information, and different configuration information is used for analyzing the domain name to obtain different analysis results.
Step S34, obtaining target configuration information matched with the client from the at least one configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
According to the method provided by the embodiment of the invention, the dictionary tree corresponding to the network identifier is arranged in the private area, so that the target domain name node corresponding to the domain name to be resolved can be quickly searched, and the domain name resolution efficiency is improved. In addition, configuration information of each domain name node can be set in the dictionary tree, and when the analysis type of a certain domain name node needs to be changed subsequently, the configuration information of the domain name node can be directly updated, so that the original analysis configuration process is simplified.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 5 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 5, the method includes:
step S41, receiving a domain name resolution request from a client, where the domain name resolution request includes: and the domain name to be analyzed and the target network identifier of the virtual private cloud where the client is located.
For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S42, according to the domain name to be resolved, querying a target area corresponding to the domain name to be resolved from the at least one area, and querying a target private area associated with the target network identifier from the target area, where the target private area includes at least one domain name node associated with the network identifier. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S43, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, where the target domain name node includes at least one piece of configuration information. For a detailed description, refer to the corresponding related description of the above embodiments, which is not repeated herein.
Step S44, obtaining target configuration information matched with the client from the at least one configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
In the embodiment of the present disclosure, after a target domain name node corresponding to a domain name to be resolved is obtained, target configuration information matched with a client is obtained from at least one piece of configuration information by using relevant information of the client, where the relevant information may be a network segment or the like. It should be noted that, the configuration information in the domain name node is configured in advance, and different configuration information can provide different resolution strategies in the domain name resolution process.
In the embodiment of the present disclosure, resolving the domain name to be resolved based on the target configuration information to obtain a target resolution result, including the following steps C1-C2:
and step C1, extracting the target analysis type carried in the target configuration information, and acquiring a target analysis strategy corresponding to the target analysis type.
In the embodiment of the present disclosure, after obtaining the target configuration information, the DNS server may extract a target resolution type from the target configuration information, where the target resolution type includes: a subnet resolution type and a weight resolution type. And then, acquiring a corresponding target analysis strategy by using the target analysis type. It should be noted that different parsing types correspond to different parsing strategies. The domain name is analyzed through different types of analysis strategies, and different analysis results of domain name analysis requests sent by different clients can be effectively guaranteed.
And step C2, analyzing the domain name to be analyzed by using the target analysis strategy to obtain a target analysis result.
In this embodiment of the present disclosure, in step C2, the domain name to be resolved is resolved by using the target resolution policy to obtain a target resolution result, which includes the following steps D1-D2:
and D1, generating a first random number when the target analysis type is a weight analysis type, and acquiring first weight configuration information corresponding to the target domain name node, wherein the first weight configuration information includes at least one numerical range and an analysis result corresponding to each numerical range.
In the embodiment of the disclosure, when the target resolution type is the weight resolution type, a first random number is automatically generated, and first weight configuration information corresponding to the target domain name node is acquired. The first weight configuration information may be configured in advance according to the attribute of the target domain name node, and the first weight configuration information includes at least one numerical range and an analysis result corresponding to each numerical range, for example: the first weight configuration information includes numerical ranges 1-50 and 51-150, the analysis result corresponding to the numerical range 1-50 is a, and the analysis result corresponding to the numerical range 51-150 is B.
In the embodiment of the present disclosure, the process of generating the random number may adopt a linear congruence method, and the calculation formula is as follows: x i =(X i-1 X A + C) modM, where A, C, M are constants. Specifically, seed set by the function of srand () is X 0 Substituted into the above equation, each call to the srand () function then generates a new random value with the last generated random value.
And D2, when it is determined that the first random number falls into a first numerical range of the at least one numerical range, taking an analysis result corresponding to the first numerical range as a target analysis result, wherein the first numerical range is any one of the at least one numerical range.
In the embodiment of the present disclosure, after obtaining the first random number, the DNS server queries that the first random number falls in a first numerical range of at least one numerical range in the first weight configuration information, and then determines an analysis result corresponding to the first numerical range as a target analysis result.
