CN115037720B - Domain name resolution request processing method and device, electronic equipment and storage medium - Google Patents

Domain name resolution request processing method and device, electronic equipment and storage medium Download PDF

Info

Publication number
CN115037720B
CN115037720B CN202210899707.5A CN202210899707A CN115037720B CN 115037720 B CN115037720 B CN 115037720B CN 202210899707 A CN202210899707 A CN 202210899707A CN 115037720 B CN115037720 B CN 115037720B
Authority
CN
China
Prior art keywords
target
domain name
configuration information
area
network identifier
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202210899707.5A
Other languages
Chinese (zh)
Other versions
CN115037720A (en
Inventor
吕逸凡
王剑
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Youzhuju Network Technology Co Ltd
Original Assignee
Beijing Youzhuju Network Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Youzhuju Network Technology Co Ltd filed Critical Beijing Youzhuju Network Technology Co Ltd
Priority to CN202210899707.5A priority Critical patent/CN115037720B/en
Publication of CN115037720A publication Critical patent/CN115037720A/en
Application granted granted Critical
Publication of CN115037720B publication Critical patent/CN115037720B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a method and a device for processing a domain name resolution request, electronic equipment and a storage medium. In the domain name resolution process, the method provided by the disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by utilizing a domain name to be resolved and a target network identifier carried by the domain name resolution request, and acquiring target configuration information corresponding to the client from at least one configuration information included in the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the target configuration information. According to the method and the device for analyzing the domain name, the target private area is determined by utilizing the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained aiming at different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved.

