Revision as of 15:16, 25 April 2009 edit122.164.41.12 (talk) →Domain Name System← Previous edit | Latest revision as of 20:53, 30 November 2024 edit undoMacaroniPizzaHotDog (talk | contribs)Extended confirmed users1,266 editsm Reverted 1 edit by 156.38.63.37 (talk)Tags: Twinkle Undo | ||
(587 intermediate revisions by more than 100 users not shown) | |||
Line 1: | Line 1: | ||
{{short description|Computer hardware or software server}} | |||
In ], a '''name server''' (also called '''nameserver''' or '''DNS server''') consists of a program or computer ] that implements a ] ]. It will normally ] (i.e. connect) a ''human-recognisable'' identifier of a ] (for example, the ] 'en.wikipedia.org') to its ''computer-recognisable'' identifier (such as the ] (IP) ] 145.97.39.155), and vice versa.<ref name="techterms"> | |||
{{ | |||
cite web|title=Name Server definition at techterms.com|url=http://www.techterms.com/definition/nameserver | |||
}} | |||
</ref> | |||
== Domain Name System == | |||
{{for|protocol NAMESERVER that has been replaced with ]|ARPA Host Name Server Protocol}} | |||
''Main article: '' | |||
A '''name server''' is a computer application that implements a ] for providing responses to queries against a ]. It translates an often humanly meaningful, text-based identifier to a system-internal, often numeric identification or addressing component. This service is performed by the server in response to a ] request. | |||
Internet name servers implement the ] (DNS) protocol. Name servers also exist on some ] networks where one host can take the role of ] Master Browser and act as a ] server. Small ] of Windows systems require no central name server, and generally perform name-resolution using ]. | |||
An example of a name server is the server component of the ] (DNS), one of the two principal ]s of the ]. The most important function of DNS servers is the translation (resolution) of human-memorable ]s and ]s into the corresponding numeric ] (IP) addresses, the second principal name space of the Internet which is used to identify and locate computer systems and resources on the Internet. | |||
A domain name server is a server that governs the DNS records, such as A (host) records, CNAME (aliases) records, and MX (mail exchange) records for a domain name. | |||
==Domain name server== | |||
== Primary and secondary nameservers == | |||
{{Main|Domain Name System}} | |||
The Internet maintains two principal ]s: the domain name hierarchy<ref name="rfc1034">RFC 1034, ''Domain Names—Concepts and Facilities'', P. Mockapetris, The Internet Society (November 1987)</ref> and the IP address system.<ref name="rfc781">RFC 781, ''Internet Protocol—DARPA Internet Program Protocol Specification'', Information Sciences Institute, J. Postel (Ed.), The Internet Society (September 1981)</ref> The Domain Name System maintains the domain namespace and provides translation services between these two namespaces. Internet name servers implement the Domain Name System.<ref name="rfc1035">RFC 1035, ''Domain Names — Implementation and Specification'', P. Mockapetris, The Internet Society (November 1987)</ref> The top hierarchy of the Domain Name System is served by the ] maintained by delegation by the ] (ICANN). DNS servers, which are located all over the world, translate domain names into IP addresses, giving them control over which server a user may access via a given domain. Below the root, Internet resources are organized into a hierarchy of domains, administered by the respective registrars and domain name holders. A DNS name server is a server that stores the ], such as address (A, AAAA) records, name server (NS) records, and mail exchanger (MX) records for a domain name (see also ]) and responds with answers to queries against its database. | |||
Every ] must have a primary nameserver (eg. ns1.domainname.com), and ''at least one'' secondary nameserver (ns2.domainname.com etc). This requirement aims to make the domain still reachable even if one nameserver becomes inaccessible.<ref name="techterms"> | |||
{{ | |||
=== Types of name servers === | |||
cite web|title=Name Server definition at techterms.com | |||
|url=http://www.techterms.com/definition/nameserver | |||
Name servers are usually either ''authoritative'' or ''recursive'', as described below. | |||
}} | |||
Although not the usual practice today, name servers can be both authoritative ''and'' recursive, if they are configured to give authoritative answers to queries in some zones, while acting as a ] for all other zones.<ref>{{cite IETF |title=DNS Terminology |bcp=219 |author1=Paul Hoffman |author2=Andrew Sullivan |author3=Kazunori Fujiwara |date=January 2019 |publisher=] |access-date=17 December 2015 }}</ref> | |||