As an example, a target domain name node corresponding to a domain name to be resolved is: text1.example. com, the first weight configuration information corresponding to the target domain name node is as follows:
Figure BDA0003770420790000161
based on the configuration information, it can be determined that: the weight of 1.1.1.1 was 33.3% and the weight of 2.2.2.2 was 66.6%. Meanwhile, the numerical range P corresponding to 1.1.1.1 and the numerical range Q corresponding to 2.2.2.2 can be queried from the first weight configuration information. Then, the numerical range P in which the generated first random number falls is determined as a first numerical range, and the analysis result (1.1.1.1) corresponding to the first numerical range is determined as a target analysis result.
In this embodiment of the present disclosure, in step C2, the domain name to be resolved is resolved by using the target resolution policy, so as to obtain a target resolution result, which includes the following steps E1-E2:
and E1, acquiring the target network segment corresponding to the virtual private cloud where the client is located under the condition that the target analysis type is the subnet analysis type.
And E2, determining the analysis result corresponding to the target network segment as a target analysis result.
In the embodiment of the disclosure, when the target resolution type is the subnet resolution type, the DNS server obtains the target network segment corresponding to the private virtual cloud where the client is located from the domain name resolution request sent by the client. And then inquiring a target analysis result corresponding to the target network segment based on the corresponding relation between the preset network segment and the analysis result.
In the embodiment of the present disclosure, after querying the analysis result corresponding to the target network segment, if the second weight configuration information corresponding to the target network segment does not exist, the analysis result corresponding to the target network segment is determined as the target analysis result.
As an example, a target domain name node corresponding to a domain name to be resolved is: test2.example. com, if the target network segment is: 10.0.1.0/24, the target resolution result is 1.1.1.1, if the target network segment is: 10.0.2.0/24, the target analysis result is: 2.2.2.2.
in this embodiment of the present disclosure, in step E2, determining the analysis result corresponding to the target network segment as the target analysis result includes the following steps E201 to E202:
step E201, under the condition that second weight configuration information corresponding to the target network segment exists, a second random number is generated, wherein the second weight configuration information comprises at least one numerical range and an analysis result corresponding to each numerical range.
Step E202, when it is determined that the second random number falls in a second value range of the at least one value range, taking an analysis result corresponding to the second value range as a target analysis result, where the second value range is any one of the at least one value range.
In the embodiment of the disclosure, under the condition that the second weight configuration information corresponding to the target network segment exists, a second random number is automatically generated, a second numerical range of at least one numerical range in the second weight configuration information is inquired that the second random number falls into the second numerical range, and then an analysis result corresponding to the second numerical range is determined as a target analysis result.
As an example, a target domain name node corresponding to a domain name to be resolved is: test2.example.com, target network segment: 10.0.2.0/24, the second weight configuration information corresponding to the target network segment is as follows:
Figure BDA0003770420790000181
based on the configuration information, it can be determined that: the target network segment is 10.0.2.0/24, the weight occupied by the resolution result 2.2.2.2 is 33.3%, the weight occupied by the resolution result 3.3.3.3 is 66.6%, and meanwhile, the numerical range N corresponding to 2.2.2.2 and the numerical range M corresponding to 3.3.3.3 can be inquired from the second weight configuration information. Then, the numerical range P in which the generated second random number falls is determined as a second numerical range, and the resolution result (3.3.3.3) corresponding to the second numerical range is determined as a target resolution result.
According to the method provided by the embodiment of the disclosure, the configuration information of each domain name node is set, the resolution type in the configuration information is utilized to quickly determine the resolution strategy, the domain name to be resolved is resolved based on the resolution strategy, and the purpose is to ensure that different resolution results are resolved according to different virtual private clouds of different clients.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 6 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 6, the method includes:
step S61, obtaining namespace configuration information, where the namespace configuration information includes at least one secondary domain name, and the secondary domain name corresponds to a first network identifier of at least one first vpn cloud.
In this embodiment of the present disclosure, the namespace configuration information obtained by the DNS server may be uploaded by a developer in advance, and the namespace configuration information includes at least one secondary domain name, for example: com, store, etc. Meanwhile, the method further includes a first network identifier corresponding to the at least one virtual private cloud corresponding to the secondary domain name, for example: the private cloud corresponding to example.com has a first network identifier 101 corresponding to map.example.com, and a first network identifier 102 corresponding to news.example.com.
Step S62, dividing the name space by using the secondary domain name to obtain at least one initial region.
In the embodiment of the present disclosure, the name space of the DNS server is divided by using the secondary domain names to obtain at least one initial region, and each initial region corresponds to a secondary domain name.
