w5ch3

Questions and Answers

What is an FQDN in the context of Domain Name System?

A domain name that contains partial labels of a host

A domain name that contains the full name of a host (correct)

A null label that defines the name of a host

A label that uniquely defines the name of a host

What is the purpose of the null label in an FQDN?

To uniquely identify the host

To define the end of the domain name

To define the start of the domain name

To indicate the end of the domain name with a dot (.) (correct)

What is a Partially Qualified Domain Name (PQDN)?

A domain name that contains no labels

A domain name that starts from a node but does not reach the root (correct)

A domain name that starts from the root

A domain name that contains all labels of a host

What is the purpose of the DNS client in resolving a PQDN?

To supply the missing part (suffix) to create an FQDN

What is a domain in the context of Domain Name System?

A subtree of the domain name space

Why is it inefficient to have just one computer store the domain name space?

Because it is very inefficient and also unreliable

What is the process of dividing a domain into smaller domains called?

Subdomain creation

What is the purpose of distributing the domain name space?

To make it more efficient and reliable

What type of query is sent when a client wants to map an IP address to a domain name?

PTR query

How is the IP address modified before sending a PTR query?

The IP address is reversed and in-addr and arpa labels are added

What happens when a client asks for a recursive answer from a name server?

The server responds with the final answer

What is the purpose of the inverse domain in DNS?

To map IP addresses to domain names

What happens when a server is not the authority for a domain name in recursive resolution?

The server sends the query to another server

What type of resolution occurs when a client does not ask for a recursive answer?

Iterative resolution

What is the role of the client in iterative resolution?

The client is responsible for repeating the query to another server

What is the purpose of the in-addr and arpa labels in a PTR query?

To make the IP address acceptable by the inverse domain

What is the responsibility of an original server in a domain?

It has a zone, but the detailed information is kept by the lower-level servers.

What is the purpose of a root server?

To delegate its authority to other servers, keeping references to those servers.

What is the difference between a primary server and a secondary server?

A primary server updates zone files, while a secondary server does not.

What is the purpose of a secondary server?

To create redundancy for the data so that if one server fails, the other can continue serving clients.

What is the role of a primary server?

To create, maintain, and update the zone file.

What happens if a primary server fails?

The secondary server continues serving clients.

What is the relationship between a primary server and a secondary server?

A primary server and a secondary server are at the same level of authority.

What is the role of a root server in the domain name space?

It covers the whole domain name space.

What is the purpose of a question record in DNS?

To get information from a server

What type of records are present in the answer section of a DNS response message?

Resource records

What is the purpose of the authoritative section in a DNS response message?

To give information about one or more authoritative servers

What is the role of a registrar in DNS?

To verify and add new domain names to the DNS database

What is a resource record associated with in DNS?

Each node on the DNS tree

What is the purpose of the additional information section in a DNS response message?

To provide additional information that may help the resolver

What is returned by the DNS server to the client?

Resource records

What is the purpose of ICANN in the context of DNS?

To accredit registrars

What information does an organization need to provide to register?

Its server name and IP address

What was the limitation of the initial DNS design?

It required manual updating for changes

What is the main purpose of Dynamic Domain Name System (DDNS)?

To update DNS master files dynamically

How do secondary servers get notified about changes in the zone in active notification?

The primary server sends a message to them

What is the purpose of authentication in DDNS?

To provide security and prevent unauthorized changes

What protocol is used by DNS when the size of the response message is less than 512 bytes?

UDP

What is the well-known port used by the DNS server?

Port 53

When is a TCP connection used in DNS?

When the size of the response message is more than 512 bytes

What is the purpose of the generic domains in the domain name space?

To define registered hosts according to their generic behavior

What type of query is sent when a server wants to map an IP address to a domain name?

Inverse query

What is the name of the first-level node in the inverse domain?

arpa

What is the purpose of the country domains section?

To use two-character country abbreviations

What is the hierarchical structure of the inverse domain based on?

The netid part of the address being at a higher level than the subnetid part

What is the purpose of the in-addr node in the inverse domain?

