intTypePromotion=1
zunia.vn Tuyển sinh 2024 dành cho Gen-Z zunia.vn zunia.vn
ADSENSE
 » 
 » 

Understanding DNS and DHCP

Chia sẻ: Danh Ngoc | Ngày: | Loại File: PDF | Số trang:0

Thêm vào BST
Báo xấu
187
lượt xem 78
download
 
  Download Vui lòng tải xuống để xem tài liệu đầy đủ

Giới thiệu về DNS : - Mỗi máy tính, thiết bị mạng tham gia vào mạng Internetđều giao tiếp với nhau bằng địa chỉ IP (Internet Protocol) . Để thuận tiện cho việc sử dụng và dễ nhớ ta dùng tên (domain name) để xác định thiết bị đó. Hệ thống tên miền (Domain Name System) được sử dụng để ánh xạ tên miền thành địa chỉ IP. Vì vậy, khi muốn liên hệ tới các máy, chúng chỉ cần sử dụng chuỗi ký tự dễ nhớ (domain name) như: www.microsoft.com, www.ibm.com..., thay vì sử dụng địa chỉ IP là...

Chủ đề:

Bình luận(0) Đăng nhập để gửi bình luận!

Lưu

Nội dung Text: Understanding DNS and DHCP

  1. UNDERSTANDING DHCP AND DNS SESSION NMS-1101 NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 1 Agenda ¾Introduction to Names and Addresses • Managing Addresses with DHCP Protocol Assignment and Reliability • Resolving Names with DNS Protocol Database Reliable Operation • New Things NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 2 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  2. Address Review 128 64 32 16 8 4 2 1 128 64 32 16 8 4 2 1 128 64 32 16 8 4 2 1 128 64 32 16 8 4 2 1 1 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 0 0 0 01 0 0 0 0 1 128 9 0 33 • IPv4 address 32 bits Decimal, 8-bit fields, period separation 128.9.0.33 • IPv6 address 128 bits Hexadecimal, 16-bit fields, colon separation 2001:0DB8:0000:0001:02A0:C9FF:FE61:1216 NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 3 Address Hierarchy and Naming • ADDRESSES have a topological hierarchy • NAMES have a logical hierarchy NOT NECESSARILY ALIGNED WITH EACH OTHER… NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 4 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  3. Subnet Mask Address 128.9.0.33 1 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 0 0 0 01 0 0 0 0 1 Mask 255.255.255.0 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 0 00 0 0 0 0 0 • Mask separates network (1) from host (0) part of the address • Prefix (longest match) routing— contiguous “1” bits to the left NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 5 Subnets • Each range of addresses for hosts defines a subnet e.g. 128.9.0.0/24 24 is the number of ‘1’ bits in the mask for this address 32–24=8 is the number of bits in host address • Within the subnet, hosts communicate directly, using layer 2 • Special meaning for certain host addresses All ones—broadcast All zero—network NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 6 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  4. Special Addresses • Multicast IPv4—224-239.d.d.d [RFC 2365] IPv6—FFxx:x:x:x:x:x:x:x • Anycast [RFC 1546] Unicast, but with multiple advertisers • Site local IPv4—10/8, 172.16/12, 192.168/16 [RFC 1918] IPv6—FEC0:0:0:: • Link local Removed by Decision in the ipng wg in the IETF Spring 2003 IPv4—169.254/16 IPv6—FE80:0:0:0: • Loopback IPv4—127.0.0.1 IPv6 — 0:0:0:0:0:0:0:1 (::1) NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 7 Agenda • Introduction to Names and Addresses ¾Managing Addresses with DHCP ¾Protocol Assignment and Reliability • Resolving Names with DNS Protocol Database Reliable Operation • New Things NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 8 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  5. DHCP Basics • Ideal administrator—DHCP server acts as proxy for network administrator • Assignment is temporary—address is assigned with a “lease” • Addresses can be reassigned when no longer in use • Backup for reliability NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 9 How DHCP Works: Obtaining an Address • Server dynamically assigns Send My IP address on demand Configuration DHCP Information • Administrator creates pools Server of addresses available for assignment to hosts • Address is assigned with lease time DHCP • Client can extend lease Client time dynamically • Server can reassign address Here Is Your Configuration: after lease expires IP Address: 192.204.18.7 Subnet Mask: 255.255.255.0 • DHCP delivers other Default Routers: 192.204.18.1, 192.204.18.3 configuration information DNS Servers: 192.204.18.8, 192.204.19.9 in options Lease Time: 5 days NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 10 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  6. How DHCP Works: Message Exchange • DHCP client broadcasts DISCOVER packet Server 1 Client Server 2 on local subnet DIS VER CO VER CO ) (Br • DHCP servers send DIS adcast oad c ast o ) OFFER packet with (Br OF -2 lease information F FER ) (Un ER- OF st ica 1 nic a st) (U • DHCP client selects lease and broadcasts 2 RE ST- QU E REQUEST packet Q UE t) (Br oad ST-2 RE cas cas oad t) • Selected DHCP server (Br sends ACK packet K AC ast) ic (Un NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 11 DHCP Relay: Centralized DHCP Service • DHCP clients broadcasts a DISCOVER packet • DHCP relay (IP