It should be noted that, the name space of the second-level domain name DNS server is used for partitioning, so that the domain name to be resolved belonging to the same second-level domain name is transmitted to a certain area for resolution in the subsequent domain name resolution process, which is beneficial to improving the resolution efficiency.
Step S63, obtaining a domain name resolution record, where the domain name resolution record includes at least one second virtual private cloud associated with at least one account, and a second network identifier of the second virtual private cloud.
In the embodiment of the present disclosure, the domain name resolution record may be generated by domain names resolved by the DNS server at a historical time. Thus, the domain name resolution record includes the second network identification of the private cloud with which the respective account is associated.
As an example, the domain name resolution record includes: com under the second-level domain name of "example.com", account a associates 3 virtual private clouds and the second network identifier corresponding to the virtual private clouds, and the second network identifier corresponding to account a includes: 105. 162, 230. Com under the second-level domain name "example.com", account B associates 3 virtual private clouds and a second network identifier corresponding to the virtual private clouds, and the second network identifier corresponding to account B includes: 111. 127, 320.
Step S64, based on the second network identification, a private area corresponding to the account is created in the initial area.
In the embodiment of the disclosure, after the second network identifier associated with each account is determined, a private area corresponding to each account is created, and the second network identifier associated with the account is set in the private area.
As an example, the private area created based on account a is: the network identifiers associated with the private zone (r) and the private zone (r) are: 105. 162, and 230. The private area created based on account B is: the network identifier associated with the private zone (r) and the private zone (r) is: 111. 127, and 320.
Step S65, creating a structural body in the initial region by using the first network identifier and the mapping relationship between the first network identifier and the second network identifier, and obtaining at least one region.
In the embodiment of the disclosure, after the private area is created, because at least one virtual private cloud exists under the secondary domain name associated with each initial area, a structural body is created in the initial area by using the first network identifier of the virtual private cloud, and after the creation of the structural body is completed, the final area is obtained by using the first network identifier and the mapping relationship between the first network identifier and the second network identifier.
Specifically, the number of first network identifiers corresponding to the initial area association secondary domain name is determined. And secondly, creating structural bodies with the same quantity as the first network identifications in the initial area, and writing the structural bodies into the first network identifications in a one-to-one correspondence manner. And finally, matching the first network identifier in the structural body with the second network identifier of the private area, and establishing a mapping relation between the successfully matched structural body and the private area, namely establishing the mapping relation between the structural body and the private area through the pointer. Therefore, when domain name resolution is subsequently carried out, the corresponding structural body can be quickly positioned from the region by utilizing the network identification, and the corresponding private region can be quickly searched by utilizing the pointer in the structural body, so that the domain name resolution efficiency is improved.
As an example, the second-level domain name corresponding to the area 1 is "example.com", and the second-level domain name "example.com" includes 3 virtual private clouds, and the 3 virtual private clouds correspond to the first network identifier: 101. 102, 103. Next, 3 structures are created in region 1: the structure ref1, the structure ref2 and the structure ref3 write the network identifiers 101, 102 and 103 into the structures ref1, ref2 and ref3 one by one. Then, the private area 7 of the associated network identifier 101, the private area 8 of the associated network identifier 102, and the private area 9 of the associated network identifier 103 are found from the plurality of private areas. Finally, the mapping relationship of the structure ref1 with the private area 7 is established by the first pointer. The mapping relationship of the structure ref2 with the private area 8 is established by the second pointer. The mapping relationship of the structure ref3 and the private area 9 is established by the third pointer.
In the embodiment of the present disclosure, after creating a structural body in the initial region by using the first network identifier and the mapping relationship between the first network identifier and the second network identifier, the following steps F1 to F2 are further included:
step F1, at least one sub-domain name corresponding to the second network identifier associated with the private area and configuration information corresponding to each sub-domain name are obtained.
Step F2, based on the sub-domain name and the configuration information corresponding to the sub-domain name, generating a dictionary tree corresponding to the second network identifier in the private area.
In this embodiment of the present disclosure, after the completion area and the private area are created, at least one sub domain name corresponding to the network identifier associated with the private area and configuration information corresponding to each sub domain name are also obtained, where the configuration information may be generated based on a code file written by a developer. And taking the network identifier as a father node of the dictionary tree, taking the sub domain name as a first-level child node of the dictionary tree, and taking the configuration information as a second-level node under the first-level child node to generate the dictionary tree.