Description

Domain name resolution request processing method and device, electronic equipment and storage medium
Technical Field
The disclosure relates to the technical field of communication, and in particular relates to a method and a device for processing a domain name resolution request, electronic equipment and a storage medium.
Background
Domain NAME SYSTEM (abbreviated: DNS) resolution of tenant isolation on a cloud is a private DNS service based on a virtual private cloud (Virtual Private Cloud, abbreviated: VPC) environment. The resolution service allows private domain names to be mapped to IP addresses in a custom virtual private cloud or clouds of clients. The private domain name records can be conveniently used by the DNS server to manage the resources such as hostnames, databases, terms of service, and the like in the virtual private cloud.
The prior DNS analysis scheme can analyze the DNS request of the client, but can not obtain different analysis results for different VPCs of different clients during analysis.
Disclosure of Invention
In order to solve the technical problems or at least partially solve the technical problems, the disclosure provides a method, a device, an electronic device and a storage medium for processing a domain name resolution request.
According to an aspect of the embodiments of the present disclosure, there is provided a method for processing a domain name resolution request, the method including:
Receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: a domain name to be resolved and a target network identifier of a virtual private cloud where the client is located;
Inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area related to the target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier;
determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
and acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
According to another aspect of the embodiments of the present disclosure, there is also provided a device for processing a domain name resolution request, including:
the receiving module is used for receiving a domain name resolution request from a client, wherein the domain name resolution request comprises the following components: a domain name to be resolved and a target network identifier of a virtual private cloud where the client is located;
The query module is used for querying a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and querying a target private area related to the target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier;
The acquisition module is used for determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
and the analysis module is used for acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
According to another aspect of the embodiments of the present disclosure, there is also provided a storage medium including a stored program that performs the steps described above when running.
According to another aspect of the embodiments of the present disclosure, there is also provided an electronic device including a processor, a communication interface, a memory, and a communication bus, where the processor, the communication interface, and the memory complete communication with each other through the communication bus; wherein: a memory for storing a computer program; and a processor for executing the steps of the method by running a program stored on the memory.
The disclosed embodiments also provide a computer program product comprising instructions which, when run on a computer, cause the computer to perform the steps of the above method.
The technical scheme provided by the embodiment of the disclosure has the following advantages: in the domain name resolution process, the method provided by the disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by utilizing a domain name to be resolved and a target network identifier carried by the domain name resolution request, and acquiring target configuration information corresponding to the client from at least one configuration information included in the target domain name node. And finally, completing the resolution of the domain name to be resolved by utilizing the target configuration information. According to the method and the device for analyzing the domain name, the target private area is determined by utilizing the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained aiming at different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. By the method for resolving the domain names, high resolving efficiency can be still maintained under the condition of huge number of domain names to be resolved.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the disclosure and together with the description, serve to explain the principles of the disclosure.
In order to more clearly illustrate the embodiments of the present disclosure or the solutions in the prior art, the drawings that are required for the description of the embodiments or the prior art will be briefly described below, and it will be obvious to those skilled in the art that other drawings can be obtained from these drawings without inventive effort.
Fig. 1 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure;
FIG. 2 is a flow chart of a method for processing a domain name resolution request according to another embodiment of the present disclosure;
Fig. 3 is a schematic architecture diagram of an area within a DNS server according to an embodiment of the present disclosure;
FIG. 4 is a flow chart of a method for processing a domain name resolution request according to another embodiment of the present disclosure;
FIG. 5 is a flow chart of a method for processing a domain name resolution request according to another embodiment of the present disclosure;
FIG. 6 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure;
Fig. 7 is a resolution flowchart of a domain name resolution request according to an embodiment of the present disclosure;
fig. 8 is a resolution flow chart of a domain name resolution request provided in an embodiment of the present disclosure;
Fig. 9 is a block diagram of a processing device for a domain name resolution request according to an embodiment of the disclosure;
fig. 10 is a schematic structural diagram of an electronic device according to an embodiment of the disclosure.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present disclosure more apparent, the technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present disclosure, and it is apparent that the described embodiments are some embodiments of the present disclosure, but not all embodiments, the exemplary embodiments of the present disclosure and the descriptions thereof are used to explain the present disclosure and do not constitute undue limitations on the present disclosure. All other embodiments, which can be made by one of ordinary skill in the art without undue burden from the disclosure, are within the scope of the disclosure.
It should be noted that in this document, relational terms such as "first" and "second" and the like are used solely to distinguish one entity or action from another similar entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Moreover, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
The embodiment of the disclosure provides a method and device for processing a domain name resolution request, electronic equipment and a storage medium. The method provided by the embodiment of the disclosure can be applied to any needed electronic device, for example, the method can be used as a server, a terminal and other electronic devices, is not particularly limited herein, and is convenient to describe and is hereinafter simply referred to as the electronic device.
According to an aspect of the disclosed embodiments, a method embodiment of a method for processing a domain name resolution request is provided. Fig. 1 is a flowchart of a method for processing a domain name resolution request according to an embodiment of the present disclosure, where, as shown in fig. 1, the method includes:
Step S11, receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: and the domain name to be resolved and the target network identification of the virtual private cloud where the client is located.
The method provided by the embodiment of the disclosure is applied to a public DNS server deployed in an Internet data center (INTERNET DATA CENTER, abbreviated as IDC). It should be noted that, in order to obtain different DNS resolution results according to different VPCs of different clients in the DNS resolution process, in the embodiment of the present disclosure, a public DNS server is deployed in an internet data center, where the DNS server can distinguish the VPCs of the clients according to network identifiers in domain name resolution requests sent by the clients, so as to further have tenant isolation capability.
Based on this, the embodiment of the disclosure deploys the public DNS server in the internet data center, which saves cost compared with deploying the DNS server in each VPC, and can obtain different DNS resolution results according to different VPCs of different clients on the basis of realizing tenant isolation.
In the embodiment of the disclosure, after receiving a domain name resolution request sent by a client, a DNS server resolves the domain name resolution request to obtain client Subnet information and client type information carried by the domain name resolution request, where the client Subnet information (EDNS CLIENT Subnet, abbreviated as ECS) includes a domain name to be resolved and an IP address of the client, and the client type information (EDNS CLIENT VNI, abbreviated as ECV) includes a target network identifier (VXLAN Network Identifier, abbreviated as VNI) of a Virtual Private Cloud (VPC) where the client is located. The subsequent DNS server may resolve the domain name to be resolved according to the destination network identification.
In addition, after receiving the domain name resolution request, the DNS server will first obtain the client type information from the domain name resolution request, and if the client type information does not exist in the domain name resolution request, the DNS server does not process the domain name resolution request.
It should be noted that, before sending the domain name resolution request, the client may add a custom field to the domain name resolution request based on an extended domain name system mechanism (Extension Mechanisms for DNS, abbreviated as EDNS), and identify the client subnet information or the client type information through the custom field.
Step S12, inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area related to a target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier.
In the embodiment of the disclosure, after the DNS server resolves the target network identifier from the domain name resolution request, a target private area associated with the target network identifier is queried from at least one private area of the DNS server. The private area of the DNS server is obtained by dividing the name space of the DNS server in advance. Wherein each private area is capable of associating at least one network identity, each network identity corresponds to one private area, and each private area comprises at least one domain name node.
Step S13, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information.
In the embodiment of the disclosure, the domain name nodes are divided in the private area according to the network identifications associated with the private area, so that the private area includes at least one domain name node corresponding to each network identification associated with the private area. Therefore, at least one candidate domain name node corresponding to the target network identifier can be obtained from the target private area, then the domain name to be resolved is matched with each candidate domain name node, and the candidate domain name node successfully matched with the domain name to be resolved is determined as the target domain name node.