To be the second-level node in the inverse domain

What is the relationship between the generic domains and the country domains?

They are separate sections of the domain name space

What is the purpose of the domain name space?

To provide a hierarchical structure for organizing domain names

What is the process of finding an IP address from a domain name or vice versa called?

Name-address resolution

What type of application is DNS designed as?

Client-server

What is the maximum number of levels in a domain name space?

128

What is the role of a resolver in DNS?

To request domain name information

What happens if a local DNS server cannot resolve a query?

All of the above

What is the maximum length of a label in a domain name?

63 characters

What is the format of an IP address in a PTR query?

Inverse order with 'in-addr.arpa' appended

How are domain names read in a domain name space?

From the node up to the root

What is the purpose of a central authority in a domain name space?

To assign the part of the domain name that defines the nature of the organization

How is a domain name read in DNS?

From bottom to top

What is the term for the process of a resolver receiving a response from a DNS server?

Interpretation

What is the root label in a domain name space?

A null string

What type of domain is 'chal.atc.jhda.edu.' an example of?

Generic domain

What is the purpose of children having different labels in a domain name space?

To ensure the uniqueness of domain names

What is the last character of a full domain name?

A dot

What is a fully qualified domain name (FQDN) in the context of DNS?

A domain name that is terminated by a null string

What is the main purpose of the identification subfield in DNS messages?

To match the response with the query

Which section is present in both query and response messages in DNS?

Question section

Which section of a DNS response message contains the answer from the server to the client?

Answer Section

What is the total size of the header in DNS messages?

12 bytes

What is the role of a registrar in DNS?

To add new domains to DNS

What type of records are associated with each domain name (each node on the tree)?

Resource Records

Which subfield contains the number of queries in the question section of the message?

Number of question records subfield

What is the purpose of the authoritative section in a DNS response message?

To give information about one or more authoritative servers for the query

What happens to mappings with an expired TTL in the cache memory?

They are purged periodically

What is the purpose of the additional information section in a DNS response message?

To provide additional information that may help the resolver

What is the purpose of the flags subfield in DNS messages?

To specify the type of answer requested

What is the purpose of the question records in DNS messages?

To specify the question being asked

What is the format of both query and response messages in DNS?

Same format for both query and response messages

What is the purpose of a question record in DNS?

To get information from a server

What is the role of ICANN in the context of DNS?

To accredit registrars

What is the main disadvantage of a flat name space in the context of DNS?

It allows ambiguity and duplication

What is the purpose of dividing the host file information into smaller parts in DNS?

To reduce the traffic on the Internet

How are the names assigned to machines ensured to be unique in DNS?

By using a name space with complete control over the binding between the names and IP addresses

What type of name space is used by the Domain Name System (DNS)?

Hierarchical name space

What is the advantage of using a hierarchical name space in DNS?

It allows the authority to assign and control the name spaces to be decentralized

What is the problem with storing the entire host file in a single computer?

It creates a huge amount of traffic on the Internet

What is the role of the hierarchical name space in DNS?

To map each address to a unique name

Why is decentralization of control important in DNS?

To allow the authority to assign and control the name spaces to be decentralized

What is the primary purpose of the inverse domain in DNS?

To map an IP address to a domain name

What is the first-level node in the inverse domain?

arpa

What is the purpose of the country domains section?

To use two-character country abbreviations

How is the hierarchical structure of the inverse domain organized?

By IP addresses, subnet IDs, and host IDs

What is the purpose of the generic domains section?

To define registered hosts according to their generic behavior

What type of query is sent when a server wants to map an IP address to a domain name?

Inverse query

What happens when a server receives a query for a name that is not in its domain?

It searches its database for a server IP address

What is the purpose of the in-addr node in the inverse domain?

To define IP addresses

What is the relationship between the generic domains and the country domains?

They are separate sections of the domain name space

What is the purpose of caching in DNS?

To reduce search time

What is the purpose of time-to-live (TTL) in DNS?

To define the time a server can cache the information

What is the consequence of a server caching a mapping for a long time?