The method provided by the embodiment of the disclosure divides the region according to the second-level domain name, creates the private region according to the account binding virtual private cloud, and establishes the association relationship between the region and the private region through the structural body, so that the method can keep high query performance under the condition of huge number of private regions and domain name configuration.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, where the method is applied to a client, and the method includes:
step H1, acquiring the domain name to be resolved and the target network identifier of the virtual private cloud to which the domain name to be resolved belongs, wherein the virtual private cloud is the virtual private cloud used by the current client.
Step H2, an initial domain name resolution request is generated, wherein the initial domain name resolution request includes client subnet information and client type information.
And step H3, carrying the domain name to be resolved in the option field in the client subnet information, and carrying the target network identifier in the option field in the client type information, so as to obtain the final domain name resolution request.
And step H4, sending a domain name resolution request to the DNS, so that the DNS resolves the domain name to be resolved according to the target network identifier to obtain a resolution result.
According to the method provided by the embodiment of the disclosure, the domain name to be analyzed and the target network identifier are respectively added to the client subnet information and the client type information in the domain name analysis request, so that the DNS server can realize tenant isolation by using the target network identifier after receiving the domain name analysis request.
Fig. 7 is a flowchart illustrating a resolution process of a domain name resolution request according to another embodiment of the disclosure, as shown in fig. 7, the resolution process is as follows:
the client sends a domain name resolution request to the DNS server, wherein the domain name resolution request comprises a domain name to be resolved (demo.test1.example.com) and a target network identifier (VNI: 102).
Secondly, after receiving the domain name resolution request, the DNS server extracts the domain name (demo. test1.example. com) to be resolved and the target network identifier (VNI: 102) from the domain name resolution request.
And querying a target secondary domain name (example.com) to which the domain name (demo.test1.example.com) to be analyzed belongs by the DNS server, and querying a target region (zone) corresponding to the target secondary domain name (example.com).
And fourthly, the DNS server queries the target structure (Ref: 102) carried by the target structure (VNI: 102) from the target area by using the target network identification (VNI: 102), and then acquires the target private area (private zone:1) having a mapping relation with the target structure (Ref: 102).
And fifthly, the DNS server queries a target dictionary tree (Trie:2) which is associated with the target network identifier (VNI: 102) from the target private area, and determines a target domain name node (node3) which is matched with the domain name to be resolved from at least one domain name node included in the target dictionary tree.
And sixthly, acquiring target configuration information of the target domain name node, and analyzing the domain name to be analyzed by using the target configuration information to obtain a target analysis result.
Specifically, as shown in fig. 8, the step (sixty) includes:
and (6.1) extracting a target analysis type from the target configuration information, wherein the target analysis type is a subnet analysis type.
(6.2) acquiring a target network segment corresponding to the virtual private cloud where the client is located, wherein the target network segment is 10.200.0.0/16, inquiring whether weight configuration information corresponding to the target network segment still exists, and if the weight configuration information corresponding to the target network segment does not exist, directly determining an analysis result corresponding to the target network segment as a target analysis result.
(6.3) if there is weight configuration information corresponding to the target network segment, acquiring at least one numerical range included in the weight configuration information and an analysis result corresponding to each numerical range, as shown in fig. 8, where the analysis result includes: 10.1.1.1 and 10.2.2.2, wherein the weight of 10.1.1.1 is 33.3%, and the weight of 10.2.2.2 is 66.6%.
And (6.4) automatically generating a random number by the DNS server, inquiring a second numerical value range of the second random number, and determining a resolution result (10.1.1.1) corresponding to the second numerical value range as a target resolution result.
Fig. 9 is a block diagram of a device for processing a domain name resolution request according to an embodiment of the present disclosure, where the device may be implemented as part of or all of an electronic device through software, hardware, or a combination of the two. As shown in fig. 9, the apparatus includes:
a receiving module 91, configured to receive a domain name resolution request from a client, where the domain name resolution request includes: the domain name to be analyzed and the target network identifier of the virtual private cloud where the client is located;
the query module 92 is configured to query, according to the domain name to be resolved, a target region corresponding to the domain name to be resolved from the at least one region, and query, from the target region, a target private region associated with the target network identifier, where the target private region includes at least one domain name node associated with the network identifier;
an obtaining module 93, configured to determine, according to a target network identifier, a target domain name node corresponding to a domain name to be resolved from a target private area, where the target domain name node includes at least one piece of configuration information;
the parsing module 94 is configured to obtain target configuration information matched with the client from the at least one piece of configuration information, and parse the domain name to be parsed based on the target configuration information to obtain a target parsing result.