As one example, the network identification associated with the target private area includes: network identification 105, network identification 162, and network identification 231. At this time, the target network identifier is 105, and the domain name to be resolved is text1.example.com. Then, at least one candidate domain name node corresponding to the target network identifier 105 is queried from the target private area, wherein the candidate domain name node comprises a candidate domain name node 1: text1.example.com, candidate domain name node 2: text2.sample.com. And then matching the domain name text1.example.com to be analyzed with the two candidate domain name nodes, and determining the successfully matched candidate domain name node 1 as a target domain name node.
Step S14, obtaining target configuration information matched with the client from at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
In the embodiment of the present disclosure, after acquiring the target domain name node, the DNS server may acquire target configuration information of the target domain name node, where the target configuration information may be preconfigured in the target domain name node. The target configuration information comprises analysis types, such as subnet analysis or weight analysis, and then the analysis types are utilized to obtain corresponding analysis strategies, and the domain name to be analyzed is analyzed through the analysis strategies to obtain a target analysis result.
In the domain name resolution process, the method provided by the embodiment of the disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by utilizing the domain name to be resolved and the target network identifier carried by the domain name resolution request, and acquiring configuration information corresponding to the target domain name node. Finally, the configuration information is utilized to complete the resolution of the domain name to be resolved. According to the method and the device for analyzing the domain name, the target private area is determined by utilizing the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained aiming at different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. And by means of resolving the domain names in the private area, higher resolution efficiency can be still maintained under the condition of huge number of domain names to be resolved.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 2 is a flowchart of a method for processing a domain name resolution request, provided in another embodiment of the present disclosure, as shown in fig. 2, where the method includes:
Step S21, receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: and the domain name to be resolved and the target network identification of the virtual private cloud where the client is located. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S22, inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area associated with a target network identifier from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier.
In the embodiment of the disclosure, according to a domain name to be resolved, a target area corresponding to the domain name to be resolved is queried from at least one area, and the method comprises the following steps of A1-A2:
and A1, acquiring a target secondary domain name to which the domain name to be resolved belongs.
In the embodiment of the disclosure, because the domain name to be resolved carried by the domain name resolution request is a sub-level domain name, in order to quickly locate the private area corresponding to the domain name to be resolved, the target second-level domain name to which the domain name to be resolved belongs is first searched.
As one example: the domain name to be resolved carried in the domain name resolution request is: the deso.text1.example.com can obtain the target secondary domain name to which the domain name to be resolved belongs by analyzing the suffix of the domain name to be resolved as follows: example.
And step A2, inquiring a target area corresponding to the target secondary domain name from at least one area.
In the embodiment of the disclosure, each area corresponds to a secondary domain name, each area includes at least one structure body, and a private area having a mapping relationship with each structure body, and the structure body includes a network identifier.
In the embodiment of the disclosure, the DNS server divides the name space in advance to obtain multiple zones (zones), and then associates a secondary domain name with each zone. The DNS server can query the target area corresponding to the target domain name from the multiple areas by using the obtained target domain name.
In the embodiment of the disclosure, querying a target private area associated with a target network identifier from target areas includes the following steps A3-A4:
And step A3, obtaining a target structure body corresponding to the target network identifier from the target area.
And step A4, determining a private area with a preset mapping relation with the target structure body as the target private area.
In the embodiment of the disclosure, the target area includes at least one structure body, each structure body includes a network identifier, and each structure body and the private area establish a mapping relationship by using the network identifier, where the mapping relationship can be represented by a pointer. Therefore, the embodiment of the disclosure can utilize the target network identifier to match with the network identifiers in each structural body, determine the structural body successfully matched as the target structural body, and determine the private area pointed by the pointer of the target structural body as the target private area.
It should be noted that, since each private area corresponds to one account, the private areas are associated with the network identities of the virtual private clouds of the accounts corresponding to the private areas. Therefore, the embodiment of the disclosure establishes a mapping relationship between each structure and the private area through the pointer by arranging at least one structure in each area. Finally, each structure body and one private area establish a mapping relation, and each private area can establish a mapping relation with at least one structure body. Therefore, tenant isolation in the domain name resolution process can be realized, and the DNS server can distinguish the environment of the virtual private cloud where the client is located by utilizing the network identifier.
As an example, as shown in fig. 3, the DNS server includes: region 1 and region 2, region 1 being the target region, region 1 comprising: the structures 11, 12, and 13 are identified by 105, 162, and 231 respectively, and are identified by the network of the structure 11, the network of the structure 12, and the network of the structure 13. The target network identity is 105, so it is possible to determine the structure 11 as a target structure and the private area pointed to by the pointer of the target structure 11 as a target private area.
Step S23, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S24, obtaining target configuration information matched with the client from at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result. The detailed description refers to the relevant descriptions of the corresponding steps in the above embodiments, and will not be repeated here.
According to the method provided by the embodiment of the disclosure, the DNS server searches the target area by utilizing the secondary domain name, searches the target structure body from the target area by utilizing the target network identifier, and finally searches the private area by utilizing the pointer of the target structure body, so that high-efficiency inquiry can be realized under the condition of huge number of the private areas, and real-time domain name analysis can be effectively ensured.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 4 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 4, where the method includes:
step S31, receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: and the domain name to be resolved and the target network identification of the virtual private cloud where the client is located.
The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S32, inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area related to a target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S33, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information.
In the embodiment of the disclosure, a target dictionary tree is set in the target private area, the target dictionary tree includes at least one network identifier node associated with the target private area, and the network identifier node is associated with at least one domain name node.
In the embodiment of the present disclosure, step S33, determining a target domain name node from domain name nodes included in a target private area according to a target network identifier and a domain name to be resolved, includes the following steps B1-B2:
And B1, inquiring a target network identification node corresponding to the target network identification from the target dictionary tree, and acquiring at least one candidate domain name node corresponding to the target network identification node.
And B2, determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
In the embodiment of the disclosure, in order to improve the efficiency of acquiring domain name nodes from private areas, dictionary trees are set in the private areas, and at least one network identification node is included under each dictionary tree, and each network identification node is associated with at least one domain name node.
After the target private area is determined, determining a network identification node corresponding to the target network identification from a target dictionary tree of the target private area, matching the network identification with each network identification node in the target dictionary tree by utilizing the network identification to obtain the target network identification node, and determining a domain name node corresponding to the target network identification as a candidate domain name node. And matching the domain name to be resolved with each candidate domain name node, determining the successfully matched candidate domain name node as a target domain name node, wherein the target domain name node comprises at least one piece of configuration information, and different resolution results can be obtained by resolving the domain name by different configuration information.
Step S34, obtaining target configuration information matched with the client from at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
According to the method provided by the embodiment of the disclosure, the dictionary tree corresponding to the network identifier is arranged in the private area, so that the target domain name node corresponding to the domain name to be resolved can be quickly searched, and the domain name resolution efficiency is improved. In addition, the configuration information of each domain name node can be set in the dictionary tree, and when the analysis type of a certain domain name node needs to be changed later, the configuration information of the domain name node can be directly updated, so that the original analysis configuration flow is simplified.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 5 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 5, where the method includes:
step S41, receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: and the domain name to be resolved and the target network identification of the virtual private cloud where the client is located.
The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S42, inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area associated with a target network identifier from the target area, wherein the target private area comprises at least one domain name node associated with the network identifier. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S43, determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information. The detailed description refers to the corresponding related descriptions of the above embodiments, and will not be repeated here.
Step S44, obtaining target configuration information matched with the client from at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result.
In the embodiment of the present disclosure, after obtaining the target domain name node corresponding to the domain name to be resolved, the target configuration information matched with the client is obtained from at least one configuration information by using the relevant information of the client, where the relevant information may be a network segment or the like. It should be noted that, the configuration information in the domain name node is preconfigured, and different configuration information can provide different resolution policies in the domain name resolution process.
In the embodiment of the disclosure, resolving a domain name to be resolved based on target configuration information to obtain a target resolving result, which comprises the following steps C1-C2:
and step C1, extracting a target analysis type carried in the target configuration information, and acquiring a target analysis strategy corresponding to the target analysis type.
In the embodiment of the present disclosure, after obtaining the target configuration information, the DNS server may extract a target resolution type from the target configuration information, where the target resolution type includes: a subnet resolution type and a weight resolution type. And then acquiring a corresponding target analysis strategy by utilizing the target analysis type. It should be noted that different parsing types correspond to different parsing strategies. The domain name resolution is performed by different types of resolution strategies, so that different resolution results can be obtained for domain name resolution requests sent by different clients.
And C2, analyzing the domain name to be analyzed by utilizing a target analysis strategy to obtain a target analysis result.
In the embodiment of the present disclosure, step C2, resolving the domain name to be resolved by using a target resolution policy, to obtain a target resolution result, includes the following steps D1-D2:
And D1, under the condition that the target analysis type is the weight analysis type, generating a first random number, and acquiring first weight configuration information corresponding to the target domain name node, wherein the first weight configuration information comprises at least one numerical value range and analysis results corresponding to each numerical value range.
In the embodiment of the disclosure, under the condition that the target resolution type is the weight resolution type, automatically generating a first random number and acquiring first weight configuration information corresponding to the target domain name node. The first weight configuration information may be configured in advance according to an attribute of the target domain name node, where the first weight configuration information includes at least one numerical range, and an analysis result corresponding to each numerical range, for example: the first weight configuration information comprises a numerical range 1-50 and a numerical range 51-150, the analysis result corresponding to the numerical range 1-50 is A, and the analysis result corresponding to the numerical range 51-150 is B.
In the embodiment of the present disclosure, the process of generating the random number may be a linear congruence method, and the calculation formula is as follows: x i=(Xi-1 X a+c) mod m, wherein A, C, M are constant. Specifically, the seed set by srand () function is substituted as X 0 into the above equation, and then each time srand () function is called, a new random value is generated with the random value generated last time.
And D2, when the first random number is determined to fall into a first numerical range in at least one numerical range, taking an analysis result corresponding to the first numerical range as a target analysis result, wherein the first numerical range is any numerical range in the at least one numerical range.
In the embodiment of the disclosure, after obtaining the first random number, the DNS server queries a first numerical value range of at least one numerical value range in the first weight configuration information, and then determines an analysis result corresponding to the first numerical value range as a target analysis result.
As an example, the target domain name node corresponding to the domain name to be resolved is: the text1.Example. Com, the first weight configuration information corresponding to the target domain name node is as follows:
based on the above configuration information, it can be determined that: the weight of the analysis result was 33.3% for 1.1.1.1, and the weight of the analysis result was 66.6% for 2.2.2.2. Meanwhile, the numerical range P corresponding to 1.1.1.1 and the numerical range Q corresponding to 2.2.2.2 can be queried from the first weight configuration information. And then determining the numerical range P within which the generated first random number falls as a first numerical range, and determining an analysis result (1.1.1.1) corresponding to the first numerical range as a target analysis result.
In the embodiment of the present disclosure, step C2 of resolving the domain name to be resolved by using the target resolution policy to obtain a target resolution result includes the following steps E1-E2:
and E1, acquiring a target network segment corresponding to the virtual private cloud where the client is located under the condition that the target analysis type is the subnet analysis type.
And E2, determining an analysis result corresponding to the target network segment as a target analysis result.
In the embodiment of the present disclosure, when the target resolution type is a subnet resolution type, the DNS server obtains, from a domain name resolution request sent by the client, a target network segment corresponding to a private virtual cloud where the client is located. And then inquiring a target analysis result corresponding to the target network segment based on the corresponding relation between the preset network segment and the analysis result.
In the embodiment of the disclosure, after querying the analysis result corresponding to the target network segment, if the second weight configuration information corresponding to the target network segment does not exist, determining the analysis result corresponding to the target network segment as the target analysis result.
As an example, the target domain name node corresponding to the domain name to be resolved is: test2.example.com, if the target network segment is: 10.0.1.0/24, the target analysis result is 1.1.1.1, if the target network segment is: 10.0.2.0/24, the target analysis result is: 2.2.2.2.
In the embodiment of the present disclosure, step E2, determining the analysis result corresponding to the target network segment as the target analysis result includes the following steps E201 to E202:
step E201, generating a second random number when there is second weight configuration information corresponding to the target network segment, where the second weight configuration information includes at least one value range and an analysis result corresponding to each value range.
And E202, when the second random number is determined to fall into a second numerical range in the at least one numerical range, taking the analysis result corresponding to the second numerical range as a target analysis result, wherein the second numerical range is any numerical range in the at least one numerical range.
In the embodiment of the disclosure, under the condition that second weight configuration information corresponding to the target network segment exists, automatically generating a second random number, inquiring a second value range of at least one value range in the second weight configuration information, and then determining an analysis result corresponding to the second value range as a target analysis result.
As an example, the target domain name node corresponding to the domain name to be resolved is: test2.example.com, target network segment is: 10.0.2.0/24, the second weight configuration information corresponding to the target network segment is as follows:
Based on the above configuration information, it can be determined that: the target network segment is 10.0.2.0/24, the weight occupied by the analysis result is 2.2.2.2 is 33.3%, the weight occupied by the analysis result is 3.3.3.3 is 66.6%, and meanwhile, the numerical range N corresponding to 2.2.2.2 and the numerical range M corresponding to 3.3.3.3.3 can be queried from the second weight configuration information. And then determining the numerical range P in which the generated second random number falls as a second numerical range, and determining the analysis result (3.3.3.3) corresponding to the second numerical range as a target analysis result.
According to the method provided by the embodiment of the disclosure, the configuration information of each domain name node is set, the analysis strategy can be rapidly determined by utilizing the analysis type in the configuration information, and the domain name to be analyzed is analyzed based on the analysis strategy, so that different analysis results are ensured to be analyzed according to different virtual private clouds of different clients.
According to an aspect of the embodiments of the present disclosure, a method embodiment of a method for processing a domain name resolution request is provided, and fig. 6 is a flowchart of a method for processing a domain name resolution request according to another embodiment of the present disclosure, as shown in fig. 6, where the method includes:
Step S61, acquiring name space configuration information, where the name space configuration information includes at least one secondary domain name, and the secondary domain name corresponds to a first network identifier of at least one first virtual private cloud.
In the embodiment of the present disclosure, the namespace configuration information acquired by the DNS server may be uploaded in advance by a developer, where the namespace configuration information includes at least one secondary domain name, for example: example. The method also comprises a first network identifier corresponding to at least one virtual private cloud by the secondary domain name, for example: the private cloud corresponding to the example is map. Example. Com, news. Example. Com, and the like, wherein the first network identifier corresponding to the map. Example. Com is 101, and the first network identifier corresponding to the news. Example. Com is 102.
Step S62, dividing the name space by using the secondary domain name to obtain at least one initial area.
In the embodiment of the disclosure, the name space of the DNS server is divided by using the secondary domain name to obtain at least one initial area, where each initial area corresponds to a secondary domain name.