It sends outdated mapping to the client

What is the purpose of iterative resolution?

The client repeats the query to multiple servers

How does a server handle a query for a mapping that is not in its cache?

It asks another server for the IP address

What happens when a client queries multiple servers before it gets an answer?

Iterative resolution

Why is caching problematic?

It may send outdated mapping to the client

What is the purpose of a root server in the domain name space?

To delegate its authority to other servers

What is the main difference between a primary and secondary server?

The way they obtain and update zone files

What happens when a primary server fails?

The secondary server continues serving clients

What is the purpose of having multiple root servers?

To provide redundancy for the data

What type of server is responsible for creating and maintaining zone files?

Primary server

What is the role of a secondary server in a domain?

To transfer the complete information from another server

What is the relationship between a primary and secondary server?

One is responsible for creating zone files and the other is not

What is the purpose of dividing a domain into smaller domains?

To delegate authority to lower-level servers

What is the limitation of the initial DNS design?

The DNS was not able to handle dynamic changes to IP addresses

Which protocol is used by DNS when the size of the response message is greater than 512 bytes?

TCP

What is the purpose of the Dynamic Domain Name System (DDNS)?

To allow for dynamic changes to IP addresses

What is the well-known port used by the DNS server?

Port 53

How do secondary servers get notified about changes in the zone in passive notification?

They periodically check for any changes

What is the purpose of authentication in DDNS?

To provide security and prevent unauthorized changes

What information does an organization need to provide to register?

The name of its server and the IP address of the server

What happens when the size of the response message is less than 512 bytes?

A UDP connection is used

What is the main purpose of the inverse domain in DNS?

To map an IP address to a domain name

What is the structure of the inverse domain based on?

The hierarchical structure of IP addresses

What is the purpose of the country domains section in DNS?

To use two-character country abbreviations

What is the first-level node in the inverse domain called?

arpa

What is the purpose of the generic domains in DNS?

To define registered hosts according to their generic behavior

What type of query is sent when a server wants to map an IP address to a domain name?

Inverse or pointer query

What is the hierarchical structure of the inverse domain based on?

The IP address, with netid, subnetid, and hostid

What is the purpose of the in-addr node in the inverse domain?

To define IP addresses

What is the primary purpose of the Domain Name System (DNS)?

To map a domain name to an IP address and vice versa

Why was the initial DNS design limited?

Because it was not designed to support a large number of hosts

What is the purpose of a DNS client?

To map a domain name to an IP address

What is the advantage of using DNS over a host file?

DNS is more scalable and can support a large number of hosts

What is the purpose of the DNS server in the context of email?

To map an email address to an IP address

What is the disadvantage of using a single host file to map domain names to IP addresses?

It would be too large to store in every host

What is the relationship between the IP address and the domain name?

The IP address and the domain name are equivalent

What is the role of the DNS in the Internet model?

To support other application programs

What is the main reason for distributing the information among many DNS servers?

To reduce the load on the system

What is a zone in the context of DNS?

A contiguous part of the entire domain name hierarchy

What happens when a server divides its domain into subdomains?

The domain and zone refer to different things

What is the purpose of creating a hierarchy of DNS servers?

To reduce the load on individual servers

What is stored in the zone file of a DNS server?

All the information for every node under the domain

Why is it not possible to store the entire domain name hierarchy on a single server?

Because it is too large

What is the relationship between the original server and the servers at the lower levels?

The original server delegates part of its authority to the lower-level servers

What is the purpose of dividing the domain name space into smaller domains?

To reduce the load on individual servers

What happens when a server cannot resolve a query?

It returns the IP address of a new server to the client.

What is the purpose of caching in DNS?

To store a mapping from another server and speed up resolution.

What is the role of TTL in DNS?

To define the time a server can cache information.

What happens if a server caches a mapping for a long time?

It may send an outdated mapping to the client.

What is the result of iterative resolution?

The client repeats the query to multiple servers.

Why is caching necessary in DNS?

To reduce the search time for a server IP address.

What is the purpose of the authoritative server in DNS?