In the application embodiment, the query module 92 is configured to obtain a target secondary domain name to which a domain name to be resolved belongs; and inquiring a target area corresponding to the target secondary domain name from at least one area.
In the embodiment of the present disclosure, each of the at least one area includes at least one structural body and a private area having a mapping relationship with each structural body, and the structural body includes a network identifier.
In the embodiment of the application, the query module 92 is configured to obtain a target structure corresponding to a target network identifier from a target area; and determining a private area having a preset mapping relation with the target structure body as a target private area.
In the embodiment of the present disclosure, a target dictionary tree is arranged in the target private area, the target dictionary tree includes at least one network identifier node associated with the target private area, and the network identifier node is associated with at least one domain name node.
In the embodiment of the present disclosure, the obtaining module 93 is configured to query a target network identifier node corresponding to a target network identifier from a target dictionary tree, and obtain at least one candidate domain name node corresponding to the target network identifier node; and determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
In the embodiment of the present disclosure, the parsing module 94 is configured to extract a target parsing type carried in the target configuration information, and obtain a target parsing policy corresponding to the target parsing type; and analyzing the domain name to be analyzed by using a target analysis strategy to obtain a target analysis result.
In this embodiment of the present disclosure, the parsing module 94 is configured to generate a first random number and obtain first weight configuration information corresponding to a target domain name node when a target parsing type is a weight parsing type, where the first weight configuration information includes at least one numerical range and a parsing result corresponding to each numerical range; and when the first random number is determined to fall into a first numerical range of the at least one numerical range, taking an analysis result corresponding to the first numerical range as a target analysis result, wherein the first numerical range is any one of the at least one numerical range.
In the embodiment of the present disclosure, the parsing module 94 is configured to, in a case that the target parsing type is a subnet parsing type, obtain a target network segment corresponding to a virtual private cloud where the client is located; and determining the analysis result corresponding to the target network segment as a target analysis result.
In this embodiment of the present disclosure, the parsing module 94 is configured to generate a second random number in the presence of second weight configuration information corresponding to the target network segment, where the second weight configuration information includes at least one numerical range and a parsing result corresponding to each numerical range; and when the second random number is determined to fall into a second numerical range of the at least one numerical range, taking an analysis result corresponding to the second numerical range as a target analysis result, wherein the second numerical range is any one of the at least one numerical range.
In the embodiment of the present disclosure, the system further includes a configuration module, configured to obtain namespace configuration information, where the namespace configuration information includes at least one secondary domain name, and the secondary domain name corresponds to a first network identifier of at least one first virtual private cloud; dividing a name space by using a secondary domain name to obtain at least one initial region; obtaining a domain name resolution record, wherein the domain name resolution record comprises at least one second virtual private cloud associated with at least one account and a second network identifier of the second virtual private cloud; based on the second network identification, a private area corresponding to the account is created in the initial area; and creating a structural body in the initial area by using the first network identifier and the mapping relation between the first network identifier and the second network identifier to obtain at least one area.
In the embodiment of the present disclosure, the configuration module is further configured to obtain at least one sub-domain name corresponding to the second network identifier associated with the private area, and configuration information corresponding to each sub-domain name; and generating a dictionary tree corresponding to the second network identifier in the private area based on the sub-domain name and the configuration information corresponding to the sub-domain name.
In the process of domain name resolution, the device provided by the disclosure firstly acquires a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by using the domain name to be analyzed and the target network identifier carried by the domain name analysis request, and acquiring configuration information corresponding to the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the configuration information. Therefore, the target private area is determined by using the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained for different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. And the higher resolution efficiency can be still kept under the condition of large number of domain names to be resolved.
An embodiment of the present disclosure further provides an electronic device, as shown in fig. 10, the electronic device may include: a processor 1501, a communication interface 1502, a memory 1503 and a communication bus 1504, wherein the processor 1501, the communication interface 1502 and the memory 1503 complete communication with each other through the communication bus 1504.
A memory 1503 for storing a computer program;
the processor 1501 is configured to implement the steps of the above embodiments when executing the computer program stored in the memory 1503.