helper address) on the router hears the DHCP Server DHCP Server DISCOVER packet and 161.44.54.7 161.44.55.8 forwards (unicast) the packet to the DHCP server • DHCP relay fills in the GIADDR Router with DHCP Relay field with IP address of the Interface Ethernet 0 DHCP receiving interface of router ip helper 161.44.54.7 Packet ip helper 161.44.55.8 • DHCP relay can be configured GIADDR to forward the packet to 161.44.18.1 multiple DHCP servers; client will choose the “best” server • DHCP servers use GIADDR field of DHCP packet as an Physical Network index in to the list of 161.44.18.0/24 address pools DHCP Client NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 12 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  7. DHCP Options for Applications • Options are registered with IANA DHCP NTP • Time, NIS, TCP, and Server Server IP parameters… [RFC 2131] • Service Location NTP DHCP Protocol (SLP) Server Server [RFC 2610] • Novell directory services [RFC 2241] DHCP Client NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 13 Agenda • Introduction to Names and Addresses • Managing Addresses with DHCP Protocol ¾Assignment and Reliability • Resolving Names with DNS Protocol Database Reliable Operation • New Things NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 14 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  8. DHCP Reliability • Multiple servers with split address pools Loadsharing Servers answer only for configured hash (MAC) RFC 3074 • Failover Draft based on our (Cisco) design Two servers can share address pools and continue to operate if one fails NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 15 DHCP Safe Failover Protocol Backup DHCP • All DHCP requests are sent to Server both servers Primary DHCP • Primary updates backup Server with lease information • Backup takes over when primary fails Backup Address Pool • Backup server 172.16.18.191-200 uses dedicated Primary Address Pool 172.16.18.101-200 pool of addresses allocated by the primary to prevent duplicate IP address • Servers synchronize when primary is up • IETF Internet draft NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 16 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  9. How DHCP Works: DHCP Packet Hardware Hardware OP Code HOPS Type Length Transaction ID (XID) Seconds Flags Client IP Address (CIADDR) Your IP Address (YIADDR) Server IP Address (SIADDR) Gateway IP Address (GIADDR) Client Hardware Address (CHADDR)—16 bytes Server Name (SNAME)—64 bytes Filename—128 bytes DHCP Options NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 17 Summary • DHCP • Questions? NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 18 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  10. root org se com DOMAIN NAME SERVICE cisco cafax paf www stetson NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 19 Agenda • Introduction to Names and Addresses • Managing Addresses with DHCP Protocol Assignment and Reliability ¾Resolving Names with DNS ¾Protocol Database Reliable Operation • New Things NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 20 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  11. Domain Name Service • DNS is a database And the protocol to access it • Distinctive features: Design for lookup queries Replicated content Distributed control (zones) NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 21 Name Hierarchy • Independent of address hierarchy • Names length not limited by address size (63 bytes/label, 255 bytes/FQDN) .com .ncsa .uiuc .edu .chem . .unm .net .cs .umd .se NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 22 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  12. DNS Servers and Resolvers Network Application DNS Server DNS Resolver Internal OS Address of DNS Server DHCP Server • Application connects by name, the application gets the address from the resolver • Most applications use addresses in the order provided by the resolver NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 23 TCP and UDP Ports • Port 53 for both TCP and UDP • UDP for queries if small enough • TCP for zone transfer • Server can use source port of 53 when “forwarding” NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 24 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  13. Redirection and Recursion • Redirection: “Take your question down the hall” • Recursion: “I’ll get back to you” • Resolver sets Recursion Desired (RD), server responds with Recursion Available (RA) through bits in the DNS header NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 25 DNS First Query Root Name Server • Clients (stub resolvers) Including .edu query local DNS server for IP addresses (RD on) .UMD Name Server • Local server queries (RD off) the root name server and cs.umd.edu follows referrals until it finds Name Server a server that has the answer Local • Local servers send answers DNS back to the clients and Server ringding.cs.umd.edu cache the answers A. 128.8.126.2 Q. IP Address for ringding.cs.umd.edu NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 26 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  