To provide authoritative answers to queries.

What is the benefit of using caching in DNS?

It reduces the search time for a server IP address.

What is the direction of reading domain labels in a domain name?

From bottom to top

What is the purpose of a resolver in DNS?

To map a name to an address

What happens when a local DNS server cannot resolve a query?

It refers the resolver to other servers or asks other servers directly

What is the format of an IP address in a PTR query?

121.45.34.132.in-addr.arpa

What is the relationship between a server serving a subnet and a server serving the whole site?

The server serving the whole site is at a higher level

What is the direction of the resolution process in DNS?

From the root server to the client

What is the purpose of the generic domains and country domains sections?

To organize the domain name space

What is the process of mapping a name to an address or an address to a name called?

Name-address resolution

Study Notes

Domain Name System (DNS)

• A domain name is a string of characters that represents an IP address
• DNS is a hierarchical system that translates domain names into IP addresses

FQDN (Fully Qualified Domain Name)

• A domain name that contains the full name of a host
• Includes all labels, from the most specific to the most general, that uniquely define the name of the host
• Example: challenger.ate.tbda.edu
• Must end with a null label, which is a dot (.)

PQDN (Partially Qualified Domain Name)

• A domain name that is not terminated by a null string
• Starts from a node, but does not reach the root
• Used when the name to be resolved belongs to the same site as the client
• Resolver can supply the missing part, called the suffix, to create an FQDN
• Example: Challenger can be defined as a partial name, and the resolver adds the suffix atc.jhda.edu to create an FQDN

Domain

• A subtree of the domain name space
• The name of the domain is the domain name of the node at the top of the subtree
• A domain may be divided into subdomains

Distribution of Name Space

• The information contained in the domain name space must be stored
• It is inefficient and unreliable to have just one computer store the huge amount of information
• A server can divide part of its domain and delegate responsibility to lower-level servers
• The server still has a zone, but the detailed information is kept by the lower-level servers

Root Server

• A server whose zone consists of the whole tree
• Does not store any information about domains but delegates its authority to other servers
• Keeps references to those servers
• There are several root servers, each covering the whole domain name space

Primary and Secondary Servers

• Primary server: stores a file about the zone for which it is an authority
• Responsible for creating, maintaining, and updating the zone file
• Stores the zone file on a local disk
• Secondary server: transfers the complete information about a zone from another server (primary or secondary) and stores the file on its local disk
• Neither creates nor updates the zone files

Mapping Addresses to Names

• A client can send an IP address to a server to be mapped to a domain name (PTR query)
• DNS uses the inverse domain to answer queries of this kind
• The IP address is reversed and the two labels in-addr and arpa are appended to create a domain acceptable by the inverse domain section

Recursive Resolution

• The client (resolver) can ask for a recursive answer from a name server
• The resolver expects the server to supply the final answer
• If the server is not the authority, it sends the request to another server (the parent usually) and waits for the response

Iterative Resolution

• If the client does not ask for a recursive answer, the mapping can be done iteratively
• The server returns (to the client) the IP address of the server that it thinks can resolve the query
• The client is responsible for repeating the query to this second server

DNS Sections

• Answer Section: includes the answer from the server to the client (resolver)
• Authoritative Section: gives information (domain name) about one or more authoritative servers for the query
• Additional Information Section: provides additional information that may help the resolver

Types of Records

• Question Record: used by the client to get information from a server
• Resource Record: each domain name (each node on the tree) is associated with a record called the resource record
• The server database consists of resource records

Registrars

• Commercial entities accredited by ICANN that add new domains to DNS
• Verify that the requested domain name is unique and then enter it into the DNS database
• A fee is charged

Dynamic Domain Name System (DDNS)

• Designed to respond to the need for dynamic updating of DNS records
• When a binding between a name and an address is determined, the information is sent to a primary DNS server
• The primary server updates the zone, and the secondary servers are notified
• Uses an authentication mechanism to prevent unauthorized changes in the DNS records

Domain Name System (DNS)

• A central authority assigns the part of the domain name that defines the organization's nature and the organization's name.
• The organization can add suffixes or prefixes to define its host or resources.
• Hierarchical name space with an inverted-tree structure, with the root at the top and up to 128 levels.