The communication bus mentioned in the above terminal may be a Peripheral Component Interconnect (PCI) bus, an Extended Industry Standard Architecture (EISA) bus, or the like. The communication bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one thick line is shown, but this does not mean that there is only one bus or one type of bus.
The communication interface is used for communication between the terminal and other equipment.
The Memory may include a Random Access Memory (RAM), and may also include a non-volatile Memory (non-volatile Memory), such as at least one disk Memory. Optionally, the memory may also be at least one memory device located remotely from the processor.
The Processor may be a general-purpose Processor, including a Central Processing Unit (CPU), a Network Processor (NP), and the like; the Integrated Circuit may also be a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other Programmable logic device, a discrete Gate or transistor logic device, or a discrete hardware component.
In yet another embodiment provided by the present disclosure, a computer-readable storage medium is further provided, which has instructions stored therein, and when the instructions are executed on a computer, the instructions cause the computer to execute the resolution method of the domain name resolution request in any one of the above embodiments.
In yet another embodiment provided by the present disclosure, there is also provided a computer program product containing instructions that, when run on a computer, cause the computer to perform the resolution method of a domain name resolution request of any of the above embodiments.
In the above embodiments, the implementation may be wholly or partially realized by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. The procedures or functions according to the embodiments of the disclosure are wholly or partially generated when the computer program instructions are loaded and executed on a computer. The computer may be a general purpose computer, a special purpose computer, a network of computers, or other programmable device. The computer instructions may be stored in a computer readable storage medium or transmitted from one computer readable storage medium to another computer readable storage medium, for example, the computer instructions may be transmitted from one website, computer, server, or data center to another website, computer, server, or data center via wired (e.g., coaxial cable, optical fiber, digital client line) or wireless (e.g., infrared, wireless, microwave, etc.) means. The computer-readable storage medium can be any available medium that can be accessed by a computer or a data storage device, such as a server, a data center, etc., that incorporates one or more of the available media. The usable medium may be a magnetic medium (e.g., floppy Disk, hard Disk, magnetic tape), an optical medium (e.g., DVD), or a semiconductor medium (e.g., Solid State Disk), among others.
The above description is only for the preferred embodiment of the present disclosure, and is not intended to limit the scope of the present disclosure. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present disclosure are included in the scope of protection of the present disclosure.
The foregoing are merely exemplary embodiments of the present disclosure, which enable those skilled in the art to understand or practice the present disclosure. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the disclosure. Thus, the present disclosure is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (13)

1. A method for processing a domain name resolution request, the method comprising:
receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: a domain name to be analyzed and a target network identifier of a virtual private cloud where the client is located;
according to the domain name to be resolved, a target area corresponding to the domain name to be resolved is inquired from at least one area, and a target private area associated with the target network identifier is inquired from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier;
determining a target domain name node corresponding to the domain name to be analyzed from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
and acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
2. The method according to claim 1, wherein the querying, according to the domain name to be resolved, a target region corresponding to the domain name to be resolved from at least one region comprises:
acquiring a target secondary domain name to which the domain name to be analyzed belongs;
and inquiring a target area corresponding to the target secondary domain name from the at least one area.
3. The method according to claim 1, wherein each of the at least one region comprises at least one structure and a private region having a mapping relationship with each of the structures, and the structure comprises a network identifier;
the querying a target private area associated with the target network identifier from the target area includes:
acquiring a target structure body corresponding to the target network identifier from the target area;
and determining a private area having a preset mapping relation with the target structure body as the target private area.
4. The method according to claim 1, wherein a target dictionary tree is set in the target private area, the target dictionary tree includes at least one network identifier node associated with the target private area, the network identifier node is associated with at least one domain name node, and determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier includes:
inquiring a target network identification node corresponding to the target network identification from the target dictionary tree, and acquiring at least one candidate domain name node corresponding to the target network identification node;
and determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
5. The method according to claim 1, wherein the analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result includes:
extracting a target analysis type carried in the target configuration information, and acquiring a target analysis strategy corresponding to the target analysis type;
and analyzing the domain name to be analyzed by using the target analysis strategy to obtain the target analysis result.
6. The method according to claim 5, wherein the analyzing the domain name to be analyzed by using the target analysis policy to obtain the target analysis result includes:
generating a first random number under the condition that the target analysis type is a weight analysis type, and acquiring first weight configuration information corresponding to the target domain name node, wherein the first weight configuration information comprises at least one numerical range and an analysis result corresponding to each numerical range;
when it is determined that the first random number falls into a first numerical range of at least one numerical range, taking an analysis result corresponding to the first numerical range as the target analysis result, wherein the first numerical range is any one of the at least one numerical range.
