Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Internet and DNS evolution

Internet and DNS evolution

Brief Internet History & DNS (Domain Name System)

Bill Miller

allplayers

May 21, 2012
Tweet

More Decks by allplayers

Other Decks in Technology

Transcript

  1. Short History of the Internet -- Packet switching as opposed

    to circuit switching. Designed to avoid any failures. ◦ ARPANET -- Advanced Research Projects Agency Network -- the 1st packet switching (or store and foward) network (DARPA work) (split DDD/MILNET in 80's) i. internet precursor a. AlohaNet -- First wireless packet network i. Used packet radios, and led to CSMA leading to ethernet by Robert Metcalf (Xerox Parc-> 3com) ii. precursor to 1G+ mobile channels... for GPRS and SMS, AX.25 (amature X.25 -- packet switched WAN non ISO, non TCP/IP)
  2. Some the real inventors (Gore) A • Vint Cerf ◦

    TCP/IP (co-inventor) / program manager of DARPA ◦ Moved to MCI (email), key figure in setting up ICANN (Internet Corporation for Assigned Numbers and Names), Internet Society, ... • Bob Kahn ◦ TCP/IP (co-inventor) ◦ BBN and first IMPs (interface Message Processor) , (ran ARAPNET routers), ... • Leonard Klienrock ◦ UCLA prof. -- queiueng theory (packet networks) ◦ Supervized first ARPANET connection at UCLA - '69 ◦ IMP build out and usage
  3. Some the real inventors (Gore) • John Postel ◦ RFC's

    (Request For Commments) editor ▪ intially idea flesh out for ARPANET or any DARPA research ▪ now memoradim of ITEF , sometimes standard ◦ coordinated IANA (Internet Assigned Numbers Authority) ◦ Setup NIC (Network Information Center) with SRI (Standford Research Institute) ▪ 1st DNS authority was the NIC ▪ Requested current DNS -- wrote by Paul Mockepetris in 1983
  4. Some the real inventors (Gore) • Paul Vixie ◦ BIND

    and Cron -- author of current versions ▪ BIND - from UCB unix, Berkely Internet Name Domain ◦ Founder of ISC -- Internet Systems Consortium (BIND, DHCP, internet survey report (ML), ...) ◦ co-inventor maintainer of MAPS (Mail Abuse Prevention System) ▪ 1st email spam blocking lists built on DNS ◦ ARIN board member ◦ Security/Stability member for ICANN
  5. Todays Organizations • ICANN - Internet Corporation for Assigned Names

    and Numbers a. Coordination of internet unique identifiers (Domains, IPs, ASNs, ...) b. SRI's NIC-->NSI --> ICANN(IANA) / (NSI-> Verisign) / ARIN c. Approves registries and registrars (EPP,DNS,whois) d. Oversee TLDs, root DNS servers (13), IP assignment, ASN(s) (for BGP between seperate networks) e. gTLD and ccTLD, and ...New generic TLD(s) .... a new era... i. current TLDs http:// www.iana. org/domains/root/db
  6. Todays Organizations • ARIN - American Registry for Internet Numbers

    a. oversee IPs, ASNs, WHOIS, Reverse DNS b. one of 5 RIR (Regional Internet Registries) • IANA - Internet Assigned Numbers Authority a. Ran by ICANN i. manages DNS root servers and .int, .arpa domains TLDs ii. manages global IPs and ASNs to individual RIRs like ARIN iii. Protocol Assignments (which sockets/ports/services)
  7. DNS (Domain Name System) DNS ◦ Map Names to IPs

    (forward map), and IPs to Names (reverse mapping) ◦ With Millions of servers(hosts), unreliable networks, servers, no SPOFs -- how do we do it. ▪ Delegation / Authorization • hierarchical sctructure of data (zones) , any zone can be Delegated. This is a Tree structure of data. • Root Level Zones (historically gTLD & ccTLD...)
  8. DNS (Domain Name System) DNS • Authoritative DNS ◦ each

    Domain must have authoritative HOST who is the master in terms of lookups ▪ Any level (or zone) can be delegated to another host. ▪ The top level is called the root level or zone ( each TLD zone is delegated to a registrar (as defined by ICANN for each gTLD, and to a country for each ccTLD) see http:// www.iana. org/domains/root/db
  9. DNS (Domain Name System) • DNS port 53 (UDP 1st,

    TCP/Ip port failback) • DNS DATA and RecordTypes ◦ SOA - Start of Authority Record name ttl class rr name-server email-addr (sn ref ret ex min) example.com. IN SOA ns.example.com. hostmaster.example.com. ( 2003080800 ; sn = serial number 172800 ; ref = refresh = 2d 900 ; ret = update retry = 15m 1209600 ; ex = expiry = 2w 3600 ; min = minimum = 1h ) ; the following are also valid using @ and blank @ IN SOA ns.example.com. hostmaster.example.com. ( IN SOA ns.example.com. hostmaster.example.com. (
  10. DNS (Domain Name System) • NS - Name Server ;

