How do DNS servers work?

14

8

I know that a domain name is resolved by a DNS server to an IP address, which is then used to reach the requested server. I'm slightly embarrassed that I don't know some of the details of how this works.

  • In order for my computer to ask the DNS service to resolve a domain, the DNS server must be known by my computer. I never explicitly told my computer about any DNS servers, so how does it know which DNS server it should use? Is it the ISP that pushes this information to my computer somehow?

  • For that matter, where are these DNS servers located? Does my ISP have some DNS servers running somewhere which are used by all it's (the ISP's) customers?

  • The DNS server my computer uses must know all domains in order to be able to resolve them, how are it's records updated/maintained?

  • Is there some central entity/registry/... that feeds a DNS server changes that have occurred?

  • If I order a domain name somewhere, the seller has to establish a connection between an IP address and the domain name it sold to me. How are all DNS servers updated to know about this link? So in other words, what actions does the seller take to inform 'the internet' where this domain now points to?

I know this seems like a bunch of questions but I think they're just different aspects of the same story. Can somebody tell me how this all works together?

Asciiom

Posted 2012-09-11T13:55:04.583

Reputation: 251

Answers

15

Your computer has a list of DNS servers that it can query for further information. On a unix or linux system, this is stored in /etc/resolv.conf. In Windows, it's configurable in your network settings. Often, your DNS server will be supplied by your DHCP server, possibly along with other settings like default domain, proxy servers, etc.

The location of the DNS server you use doesn't matter much. As long as your computer has an IP address and a working default route (i.e. you can ping the DNS server), you should be able to make DNS queries.

DNS servers don't have to know "all" domains. They only need to know who is "authoritative", which it learns from a set of "root" servers. Each DNS server has a list of "root" servers, and this list changes infrequently. On one of my DNS servers, there are 18 root servers configured, and this configuration came when I installed the DNS server two years ago, and if the list of root servers has changed since then, enough of them are accessible that I haven't noticed it.

My DNS server, when asked to resolve a domain it doesn't know, makes a query to a root server to find out what other DNS server is authoritative for the domain. The response it gets may contain additional "NS" records and be marked non-authoritative, in which case my DNS server knows that it has to "follow the chain" and make a new query to a new server. Eventually, it finds a DNS server that provides authoritative information, and queries can be made that are not just NS records. A (address) and MX (mail exchange) are of course the two most common.

Each TLD (top-level domain) like COM, NET, ORG, CA, UK, etc maintains its own registry of subdomains. (A "subdomain" is any domain within another domain, so "example.com" is a subdomain within "com", and "com" is even a subdomain within ".", the "root".) The rules for each registry apply only to the TLD it administers -- that is, there's a completely different set of criteria for each country-code TLD, and the "generic" TLDs are administered by different organizations with different policies. But they all maintain DNS servers for their TLD, which, from a command line, you can see using basic DNS query tools:

[ghoti@pc ~]$ host -t ns ca.
ca name server c.ca-servers.ca.
ca name server e.ca-servers.ca.
ca name server z.ca-servers.ca.
ca name server a.ca-servers.ca.
ca name server f.ca-servers.ca.
ca name server sns-pb.isc.org.
ca name server j.ca-servers.ca.
ca name server k.ca-servers.ca.
ca name server tld.isc-sns.net.
ca name server l.ca-servers.ca.
[ghoti@pc ~]$ host -t ns info
info name server c0.info.afilias-nst.info.
info name server d0.info.afilias-nst.org.
info name server b2.info.afilias-nst.org.
info name server b0.info.afilias-nst.org.
info name server a2.info.afilias-nst.info.
info name server a0.info.afilias-nst.info.
[ghoti@pc ~]$ 

When you buy a domain from a registrar (of which there are many), that registrar submits information about the domain to the registry (of which there is just one per TLD). It is the responsibility of each registry to maintain the list of registered domains within their TLD, and maintain the DNS servers that provide this info to other servers.

ghoti

Posted 2012-09-11T13:55:04.583

Reputation: 641

-1

DNS server work as a protocol is a set of rule for exchanging data on internet within private network like TCP/IP protocol suit. It simply turns the user friendly domain into internet protocol. It may be any domain name purchased by site owner from any reliable domain provider such as domainia or else. Let’s take a domain’s example as “myweb.com” which in turn will be converted in IP like 71.12.252.1 that will be for computer to be recognized over the network.

adrienne hansen

Posted 2012-09-11T13:55:04.583

Reputation: 1

1I am sorry say it but your post is very hard to understand. Could you please try to re-phrase it and give a closer attention to meaning of words? Then someone could probably help to polish the text by correcting minor mistakes. – pabouk – 2014-11-22T11:32:56.057