SlideShare a Scribd company logo

7 understanding DNS

Download as PPTX, PDF
Hameda Hurmat, profile picture
Hameda Hurmat

DNS (Domain Name System) is a hierarchical distributed database that maps hostnames to IP addresses. It allows easy-to-remember hostnames to be used instead of hard-to-remember IP addresses. The document discusses DNS servers, clients, resolvers, zones, and record types including SOA, NS, A, CNAME, PTR, MX, and SRV records. It also introduces tools for working with DNS like Nslookup, Ipconfig, and DNSCmd.

Technology
1 of 26
Downloaded 77 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
Configuring DNS PREPARED BY HAMEDA HURMAT
Overview Determine DNS Server; Understanding Servers, Clients and resolvers Understanding DNS Process Learn DNS Zones Learn DNS records
Introducing DNS The Domain Name System (DNS) is a service that allows you to resolve a hostname to an Internet Protocol (IP) address. DNS is a hierarchically distributed database. In other words, its layers are arranged in a definite order, and its data is distributed across a wide range of machines, each of which can exert control over a portion of the database. DNS is a standard set of protocols that defines the following: ■ A mechanism for querying and updating address information in the database ■ A mechanism for replicating the information in the database among servers ■ A schema of the database
In Computer 1. Open the HOSTS file: C:WindowsSystems32driversetc . 2. Add the IP-address-to-hostname mapping. 3. Try to ping the server using the hostname to verify that you can reach it using an easy-to- remember name.
Understanding Servers, Clients, and Resolvers DNS Server Any computer providing domain name services is a DNS name server . DNS Client A DNS client is any machine that issues queries to a DNS server. The client hostname may or may not be registered in a DNS database. Clients issue DNS requests through processes called resolvers . Resolver Resolvers are software processes, sometimes implemented in software libraries, which handles the actual process of finding the answers to queries for DNS data. Query A query is a request for information sent to a DNS server. Three types of queries can be made to a DNS server: recursive, inverse, and iterative.
Understanding the DNS Process Dynamic DNS (DDNS) standard, described in RFC 2136, allows DNS clients to update information in the DNS database files. For example, a Windows Server 2016 DHCP server can automatically tell a DDNS server which IP addresses it has assigned to what machines. Non-Dynamic DNS (NDDNS) does not automatically populate the DNS database. The client systems do not have the ability to update to DNS. If you decide to use Non-Dynamic DNS, an administrator will need to populate the DNS database manually. Non-Dynamic DNS is a reasonable choice if your organization is small to midsize and you do not want extra network traffic (clients updating to the DNS server) or if you need to enter the computer’s TCP/IP information manually because of strict security measures.
7 understanding DNS
None This means your DNS server is Non-Dynamic. Nonsecure and Secure This means that any machine (even if it does not have a domain account) can register with DNS. Using this setting could allow rogue systems to enter records into your DNS server. Secure Only This means that only machines with accounts in Active Directory can register with DNS. Before DNS registers any account in its database, it checks Active Directory to make sure that account is an authorized domain computer.
Introducing DNS Database Zones Primary Zones Secondary Zones Stub Zones
Understanding Primary Zones Primary zone Primary zone with Active Directory Integration (Active Directory DNS) Local Database Primary DNS zones get stored locally in a file (with the suffix .dns) on the server. This allows you to store a primary zone on a domain controller or a member server. local database has many disadvantages: Lack of Fault Tolerance Think of a primary zone as a contact list on your smartphone. All of the contacts in the list are the records in your database. The problem is that if you lose your phone or the phone breaks, Additional Network Traffic Let’s imagine that you are looking for a contact number for John Smith. John Smith is not listed in your cell phone directory, but he is listed in your partner’s cell phone. You have to contact your partner to get the listing. You cannot directly access your partner’s cell contacts. No Security Staying with the cell phone example, let’s say that you call your partner looking for John Smith’s phone number. When your partner gives you the phone number over your wireless phone, someone with a scanner can pick up your conversation. Unfortunately, wireless telephone calls are not very secure.
Understanding Secondary Zones Secondary zones are noneditable copies of the DNS database. You use them for load balancing which is a way of managing network overloads on a single server. A secondary zone gets its database from a primary zone. Secondary zones have the following advantages: A secondary zone provides fault tolerance, so if the primary zone server becomes unavailable, name resolution can still occur using the secondary zone server. Secondary DNS servers can also increase network performance by offloading some of the traffic that would otherwise go to the primary server.