It should be noted that, the name space of the DNS server for the second-level domain is utilized to divide, so as to transmit the domain name to be resolved belonging to the same second-level domain name to a certain area for resolving in the subsequent domain name resolving process, which is beneficial to improving resolving efficiency.
Step S63, obtaining a domain name resolution record, where the domain name resolution record includes at least one second virtual private cloud associated with at least one account, and a second network identifier of the second virtual private cloud.
In the embodiment of the disclosure, the domain name resolution record may be generated by a domain name resolved by the DNS server at a historical time. Thus, the domain name resolution record includes the second network identification of the private cloud with which the respective account is associated.
As one example, the domain name resolution record includes: the account A is associated with 3 virtual private clouds under a secondary domain name of 'example. Com', and a second network identifier corresponding to the virtual private clouds, wherein the second network identifier corresponding to the account A comprises: 105. 162, 230. The account B is associated with 3 virtual private clouds under a secondary domain name of 'example. Com', and a second network identifier corresponding to the virtual private clouds, wherein the second network identifier corresponding to the account B comprises: 111. 127, 320.
Step S64, based on the second network identification, a private area corresponding to the account is created in the initial area.
In the embodiment of the disclosure, after determining the second network identifier associated with each account, a private area corresponding to each account is created, and the second network identifier associated with the account is set in the private area.
As one example, the private area created based on account a is: the network identifier associated with private zone ①,private zone① is: 105. 162 and 230. The private area created based on account B is: the network identifier associated with private zone ②,private zone② is: 111. 127 and 320.
Step S65, a structural body is created in the initial area by using the first network identification and the mapping relation between the first network identification and the second network identification, and at least one area is obtained.
In the embodiment of the disclosure, after the private area is created, at least one virtual private cloud exists under the secondary domain name associated with each initial area, so that a structure body is created in the initial area by using a first network identifier of the virtual private cloud, and after the structure body is created, a final area is obtained by using the first network identifier and a mapping relationship between the first network identifier and the second network identifier.
Specifically, the number of first network identifications corresponding to the initial area-associated secondary domain name is first determined. And secondly, building the structures with the same number as the first network identifications in the initial area, and writing the first network identifications into the structures in a one-to-one correspondence manner. And finally, matching the first network identifier in the structure with the second network identifier of the private area, and establishing a mapping relation between the structure which is successfully matched and the private area, namely establishing the mapping relation between the structure and the private area through a pointer. When the domain name resolution is carried out later, the corresponding structure body can be rapidly positioned from the region by utilizing the network identification, and the corresponding private region can be rapidly searched by utilizing the finger in the structure body, so that the domain name resolution efficiency is improved.
As an example, the secondary domain name corresponding to the area 1 is "example. Com", where the secondary domain name "example. Com" includes 3 virtual private clouds, and the 3 virtual private clouds correspond to the first network identifier as follows: 101. 102, 103. Next, 3 structures were created in region 1: structure ref1, structure ref2, structure ref3, and network identifier 101, network identifier 102, and network identifier 103 are written one by one in structure ref1, structure ref2, and structure ref3. And then the private area 7 of the associated network identifier 101, the private area 8 of the associated network identifier 102 and the private area 9 of the associated network identifier 103 are found from the plurality of private areas. Finally, the mapping relationship between the structure ref1 and the private area 7 is established by the first pointer. The mapping relation between the structural body ref2 and the private area 8 is established through the second pointer. The mapping relation between the structure ref3 and the private area 9 is established by the third pointer.
In the embodiment of the present disclosure, after the structure body is created in the initial area by using the first network identifier and the mapping relationship between the first network identifier and the second network identifier, the following steps F1-F2 are further included:
And F1, acquiring at least one sub-domain name corresponding to a second network identifier associated with the private area and configuration information corresponding to each sub-domain name.
And F2, generating a dictionary tree corresponding to the second network identifier in the private area based on the sub domain name and the configuration information corresponding to the sub domain name.
In the embodiment of the present disclosure, after the creation of the complete area and the private area, at least one sub domain name corresponding to the network identifier associated with the private area and configuration information corresponding to each sub domain name are also obtained, where the configuration information may be generated based on a code file written by a developer. The network identification is used as a father node of the dictionary tree, the subdomain name is used as a first-level child node of the dictionary tree, and the configuration information is used as a second-level node under the first-level child node to generate the dictionary tree.
According to the method provided by the embodiment of the disclosure, the regions are divided according to the second-level domain name, the private regions are created according to the account binding virtual private cloud, and the association relationship between the regions and the private regions is established through the structure body, so that high query performance can be maintained under the condition of huge number of private regions and domain name configuration.
According to an aspect of the embodiments of the present disclosure, there is provided a method embodiment of a method for processing a domain name resolution request, where the method is applied to a client, and the method includes:
and step H1, acquiring a domain name to be resolved and a target network identification of a virtual private cloud to which the domain name to be resolved belongs, wherein the virtual private cloud is a virtual private cloud used by a current client.
And step H2, generating an initial domain name resolution request, wherein the initial domain name resolution request comprises client subnet information and client type information.
And step H3, carrying the domain name to be resolved in an option field in the client sub-network information, and carrying the target network identification in an option field in the client type information, so as to obtain a final domain name resolution request.
And step H4, a domain name resolution request is sent to the DNS server, so that the DNS server resolves the domain name to be resolved according to the target network identification, and a resolution result is obtained.
According to the method provided by the embodiment of the disclosure, the domain name to be resolved and the target network identifier are respectively added to the client sub-network information and the client type information in the domain name resolution request, so that the DNS server can realize tenant isolation by utilizing the target network identifier after receiving the domain name resolution request.
Fig. 7 is a flow chart of resolution of a domain name resolution request according to another embodiment of the present disclosure, and as shown in fig. 7, the resolution process is as follows:
① The client sends a domain name resolution request to the DNS server, the domain name resolution request including a domain name to be resolved (demo. Test1.Example. Com) and a target network identity (VNI: 102).
② After receiving the domain name resolution request, the DNS server extracts a domain name to be resolved (demo.test1.example.com) and a target network identity (VNI: 102) from the domain name resolution request.
③ The DNS server queries the target secondary domain name (example. Com) to which the domain name to be resolved (demo. Test1.Example. Com) belongs, and queries the target zone (zone) corresponding to the target secondary domain name (example. Com).
④ The DNS server uses the target network identity (VNI: 102) to query the target structure (Ref: 102) carrying the target (VNI: 102) from the target area, and then obtains the target private area (private zone: 1) having a mapping relation with the target structure (Ref: 102).
⑤ The DNS server queries a target dictionary tree (Trie: 2) having an association relationship with a target network identity (VNI: 102) from a target private area, and determines a target domain name node (node 3) matching the domain name to be resolved from at least one domain name node included in the target dictionary tree.
⑥ And then obtaining target configuration information of the target domain name node, and analyzing the domain name to be analyzed by utilizing the target configuration information to obtain a target analysis result.
Specifically, as shown in fig. 8, step ⑥ specifically includes:
And (6.1) extracting a target analysis type from the target configuration information, wherein the target analysis type is a subnet analysis type.
And (6.2) acquiring a target network segment corresponding to the virtual private cloud where the client is located, wherein the target network segment is 10.200.0.0/16, inquiring whether weight configuration information corresponding to the target network segment exists, and if the weight configuration information corresponding to the target network segment does not exist, directly determining an analysis result corresponding to the target network segment as a target analysis result.
(6.3) If the weight configuration information corresponding to the target network segment exists, acquiring at least one numerical range included in the weight configuration information and an analysis result corresponding to each numerical range, wherein the analysis result comprises: 10.1.1.1 and 10.2.2.2, wherein 10.1.1.1 is 33.3% by weight and 10.2.2.2 is 66.6% by weight.
(6.4) The DNS server automatically generates a random number, queries a second numerical range in which the second random number falls into at least one numerical range, and determines a resolution result (10.1.1.1) corresponding to the second numerical range as a target resolution result.
Fig. 9 is a block diagram of a processing apparatus for domain name resolution request according to an embodiment of the present disclosure, where the apparatus may be implemented as part or all of an electronic device by software, hardware, or a combination of both. As shown in fig. 9, the apparatus includes:
