the bind software
play

The BIND Software Computer Center, CS, NCTU BIND BIND the - PowerPoint PPT Presentation

Feb 26, 2023 •148 likes •917 views

The BIND Software Computer Center, CS, NCTU BIND BIND the Berkeley Internet Name Domain system Three main versions BIND 4 Announced in 1980s Based on RFC 1034, 1035 BIND 8 Released in 1997 Improvements

  1. The BIND Software

  2. Computer Center, CS, NCTU BIND  BIND • the Berkeley Internet Name Domain system  Three main versions • BIND 4  Announced in 1980s  Based on RFC 1034, 1035 • BIND 8  Released in 1997  Improvements including: – efficiency, robustness and security • BIND 9  Released in 2000  Enhancements including: – multiprocessor support, DNSSEC, IPv6 support, etc • BIND 10  Released version 1.0 and 1.1 in 2013  Released version 1.2 in 2014 – ISC has concluded BIND 10 development with Release 1.2 2

  3. Computer Center, CS, NCTU BIND – components  Four major components • named  Daemon that answers the DNS query  Perform Zone transfer • Library routines  Routines that used to resolve host by contacting the servers of DNS distributed database – Ex: res_query, res_search, … etc. • Command-line interfaces to DNS  Ex: nslookup, dig, host • rndc  A program to remotely control named 3

  4. Computer Center, CS, NCTU named in FreeBSD  Installation • /usr/ports/dns/bind912 • pkg install bind912  Startup • Edit /etc/rc.conf  named_enable="YES" • Manual utility command  % rndc {stop | reload | flush … } – In old version of BIND, use ndc command  See your BIND version • % dig @127.0.0.1 version.bind txt chaos  version.bind. 0 CH TXT "9.9.11" • % nslookup -debug -class=chaos -query=txt version.bind 127.0.0.1  version.bind text = "9.9.11" 4

  5. Computer Center, CS, NCTU BIND – Configuration files  The complete configuration of named consists of • The config file  /usr/local/etc/namedb/named.conf • Zone data file  Address mappings for each host  Collections of individual DNS data records • The root name server hints 5

  6. Computer Center, CS, NCTU BIND Configuration – named.conf  /usr/local/etc/namedb/named.conf • Roles of this host for each zone it serves  Master, slave, stub, or caching-only • Options  Global options – The overall operation of named and server  Zone specific options  named.conf is composed of following statements: • include, options, server, key, acl, zone, view, controls, logging, trusted-keys, masters 6

  7. Computer Center, CS, NCTU Examples of named configuration 7

  8. DNS Database – Zone data

  9. Computer Center, CS, NCTU The DNS Database  A set of text files such that • Maintained and stored on the domain ’ s master name server • Often called zone files • Two types of entries  Resource Records (RR) – The real part of DNS database  Parser commands – Just provide some shorthand ways to enter records – Influence the way that the parser interprets sequence orders or expand into multiple DNS records themselves 9

  10. Computer Center, CS, NCTU The DNS Database – Parser Commands  Commands must start in first column and be on a line by themselves  $ORIGIN domain-name • Used to append to un-fully-qualified name  $INCLUDE file-name • Separate logical pieces of a zone file • Keep cryptographic keys with restricted permissions  $TTL default-ttl • Default value for time-to-live filed of records  $GENERATE start-stop/[step] lhs type rhs • Be found only in BIND • Used to generate a series of similar records • Can be used in only CNAME, PTR, NS record types 10

  11. Computer Center, CS, NCTU The DNS Database – Resource Record (1)  Basic format • [name] [ttl] [class] type data  name: the entity that the RR describes – Can be relative or absolute  ttl : time in second of this RR’s validity in cache  class: network type – IN for Internet – CH for ChaosNet – HS for Hesiod • Special characters  ; (comment)  @ (The current domain name)  () (allow data to span lines)  * (wild card character, name filed only) 11

  12. Computer Center, CS, NCTU The DNS Database – Resource Record (2)  Type of resource record discussed later • Zone records: identify domains and name servers  SOA  NS • Basic records: map names to addresses and route mail  A  PTR  MX • Optional records: extra information to host or domain  CNAME  TXT  SRV 12