Understanding Stub Zones Stub zones work a lot like secondary zones—the database is a noneditable copy of a primary zone. The difference is that the stub zone’s database contains only the information necessary (three record types) to identify the authoritative DNS servers for a zone. You should not use stub zones to replace secondary zones, nor should you use them for redundancy and load balancing.
Advantages of DNS in Windows Server 2016 DNS in Microsoft Windows Server 2016 has some great advantages over many other versions of Microsoft DNS. Here are some of the improvements of DNS in Windows Server 2016 (some of these became available in previous versions of Windows Server): ■■ Background zone loading ■■ Support for TCP/IP version 6 (IPv6) ■■ Read-only domain controllers ■■ GlobalName zone ■■ DNS socket pools ■■ DNS cache locking ■■ Response Rate Limiting (RRL) ■■ Unknown Record Support ■■ IPv6 Root Hints ■■ DNS Security Extensions (DNSSEC) ■■ DNS devolution ■■ Record weighting ■■ Netmask ordering ■■ DnsUpdateProxy group ■■ DNS Policies
Introducing DNS Record Types Start of Authority (SOA) Records The first record in a database file is the start of authority (SOA) record. The SOA defines the general parameters for the DNS zone, including the identity of the authoritative server for the zone. The SOA appears in the following format: @ IN SOA primary_mastercontact_e-mailserial_number refresh_timeretry_timeexpiration_timetime_to_live
Name Server Records Name server (NS) records list the name servers for a domain. This record allows other name servers to look up names in your domain. A zone file may contain more than one name server record. The format of these records is simple:
Host Record A host record (also called an A record for IPv4 and AAAA record for IPv6) is used to associate statically a host’s name to its IP addresses. The format is pretty simple: host_nameoptional_TTL IN A IP_Address Here’s an example from my DNS database: www IN A 192.168.0.204 SMTP IN A 192.168.3.144
Alias Record Closely related to the host record is the alias record, or canonical name (CNAME) record. The syntax of an alias record is as follows: Alias optional_TTL IN CNAME hostname Aliases are used to point more than one DNS record toward a host for which an A record already exists. For example, if the hostname of your web server was actually chaos, you would likely have an A record such as this: chaos IN A 192.168.1.10 Then you could make an alias or CNAME for the record so that www.example.com would point to chaos: www IN CNAME chaos.example.com. Note the trailing dot (.) on the end of the CNAME record. This means the root domain is not appended to the entry.
Pointer Record A or AAAA records are probably the most visible component of the DNS database because Internet users depend on them to turn FQDNs like www.microsoft.com into the IP addresses that browsers and other components require to find Internet resources. However, the host record has a lesser-known but still important twin: the pointer (PTR) record. The format of a PTR record appears as follows: reversed_address.in-addr.arpa. optional_TTL IN PTR targeted_domain_name
Mail Exchanger Record The mail exchanger (MX) record is used to specify which servers accept mail for this domain. Each MX record contains two parameters—a preference and a mail server, as shown in the following example: domain IN MX preference mailserver_host The MX record uses the preference value to specify which server should be used if more than one MX record is present. The preference value is a number. The lower the number, the more preferred the server. Here’s an example: example.com. IN MX 0 mail.example.com. example.com. IN MX 10 backupmail.example.com.
Service Record Windows Server 2016 depends on some other services, like the Lightweight Directory Access Protocol (LDAP) and Kerberos. Using a service record, which is another type of DNS record, a Windows 2000, XP, Vista, Windows 7, Windows 8 / 8.1, or Windows 10 client can query DNS servers for the location of a domain controller. This makes it much easier (for both the client and the administrator) to manage and distribute logon traffi c in large-scale networks. For this approach to work, Microsoft has to have some way to register the presence of a service in DNS. Enter the service (SRV) record. Service (SRV) records tie together the location of a service (like a domain controller) with information about how to contact the service. SRV records provide seven items of information. Let’s review an example to help clarify this powerful concept. ldap.tcp.example.com. 86400 IN SRV 10 100 389 hsv.example.com ldap.tcp.example.com. 86400 IN SRV 20 100 389 msy.example.com
Using Nslookup Nslookup is a standard command-line tool provided in most DNS server implementations Nslookup offers you the ability to perform query testing of DNS servers and to obtain detailed responses at the command prompt.
Using Ipconfig You can use the command-line tool ipconfig to view your DNS client settings, to view and reset cached information used locally for resolving DNS name queries, and to register the resource records for a dynamic update client. If you use the ipconfig command with no parameters, it displays DNS information for each adapter, including the domain name and DNS servers.
7 understanding DNS
Using DNSCmd DNSCmd allows you to display and change the properties of DNS servers, zones, and resource records through the use of command-line commands. The DNSCmd utility allows you to modify, create, and delete resource records and/or zones manually, and it allows you to force replication between two DNS servers.
7 understanding DNS
7 understanding DNS

