WO2017075869A1 - Procédé de configuration et procédé de service de serveur de racine dns local - Google Patents
Procédé de configuration et procédé de service de serveur de racine dns local Download PDFInfo
- Publication number
- WO2017075869A1 WO2017075869A1 PCT/CN2015/098466 CN2015098466W WO2017075869A1 WO 2017075869 A1 WO2017075869 A1 WO 2017075869A1 CN 2015098466 W CN2015098466 W CN 2015098466W WO 2017075869 A1 WO2017075869 A1 WO 2017075869A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- server
- root
- local
- hint
- dns
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 25
- 238000005192 partition Methods 0.000 claims abstract description 23
- 230000009471 action Effects 0.000 claims description 3
- 230000004807 localization Effects 0.000 abstract description 3
- 230000004044 response Effects 0.000 description 3
- 238000004458 analytical method Methods 0.000 description 1
- 238000007405 data analysis Methods 0.000 description 1
- 230000001934 delay Effects 0.000 description 1
- 238000000151 deposition Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000000717 retained effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
Definitions
- the present invention relates to a local DNS root server configuration method and service method, and belongs to the technical field of networks.
- DNS Domain Name System
- the DNS root server is used to respond to the user's query request for the root zone file.
- the root zone file maintains the location information of the Top Level Domain (TLD).
- TLD Top Level Domain
- the User Datagram Protocol (UDP)
- UDP User Datagram Protocol
- the number of root servers can only be limited to 13 (accurately, the DNS response packet size required for 13 root servers is 436 bytes), and each server uses an individual letter (AM) in the alphabet.
- the 13 servers were operated by 12 independent organizations (of which VeriSign operated two root servers), which were initially selected as volunteers. In addition, for the sake of DNS root service diversity, these 12 organizations manage their corresponding root servers according to their own plans and patterns.
- the DNS root service is set up in the local area network, the autonomous domain, or the service provider's own network to provide localization of the root zone data analysis by the recursive server to improve the DNS resolution performance and provide emergency services, and can effectively reduce the invalid query request.
- the possibility of global DNS root server resolution performance is set up in the local area network, the autonomous domain, or the service provider's own network to provide localization of the root zone data analysis by the recursive server to improve the DNS resolution performance and provide emergency services, and can effectively reduce the invalid query request.
- the present invention aims to provide a local DNS root server configuration method and a service method for providing a local DNS root server configuration function, and the main contents include:
- the present invention proposes a resource record called HINT, which contains data as a server name providing a localized DNS root service;
- the HINT resource record is maintained in a domain name partition, and identifies a DNS root service within the scope of the partition. For example, in the .CN domain name partition, the DNS root service in the Chinese scope is identified; in the .KR domain name partition, Then identify the DNS root service in the Korean scope;
- the service flow of the present invention is:
- the local root service manager builds a local root server that provides a DNS root service within a corresponding domain name partition
- the local root service manager configures a HINT resource record on the authoritative server of the domain name partition, and declares that the area provides a root service;
- the recursive server queries the HINT resource record on the authoritative server of the specified domain name partition, and obtains the local root server address information of the root service;
- the recursive server adds the obtained local root server address to the db.root configuration file that starts the root service query;
- the recursive server starts using the new db.root to access the local root service.
- the technical solution of the present invention is:
- a local DNS root server configuration method the steps are:
- the recursive server queries the HINT resource record of the specified domain name partition, and obtains the local root server address information of the root service;
- the recursive server adds the obtained local root server address to the local configuration file db.root.
- the information recorded by the HINT resource includes: Zone, Lifetime, IN, HINT, and Server-name; wherein the Zone identifies the scope of the local root server, the Lifetime identifies the effective lifetime of the resource record, and the ID identifies the resource record as the Internet.
- Type, Server-name is the server name of the local root server, and HINT identifies which area within the range of the server-name to which the resource record belongs.
- the local root server configuration file db.root stores the root server starting point information of the recursive server for DNS query.