  13. Computer Center, CS, NCTU The DNS Database – Resource Record (3) 13

  14. Computer Center, CS, NCTU The DNS Database – Resource Record (4)  SOA: Start Of Authority • Defines a DNS zone of authority, each zone has exactly one SOA record • Specify the name of the zone, the technical contact and various timeout information • Format:  [zone] IN SOA [server-name] [administrator ’ s mail] ( serial, refresh, retry, expire, ttl ) • Ex: ; means comments @ means current domain name ( ) allow data to span lines * Wild card character $TTL 3600; $ORIGIN cs.nctu.edu.tw. @ IN SOA csns.cs.nctu.edu.tw. root.cs.nctu.edu.tw. ( 2012050802 ; serial number 1D ; refresh time for slave server 30M ; retry 1W ; expire 2H ) ; minimum 14

  15. Computer Center, CS, NCTU The DNS Database – Resource Record (5)  NS: Name Server • Format  zone [ttl] [IN] NS hostname • Usually follow the SOA record • Goal  Identify the authoritative server for a zone  Delegate subdomains to other organizations $TTL 3600; $ORIGIN cs.nctu.edu.tw. @ IN SOA dns.cs.nctu.edu.tw. root.cs.nctu.edu.tw. ( 2012050802 ; serial number 1D ; refresh time for slave server 30M ; retry 1W ; expire 2H ) ; minimum IN NS dns.cs.nctu.edu.tw. IN NS dns2.cs.nctu.edu.tw. test IN NS dns.test.cs.nctu.edu.tw. 15

  16. Computer Center, CS, NCTU The DNS Database – Resource Record (6)  A record: Address • Format  hostname [ttl] [IN] A ipaddr • Provide mapping from hostname to IP address • Load balance • Ex: $ORIGIN cs.nctu.edu.tw. @ IN NS dns.cs.nctu.edu.tw. IN NS dns2.cs.nctu.edu.tw. dns IN A 140.113.235.107 dns2 IN A 140.113.235.103 www IN A 140.113.235.111 16

  17. Computer Center, CS, NCTU The DNS Database – Resource Record (7)  PTR: Pointer • Perform the reverse mapping from IP address to hostname • Special top-level domain: in-addr.arpa  Used to create a naming tree from IP address to hostnames • Format  addr [ttl] [IN] PTR hostname $TTL 259200; $ORIGIN 235.113.140.in-addr.arpa. @ IN SOA csns.cs.nctu.edu.tw. root.cs.nctu.edu.tw. ( 2007052102 ; serial number 1D ; refresh time for secondary server 30M ; retry 1W ; expire 2H) ; minimum IN NS dns.cs.nctu.edu.tw. IN NS dns2.cs.nctu.edu.tw. $ORIGIN in-addr.arpa. 103.235.113.140 IN PTR csmailgate.cs.nctu.edu.tw. 107.235.113.140 IN PTR csns.cs.nctu.edu.tw. 17

  18. Computer Center, CS, NCTU The DNS Database – Resource Record (8) 18

  19. Computer Center, CS, NCTU The DNS Database – Resource Record (9)  MX: Mail eXchanger • Direct mail to a mail hub rather than the recipient ’ s own workstation • Format  host [ttl] [IN] MX preference host • Ex: $TTL 3600; $ORIGIN cs.nctu.edu.tw. @ IN SOA csns.cs.nctu.edu.tw. root.cs.nctu.edu.tw. ( 2007052102 ; serial number 1D ; refresh time for slave server 30M ; retry 1W ; expire 2H ) ; minimum IN NS dns.cs.nctu.edu.tw. IN NS dns2.cs.nctu.edu.tw. 7200 IN MX 1 csmx1.cs.nctu.edu.tw. 7200 IN MX 5 csmx2.cs.nctu.edu.tw. csmx1 IN A 140.113.235.104 csmx2 IN A 140.113.235.105 19

  20. Computer Center, CS, NCTU The DNS Database – Resource Record (10)  CNAME: Canonical name • nikename [ttl] IN CNAME hostname • Add additional names to a host  To associate a function or to shorten a hostname • CNAME record can nest eight deep in BIND • Other records must refer to its real hostname • Not for load balance • Ex: www IN A 140.113.209.63 IN A 140.113.209.77 penghu-club IN CNAME www King IN CNAME www R21601 IN A 140.113.214.31 superman IN CNAME r21601 20