Domain Name Space

• Each node in the tree has a label, a string with a maximum of 63 characters.
• The root label is a null string (empty string).
• Children of a node have different labels, ensuring uniqueness of domain names.

Domain Name

• A full domain name is a sequence of labels separated by dots (.).
• Domain names are read from the node up to the root.
• A full domain name always ends in a null label, which means the last character is a dot.

Fully Qualified Domain Name (FQDN)

• A label terminated by a null string is a fully qualified domain name (FQDN).

DNS in the Internet

• DNS is a protocol that can be used in different platforms.
• The domain name space is divided into three sections: generic domains, country domains, and inverse domain.

Generic Domains

• Define registered hosts according to their generic behavior.
• Each node in the tree defines a domain, which is an index to the domain name space database.

Country Domains

• Use two-character country abbreviations (e.g., "in" for India).
• Second labels can be organizational or specific designations.

Inverse Domain

• Used to map an address to a name.
• The inverse domain is added to the domain name space with the first-level node called "arpa" and the second level "in-addr".
• The rest of the domain defines IP addresses.

Resolution

• Mapping a name to an address or an address to a name is called name-address resolution.
• A resolver accesses a DNS server with a mapping request.
• The resolver receives the mapping and interprets the response to see if it's a real resolution or an error.

DNS Messages

• Two types of messages: query and response.
• Both types have the same format, with a header and question records, answer records, authoritative records, and additional records.

Header

• 12 bytes in length.
• Contains identification subfield, flags subfield, number of question records, number of answer records, number of authoritative records, and number of additional records.

Question Section

• Consists of one or more question records.
• Present in both query and response messages.

Answer Section

• Consists of one or more resource records.
• Present only in response messages.
• Includes the answer from the server to the client (resolver).

Authoritative Section

• Consists of one or more resource records.
• Present only in response messages.
• Gives information about one or more authoritative servers for the query.

Additional Information Section

• Consists of one or more resource records.
• Present only in response messages.
• Provides additional information that may help the resolver.

Resource Records

• Associated with each domain name (each node on the tree).
• The server database consists of resource records.
• Returned by the server to the client.

Registrars

• Commercial entities accredited by ICANN.
• Verify that the requested domain name is unique and then enter it into the DNS database.
• Charge a fee.

DNS Overview

• One solution to store host file information is to centralize it on a single computer, but this would create significant internet traffic.
• Another solution, used by DNS, is to divide the information into smaller parts and store each on a different computer, allowing hosts to access the closest computer with the needed information.

Name Space

• Names assigned to machines must be unique and carefully selected from a name space with complete control over the binding between names and IP addresses.
• A name space can be organized in two ways: flat or hierarchical.

Flat Name Space

• A flat name space assigns a name to an address without structure.
• It cannot be used in a large system like the Internet because it must be centrally controlled to avoid ambiguity and duplication.

Hierarchical Name Space

• A hierarchical name space consists of multiple parts, defining the nature of the organization, the organization's name, and departments.
• The authority to assign and control name spaces can be decentralized, with the original server delegating responsibility to lower-level servers.

Zones and Domains

• A server can divide its domain and delegate responsibility to other servers, keeping references to the delegated parts.
• A zone is made up of detailed information for the part of the domain not delegated and references to the delegated parts.

Root Server

• A root server has a zone that consists of the whole tree.
• It usually doesn't store domain information but delegates authority to other servers, keeping references to those servers.
• There are multiple root servers distributed around the world.

Primary and Secondary Servers

• A primary server stores a file about the zone for which it is an authority and is responsible for creating, maintaining, and updating the zone file.
• A secondary server transfers the complete information about a zone from another server and stores it on its local disk.
• Both primary and secondary servers are authoritative for the zones they serve.

DNS in the Internet

• DNS is a protocol used in different platforms, dividing the domain name space into three sections: generic domains, country domains, and inverse domain.