- the recursive server configuration file db.root stores the local root server address information and the traditional A-M root server address information, or only the local root server address information.
- scope of the action includes: within the local area network, within the autonomous domain, or within the service provider's own network.
- a local DNS root server service method the steps of which are:
- the recursive server queries the HINT resource record of the specified domain name partition, and obtains the local root server address information of the root service;
- the recursive server starts the updated configuration file db.root to access the local root server.
- the solution of the present invention can effectively improve the local hit rate when the local root mirror accesses the root service, and realize the localization of the root zone data parsing.
- Figure 2 is a block diagram of a recursive server using a local root service.
- the present invention proposes a DNS resource record, called HINT, which has the following format:
- Zone identifies the scope of this local DNS root server, such as: CN logo in China, baidu.com identifies Baidu network;
- Lifetime identifies the effective lifetime of this resource record
- HINT identifies the server-name of this resource record as the local DNS root server in the zone specified by the zone;
- Server-name is the name of the server that provides the local DNS root server.
- the DNS root server needs to load the root zone file to provide normal external services.
- the content of the root zone file is provided by IANA (The Internet Assigned Numbers Authority), available at https://www.iana.org/domains/ Root/files.
- the present invention supports a distributed, decentralized DNS root server service mode.
- the root zone file of the local DNS root server should have security guarantees consistent with the requirements of the traditional DNS server.
- the device that requires the local DNS root server must adopt DNSSEC.
- the root zone file signed and successfully verified ensures that the local root server can provide the correct information.
- the recursive server queries the root service configuration file (db.root) to store the root server starting point information of the recursive server for DNS query. If the recursive server decides to use the DNS root server of a local domain name partition, it queries the HINT resource record of the corresponding zone, and configures the local db.root of the recursive server according to the resource record information.
- the recursive server can use the root service provided by multiple local areas according to its actual needs. The recursive server will be able to adopt the following two specific strategies:
- A.db.root.global.with.local The local DNS root server is mixed with the traditional AM root. This is the default scheme recommended by the present invention. As shown in Figure 2, when the local root server is unavailable, it is due to db.root. The information of the AM root is retained. According to the DNS protocol, the recursive server can automatically switch to the traditional DNS root server automatically.
- the A and AAAA data (xxx.xxx.xxx.xxx and xxxx::xxxx) in these Additional sections are a.root-hint.cn, b.root-hint.cn and other servers that provide root services in China. /IPv6 address.
- the recursive server After the recursive server obtains the HINT record response from the CN, the following content is added to the recursive server configuration to speed up local access.
- the HINT records stored in different recursive servers are identical.
- the specific method of depositing is determined by the recursive server configuration storage method, such as directly into the local db.root file, or stored in the recursive server local db.root database table, etc. :