  21. Computer Center, CS, NCTU The DNS Database – Resource Record (11)  TXT: Text • Add arbitrary text to a host ’ s DNS records • Format  Name [ttl] [IN] TXT info  All info items should be quoted • They are sometime used to test prospective new types of DNS records  SPF records $TTL 3600; $ORIGIN cs.nctu.edu.tw. @ IN SOA csns.cs.nctu.edu.tw. root.cs.nctu.edu.tw. ( 2007052102 ; serial number 1D ; refresh time for slave server 30M ; retry 1W ; expire 2H ) ; minimum IN NS dns.cs.nctu.edu.tw. IN NS dns2.cs.nctu.edu.tw. IN TXT "Department of Computer Science" 21

  22. Computer Center, CS, NCTU The DNS Database – Resource Record (12)  SRV: Service • Specify the location of services within a domain • Format:  _service._proto.name [ttl] IN SRV pri weight port target • Ex: ; don’t allow finger _finger._tcp SRV 0 0 79 . ; 1/4 of the connections to old, 3/4 to the new _ssh. _tcp SRV 0 1 22 old.cs.colorado.edu. _ssh. _tcp SRV 0 3 22 new.cs.colorado.edu. ; www server _http. _tcp SRV 0 0 80 www.cs.colorado.edu. SRV 10 0 8000 new.cs.colorado.edu. ; block all other services *. _tcp SRV 0 0 0 . *. _udp SRV 0 0 0 . 22

Recommend

BIND, from ISC Name Server Round Table ccNSO, ICANN 50 23 June 2014 BIND use cases 2013 BIND

BIND, from ISC Name Server Round Table ccNSO, ICANN 50 23 June 2014 BIND use cases 2013 BIND

BIND, from ISC Name Server Round Table ccNSO, ICANN 50 23 June 2014 BIND use cases 2013 BIND support subscriptions BIND is the Swiss Army Education, knife of DNS software. 3% It is intended to work for TLD, 11% any use case

419 views • 6 slides
BIND configuration Computer Center, CS, NCTU BIND BIND the Berkeley Internet Name

BIND configuration Computer Center, CS, NCTU BIND BIND the Berkeley Internet Name

BIND configuration Computer Center, CS, NCTU BIND BIND the Berkeley Internet Name Domain system Main versions BIND4 Announced in 1980s Based on RFC 1034, 1035 Deprecated in 2001 BIND8 Released in 1997

765 views • 72 slides
DNS Session 5 Additional Topics Joe Abley AfNOG 2006, Nairobi, Kenya Upgrading BIND Why

DNS Session 5 Additional Topics Joe Abley AfNOG 2006, Nairobi, Kenya Upgrading BIND Why

DNS Session 5 Additional Topics Joe Abley AfNOG 2006, Nairobi, Kenya Upgrading BIND Why Upgrade? Almost all software has bugs Although BIND 9 is much more conservative than previous versions, it is not immune to software defects

906 views • 21 slides
BIND 9 & BIND10 Joo Damas 1 Monday, 25 June 12 What is BIND? The DNS reference

BIND 9 & BIND10 Joo Damas 1 Monday, 25 June 12 What is BIND? The DNS reference

BIND 9 & BIND10 Joo Damas 1 Monday, 25 June 12 What is BIND? The DNS reference implementation Open Source Software 2 Monday, 25 June 12 Reference implementation Follows and implements protocol standards Often used to

95 views • 9 slides
BIND Part 2 pschiu Computer Center, CS, NCTU BIND Configuration named.conf view (1) q The

BIND Part 2 pschiu Computer Center, CS, NCTU BIND Configuration named.conf view (1) q The

BIND Part 2 pschiu Computer Center, CS, NCTU BIND Configuration named.conf view (1) q The "view" statement Create a different view of DNS naming hierarchy for internal machines Restrict the external view to few well-known

753 views • 62 slides
Embellishing Group C ON CERTINA BRO CHURE ` Concertina Bind is a revolutionary and stunning

Embellishing Group C ON CERTINA BRO CHURE ` Concertina Bind is a revolutionary and stunning

Embellishing Group C ON CERTINA BRO CHURE ` Concertina Bind is a revolutionary and stunning Embellishing Group Embellishing Group Concertina Bind Concertina Bind binding technique resulting in a product that features uninterrupted spreads

332 views • 21 slides
Cryptographic Key Infrastructure Goal: bind identity to key Classical: not possible as

Cryptographic Key Infrastructure Goal: bind identity to key Classical: not possible as

Cryptographic Key Infrastructure Goal: bind identity to key Classical: not possible as all keys are shared Use protocols to agree on a shared key (see earlier) Public key: bind identity to public key Crucial as people will

690 views • 41 slides
A-list example -> (find Building ((Course 105) (Building Robinson) (Instructor

A-list example -> (find Building ((Course 105) (Building Robinson) (Instructor

A-list example -> (find Building ((Course 105) (Building Robinson) (Instructor Fisher))) Robinson -> (val ksf (bind Office Halligan-242 (bind Courses (105) (bind Email comp105-staff ())))) ((Email

250 views • 22 slides
BIND 9 The Past, The Present and The Future Ond ej Sur @ ISC FOSDEM 2018, Brussels

BIND 9 The Past, The Present and The Future Ond ej Sur @ ISC FOSDEM 2018, Brussels

BIND 9 The Past, The Present and The Future Ond ej Sur @ ISC FOSDEM 2018, Brussels BIND 9.0: The Past First released in 2000 Other things from 2000: gcc 2.95.2 Linux kernel 2.4.0 GNOME 1.2 Qt 2.0 Window 2000

802 views • 15 slides
SSL -Absicherung mittels DANE und Sicheres DNSSEC mit Bind 9.x Linux hchstpersnlich.

SSL -Absicherung mittels DANE und Sicheres DNSSEC mit Bind 9.x Linux hchstpersnlich.

Dynamisches DNSSEC mit Bind 9.x Peer Heinlein <p.heinlein@heinlein-support.de> SSL -Absicherung mittels DANE und Sicheres DNSSEC mit Bind 9.x Linux hchstpersnlich. Dynamisches DNSSEC mit Bind 9.x Peer Heinlein

847 views • 66 slides
[T HREAD S AFETY ] Threads have you in a bind? With Objects and Concurrency at play Are nerves

[T HREAD S AFETY ] Threads have you in a bind? With Objects and Concurrency at play Are nerves

CS455: Introduction to Distributed Systems [Spring 2020] Dept. Of Computer Science , Colorado State University CS 455: I NTRODUCTION T O D ISTRIBUTED S YSTEMS [T HREAD S AFETY ] Threads have you in a bind? With Objects and Concurrency at play Are

674 views • 24 slides
Overlapping Clustering Models, and One (class) SVM to Bind Them All Xueyu Mao Department of

Overlapping Clustering Models, and One (class) SVM to Bind Them All Xueyu Mao Department of

Overlapping Clustering Models, and One (class) SVM to Bind Them All Xueyu Mao Department of Computer Science The University of Texas at Austin Neural Information Processing Systems December 6, 2018 Joint work with Purnamrita Sarkar and Deepayan

360 views • 8 slides
DNS Firewalls with BIND: ISC RPZ and the IID Approach Tuesday, 26 June 2012 1 About the

DNS Firewalls with BIND: ISC RPZ and the IID Approach Tuesday, 26 June 2012 1 About the

DNS Firewalls with BIND: ISC RPZ and the IID Approach Tuesday, 26 June 2012 1 About the Presenters Paul Vixie Rod Rasmussen Chairman and Founder President and CTO Internet Systems Consortium IID (Internet Identity) 2 Logistics

727 views • 31 slides
Synchronization Protocols End-to-End Scheduling Framework 1. Task allocation: bind tasks to

Synchronization Protocols End-to-End Scheduling Framework 1. Task allocation: bind tasks to

Task Allocation End-to-End Scheduling Framework Bin-Packing Heuristics: First-Fit 1. Task allocation: bind tasks to processors Subtasks assigned in arbitrary order 2. Synchronization protocol: enforce To allocate a new subtask T i,j

437 views • 5 slides
That Bind a Nation: Union Pacific Paul Marcinko Network, Economic & Industrial Development

That Bind a Nation: Union Pacific Paul Marcinko Network, Economic & Industrial Development

The Ties That Bind a Nation: Union Pacific Paul Marcinko Network, Economic & Industrial Development Group 1 Building America for more than 150 Years 2 Seattle Eastport Duluth Portland Twin Cities 2017 Chicago Fast Facts Omaha

90 views • 7 slides
Initialize (TCP Server bind addr) int sd; struct sockaddr_in sin; Computer Networks if ((sd =

Initialize (TCP Server bind addr) int sd; struct sockaddr_in sin; Computer Networks if ((sd =

Initialize (TCP Server bind addr) int sd; struct sockaddr_in sin; Computer Networks if ((sd = socket(PF_INET, SOCK_STREAM, IPPROTO_TCP)) < 0) { perror("opening TCP socket"); abort(); } memset(&sin, 0, sizeof (sin)); Lecture 3

87 views • 7 slides
draft-soliman-monami6-flow-bind Hesham@qualcomm.com Objective To be able to transfer flow

draft-soliman-monami6-flow-bind Hesham@qualcomm.com Objective To be able to transfer flow

draft-soliman-monami6-flow-bind Hesham@qualcomm.com Objective To be able to transfer flow binding rules between MN/MR and HA/CN/MAP Aggregate flows in one BU (use of MCoA) Operation Home Agent - Create flow bindings inputs at the MN/MR

244 views • 12 slides
Theoretical Biology 2016 Transcription factors bind DNA to block or enhance transcription

Theoretical Biology 2016 Transcription factors bind DNA to block or enhance transcription

Chapter 7 Gene regulation Theoretical Biology 2016 Transcription factors bind DNA to block or enhance transcription From Campbell DNA makes RNA makes protein Golding et al. Cell 2005 d M d P d t = lM P d t = c dM and mRNA

458 views • 23 slides
THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr

THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr

TACKLING GLOBAL CHALLENGES THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr Nelson Mlambo University of Namibia Transnationalizing Modern Languages Global Challenges: Co-researcher

300 views • 9 slides
The ties that bind: Dynamics in open adoption Naomi Hesseling-Green Open Adoption The planned

The ties that bind: Dynamics in open adoption Naomi Hesseling-Green Open Adoption The planned

The ties that bind: Dynamics in open adoption Naomi Hesseling-Green Open Adoption The planned and conscious maintaince of links between those who are adopted and their original family networks (Ryburn, 1994, p.3) Sharing of Ongoing

294 views • 25 slides
THE BENEFITS OF YOGA maya parish yoga www.mayaparish.com YUJIR YOGA To Unite, To Bind, To Yoke

THE BENEFITS OF YOGA maya parish yoga www.mayaparish.com YUJIR YOGA To Unite, To Bind, To Yoke

THE BENEFITS OF YOGA maya parish yoga www.mayaparish.com YUJIR YOGA To Unite, To Bind, To Yoke YUJ SAMADHAU To Concentrate BHAKTI YOGA JNANA YOGA KARMA YOGA HATHA YOGA INCREASED FLEXIBILITY Eases & Prevents Aches and Pains, Reduces

584 views • 25 slides
Oxygen-Binding Proteins Myoglobin, Hemoglobin, Cytochromes bind O 2 . Oxygen is

Oxygen-Binding Proteins Myoglobin, Hemoglobin, Cytochromes bind O 2 . Oxygen is

Oxygen-Binding Proteins Myoglobin, Hemoglobin, Cytochromes bind O 2 . Oxygen is transported from lungs to various tissues via blood in association with hemoglobin In muscle, hemoglobin gives up O 2 to myoglobin which has a higher

382 views • 12 slides
1 2 http://www.redhat.com/docs/manuals/enterprise/RHEL-3-Manual/ref-guide/s1- bind-zone.html 5

1 2 http://www.redhat.com/docs/manuals/enterprise/RHEL-3-Manual/ref-guide/s1- bind-zone.html 5

1 2 http://www.redhat.com/docs/manuals/enterprise/RHEL-3-Manual/ref-guide/s1- bind-zone.html 5 6 7 8 9 10 11 12 13 14 The sponsor of the TLD is responsible to develop of policies, ensure transparency and accountability in its

772 views • 54 slides
Ties that Bind McDowell Group, Inc. Seattle Propeller Club March 18, 2015 The Enduring Economic

Ties that Bind McDowell Group, Inc. Seattle Propeller Club March 18, 2015 The Enduring Economic

Ties that Bind McDowell Group, Inc. Seattle Propeller Club March 18, 2015 The Enduring Economic Impact of Alaska on the Puget Sound Region McDowell Group Research and consulting since 1973 15 professional staff Offices in Juneau,

423 views • 25 slides

More recommend