So what are some of the more specific functions that are D. N s server performs? Well, let's take a look.
So our d n a server, as we mentioned, performs resolution. Now our resolution goes two ways. It goes fully qualified domain name to our I p address and these air known as Ford look ups. And then we have I p address to fully qualified domain name reverse lookups Forward lookups are our typical look ups. When we type in
www dot cyber dot i t
ghost or D. N s server are dina server goes to our Internet dina server. And then that being a server says, Okay, that address is at this I p address reverse lookups are if we typed in. Oh, what is this I, p address? What's its server name?
And then we'll go out to that Dina Dian s server and it'll check its records and see if it has a reverse record
pointer record and see if it can find its I p address from the fully qualified domain name.
So our resolution occurs at using our full equality, qualified domain names starting at our top level domains now our top level domains, as we talked about a little earlier include things like dot com
and so on. And so on
dot or ge not dot ward
And these air read right to left. So if you wanted to go to
portal dot Microsoft dot com
rd Neff server doesn't read your request from left to right, it needs to start
So you may see website addresses
that look like this. Http colon Ford's last forward slash w w w dot portal dot Microsoft dot com slash log in. So let's take a look at this and see if we can get rid of some of the extra stuff.
http www dot portal dot Microsoft dot com forward slash log in.
Well, immediately we can remove this ford Slash are actually start from this side.
Http. Colon forward slash forward slash
Is just telling our computer what's protocol to use. We're gonna use http protocol in order to connect to this website because http is what's goingto let us to let us connect to our website. Let us pull information from a website,
so that's not part of our d. N s query. That's just part of our computer specifying which protocol it's going to use. So that's not part of our d. N s query
As part of our is the start of our d. N s query, but our www means that we are asking the server to give us it. Give us its worldwide Web page. That's why a lot of times you could just type in portal dot Microsoft dot com,
and then our browser will fill in the rest because it's assuming that we're goingto want to go to
the World Wide Web page, the World Wide Web page on this server. So are our www server, whichever we have configured. So we're telling our computer, Yeah, we want to go to the Www Server, the World Wide Web server
www dot portal dot Microsoft dot com.
The rest of this is part of our query as well, because that's part of our domain. Microsoft Microsoft, part of our domain dot com, is a root domain. And then what about this ford slash log in Well, that forward slash log in. We can also is also not part of our dean s query, because that fourth slash log in
is simply asking for an additional
sub folder or sub file with on this Web server. So if you think about a file path, if you're going to you're a certain file on your computer, you'll see something something like, uh, see ford slash You'll see backslash backslash see ford slash
users ford slash administrator ford slash desktop So we're essentially going to the server and saying I want to go to your main Web server. Ford slash your log in page So that's not part of our d. N s query our d n a square. He just wants to find the i p address
of this server, the www dot portal about Microsoft dot com server.
So we're gonna start from left are from right to left of this as we're resolving.
So this was just us dissecting it.
So our computer is going to say our initial our initial the internal DNF server is going to say, OK, I don't know where this query is, so I'm going to send it up to the next level D and s
now next level D. N s on our Internet is going to say, OK,
I need to find the server. Who knows where who has the authority to tell me
information about the dot com domain. So it says, Okay, I know. I know which Dina server was allowed to tell me about the dot com D. N s are the dot com domain,
and then we need to know who can tell us about the dot Microsoft sub domain.
So our dot com domain is our route domain that is encompassing of all of our Web sites and servers that are something dot com.
So we find the one that can tell us information about that when we say Okay, now, where is the next the next? Level up, the dot Microsoft domain and we say, Okay, here it is. Now where is the Microsoft? Are the portal dot Microsoft
domain. So then we find that, and then once we're there, once were at whichever server can tell us about the portal dot Microsoft dot com domain, we say, Okay, now where's your Web server? Where's your www server? And then it gives us the I P address.
And then now our computer sends an http packet
to that to that i p address requesting it's log in page.
So that's how I r u r l will translate into our d. N s request.
Now, our Deanna servers can provide us with dynamic VMS. Now, dynamic Dean s
versus a static would be a auto updating of our records.
Our d. N s records are going to be the information inside of our guardian s servers that's configured with what goes where the information to allow us to resolve fully qualified domain names to R I P addresses and the reverse
our dynamic D N s will automatically update those records so we don't have to manually change things.
And our dynamic Dean s will monitor changes in assisting in connection with D h C P s o D A. C P hands out, at least to a particular server, our particular computer. It lets our D. N s know in our D. N s will update those records now,
and our domain environment we need We don't necessarily want
all the computers that connect to our domain to be able to allow them to update D N s for, um,
for the computers. Well, why not? Why don't We don't want to allow our client computers the ability to update D N s. Well, if we give them that ability to every single client computer, we may have a client computer that says, Oh, hey, D n s. By the way, I want you to add this record in here. I want you to add in here that www dot facebook dot com
So if that record is maliciously added, then someone could stand up a little client computer with a fake Web server on it. And then when we add that record and our d. N s says, Oh, you requested W w w w dot facebook dot com Here is this I. P address sends us to the client computer
that has a completely
constructed fake look alike of facebook dot com. You enter in your user name and password in and the U. R L. Barr says www dot facebook dot com. It looks completely fine, but then your information is being transmitted to that computer that you act you actually connected to.
So our D. N s server once it tells us Oh, yeah, this I p addresses facebook dot com our computer will say Okay, well, I'll go there and then in our u R L Bar will display that were connected to facebook dot com because that's what our Deena's told us that we're connected to. Its not gonna connect the I P address.
It's not going to show with the I. P address of the server that we're connected to
on our standard browser UL bar. It's just gonna So what? What address it thinks it's connected to.
That's why it's important to keep our d. N s secure
and keep our d. N s from being updated maliciously.