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Information Transfer Between Computers (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
L'invention concerne un procédé de configuration et un procédé de service d'un serveur de racine DNS local. Le présent procédé comprend les étapes suivantes : 1 ) générer un enregistrement de ressources HINT selon un serveur de racine local qui fournit un service de racine DNS et est construit dans une plage correspondant à une partition de nom de domaine spécifié, et configurer l'enregistrement de ressources HINT sur un serveur autorisé de la partition de nom de domaine correspondant ; 2) un serveur récursif interroge l'enregistrement de ressources HINT de la partition de nom de domaine spécifique afin d'obtenir des informations d'adresse du serveur de racine locale qui fournit le service de racine ; 3) le serveur récursif ajoute l'adresse obtenue du serveur de racine local à un fichier de configuration locale db.root ; et 4) le serveur récursif démarre le fichier de configuration mis à jour db.root afin d'accéder au serveur de racine local. La présente invention peut efficacement améliorer le taux de réussite local d'accès à un service de racine par un miroir de racine local, et réalise la localisation d'analyse de données de zone de racine.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510737004.2A CN105282269B (zh) | 2015-11-03 | 2015-11-03 | 一种本地dns根服务器的配置方法和服务方法 |
CN201510737004.2 | 2015-11-03 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2017075869A1 true WO2017075869A1 (fr) | 2017-05-11 |
Family
ID=55150572
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2015/098466 WO2017075869A1 (fr) | 2015-11-03 | 2015-12-23 | Procédé de configuration et procédé de service de serveur de racine dns local |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN105282269B (fr) |
WO (1) | WO2017075869A1 (fr) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113596194A (zh) * | 2021-08-02 | 2021-11-02 | 牙木科技股份有限公司 | 一种用于dns流量分类标定的方法和dns服务器 |
CN114615175A (zh) * | 2022-05-10 | 2022-06-10 | 鹏城实验室 | 服务验证方法、装置及计算机可读存储介质 |
CN115460169A (zh) * | 2022-09-06 | 2022-12-09 | 中国电子信息产业集团有限公司第六研究所 | 域名解析方法、系统、电子设备及计算机可读存储介质 |
CN116069738A (zh) * | 2023-03-06 | 2023-05-05 | 鹏城实验室 | 根区文件的生成方法、终端设备及计算机可读存储介质 |
CN117692253A (zh) * | 2024-02-01 | 2024-03-12 | 鹏城实验室 | 域名的保全方法、系统及存储介质 |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107623751B (zh) * | 2016-07-14 | 2021-02-12 | 网宿科技股份有限公司 | Dns网络系统、域名解析方法及系统 |
CN107040618B (zh) * | 2016-12-06 | 2020-09-11 | 北京信息科技大学 | 一种去中心化的网络域名服务系统及方法 |
CN107734377A (zh) * | 2017-10-26 | 2018-02-23 | 四川云玦科技有限公司 | 一种具有策略化及高容错性的传输方法 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090157889A1 (en) * | 2007-12-13 | 2009-06-18 | Opendns, Inc. | Per-request control of dns behavior |
CN101917494A (zh) * | 2010-09-09 | 2010-12-15 | 刁永平 | 自治互联网的实现 |
CN102118457A (zh) * | 2011-01-29 | 2011-07-06 | 刁永平 | 自治可扩展互联网的网络地址转换法实现 |
CN102972013A (zh) * | 2010-06-29 | 2013-03-13 | 阿尔卡特朗讯 | 减少定位网络资源的延迟的方法和系统 |
CN103685213A (zh) * | 2012-09-26 | 2014-03-26 | 西门子公司 | 一种减少针对dns的攻击的装置、系统和方法 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7020709B1 (en) * | 2000-06-30 | 2006-03-28 | Intel Corporation | System and method for fault tolerant stream splitting |
CN103248715A (zh) * | 2012-02-07 | 2013-08-14 | 北京百度网讯科技有限公司 | 用于cdn的位置检测方法及装置 |
CN103957285B (zh) * | 2014-04-18 | 2015-09-09 | 北京奇虎科技有限公司 | 提供根域名解析服务的方法和系统 |
CN104468244B (zh) * | 2014-12-31 | 2018-04-20 | 北京奇虎科技有限公司 | 域名解析系统灾备建构方法及装置 |
-
2015
- 2015-11-03 CN CN201510737004.2A patent/CN105282269B/zh active Active