7. The method according to claim 5, wherein the analyzing the domain name to be analyzed by using the target analysis policy to obtain the target analysis result includes:
under the condition that the target analysis type is a subnet analysis type, acquiring a target network segment corresponding to a virtual private cloud where the client is located;
and determining the analysis result corresponding to the target network segment as the target analysis result.
8. The method of claim 7, wherein determining the resolution result corresponding to the target network segment as the target resolution result comprises:
generating a second random number under the condition that second weight configuration information corresponding to the target network segment exists, wherein the second weight configuration information comprises at least one numerical range and an analysis result corresponding to each numerical range;
when it is determined that the second random number falls into a second numerical range of the at least one numerical range, taking an analysis result corresponding to the second numerical range as the target analysis result, wherein the second numerical range is any one of the at least one numerical range.
9. The method according to claim 1, wherein before querying at least one zone for a target zone corresponding to the domain name to be resolved, the method further comprises:
acquiring name space configuration information, wherein the name space configuration information comprises at least one secondary domain name, and the secondary domain name corresponds to a first network identifier of at least one first virtual private cloud;
dividing a name space by using the secondary domain name to obtain at least one initial region;
obtaining a domain name resolution record, wherein the domain name resolution record comprises at least one second virtual private cloud associated with at least one account and a second network identifier of the second virtual private cloud;
based on the second network identification, creating a private area corresponding to the account in the initial area;
and creating a structural body in the initial region by using the first network identifier and the mapping relation between the first network identifier and the second network identifier to obtain the at least one region.
10. The method of claim 9, wherein after creating the structure within the initial region using the first network identifier and the mapping relationship between the first network identifier and the second network identifier, the method further comprises:
acquiring at least one sub-domain name corresponding to a second network identifier associated with the private area and configuration information corresponding to each sub-domain name;
and generating a dictionary tree corresponding to the second network identifier in the private area based on the sub-domain name and the configuration information corresponding to the sub-domain name.
11. A device for processing a domain name resolution request, comprising:
a receiving module, configured to receive a domain name resolution request from a client, where the domain name resolution request includes: a domain name to be analyzed and a target network identifier of a virtual private cloud where the client is located;
the query module is used for querying a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and querying a target private area associated with the target network identifier from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier;
an obtaining module, configured to determine, according to the target network identifier, a target domain name node corresponding to the domain name to be resolved from the target private area, where the target domain name node includes at least one piece of configuration information;
and the analysis module is used for acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
12. An electronic device is characterized by comprising a processor, a communication interface, a memory and a communication bus, wherein the processor and the communication interface are used for realizing mutual communication by the memory through the communication bus; wherein:
a memory for storing a computer program;
a processor for performing the method steps of any of claims 1 to 10 by executing a program stored on a memory.
13. A storage medium, characterized in that the storage medium comprises a stored program, wherein the program when executed performs the method steps of any of the preceding claims 1 to 10.