14. DNS Subsequent Queries Root Name Server • Clients (stub resolvers) Including .edu query local DNS server for IP addresses (RD on) .UMD Name Server • After the first time, the answer is found in the cache cs.umd.edu • Local servers send answers Name Server back to the clients and Local cache the answers DNS Server ringding.cs.umd.edu A. 128.8.126.2 Q. IP Address for ringding.cs.umd.edu NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 27 Caching and Forwarders • Caching is controlled by the Time to Live • Negative caching (saving information that record doesn’t exist) is required by RFC 2308 • The “minimum” TTL parameter in the SOA (or the TTL of the SOA RR itself if it is lower) determines the TTL for caching negative answers • Sending a recursive query to a forwarder builds a cache for the site NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 28 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  15. Time to Live • Changing host addresses Reduce TTL prior to change Then restore to manage the load • CNR dynamically updates DNS TTL with 1/3 DHCP lease time NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 29 Agenda • Introduction to Names and Addresses • Managing Addresses with DHCP Protocol Assignment and Reliability • Resolving Names with DNS Protocol ¾Database Reliable Operation • New Things NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 30 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  16. Terminology • Label (name, owner) • Resource record (type) • Value (encoded by type) NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 31 Record Format Label RR-Type Value [] [] VAXA.ISI.EDU. IN A 10.2.0.27 VAXA.ISI.EDU. IN A 128.9.0.33 Optional Fields: We Only Care about Class = IN (Internet) TTL ~ Time to Live in a Cache NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 32 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  17. Address Examples VAXA.ISI.EDU. A 10.2.0.27 A 128.9.0.33 • In the standard format for a zone description, an empty label is the same as in the previous line NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 33 IP Version 6 • AAAA resource records defined in RFC 3152 v6host.example.com. AAAA 4321:0:1:2:3:4:567:89ab NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 34 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  18. Address and Canonical Name • A (address) resource record (RR) The value is a 32-bit IPv4 address • CNAME The value is the name of a label The value of a canonical name is not allowed to be the label of an CNAME record—but multiple levels of reference happen anyway NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 35 Delegation Zone • Hierarchical name space rootzone • Each node in the tree represents a com domain/subdomain org se-zone com-zone • Some subdomains are defined as zones • Each zone has a “primary” cisco cafax paf name server responsible for all lower nodes, but cisco.com-zone delegation is to all authoritative name servers www stetson • Resource Records (RR) can, but don’t have to, be defined cafax.se-zone for each node com-domain Note: Most Records NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 36 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  19. Delegation Records • Distributes database administration • Name Server (NS) RR Refer in parent AND child zone to authoritative name servers for child (delegated) zone • Zone Start of Authority (SOA) RR Contain administrative information for delegated zone, in delegated zone only NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 37 Delegation: NS and “Glue” • NS Resource Record (RR) • “Glue” entries in parent zone when name server is in delegated zone NS SRI.COM. NS KL.SRI.COM. KL.SRI.COM. A 10.1.0.2 NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 38 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
  20. Delegation: SOA [] [] SOA ( ) $ORIGIN ARPA. @ IN SOA SRI-NIC.ARPA. HOSTMASTER.SRI-NIC.ARPA. ( 45 ;serial (sequential) 3600 ;refresh (1 hour regular check) 600 ;retry (10 minutes between check) 3600000 ;expire (42 days until refresh) 86400 ) ;minimum [negative] (a day) NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 39 Reverse DNS for IPv4 Addresses • Another hierarchy for in-addr.arpa. Reverse the order in the label because names aggregate within suffixes rather than (address) within prefixes 27.0.2.10.IN-ADDR.ARPA. PTR VAXA.ISI.EDU. 33.0.9.128.IN-ADDR.ARPA. PTR VAXA.ISI.EDU. ARPA: “Addressing and Routing Parameters Area” NMS-1101 9592_04_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 40 © 2004 Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.scr
ADSENSE

CÓ THỂ BẠN MUỐN DOWNLOAD

THÔNG TIN
TRỢ GIÚP
HỖ TRỢ KHÁCH HÀNG
Theo dõi chúng tôi

Chịu trách nhiệm nội dung:

Nguyễn Công Hà - Giám đốc Công ty TNHH TÀI LIỆU TRỰC TUYẾN VI NA

LIÊN HỆ

Địa chỉ: P402, 54A Nơ Trang Long, Phường 14, Q.Bình Thạnh, TP.HCM

Hotline: 093 303 0098

Email: support@tailieu.vn

Giấy phép Mạng Xã Hội số: 670/GP-BTTTT cấp ngày 30/11/2015 Copyright © 2022-2032 TaiLieu.VN. All rights reserved.

 

Đồng bộ tài khoản
2=>2