The receiving module 91 is configured to receive a domain name resolution request from a client, where the domain name resolution request includes: a domain name to be resolved and a target network identifier of a virtual private cloud where a client is located;
The query module 92 is configured to query, according to the domain name to be resolved, a target area corresponding to the domain name to be resolved from at least one area, and query, from the target area, a target private area associated with a target network identifier, where the target private area includes at least one domain name node associated with the network identifier;
An obtaining module 93, configured to determine, according to a target network identifier, a target domain name node corresponding to a domain name to be resolved from a target private area, where the target domain name node includes at least one configuration information;
The resolution module 94 is configured to obtain target configuration information matched with the client from at least one configuration information, and resolve the domain name to be resolved based on the target configuration information to obtain a target resolution result.
In the embodiment of the application, the query module 92 is configured to obtain a target secondary domain name to which the domain name to be resolved belongs; and inquiring a target area corresponding to the target secondary domain name from at least one area.
In an embodiment of the disclosure, each of the at least one region includes at least one structure, and a private region having a mapping relationship with each structure, the structure including a network identification.
In the embodiment of the application, the query module 92 is configured to obtain a target structure body corresponding to a target network identifier from a target area; and determining a private area with a preset mapping relation with the target structure body as a target private area.
In the embodiment of the disclosure, a target dictionary tree is set in the target private area, the target dictionary tree includes at least one network identifier node associated with the target private area, and the network identifier node is associated with at least one domain name node.
In the embodiment of the present disclosure, an obtaining module 93 is configured to query a target network identifier node corresponding to a target network identifier from a target dictionary tree, and obtain at least one candidate domain name node corresponding to the target network identifier node; and determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
In the embodiment of the present disclosure, the parsing module 94 is configured to extract a target parsing type carried in the target configuration information, and obtain a target parsing policy corresponding to the target parsing type; and analyzing the domain name to be analyzed by utilizing the target analysis strategy to obtain a target analysis result.
In the embodiment of the present disclosure, the parsing module 94 is configured to generate a first random number and obtain first weight configuration information corresponding to a target domain name node when the target parsing type is a weight parsing type, where the first weight configuration information includes at least one numerical range and a parsing result corresponding to each numerical range; when the first random number is determined to fall into a first numerical range in at least one numerical range, the analysis result corresponding to the first numerical range is taken as a target analysis result, wherein the first numerical range is any numerical range in the at least one numerical range.
In the embodiment of the present disclosure, the parsing module 94 is configured to obtain, when the target parsing type is a subnet parsing type, a target network segment corresponding to a virtual private cloud where the client is located; and determining the analysis result corresponding to the target network segment as a target analysis result.
In the embodiment of the present disclosure, the parsing module 94 is configured to generate a second random number when there is second weight configuration information corresponding to the target network segment, where the second weight configuration information includes at least one value range and a parsing result corresponding to each value range; and when the second random number is determined to fall into a second numerical range in the at least one numerical range, taking the analysis result corresponding to the second numerical range as a target analysis result, wherein the second numerical range is any numerical range in the at least one numerical range.
In an embodiment of the present disclosure, the method further includes a configuration module, configured to obtain namespace configuration information, where the namespace configuration information includes at least one secondary domain name, and the secondary domain name corresponds to a first network identifier of at least one first virtual private cloud; dividing a name space by using a second-level domain name to obtain at least one initial area; obtaining a domain name resolution record, wherein the domain name resolution record comprises at least one second virtual private cloud associated with at least one account and a second network identifier of the second virtual private cloud; creating a private area corresponding to the account in the initial area based on the second network identifier; and creating a structural body in the initial area by using the first network identifier and the mapping relation between the first network identifier and the second network identifier to obtain at least one area.
In the embodiment of the disclosure, the configuration module is further configured to obtain at least one sub domain name corresponding to the second network identifier associated with the private area, and configuration information corresponding to each sub domain name; and generating a dictionary tree corresponding to the second network identifier in the private area based on the sub domain name and the configuration information corresponding to the sub domain name.
In the domain name resolution process, the device provided by the disclosure firstly obtains a target private area corresponding to a target network identifier carried by a domain name resolution request. And secondly, determining a target domain name node from the target private area by utilizing the domain name to be resolved and the target network identifier carried by the domain name resolution request, and acquiring configuration information corresponding to the target domain name node. Finally, the configuration information is utilized to complete the resolution of the domain name to be resolved. According to the method and the device for analyzing the domain name, the target private area is determined by utilizing the target network identifier and the domain name to be analyzed, the target configuration information is determined from the target private area, the domain name is analyzed through the target configuration information, different analysis results can be obtained aiming at different virtual private clouds where different clients are located, and the isolation effect of tenant isolation is greatly improved. And can still maintain higher resolution efficiency under the condition of huge number of domain names to be resolved.
The embodiment of the present disclosure further provides an electronic device, as shown in fig. 10, the electronic device may include: the device comprises a processor 1501, a communication interface 1502, a memory 1503 and a communication bus 1504, wherein the processor 1501, the communication interface 1502 and the memory 1503 are in communication with each other through the communication bus 1504.
A memory 1503 for storing a computer program;
The processor 1501, when executing the computer program stored in the memory 1503, implements the steps of the above embodiments.
The communication bus mentioned by the above terminal may be a peripheral component interconnect standard (PERIPHERAL COMPONENT INTERCONNECT, abbreviated as PCI) bus or an extended industry standard architecture (Extended Industry Standard Architecture, abbreviated as EISA) bus, etc. The communication bus may be classified as an address bus, a data bus, a control bus, or the like. For ease of illustration, the figures are shown with only one bold line, but not with only one bus or one type of bus.
The communication interface is used for communication between the terminal and other devices.
The memory may include random access memory (Random Access Memory, RAM) or may include non-volatile memory (non-volatile memory), such as at least one disk memory. Optionally, the memory may also be at least one memory device located remotely from the aforementioned processor.
The processor may be a general-purpose processor, including a central processing unit (Central Processing Unit, abbreviated as CPU), a network processor (Network Processor, abbreviated as NP), etc.; but may also be a digital signal processor (DIGITAL SIGNAL Processing, DSP), application Specific Integrated Circuit (ASIC), field-Programmable gate array (FPGA) or other Programmable logic device, discrete gate or transistor logic device, discrete hardware components.
In yet another embodiment provided by the present disclosure, there is also provided a computer-readable storage medium having instructions stored therein that, when run on a computer, cause the computer to perform the method of resolving a domain name resolution request of any of the above embodiments.
In yet another embodiment provided by the present disclosure, there is also provided a computer program product containing instructions that, when run on a computer, cause the computer to perform the method of resolving a domain name resolution request of any of the above embodiments.
In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When the computer program instructions are loaded and executed on a computer, the processes or functions in accordance with embodiments of the present disclosure are produced in whole or in part. The computer may be a general purpose computer, a special purpose computer, a computer network, or other programmable apparatus. The computer instructions may be stored in a computer-readable storage medium or transmitted from one computer-readable storage medium to another computer-readable storage medium, for example, the computer instructions may be transmitted from one website, computer, server, or data center to another website, computer, server, or data center by a wired (e.g., coaxial cable, fiber optic, digital client line), or wireless (e.g., infrared, wireless, microwave, etc.). The computer readable storage medium may be any available medium that can be accessed by a computer or a data storage device such as a server, data center, etc. that contains an integration of one or more available media. The usable medium may be a magnetic medium (e.g., floppy disk, hard disk, tape), an optical medium (e.g., DVD), or a semiconductor medium (e.g., solid state disk Solid STATE DISK), etc.
The foregoing description is only of the preferred embodiments of the present disclosure, and is not intended to limit the scope of the present disclosure. Any modification, equivalent replacement, improvement, etc. made within the spirit and principles of the present disclosure are included in the protection scope of the present disclosure.
The foregoing is merely a specific embodiment of the disclosure to enable one skilled in the art to understand or practice the disclosure. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the disclosure. Thus, the present disclosure is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (12)

