Dns suffixes, Dns proxy, Introduction to dns proxy – H3C Technologies H3C WX6000 Series Access Controllers User Manual
Page 227
27-2
3) The DNS server looks up the corresponding IP address of the domain name in its DNS database. If
no match is found, it sends a query to a higher level DNS server. This process continues until a
result, whether successful or not, is returned.
4) The DNS client returns the resolution result to the application after receiving a response from the
DNS server.
Figure 27-1 Dynamic domain name resolution
shows the relationship between the user program, DNS client, and DNS server. The
resolver and cache comprise the DNS client. The user program and DNS client can run on the same
device or different devices, while the DNS server and the DNS client usually run on different devices.
Dynamic domain name resolution allows the DNS client to store latest mappings between domain
names and IP addresses in the dynamic domain name cache. There is no need to send a request to the
DNS server for a repeated query next time. The mappings are removed from the cache after some time
to ensure latest entries are obtained from the DNS server. The DNS server decides how long a mapping
is valid, and the DNS client gets the aging time from DNS messages.
DNS suffixes
The DNS client normally holds a list of suffixes which can be defined by users. It is used when the name
to be resolved is incomplete. The resolver can supply the missing part. For example, a user can
configure com as the suffix for aabbcc.com. After that, the user only needs to type aabbcc, and the
resolver will add the suffix and delimiter. The following describes more details.
If there is no dot in the inputted domain name (for example, aabbcc), the resolver will consider it a
host name and add a DNS suffix before query. If no match is found after all the configured suffixes
are used respectively, the original domain name (for example, aabbcc) is used for query.
If there is a dot in the inputted domain name (for example, www.aabbcc), the resolver will directly
use this domain name for query. If the query fails, the resolver adds a DNS suffix for another query.
If the dot is at the end of the inputted domain name (for example, aabbcc.com.), the resolver will
consider it a fully qualified domain name (FQDN) and return the query result, successful or failed.
Hence, the dot “.” at the end of the domain name is called the terminating symbol.
DNS Proxy
Introduction to DNS proxy
A DNS proxy forwards DNS requests and replies between DNS clients and a DNS server.