More Related Content

PPTX
Microsoft Active Directory.pptx
masbulosoke
 
PPTX
Active directory domain service
Festus Oriaku
 
PPT
active-directory-domain-services
202066
 
PPTX
Information Technology Disaster Planning
guest340570
 
PDF
Introduction to virtualization
Sasikumar Thirumoorthy
 
DOCX
Ad, dns, dhcp, file server
Tola LENG
 
PPTX
Introduction_of_ADDS
Harsh Sethi
 
PPTX
Backup & restore in windows
Jab Vtl
 
Microsoft Active Directory.pptx
masbulosoke
 
Active directory domain service
Festus Oriaku
 
active-directory-domain-services
202066
 
Information Technology Disaster Planning
guest340570
 
Introduction to virtualization
Sasikumar Thirumoorthy
 
Ad, dns, dhcp, file server
Tola LENG
 
Introduction_of_ADDS
Harsh Sethi
 
Backup & restore in windows
Jab Vtl
 

What's hot (20)

PPTX
Understanding the Windows Server Administration Fundamentals (Part-1)
Tuan Yang
 
PPTX
Group policy Best Practices
Rob Dunn
 
PPT
Linux file system
Burhan Abbasi
 
PDF
Windows Server 2012
anilinvns
 
PPT
Active directory
deshvikas
 
PPTX
Linux and DNS Server
Prabhakar Thota
 
PPTX
Operating Systems: Linux in Detail
Damian T. Gordon
 
PDF
Group Policy
Chris Watson
 
PPTX
NetApp & Storage fundamentals
Shashidhar Basavaraju
 
PPTX
Understanding the Windows Server Administration Fundamentals (Part-2)
Tuan Yang
 
PDF
Linux Bash Shell Cheat Sheet for Beginners
Davide Ciambelli
 
PPTX
VMware Horizon Customer Presentation EN
Daron Walker
 
PPTX
Windows server
Hideo Amezawa
 
PDF
TỰ HỌC LPI 2
Hoàng Đạt
 
PDF
Windows 11 for the Enterprise
David J Rosenthal
 
PPT
Microsoft Active Directory
thebigredhemi
 
PPTX
VMware vSphere technical presentation
aleyeldean
 
PDF
Windows Server 2016 First Look (Part 1)
Tuan Yang
 
PPTX
What is active directory
Adeel Khurram
 
PPT
Chapter09 Implementing And Using Group Policy
Raja Waseem Akhtar
 
Understanding the Windows Server Administration Fundamentals (Part-1)
Tuan Yang
 
Group policy Best Practices
Rob Dunn
 
Linux file system
Burhan Abbasi
 
Windows Server 2012
anilinvns
 
Active directory
deshvikas
 
Linux and DNS Server
Prabhakar Thota
 
Operating Systems: Linux in Detail
Damian T. Gordon
 
Group Policy
Chris Watson
 
NetApp & Storage fundamentals
Shashidhar Basavaraju
 
Understanding the Windows Server Administration Fundamentals (Part-2)
Tuan Yang
 
Linux Bash Shell Cheat Sheet for Beginners
Davide Ciambelli
 
VMware Horizon Customer Presentation EN
Daron Walker
 
Windows server
Hideo Amezawa
 
TỰ HỌC LPI 2
Hoàng Đạt
 
Windows 11 for the Enterprise
David J Rosenthal
 
Microsoft Active Directory
thebigredhemi
 
VMware vSphere technical presentation
aleyeldean
 
Windows Server 2016 First Look (Part 1)
Tuan Yang
 
What is active directory
Adeel Khurram
 
Chapter09 Implementing And Using Group Policy
Raja Waseem Akhtar
 
Ad

Similar to 7 understanding DNS (20)