Generic Domains

• Generic domains define registered hosts according to their generic behavior.
• Each node in the tree defines a domain, which is an index to the domain name space database.

Country Domains

• Country domains use two-character country abbreviations, with second labels being organizational or specific designations.

Inverse Domain

• The inverse domain is used to map an address to a name, using a hierarchical structure with nodes for IP addresses.
• The inverse domain is added to the domain name space with the first-level node "arpa" and the second-level node "in-addr".

Caching

• Caching reduces search time by storing query results in cache memory.
• When a server receives a query, it checks its cache memory before sending the query to another server.
• The server marks the response as unauthoritative if it comes from the cache memory.

Time-to-Live (TTL)

• TTL defines the time in seconds that a receiving server can cache the information.
• After the TTL, the mapping is invalid, and any query must be sent again to the authoritative server.

Dynamic Domain Name System (DDNS)

• DDNS updates the DNS master file dynamically, responding to changes such as adding or removing hosts, or changing IP addresses.
• In DDNS, the primary server updates the zone, and secondary servers are notified actively or passively.

Summary

• DNS can use either UDP or TCP, with a well-known port 53.
• UDP is used when the response message is less than 512 bytes, and TCP is used when the response message is more than 512 bytes.

Introduction to DNS

• DNS is a supporting program that is used by other programs such as e-mail to map an e-mail address to the corresponding IP address.
• The DNS client program sends a request to a DNS server to map the e-mail address to the IP address.
• IP protocols use IP addresses to identify an entity, but people prefer to use names instead of numeric addresses.

Hierarchical Structure of DNS

• The solution to the problem of mapping names to addresses is to distribute the information among many computers called DNS servers.
• The DNS servers form a hierarchical structure, with each server being responsible for a domain or a zone.
• A zone is a contiguous part of the entire tree, and a server makes a database called a zone file and keeps all the information for every node under that domain.

DNS in the Internet

• DNS is a protocol that can be used in different platforms.
• In the Internet, the domain name space (tree) is divided into three different sections: generic domains, country domains, and inverse domain.

Generic Domains

• Generic domains define registered hosts according to their generic behavior.
• Each node in the tree defines a domain, which is an index to the domain name space database.

Country Domains

• Country domains use two-character country abbreviations (e.g., in for India).
• Second labels can be organizational, or they can be more specific designations.

Inverse Domain

• The inverse domain is used to map an address to a name.
• This type of query is called an inverse or pointer (PTR) query.
• The servers that handle the inverse domain are also hierarchical.

Resolution

• Mapping a name to an address or an address to a name is called name-address resolution.
• A host that needs to map an address to a name or a name to an address calls a DNS client called a resolver.
• The resolver accesses the closest DNS server with a mapping request.

Resolver

• The resolver gives a domain name to the server and asks for the corresponding address.
• If the server has the information, it satisfies the resolver; otherwise, it either refers the resolver to other servers or asks other servers to provide the information.

Mapping Names to Addresses

• Mostly, the resolver gives a domain name to the server and asks for the corresponding address.
• If the domain name is from the generic domains section, the resolver receives a domain name such as "chal.atc.jhda.edu.".
• If the domain name is from the country domains section, the resolver receives a domain name such as "ch.jhda.cu.ca.us.".

Iterative Resolution

• If the local server cannot resolve the query, it either refers the resolver to other servers or asks other servers directly.
• This process is called iterative resolution because the client repeats the same query to multiple servers.

Caching

• Each time a server receives a query for a name that is not in its domain, it needs to search its database for a server IP address.
• DNS handles this with a mechanism called caching.
• When a server asks for a mapping from another server and receives the response, it stores this information in its cache memory before sending it to the client.

Time-to-Live (TTL)

• The authoritative server always adds information to the mapping called time-to-live (TTL).
• TTL defines the time in seconds that the receiving server can cache the information.
• After that time, the mapping is invalid and any query must be sent again to the authoritative server.

Description

Understanding Fully Qualified Domain Names (FQDN) and their structure in DNS systems.