    zone file fragment for example.com $TTL 2d ; zone TTL default = 2 days or 172800 seconds $ORIGIN example.com. @ IN SOA ns.example.com. hostmaster.example.com. ( 2003080800 ; serial number 1d12h ; refresh = 1 day 12 hours 15M ; update retry = 15 minutes 3W12h ; expiry = 3 weeks + 12 hours 2h20M ; minimum = 2 hours + 20 minutes ) IN NS ns.example.com. IN NS ns.example.net. ... ; A record for ns.example.com. RR above ns IN A 192.168.2.1 ; the above could have been written as ; ns.example.com. IN A 192.168.2.1 ; ns.example.net is out-of-zone (or out-of-bailiwick) ; an A RRs is not required (and will be rejected if present) ◦ NS - Name Server name ttl class rr name example.com. IN NS ns1.example.com. ; the in-zone name server(s) have an A record ns1 IN A 192.168.0.3 ns2 IN A 192.168.0.3 ; name servers not in zone - no A records required IN NS ns1.example.net. IN NS ns1.example.org.
  11. DNS (Domain Name System) • A - Address (IPv4) ;

    zone fragment for example.com $TTL 2d ; zone default = 2 days or 172800 seconds joe IN A 192.168.0.3 ; joe & www = same ip www IN A 192.168.0.3 ; functionally the same as the record above www.example.com. A 192.168.0.3 fred 3600 IN A 192.168.0.4 ; ttl overrides $TTL default ftp IN A 192.168.0.24 ; round robin with next • AAA - Address (Ipv60 ; zone fragment for example.com $TTL 2d ; zone default = 2 days or 172800 seconds $ORIGIN example.com. .... joe IN AAAA 2001:db8::3 ; joe & www = same ip www IN AAAA 2001:db8::3 ; functionally the same as the record above www.example.com. AAAA 2001:db8::3 fred 3600 IN AAAA 2001:db8::4 ; ttl =3600 overrides $TTL default ftp IN AAAA 2001:db8::5 ; round robin with next IN AAAA 2001:db8::6 mail IN AAAA 2001:db8::7 ; mail = round robin mail IN AAAA 2001:db8::32 mail IN AAAA 2001:db8::33
  12. DNS (Domain Name System) • MX - Mail eXchanger name

    ttl class rr pref name example.com. IN MX 10 mail.example.com. IN MX 10 mail ; short form ; the line above is functionally the same as the line below ; example.com. IN MX 10 mail.example.com. ; any number of mail servers may be defined IN MX 20 mail2.example.com. ; use an external back-up IN MX 30 mail.example.net. ◦ PTR - Pointer (reverse -- opposite of A record) name ttl class rr name 15 IN PTR www.example.com. $TTL 2d ; 172800 secs $ORIGIN 23.168.192.IN-ADDR.ARPA. ; 2 below is actually an unqualified name and becomes ; 2.23.168.192.IN-ADDR.ARPA. 2 IN PTR joe.example.com. ; FDQN .... 15 IN PTR www.example.com. .... $ORIGIN 0.0.0.0.8.b.d.0.1.0.0.2.IP6.ARPA. ; the second name servers is ; external to this zone (domain). IN NS ns2.example.net. ; PTR RR maps a IPv6 address to a host name ; hosts in subnet ID 1 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.0 IN PTR ns1.example.com.
  13. DNS (Domain Name System) • CNAME - aliase or realname

    mapped to Canocial Name $ORIGIN example.com. .... server1 IN A 192.168.0.3 www IN CNAME server1 ftp IN CNAME server1 ◦ TXT - text ◦ other special cases ( ▪ TTL on data, and via client server DNS software ▪ DNS Caching (at client, at hosts, .... recursive in nature) ▪ Recursive lookups ▪ DNS format types
  14. DNS (Domain Name System) -- special cases ◦ TXT -

    text ◦ other special cases ( ▪ TTL on data, and via client server DNS software ▪ DNS Caching (at client, at hosts, .... recursive in nature) ▪ Recursive lookups ▪ TSEC, notify, txfr, ...
  15. DNS (Domain Name System) DNS • ▪ DNS Caching (at

    client, at hosts, .... recursive in nature) ▪ Recursive lookups
  16. Whois (DB lookups for Domains / IPs /....) • whois

    -- system for Domains and IPs ◦ simple telnet TCP/IP for data using authoritative server • examples ◦ whois webhero.com ◦ whois billmiller.tel ◦ whois 204.215.60.0 ▪ whois -h whois.arin.net NET-204-215-60-0-1
  17. DNS config / tools • DNS config (*nix) ◦ /etc/resolv.conf

    -- specify DNS servers ◦ /etc/nsswitch.conf -- order of DNS lookup (files,db, DNS) ◦ /etc/hosts -- flat file of hardcoded DNS lookups • DNS Server S/w ◦ BIND ◦ djbdns / tinydns -- by D. J. Bernstien
  18. DNS config / tools • DNS Tools ( and live

    examples) ◦ nslookup ◦ host bill$ host www.allplayers.com www.allplayers.com has address 174.129.39.74 bill$ host 209.217.1.2 2.1.217.209.in-addr.arpa domain name pointer ns1.catalog.com. ◦ dig ◦ web-based ... (iptools.com, www.intodns.com, ...)