PPTX
DNS & SITES-SERVICES OF Active Directory.pptx
Dorcask3
 
PDF
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
velimamedov
 
PPT
Chapter 4 configuring and managing the dns server role
Luis Garay
 
DOC
70 640
alokfit
 
PDF
02 configuring and-troubleshooting-dns
apshirame
 
PDF
Zone in windows server 2012
devil00dante
 
DOC
Dns server
Muuluu
 
DOCX
Linux basics andng hosti
Patruni Chidananda Sastry
 
PPT
vpn-radius-5.ppt
ssuser472c4f
 
PPTX
6421 b Module-03
Bibekananada Jena
 
PPT
Domain Name Service
webhostingguy
 
DOCX
DNS.docx
gatetesam
 
PPT
Dns Configuration
Lohit Ahuja
 
PPT
Configuring Dns
Lohit Ahuja
 
PPTX
07 Implementing DNS Cyber security Baze University .pptx
HassanAhmadAbubakar1
 
PPT
6425 b 10
FMAB2010
 
PPTX
Microsoft Offical Course 20410C_07
gameaxt
 
DOCX
Dns interview
siddu balaganur
 
PPT
Dns
tmavroidis
 
PPTX
DNS for Developers - NDC Oslo 2016
Maarten Balliauw
 
DNS & SITES-SERVICES OF Active Directory.pptx
Dorcask3
 
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
velimamedov
 
Chapter 4 configuring and managing the dns server role
Luis Garay
 
70 640
alokfit
 
02 configuring and-troubleshooting-dns
apshirame
 
Zone in windows server 2012
devil00dante
 
Dns server
Muuluu
 
Linux basics andng hosti
Patruni Chidananda Sastry
 
vpn-radius-5.ppt
ssuser472c4f
 
6421 b Module-03
Bibekananada Jena
 
Domain Name Service
webhostingguy
 
DNS.docx
gatetesam
 
Dns Configuration
Lohit Ahuja
 
Configuring Dns
Lohit Ahuja
 
07 Implementing DNS Cyber security Baze University .pptx
HassanAhmadAbubakar1
 
6425 b 10
FMAB2010
 
Microsoft Offical Course 20410C_07
gameaxt
 
Dns interview
siddu balaganur
 
Dns
tmavroidis
 
DNS for Developers - NDC Oslo 2016
Maarten Balliauw
 
Ad

More from Hameda Hurmat (20)

PPTX
15 Setup BIND 9
Hameda Hurmat
 
PPTX
14 FILE Server
Hameda Hurmat
 
PPTX
13 DHCP Configuration in Linux
Hameda Hurmat
 
PPT
11-IIS server 2016
Hameda Hurmat
 
PPTX
10 implementing GPOs
Hameda Hurmat
 
PPTX
Administer Active Directory
Hameda Hurmat
 
PPTX
Active Directory
Hameda Hurmat
 
PPTX
6 understanding DHCP
Hameda Hurmat
 
PPTX
5 configuring TCP/IP
Hameda Hurmat
 
PPTX
4. install and configure hyper v
Hameda Hurmat
 
PPTX
3 configuring basic and dynamic disks
Hameda Hurmat
 
PPTX
2 introduction of storage
Hameda Hurmat
 
PPTX
1 introduction to windows server 2016
Hameda Hurmat
 
PPTX
12 introduction to Linux OS
Hameda Hurmat
 
PPSX
Flowers Album
Hameda Hurmat
 
PPTX
Change management
Hameda Hurmat
 
PDF
ویندو7
Hameda Hurmat
 
PPT
Interview skill
Hameda Hurmat
 
PPSX
Waste management
Hameda Hurmat
 
PDF
Ethical Hacker
Hameda Hurmat
 
15 Setup BIND 9
Hameda Hurmat
 
14 FILE Server
Hameda Hurmat
 
13 DHCP Configuration in Linux
Hameda Hurmat
 
11-IIS server 2016
Hameda Hurmat
 
10 implementing GPOs
Hameda Hurmat
 
Administer Active Directory
Hameda Hurmat
 
Active Directory
Hameda Hurmat
 
6 understanding DHCP
Hameda Hurmat
 
5 configuring TCP/IP
Hameda Hurmat
 
4. install and configure hyper v
Hameda Hurmat
 
3 configuring basic and dynamic disks
Hameda Hurmat
 
2 introduction of storage
Hameda Hurmat
 
1 introduction to windows server 2016
Hameda Hurmat
 
12 introduction to Linux OS
Hameda Hurmat
 
Flowers Album
Hameda Hurmat
 
Change management
Hameda Hurmat
 
ویندو7
Hameda Hurmat
 
Interview skill
Hameda Hurmat
 
Waste management
Hameda Hurmat
 
Ethical Hacker
Hameda Hurmat
 

Recently uploaded (20)

PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
KodekX | Application Modernization Development
KodekX
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Approach and Philosophy of On baking technology
30anthuong17
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Cloud computing and distributed systems.
kkkkkhan
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 

7 understanding DNS

  • 2. Overview Determine DNS Server; Understanding Servers, Clients and resolvers Understanding DNS Process Learn DNS Zones Learn DNS records
  • 3. Introducing DNS The Domain Name System (DNS) is a service that allows you to resolve a hostname to an Internet Protocol (IP) address. DNS is a hierarchically distributed database. In other words, its layers are arranged in a definite order, and its data is distributed across a wide range of machines, each of which can exert control over a portion of the database. DNS is a standard set of protocols that defines the following: ■ A mechanism for querying and updating address information in the database ■ A mechanism for replicating the information in the database among servers ■ A schema of the database
  • 4. In Computer 1. Open the HOSTS file: C:WindowsSystems32driversetc . 2. Add the IP-address-to-hostname mapping. 3. Try to ping the server using the hostname to verify that you can reach it using an easy-to- remember name.
  • 5. Understanding Servers, Clients, and Resolvers DNS Server Any computer providing domain name services is a DNS name server . DNS Client A DNS client is any machine that issues queries to a DNS server. The client hostname may or may not be registered in a DNS database. Clients issue DNS requests through processes called resolvers . Resolver Resolvers are software processes, sometimes implemented in software libraries, which handles the actual process of finding the answers to queries for DNS data. Query A query is a request for information sent to a DNS server. Three types of queries can be made to a DNS server: recursive, inverse, and iterative.
  • 6. Understanding the DNS Process Dynamic DNS (DDNS) standard, described in RFC 2136, allows DNS clients to update information in the DNS database files. For example, a Windows Server 2016 DHCP server can automatically tell a DDNS server which IP addresses it has assigned to what machines. Non-Dynamic DNS (NDDNS) does not automatically populate the DNS database. The client systems do not have the ability to update to DNS. If you decide to use Non-Dynamic DNS, an administrator will need to populate the DNS database manually. Non-Dynamic DNS is a reasonable choice if your organization is small to midsize and you do not want extra network traffic (clients updating to the DNS server) or if you need to enter the computer’s TCP/IP information manually because of strict security measures.
  • 8. None This means your DNS server is Non-Dynamic. Nonsecure and Secure This means that any machine (even if it does not have a domain account) can register with DNS. Using this setting could allow rogue systems to enter records into your DNS server. Secure Only This means that only machines with accounts in Active Directory can register with DNS. Before DNS registers any account in its database, it checks Active Directory to make sure that account is an authorized domain computer.
  • 9. Introducing DNS Database Zones Primary Zones Secondary Zones Stub Zones
  • 10. Understanding Primary Zones Primary zone Primary zone with Active Directory Integration (Active Directory DNS) Local Database Primary DNS zones get stored locally in a file (with the suffix .dns) on the server. This allows you to store a primary zone on a domain controller or a member server. local database has many disadvantages: Lack of Fault Tolerance Think of a primary zone as a contact list on your smartphone. All of the contacts in the list are the records in your database. The problem is that if you lose your phone or the phone breaks, Additional Network Traffic Let’s imagine that you are looking for a contact number for John Smith. John Smith is not listed in your cell phone directory, but he is listed in your partner’s cell phone. You have to contact your partner to get the listing. You cannot directly access your partner’s cell contacts. No Security Staying with the cell phone example, let’s say that you call your partner looking for John Smith’s phone number. When your partner gives you the phone number over your wireless phone, someone with a scanner can pick up your conversation. Unfortunately, wireless telephone calls are not very secure.
  • 11. Understanding Secondary Zones Secondary zones are noneditable copies of the DNS database. You use them for load balancing which is a way of managing network overloads on a single server. A secondary zone gets its database from a primary zone. Secondary zones have the following advantages: A secondary zone provides fault tolerance, so if the primary zone server becomes unavailable, name resolution can still occur using the secondary zone server. Secondary DNS servers can also increase network performance by offloading some of the traffic that would otherwise go to the primary server.
  • 12. Understanding Stub Zones Stub zones work a lot like secondary zones—the database is a noneditable copy of a primary zone. The difference is that the stub zone’s database contains only the information necessary (three record types) to identify the authoritative DNS servers for a zone. You should not use stub zones to replace secondary zones, nor should you use them for redundancy and load balancing.
  • 13. Advantages of DNS in Windows Server 2016 DNS in Microsoft Windows Server 2016 has some great advantages over many other versions of Microsoft DNS. Here are some of the improvements of DNS in Windows Server 2016 (some of these became available in previous versions of Windows Server): ■■ Background zone loading ■■ Support for TCP/IP version 6 (IPv6) ■■ Read-only domain controllers ■■ GlobalName zone ■■ DNS socket pools ■■ DNS cache locking ■■ Response Rate Limiting (RRL) ■■ Unknown Record Support ■■ IPv6 Root Hints ■■ DNS Security Extensions (DNSSEC) ■■ DNS devolution ■■ Record weighting ■■ Netmask ordering ■■ DnsUpdateProxy group ■■ DNS Policies
  • 14. Introducing DNS Record Types Start of Authority (SOA) Records The first record in a database file is the start of authority (SOA) record. The SOA defines the general parameters for the DNS zone, including the identity of the authoritative server for the zone. The SOA appears in the following format: @ IN SOA primary_mastercontact_e-mailserial_number refresh_timeretry_timeexpiration_timetime_to_live
  • 15. Name Server Records Name server (NS) records list the name servers for a domain. This record allows other name servers to look up names in your domain. A zone file may contain more than one name server record. The format of these records is simple:
  • 16. Host Record A host record (also called an A record for IPv4 and AAAA record for IPv6) is used to associate statically a host’s name to its IP addresses. The format is pretty simple: host_nameoptional_TTL IN A IP_Address Here’s an example from my DNS database: www IN A 192.168.0.204 SMTP IN A 192.168.3.144
  • 17. Alias Record Closely related to the host record is the alias record, or canonical name (CNAME) record. The syntax of an alias record is as follows: Alias optional_TTL IN CNAME hostname Aliases are used to point more than one DNS record toward a host for which an A record already exists. For example, if the hostname of your web server was actually chaos, you would likely have an A record such as this: chaos IN A 192.168.1.10 Then you could make an alias or CNAME for the record so that www.example.com would point to chaos: www IN CNAME chaos.example.com. Note the trailing dot (.) on the end of the CNAME record. This means the root domain is not appended to the entry.
  • 18. Pointer Record A or AAAA records are probably the most visible component of the DNS database because Internet users depend on them to turn FQDNs like www.microsoft.com into the IP addresses that browsers and other components require to find Internet resources. However, the host record has a lesser-known but still important twin: the pointer (PTR) record. The format of a PTR record appears as follows: reversed_address.in-addr.arpa. optional_TTL IN PTR targeted_domain_name
  • 19. Mail Exchanger Record The mail exchanger (MX) record is used to specify which servers accept mail for this domain. Each MX record contains two parameters—a preference and a mail server, as shown in the following example: domain IN MX preference mailserver_host The MX record uses the preference value to specify which server should be used if more than one MX record is present. The preference value is a number. The lower the number, the more preferred the server. Here’s an example: example.com. IN MX 0 mail.example.com. example.com. IN MX 10 backupmail.example.com.
  • 20. Service Record Windows Server 2016 depends on some other services, like the Lightweight Directory Access Protocol (LDAP) and Kerberos. Using a service record, which is another type of DNS record, a Windows 2000, XP, Vista, Windows 7, Windows 8 / 8.1, or Windows 10 client can query DNS servers for the location of a domain controller. This makes it much easier (for both the client and the administrator) to manage and distribute logon traffi c in large-scale networks. For this approach to work, Microsoft has to have some way to register the presence of a service in DNS. Enter the service (SRV) record. Service (SRV) records tie together the location of a service (like a domain controller) with information about how to contact the service. SRV records provide seven items of information. Let’s review an example to help clarify this powerful concept. ldap.tcp.example.com. 86400 IN SRV 10 100 389 hsv.example.com ldap.tcp.example.com. 86400 IN SRV 20 100 389 msy.example.com
  • 21. Using Nslookup Nslookup is a standard command-line tool provided in most DNS server implementations Nslookup offers you the ability to perform query testing of DNS servers and to obtain detailed responses at the command prompt.
  • 22. Using Ipconfig You can use the command-line tool ipconfig to view your DNS client settings, to view and reset cached information used locally for resolving DNS name queries, and to register the resource records for a dynamic update client. If you use the ipconfig command with no parameters, it displays DNS information for each adapter, including the domain name and DNS servers.
  • 24. Using DNSCmd DNSCmd allows you to display and change the properties of DNS servers, zones, and resource records through the use of command-line commands. The DNSCmd utility allows you to modify, create, and delete resource records and/or zones manually, and it allows you to force replication between two DNS servers.