1. A method for processing a domain name resolution request, the method comprising:
Receiving a domain name resolution request from a client, wherein the domain name resolution request comprises: a domain name to be resolved and a target network identifier of a virtual private cloud where the client is located;
Inquiring a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and inquiring a target private area related to the target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier, a target dictionary tree is arranged in the target private area, the target dictionary tree comprises at least one network identifier node related to the target private area, and the network identifier node is related to at least one domain name node;
determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
Acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result;
The determining, according to the target network identifier, a target domain name node corresponding to the domain name to be resolved from the target private area includes: inquiring a target network identification node corresponding to the target network identification from the target dictionary tree, and acquiring at least one candidate domain name node corresponding to the target network identification node; and determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
2. The method according to claim 1, wherein the querying, from at least one area, a target area corresponding to the domain name to be resolved according to the domain name to be resolved includes:
Acquiring a target secondary domain name to which the domain name to be resolved belongs;
And inquiring a target area corresponding to the target secondary domain name from the at least one area.
3. The method of claim 1, wherein each of the at least one region comprises at least one structure, and a private region having a mapping relationship with each of the structures, the structures comprising a network identity;
The querying, from the target area, a target private area associated with the target network identifier, including:
acquiring a target structure body corresponding to the target network identifier from the target area;
and determining a private area with a preset mapping relation with the target structure body as the target private area.
4. The method according to claim 1, wherein the resolving the domain name to be resolved based on the target configuration information to obtain a target resolving result includes:
extracting a target analysis type carried in the target configuration information, and acquiring a target analysis strategy corresponding to the target analysis type;
And analyzing the domain name to be analyzed by utilizing the target analysis strategy to obtain the target analysis result.
5. The method according to claim 4, wherein the resolving the domain name to be resolved by using the target resolution policy to obtain the target resolution result includes:
Generating a first random number and acquiring first weight configuration information corresponding to the target domain name node under the condition that the target analysis type is a weight analysis type, wherein the first weight configuration information comprises at least one numerical value range and analysis results corresponding to each numerical value range;
And when the first random number is determined to fall into a first numerical range in at least one numerical range, taking an analysis result corresponding to the first numerical range as the target analysis result, wherein the first numerical range is any numerical range in the at least one numerical range.
6. The method according to claim 4, wherein the resolving the domain name to be resolved by using the target resolution policy to obtain the target resolution result includes:
acquiring a target network segment corresponding to the virtual private cloud where the client is located under the condition that the target analysis type is a subnet analysis type;
and determining the analysis result corresponding to the target network segment as the target analysis result.
7. The method of claim 6, wherein the determining the resolution result corresponding to the target network segment as the target resolution result comprises:
Generating a second random number under the condition that second weight configuration information corresponding to the target network segment exists, wherein the second weight configuration information comprises at least one numerical value range and an analysis result corresponding to each numerical value range;
and when the second random number is determined to fall into a second numerical range in at least one numerical range, taking an analysis result corresponding to the second numerical range as the target analysis result, wherein the second numerical range is any numerical range in the at least one numerical range.
8. The method of claim 1, wherein prior to querying a target region corresponding to the domain name to be resolved from at least one region, the method further comprises:
acquiring name space configuration information, wherein the name space configuration information comprises at least one secondary domain name and a first network identifier of at least one first virtual private cloud corresponding to the secondary domain name;
dividing a name space by utilizing the secondary domain name to obtain at least one initial area;
Obtaining a domain name resolution record, wherein the domain name resolution record comprises at least one second virtual private cloud associated with at least one account and a second network identifier of the second virtual private cloud;
creating a private area corresponding to the account in the initial area based on the second network identifier;
And creating a structural body in the initial area by using the first network identifier and the mapping relation between the first network identifier and the second network identifier to obtain the at least one area.
9. The method of claim 8, wherein after creating a structure within the initial region using the first network identification and the mapping between the first network identification and the second network identification, the method further comprises:
acquiring at least one sub-domain name corresponding to a second network identifier associated with the private area and configuration information corresponding to each sub-domain name;
and generating a dictionary tree corresponding to the second network identifier in the private area based on the subdomain name and the configuration information corresponding to the subdomain name.
10. A device for processing a domain name resolution request, comprising:
the receiving module is used for receiving a domain name resolution request from a client, wherein the domain name resolution request comprises the following components: a domain name to be resolved and a target network identifier of a virtual private cloud where the client is located;
The query module is used for querying a target area corresponding to the domain name to be resolved from at least one area according to the domain name to be resolved, and querying a target private area related to the target network identifier from the target area, wherein the target private area comprises at least one domain name node related to the network identifier, a target dictionary tree is arranged in the target private area, the target dictionary tree comprises at least one network identifier node related to the target private area, and the network identifier node is related to at least one domain name node;
The acquisition module is used for determining a target domain name node corresponding to the domain name to be resolved from the target private area according to the target network identifier, wherein the target domain name node comprises at least one piece of configuration information;
The analysis module is used for acquiring target configuration information matched with the client from the at least one piece of configuration information, and analyzing the domain name to be analyzed based on the target configuration information to obtain a target analysis result;
The acquisition module is used for inquiring a target network identification node corresponding to the target network identification from the target dictionary tree and acquiring at least one candidate domain name node corresponding to the target network identification node; and determining a target domain name node matched with the domain name to be resolved from at least one candidate domain name node.
11. The electronic equipment is characterized by comprising a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory are communicated with each other through the communication bus; wherein:
A memory for storing a computer program;
a processor for performing the method of any one of claims 1 to 9 by running a program stored on a memory.
12. A storage medium comprising a stored program, wherein the program when run performs the method of any one of the preceding claims 1 to 9.
CN202210899707.5A 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium Active CN115037720B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210899707.5A CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210899707.5A CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Publications (2)