- 2015-12-23 WO PCT/CN2015/098466 patent/WO2017075869A1/fr active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090157889A1 (en) * | 2007-12-13 | 2009-06-18 | Opendns, Inc. | Per-request control of dns behavior |
CN102972013A (zh) * | 2010-06-29 | 2013-03-13 | 阿尔卡特朗讯 | 减少定位网络资源的延迟的方法和系统 |
CN101917494A (zh) * | 2010-09-09 | 2010-12-15 | 刁永平 | 自治互联网的实现 |
CN102118457A (zh) * | 2011-01-29 | 2011-07-06 | 刁永平 | 自治可扩展互联网的网络地址转换法实现 |
CN103685213A (zh) * | 2012-09-26 | 2014-03-26 | 西门子公司 | 一种减少针对dns的攻击的装置、系统和方法 |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113596194A (zh) * | 2021-08-02 | 2021-11-02 | 牙木科技股份有限公司 | 一种用于dns流量分类标定的方法和dns服务器 |
CN113596194B (zh) * | 2021-08-02 | 2023-07-21 | 牙木科技股份有限公司 | 一种用于dns流量分类标定的方法和dns服务器 |
CN114615175A (zh) * | 2022-05-10 | 2022-06-10 | 鹏城实验室 | 服务验证方法、装置及计算机可读存储介质 |
CN115460169A (zh) * | 2022-09-06 | 2022-12-09 | 中国电子信息产业集团有限公司第六研究所 | 域名解析方法、系统、电子设备及计算机可读存储介质 |
CN116069738A (zh) * | 2023-03-06 | 2023-05-05 | 鹏城实验室 | 根区文件的生成方法、终端设备及计算机可读存储介质 |
CN116069738B (zh) * | 2023-03-06 | 2023-08-25 | 鹏城实验室 | 根区文件的生成方法、终端设备及计算机可读存储介质 |
CN117692253A (zh) * | 2024-02-01 | 2024-03-12 | 鹏城实验室 | 域名的保全方法、系统及存储介质 |
CN117692253B (zh) * | 2024-02-01 | 2024-05-07 | 鹏城实验室 | 域名的保全方法、系统及存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN105282269A (zh) | 2016-01-27 |
CN105282269B (zh) | 2018-07-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2017075869A1 (fr) | Procédé de configuration et procédé de service de serveur de racine dns local | |
Gont et al. | Network reconnaissance in ipv6 networks | |
US9866523B2 (en) | Method and system for increasing speed of domain name system resolution within a computing device | |
US20230379294A1 (en) | Methods and systems for implementing very large dns zones | |
US11606388B2 (en) | Method for minimizing the risk and exposure duration of improper or hijacked DNS records | |
CN103973830B (zh) | 基于混合单播/多播dns的服务发现 | |
US8606926B2 (en) | Recursive DNS nameserver | |
US7573903B2 (en) | IPv6/IPv4 translator | |
US8429258B2 (en) | Using unique local unicast addresses in a global domain name server by providing a centralized registry | |
US11025584B2 (en) | Client subnet efficiency by equivalence class aggregation | |
US9319377B2 (en) | Auto-split DNS | |
CN103856580B (zh) | 一种IPv6客户机访问IPv4服务器的方法 | |
US20080162724A1 (en) | Direct domain name service query | |
KR20050086925A (ko) | 이종 ip 네트워크에서 클라이언트와 서버 사이의 통신을구축하는 시스템 및 방법 | |
Rooney | IP Address Management: Principles and Practice | |
WO2016177185A1 (fr) | Procédé et appareil de traitement d'adresse de commande d'accès au support (mac) | |
Gañán | WHOIS sunset? A primer in Registration Data Access Protocol (RDAP) performance. | |
Bajko et al. | Dynamic host configuration protocol (DHCPv4 and DHCPv6) options for IEEE 802.21 mobility services (MoS) discovery | |
Stapp et al. | Resolution of fully qualified domain name (FQDN) conflicts among dynamic host configuration protocol (DHCP) clients | |
Mungur et al. | Performance of a tiered architecture to support end-host mobility in a locator identity split environment | |
Gont et al. | RFC 7707: Network Reconnaissance in IPv6 Networks | |
Patel | Implement virtual Data sharing application on WAN using DDNS and its performance investigation | |
Davoli | Ipv6 hash-based addresses for simple network deployment | |
STANDARD | Media Device Control Discovery (MDCD) | |
Gibb et al. | Where on Earth is the Spatial Name System? |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 15907711 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
32PN | Ep: public notification in the ep bulletin as address of the adressee cannot be established |
Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 27/08/2018) |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 15907711 Country of ref document: EP Kind code of ref document: A1 |