CN202210899707.5A 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium Active CN115037720B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210899707.5A CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210899707.5A CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Publications (2)

Publication Number Publication Date
CN115037720A true CN115037720A (en) 2022-09-09
CN115037720B CN115037720B (en) 2024-07-05

Family

ID=83129909

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210899707.5A Active CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN115037720B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116016436A (en) * 2022-12-07 2023-04-25 天翼云科技有限公司 Multi-tenant network construction method and device based on cloud analysis
CN116938877A (en) * 2023-09-15 2023-10-24 阿里云计算有限公司 Domain name resolution data configuration method, domain name resolution method and related device
CN117938808A (en) * 2024-03-21 2024-04-26 北京火山引擎科技有限公司 Domain name resolution method, system, device, equipment and medium for edge calculation

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104144222A (en) * 2014-08-20 2014-11-12 北京阅联信息技术有限公司 Method and system for load balancing in DNS system based on alias record
US10033691B1 (en) * 2016-08-24 2018-07-24 Amazon Technologies, Inc. Adaptive resolution of domain name requests in virtual private cloud network environments
US10764315B1 (en) * 2019-05-08 2020-09-01 Capital One Services, Llc Virtual private cloud flow log event fingerprinting and aggregation
CN112804366A (en) * 2019-11-13 2021-05-14 北京百度网讯科技有限公司 Method and device for resolving domain name
CN113364895A (en) * 2021-06-29 2021-09-07 中国电信股份有限公司 Method, device, electronic equipment and storage medium for resource scheduling
CN114500450A (en) * 2021-12-22 2022-05-13 天翼云科技有限公司 Domain name resolution method, device and computer readable storage medium
CN114629911A (en) * 2022-04-18 2022-06-14 北京字节跳动网络技术有限公司 Method, device, equipment, medium and program product for processing domain name resolution request

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104144222A (en) * 2014-08-20 2014-11-12 北京阅联信息技术有限公司 Method and system for load balancing in DNS system based on alias record
US10033691B1 (en) * 2016-08-24 2018-07-24 Amazon Technologies, Inc. Adaptive resolution of domain name requests in virtual private cloud network environments
US10764315B1 (en) * 2019-05-08 2020-09-01 Capital One Services, Llc Virtual private cloud flow log event fingerprinting and aggregation
CN112804366A (en) * 2019-11-13 2021-05-14 北京百度网讯科技有限公司 Method and device for resolving domain name
CN113364895A (en) * 2021-06-29 2021-09-07 中国电信股份有限公司 Method, device, electronic equipment and storage medium for resource scheduling
CN114500450A (en) * 2021-12-22 2022-05-13 天翼云科技有限公司 Domain name resolution method, device and computer readable storage medium
CN114629911A (en) * 2022-04-18 2022-06-14 北京字节跳动网络技术有限公司 Method, device, equipment, medium and program product for processing domain name resolution request

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
宋涵;: "基于云计算的开放大学教学资源整合探析", 电子测试, no. 22, 31 December 2014 (2014-12-31) *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116016436A (en) * 2022-12-07 2023-04-25 天翼云科技有限公司 Multi-tenant network construction method and device based on cloud analysis
CN116938877A (en) * 2023-09-15 2023-10-24 阿里云计算有限公司 Domain name resolution data configuration method, domain name resolution method and related device
CN116938877B (en) * 2023-09-15 2024-01-05 阿里云计算有限公司 Domain name resolution data configuration method, domain name resolution method and related device
CN117938808A (en) * 2024-03-21 2024-04-26 北京火山引擎科技有限公司 Domain name resolution method, system, device, equipment and medium for edge calculation

Also Published As

Publication number Publication date
CN115037720B (en) 2024-07-05

Similar Documents

Publication Publication Date Title
CN115037720A (en) Method and device for processing domain name resolution request, electronic equipment and storage medium
US11816161B2 (en) Asset search and discovery system using graph data structures
US7496566B2 (en) Priority based LDAP service publication mechanism
US7562075B2 (en) Change approvals for computing systems
US20130173769A1 (en) System and method for resolving a dns request using metadata
US11025584B2 (en) Client subnet efficiency by equivalence class aggregation
CN107786678B (en) Domain name resolution method, device and system
CN107613039B (en) IP address attribution inquiry method, device, system and storage medium
CN108600412B (en) Domain name resolution method and system
US10171415B2 (en) Characterization of domain names based on changes of authoritative name servers
US8554889B2 (en) Method, system and apparatus for managing computer identity
CN109995885B (en) Domain name space structure presentation method, device, equipment and medium
CN114500456A (en) DNS scheduling optimization method and device based on full-network sniffing and computing equipment
CN110120918B (en) Identification analysis method and device
CN109710860B (en) URL (Uniform resource locator) classification matching method and device
CN115858590A (en) Domain name query request processing method, computer device, apparatus, medium, and product
CN108712515B (en) Domain name resolution method and system
CN105656939B (en) A kind of method and apparatus generating DNS query packet
CN112015910A (en) Method and device for generating domain name knowledge base, computer equipment and storage medium
CN105245626A (en) Method for realizing website addressing by using shortcut domain name in private network
CN116305288B (en) Method, device, equipment and storage medium for isolating database resources
EP2076849A1 (en) Method for processing native language internet address and storage medium for saving program of executing the same
Allbery DNS SRV Resource Records for AFS
CN115643234A (en) Domain name resolution method, device, equipment and storage medium
CN116708361A (en) Domain name resolver identification method and device and electronic equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant