|
|
|
| Experimental Design for Principle of DNS Based on Virtual Network Environment |
Xuefeng CAO( ),Wanguo YU,Risheng CHEN |
| Department of Mathematics and Computer, Hebei Normal University for Nationalities,Chengde 067000, Hebei, China |
|
|
|
|
Abstract This paper introduces the principle of the DNS, and uses GNS3 and VirtualBox to build an experimental environment for the domain name system of private service. It also designs the experimental scheme of the DNS, and configures the WWW server and E-mail server. Using Wireshark is used to capture and analyze packets, the principle of the recursive query and iterative query is then introduced, the effects of the SOA record, NS record, A record, MX record and the principle of spoofing DNS are all explained, and the DNS work process is verified. The experiment lets the students better understand the working principle of DNS from both theory and practice. It enhances the practical ability and the comprehensive application ability of students.
|
|
Received: 28 August 2016
Published: 10 July 2017
|
|
|
|
|
|
|
| 记录类型 | 记录名称 | 说 明 | | SOA | 起始授权记录 | 定义该区域哪个名称服务器是授权域名服务器,标识DNS服务器管理的起始位置 | | NS | 名称服务器记录 | 该资源记录指明包含该域的域名服务器。创建新区域时,该资源记录被自动创建 | | A | 主机记录 | 建立主机域名与IP地址之间的映射关系 | | CNAME | 别名记录 | 仅仅是主机的另一个名字 | | MX | 邮件交换记录 | 用于邮件服务器发送邮件时,根据收信人的地址后缀解析接收方邮件服务器的IP地址 | | PTR | 指针记录 | 该资源记录将IP地址映射到DNS反向区域中的主机名,用来实现反向查询 |
|
|
|
|
|
|
| 设备 | 端口 | IP地址 | 默认网关 | | PC1 | E1 | 172.16.11.10/24 | 172.16.11.1 | | PC2 | E1 | 172.16.31.10/24 | 172.16.31.1 | | DNS1 | E1 | 172.16.10.10/24 | 172.16.10.1 | | DNS2 | E1 | 172.16.20.10/24 | 172.16.20.1 | | DNS3 | E1 | 172.16.21.10/24 | 172.16.21.1 | | DNS4 | E1 | 172.16.30.10/24 | 172.16.30.1 | | R1 | E0/0 | 172.16.10.1/24 | — | | R1 | E0/1 | 172.16.11.1/24 | — | | R1 | S2/0 | 172.16.12.1/24 | — | | R2 | E0/0 | 172.16.20.1/24 | — | | R2 | E0/1 | 172.16.21.1/24 | — | | R2 | S2/0 | 172.16.32.2/24 | — | | R2 | S2/1 | 172.16.12.2/24 | — | | R3 | E0/0 | 172.16.30.1/24 | — | | R3 | E0/1 | 172.16.31.1/24 | — | | R3 | S2/1 | 172.16.32.1/24 | — |
|
|
|
| 服务器 | 区域 | FQDN/主服务器 | 类型 | IP | | DNS1 | edu | net001.edu. | SOA | | | DNS1 | edu | net001.edu. | NS | 172.16.10.10 | | DNS1 | test.edu | mail.test.edu. | A | 172.16.11.10 | | DNS1 | test.edu | mail.test.edu. | MX | | | DNS2 | .(根) | net002.root.net. | SOA | | | DNS2 | .(根) | net002.root.net. | NS | 172.16.20.10 | | DNS2 | 委派com | net003.com. | NS | 172.16.21.10 | | DNS2 | 委派edu | net001.edu. | NS | 172.16.10.10 | | DNS3 | com | net003.com. | SOA | | | DNS3 | com | net003.com. | NS | 172.16.21.10 | | DNS3 | 委派test.com | net004.test.com. | NS | 172.16.30.10 | | DNS4 | test.com | net004.test.com. | SOA | | | DNS4 | test.com | net004.test.com. | NS | 172.16.30.10 | | DNS4 | test.com | mail.test.com. | MX | | | DNS4 | test.com | mail.test.com. | A | 172.16.31.10 | | DNS4 | test.com | www.test.com. | A | 172.16.30.10 |
|
|
|
|
|
|
|
|
|
|
|
|
| [1] |
谭毓银. 基于PacketTracer软件的DNS服务器实验设计[J]. 实验技术与管理,2013,30(9):101-103+106.
|
| [2] |
顾春峰,李伟斌,兰秀风. 基于VMware、GNS3实现虚拟网络实验室[J]. 实验室研究与探索,2012,31(1): 73-75,100.
|
| [3] |
李林林,孙良旭,吴建胜,等. 单机环境下路由交换技术综合实验设计[J]. 实验室研究与探索,2015,34(8): 115-118.
|
| [4] |
"RedNectar" Chris Welsh. GNS3 Network Simulation Guide[M]. Birmingham:Packt Publishing Ltd.,2013.
|
| [5] |
Sanders C.Wireshark数据包分析实战[M]. 2版.诸葛建伟,陈琳,许伟林译. 北京:人民邮电出版社,2013 .
|
| [6] |
Orebaugh A,Ramirez G,Burke J,et al.Wireshark &Ethereal Network Protocol Analyzer Toolkit[M]. Rockland: Syngress Publishing, Inc.,2007.
|
| [7] |
徐慧,王春枝,陈宏伟,等. 以协议分析为导向的本科生网络管理能力培养模式[J]. 计算机教育,2013(14):13-16.
|
| [8] |
谢希仁. 计算机网络[M]. (5版) 北京:电子工业出版社,2008.
|
| [9] |
曹雪峰. 计算机网络原理—基于实验的协议分析方法[M]. 北京:清华大学出版社,2014.
|
| [10] |
Mockapetris P.Domain Names - Implementation and Specification[S]. IETF RFC 1035,1987.
|
| [11] |
孔政,姜秀柱. DNS欺骗原理及其防御方案[J]. 计算机工程,2010,36(3):125-127.
|
| [12] |
张红轻,王道顺. 基于DNS缓存中毒的Webmail攻击及防护[J]. 计算机工程,2009,35(4):125-127.
|
| [13] |
Doyle J, Carroll JD.TCP /IP路由技术(第二卷)[M]. 夏俊杰译. 北京:人民邮电出版社,2009.
|
| [14] |
Solie K,Lynch L.CCIE实验指南(第2卷)[M]. 姚军玲,顾彬,梅洪涛等译. 北京:人民邮电出版社,2006.
|
| [15] |
杨林,杨勇. 高校校园网私有DNS服务器架设研究[J]. 通信技术,2011,44(1): 118-120.
|
| [16] |
秦文生,鲜路. 自建私有根域名服务器完成多域电子邮件互发[J]. 福建电脑,2011,27(7):162,161.
|
| No related articles found! |
|
|
|
|
2017, Vol. 36 