===Authoritative name server=== | |||
An authoritative name server is a name server that is responsible for giving ] in response to questions asked about names in a ]. An authoritative-only name server returns answers only to queries about domain names for which it is responsible (as specifically configured by its administrator). | |||
An authoritative name server can either be a ''primary'' server or a ''secondary'' server. A primary server for a zone is the server that stores the definitive versions of all records in that zone. It is identified in the start-of-authority (SOA) resource record. A secondary server for a zone uses an automatic updating mechanism to maintain an identical copy of the primary server's database for a zone. Examples of such mechanisms include ]s and file transfer protocols. DNS provides a mechanism whereby the primary for a zone can notify all the known secondaries for that zone when the contents of the zone have changed. The contents of a zone are either manually configured by an administrator, or managed using ].<ref>{{cite IETF |title=Dynamic Updates in the Domain Name System (DNS Update) |rfc=2136 |author1=Yakov Rekhter |author2=Susan Thomson |author3=Jim Bound |author4=Paul Vixie |date=April 1007 |publisher=] |access-date=17 December 2015 }}</ref> | |||
Every domain name appears in a zone served by one or more authoritative name servers. The ]s of the authoritative name servers of a zone are listed in the NS records of that zone. If the server for a zone is not also authoritative for its parent zone, the server for the parent zone must be configured with a ] for the zone.<ref>{{cite IETF |title=Clarifications to the DNS Specification |rfc=2181 |author1=Robert Elz |author2=Randy Bush |date=July 1997 |publisher=] |access-date=17 December 2015 }}</ref> | |||
When a domain is registered with a ], the zone administrator provides the list of name servers (typically at least two, for redundancy<ref name="techterms">{{cite web|title=Name Server definition at techterms.com|url=http://www.techterms.com/definition/nameserver}}</ref>) that are authoritative for the zone that contains the domain. The registrar provides the names of these servers to the ] for the ] containing the zone. The domain registry in turn configures the authoritative name servers for that top-level domain with delegations for each server for the zone. If the fully qualified domain name of any name server for a zone appears within that zone, the zone administrator provides IP addresses for that name server, which are installed in the parent zone as ]; otherwise, the delegation consists of the list of NS records for that zone.<ref>{{cite IETF |title=Domain Names - Domain Concepts and Facilities |rfc=1034 |sectionname=Technical considerations |section=4.2.1 |author1=Paul Mockapetris |date=November 1987 |publisher=] |access-date=17 December 2015 }} | |||
</ref> | </ref> | ||
==Authoritative |
====Authoritative answer====<!-- 'Authoritative Answer' redirects here --> | ||
A name server indicates that its response is authoritative by setting the ''Authoritative Answer'' (''AA'') bit in the response to a query on a name for which it is authoritative. Name servers providing answers for which they are not authoritative (for example, name servers for parent zones) do not set the ''AA'' bit.<ref name="rfc1035 "/> | |||
An '''authoritative name server''' is a name server that can give an ] to a DNS query, and not just a cached answer that was given by another name server. All primary and secondary name servers give authoritative answers, as can certain other "shadow" name servers. | |||
== |
===Recursive Resolver=== | ||
A ''Recursive Resolver'' (sometimes called a Recursive Name Server) is a DNS name server that accepts recursive queries (defined below) from clients (who are using a stub resolver), and then resolves those queries, either from a cache of prior results, or by asking one or more authoritative servers. | |||
====Recursive query==== | |||
{{See also|Public recursive name server}} | |||
If a name server cannot answer a query because it does not contain an entry for the host in its DNS cache, it may recursively query name servers higher up in the hierarchy.<ref name=":0">{{cite web|url=http://www-01.ibm.com/support/docview.wss?uid=pub1sc23881400|title=Composite Application Manager for Internet Service Monitoring, Reference Guide | publisher = IBM | access-date=15 February 2012}}</ref> This is known as a ''recursive query'' or ''recursive lookup''. A server providing recursive queries is known as a ''recursive name server'' or ''recursive DNS'', sometimes abbreviated as '''recdns'''.<ref>{{Cite web|url=https://fanf.livejournal.com/133020.html|title=Network setup for Cambridge's new DNS servers|language=en|access-date=2018-02-05|quote=The recursive DNS server (aka recdns)}}</ref> | |||
In principle, authoritative name servers suffice for the operation of the Internet. However, with only authoritative name-servers operating, every DNS query must start with recursive queries at the ] of the Domain Name System and each user system must implement resolver software capable of recursive operation.{{clarify|date=May 2016}} | |||
===Caching name server=== | |||
Caching name servers (''DNS caches'') are usually recursive resolvers that store DNS query results for a period of time determined in the configuration (time-to-live) of each domain-name record. DNS caches improve the efficiency of the DNS by reducing DNS traffic across the Internet, and by reducing load on authoritative name-servers, particularly root name-servers. Because they can answer questions more quickly, they also increase the performance of end-user applications that use the DNS. | |||
Caching name servers are often also recursive name servers—they perform every step necessary to answer any DNS query they receive. To do this the name server queries each authoritative name-server in turn, starting from the DNS root zone. It continues until it reaches the authoritative server for the zone that contains the queried domain name. That server provides the answer to the question, or definitively says it can't be answered, and the ''caching resolver'' then returns this response to the client that asked the question. | |||
The authority, resolving and caching functions can all be present in a DNS server implementation, but this is not required: a DNS server can implement any one of these functions alone, without implementing the others. | |||
] typically provide caching resolvers for their customers. In addition, many ] routers implement caching resolvers to improve efficiency in the local network. | |||
Some systems utilize <code>nscd</code>, which stands for the "name service caching daemon".<ref>, though this is typically not used for caching DNS names. | |||
{{cite book | |||
| last1 = Nemeth | |||
| first1 = Evi | |||
| author-link = Evi Nemeth | |||
| first2 = Garth | |||
| last2 = Snyder | |||
| first3 = Tra. | |||
| last3 = Heine | |||
| title = Linux administration handbook | |||
| url = //books?id=GB_O89fnz_sC | |||
| access-date = 2012-02-14 | |||
| edition = 2 | |||
| year = 2006 | |||
| publisher = Addison-Wesley Professional | |||
| isbn = 978-0-13-148004-9 | |||
| page = 504e | |||
| quote = ncsd cache the results of DNS lookups but it also wraps the library routines that access information from the <code> passwd</code> and <code>group</code> files and their network database equivalents. | |||
}} | |||
</ref> | |||
==See also== | |||
* ] | |||
* ] | * ] | ||
* ] | * ] | ||
* ] |
* ] | ||
* ] |
* ] | ||
* ] | |||
* ], a name-service caching daemon<ref></ref> | |||
* ] (NSS) | * ] (NSS) | ||
* ] (NIS) | |||
* ], ], ] for ]/] | * ], ], ] for ]/] | ||
* ] | * ] | ||
* ] | |||
* ] | |||
== External links== | |||
* ] | |||
* | |||
* | |||
==References== | |||
] | |||
{{reflist|30em}} | |||
] | |||
== |
==External links== | ||
* {{Webarchive|url=https://web.archive.org/web/20161015045345/http://pcsupport.about.com/od/tipstricks/a/free-public-dns-servers.htm |date=2016-10-15 }}, article on ''about.com'' by Tim Fisher, retrieved on 2015-02-08 21-59 UTC | |||
{{reflist}} | |||
* {{Webarchive|url=https://web.archive.org/web/20060902123229/http://www.bind9.net/ |date=2006-09-02 }} | |||
] | |||
{{compu-network-stub}} | |||
] | |||
] | ] | ||
<s></s> | |||
] | |||
] | |||
] |
Latest revision as of 20:53, 30 November 2024
Computer hardware or software server For protocol NAMESERVER that has been replaced with DNS, see ARPA Host Name Server Protocol.A name server is a computer application that implements a network service for providing responses to queries against a directory service. It translates an often humanly meaningful, text-based identifier to a system-internal, often numeric identification or addressing component. This service is performed by the server in response to a service protocol request.
An example of a name server is the server component of the Domain Name System (DNS), one of the two principal namespaces of the Internet. The most important function of DNS servers is the translation (resolution) of human-memorable domain names and hostnames into the corresponding numeric Internet Protocol (IP) addresses, the second principal name space of the Internet which is used to identify and locate computer systems and resources on the Internet.
Domain name server
Main article: Domain Name SystemThe Internet maintains two principal namespaces: the domain name hierarchy and the IP address system. The Domain Name System maintains the domain namespace and provides translation services between these two namespaces. Internet name servers implement the Domain Name System. The top hierarchy of the Domain Name System is served by the root name servers maintained by delegation by the Internet Corporation for Assigned Names and Numbers (ICANN). DNS servers, which are located all over the world, translate domain names into IP addresses, giving them control over which server a user may access via a given domain. Below the root, Internet resources are organized into a hierarchy of domains, administered by the respective registrars and domain name holders. A DNS name server is a server that stores the DNS records, such as address (A, AAAA) records, name server (NS) records, and mail exchanger (MX) records for a domain name (see also List of DNS record types) and responds with answers to queries against its database.
Types of name servers
Name servers are usually either authoritative or recursive, as described below.
Although not the usual practice today, name servers can be both authoritative and recursive, if they are configured to give authoritative answers to queries in some zones, while acting as a caching name server for all other zones.
Authoritative name server
An authoritative name server is a name server that is responsible for giving answers in response to questions asked about names in a zone. An authoritative-only name server returns answers only to queries about domain names for which it is responsible (as specifically configured by its administrator).
An authoritative name server can either be a primary server or a secondary server. A primary server for a zone is the server that stores the definitive versions of all records in that zone. It is identified in the start-of-authority (SOA) resource record. A secondary server for a zone uses an automatic updating mechanism to maintain an identical copy of the primary server's database for a zone. Examples of such mechanisms include DNS zone transfers and file transfer protocols. DNS provides a mechanism whereby the primary for a zone can notify all the known secondaries for that zone when the contents of the zone have changed. The contents of a zone are either manually configured by an administrator, or managed using Dynamic DNS.
Every domain name appears in a zone served by one or more authoritative name servers. The fully qualified domain names of the authoritative name servers of a zone are listed in the NS records of that zone. If the server for a zone is not also authoritative for its parent zone, the server for the parent zone must be configured with a delegation for the zone.
When a domain is registered with a domain name registrar, the zone administrator provides the list of name servers (typically at least two, for redundancy) that are authoritative for the zone that contains the domain. The registrar provides the names of these servers to the domain registry for the top-level domain containing the zone. The domain registry in turn configures the authoritative name servers for that top-level domain with delegations for each server for the zone. If the fully qualified domain name of any name server for a zone appears within that zone, the zone administrator provides IP addresses for that name server, which are installed in the parent zone as glue records; otherwise, the delegation consists of the list of NS records for that zone.
Authoritative answer
A name server indicates that its response is authoritative by setting the Authoritative Answer (AA) bit in the response to a query on a name for which it is authoritative. Name servers providing answers for which they are not authoritative (for example, name servers for parent zones) do not set the AA bit.
Recursive Resolver
A Recursive Resolver (sometimes called a Recursive Name Server) is a DNS name server that accepts recursive queries (defined below) from clients (who are using a stub resolver), and then resolves those queries, either from a cache of prior results, or by asking one or more authoritative servers.
Recursive query
See also: Public recursive name serverIf a name server cannot answer a query because it does not contain an entry for the host in its DNS cache, it may recursively query name servers higher up in the hierarchy. This is known as a recursive query or recursive lookup. A server providing recursive queries is known as a recursive name server or recursive DNS, sometimes abbreviated as recdns.
In principle, authoritative name servers suffice for the operation of the Internet. However, with only authoritative name-servers operating, every DNS query must start with recursive queries at the root zone of the Domain Name System and each user system must implement resolver software capable of recursive operation.
Caching name server
Caching name servers (DNS caches) are usually recursive resolvers that store DNS query results for a period of time determined in the configuration (time-to-live) of each domain-name record. DNS caches improve the efficiency of the DNS by reducing DNS traffic across the Internet, and by reducing load on authoritative name-servers, particularly root name-servers. Because they can answer questions more quickly, they also increase the performance of end-user applications that use the DNS.
Caching name servers are often also recursive name servers—they perform every step necessary to answer any DNS query they receive. To do this the name server queries each authoritative name-server in turn, starting from the DNS root zone. It continues until it reaches the authoritative server for the zone that contains the queried domain name. That server provides the answer to the question, or definitively says it can't be answered, and the caching resolver then returns this response to the client that asked the question.
The authority, resolving and caching functions can all be present in a DNS server implementation, but this is not required: a DNS server can implement any one of these functions alone, without implementing the others.
Internet service providers typically provide caching resolvers for their customers. In addition, many home-networking routers implement caching resolvers to improve efficiency in the local network.
Some systems utilize nscd
, which stands for the "name service caching daemon".
See also
- BIND
- Comparison of DNS server software
- Trojan.Win32.DNSChanger
- Domain Name System Security Extensions
- Lightweight Directory Access Protocol
- Network Information Service
- Name Service Switch (NSS)
- resolver, resolv.conf, resolvconf for Unix/Linux
- Open Root Server Network
- RealNames
- List of managed DNS providers
- Public recursive name servers
References
- RFC 1034, Domain Names—Concepts and Facilities, P. Mockapetris, The Internet Society (November 1987)
- RFC 781, Internet Protocol—DARPA Internet Program Protocol Specification, Information Sciences Institute, J. Postel (Ed.), The Internet Society (September 1981)
- ^ RFC 1035, Domain Names — Implementation and Specification, P. Mockapetris, The Internet Society (November 1987)
- Paul Hoffman; Andrew Sullivan; Kazunori Fujiwara (January 2019). DNS Terminology. IETF. BCP 219. Retrieved 17 December 2015.
- Yakov Rekhter; Susan Thomson; Jim Bound; Paul Vixie (April 1007). Dynamic Updates in the Domain Name System (DNS Update). IETF. doi:10.17487/RFC2136. RFC 2136. Retrieved 17 December 2015.
- Robert Elz; Randy Bush (July 1997). Clarifications to the DNS Specification. IETF. doi:10.17487/RFC2181. RFC 2181. Retrieved 17 December 2015.
- "Name Server definition at techterms.com".
- Paul Mockapetris (November 1987). "Technical considerations". Domain Names - Domain Concepts and Facilities. IETF. sec. 4.2.1. doi:10.17487/RFC1034. RFC 1034. Retrieved 17 December 2015.
- "Composite Application Manager for Internet Service Monitoring, Reference Guide". IBM. Retrieved 15 February 2012.
- "Network setup for Cambridge's new DNS servers". Retrieved 2018-02-05.
The recursive DNS server (aka recdns)
- , though this is typically not used for caching DNS names.
Nemeth, Evi; Snyder, Garth; Heine, Tra. (2006). Linux administration handbook (2 ed.). Addison-Wesley Professional. p. 504e. ISBN 978-0-13-148004-9. Retrieved 2012-02-14.
ncsd cache the results of DNS lookups but it also wraps the library routines that access information from the
passwd
andgroup
files and their network database equivalents.
External links
- Free and Public DNS Servers Archived 2016-10-15 at the Wayback Machine, article on about.com by Tim Fisher, retrieved on 2015-02-08 21-59 UTC
- DNS & BIND Resources Archived 2006-09-02 at the Wayback Machine