Publication Number Publication Date
CN115037720A CN115037720A (en) 2022-09-09
CN115037720B true CN115037720B (en) 2024-07-05

Family

ID=83129909

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210899707.5A Active CN115037720B (en) 2022-07-28 2022-07-28 Domain name resolution request processing method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN115037720B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116016436A (en) * 2022-12-07 2023-04-25 天翼云科技有限公司 Multi-tenant network construction method and device based on cloud analysis
CN116938877B (en) * 2023-09-15 2024-01-05 阿里云计算有限公司 Domain name resolution data configuration method, domain name resolution method and related device
CN117938808B (en) * 2024-03-21 2024-06-21 北京火山引擎科技有限公司 Domain name resolution method, system, device, equipment and medium for edge calculation

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104144222A (en) * 2014-08-20 2014-11-12 北京阅联信息技术有限公司 Method and system for load balancing in DNS system based on alias record
CN112804366A (en) * 2019-11-13 2021-05-14 北京百度网讯科技有限公司 Method and device for resolving domain name
CN113364895A (en) * 2021-06-29 2021-09-07 中国电信股份有限公司 Method, device, electronic equipment and storage medium for resource scheduling

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10033691B1 (en) * 2016-08-24 2018-07-24 Amazon Technologies, Inc. Adaptive resolution of domain name requests in virtual private cloud network environments
US10764315B1 (en) * 2019-05-08 2020-09-01 Capital One Services, Llc Virtual private cloud flow log event fingerprinting and aggregation
CN114500450B (en) * 2021-12-22 2023-10-10 天翼云科技有限公司 Domain name resolution method, device and computer readable storage medium
CN114629911A (en) * 2022-04-18 2022-06-14 北京字节跳动网络技术有限公司 Method, device, equipment, medium and program product for processing domain name resolution request

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104144222A (en) * 2014-08-20 2014-11-12 北京阅联信息技术有限公司 Method and system for load balancing in DNS system based on alias record
CN112804366A (en) * 2019-11-13 2021-05-14 北京百度网讯科技有限公司 Method and device for resolving domain name
CN113364895A (en) * 2021-06-29 2021-09-07 中国电信股份有限公司 Method, device, electronic equipment and storage medium for resource scheduling

Also Published As

Publication number Publication date
CN115037720A (en) 2022-09-09

Similar Documents

Publication Publication Date Title
CN115037720B (en) Domain name resolution request processing method and device, electronic equipment and storage medium
US11816161B2 (en) Asset search and discovery system using graph data structures
CN111935136B (en) Domain name query and analysis anomaly detection system and method based on DNS data analysis
US7769826B2 (en) Systems and methods of providing DNS services using separate answer and referral caches
US7603474B2 (en) Efficient endpoint matching using a header-to-bit conversion table
US20130173769A1 (en) System and method for resolving a dns request using metadata
CN107786678B (en) Domain name resolution method, device and system
US20040024872A1 (en) Method and apparatus for providing name services
US20030009591A1 (en) Apparatus and method for managing internet resource requests
CN107613039B (en) IP address attribution inquiry method, device, system and storage medium
CN114205330A (en) Domain name resolution method, domain name resolution device, server, and storage medium
CN115297088A (en) Domain name resolution system and method in cloud computing environment
US20150106494A1 (en) Characterization of domain names based on changes of authoritative name servers
CN109995885B (en) Domain name space structure presentation method, device, equipment and medium
CN114301874A (en) IPv6 address positioning method based on IPv4 address geographical position information and electronic equipment
CN114500456A (en) DNS scheduling optimization method and device based on full-network sniffing and computing equipment
CN112817983A (en) Handle identifier analysis caching method, query method and handle identifier analysis system
CN108712515B (en) Domain name resolution method and system
CN105245626A (en) Method for realizing website addressing by using shortcut domain name in private network
CN106686050B (en) Domain name based classification information issuing method and system
CN105791020A (en) Rapid alias parsing method
CN114051015B (en) Domain name traffic map construction method, device, equipment and storage medium
EP2076849A1 (en) Method for processing native language internet address and storage medium for saving program of executing the same
CN114422477B (en) Domain name resolution method, device and storage medium based on edge cloud architecture
CN114745376B (en) ZooKeeper cluster operation and maintenance method and device, electronic equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant