In the Microsoft product family, ADDS is a very good design platform, when it comes to AD, then we have to mention his partner - DNS, I believe everyone knows that DNS is important in AD, just like men and women, if you want to make a difference, the two of them must be combined, without any party, this society will lose its color!
DNS is divided into forward lookup zones and reverse lookup zones, and then divided into primary, secondary, and stub zones, and there are many records in these zones, today, let's take a look at these records:
1. A record
The basic function of A record is to indicate what is the IP corresponding to a domain name, it is the correspondence between the domain name and the IP address, expressed as follows: The hyperlink login is visible. 192.168.1.1 This is an A record! In addition to domain name IP mapping, A record also has an advanced usage that can be used as a low-cost load balancing solution, such as,The hyperlink login is visible. You can create multiple A records corresponding to the IP addresses of multiple physical servers, which can achieve basic traffic balancing!
2. NS record
NS records and SOA records are two indispensable records in any DNS region, NS records are also called name server records, which are used to indicate which DNS servers are responsible for resolution in this area, and SOA records indicate which of the DNS servers responsible for resolution is the primary server. Therefore, it is impossible for any DNS zone to be missing both records. NS record, which indicates how many servers are responsible for parsing in this area,
3. SOA record
The NS record shows that there are multiple servers parsing, but which one is the master server, NS does not explain, this depends on the SOA record, SOA is called the starting authority record, SOA record shows which one is the main server among the many NS records!
4. MX record
For example, user A sends an email to user B, then he needs to query the MX record of B to DNS, and the DNS locates the MX record of B and feeds back to user A, and then user A delivers the email to user B's MX record server!
5. Cname record
Also known as alias records, we can understand that we will have a nickname when we are young, and when we grow up, we will have a scientific name, so formally speaking, the scientific name is in line with the public security system, that nickname is just a synonym for us, which also has an advantage, that is, than exposing oneself, such as a website a.com When publishing, he can establish an alias record, and the B.com cannot be sent out, so that it is not easy to be detected by external users! Achieve the purpose of hiding yourself!
6. SRV record
SRV records are abbreviations for server resource records, SRV records are a fresh face in DNS records, SRV records are only defined in RFC2052, so many older versions of DNS servers do not support SRV records. So what is SRV record used for? The role of SRV records is to illustrate what kind of services a server can provide! SRV records have an important place in Microsoft's Active Directory, and as you know, in the NT4 era, domains and DNS didn't have much to do with each other. But since Win2000, domains have been inseparable from the help of DNS, why? Because computers in the domain rely on DNS SRV records to locate domain controllers! It manifests as:
—ldap._tcp.contoso.com 600 IN SRV 0 100 389 NS.contoso.com
ladp: 是一个服务,该标识说明把这台服务器当做响应LDAP请求的服务器
TCP: The protocol used by this service can be TCP or the user packet protocol "UDP".
contoso.com: The domain name that this record is worth
600: Default survival time for this record (seconds)
IN: Standard DNS Internet class
SRV: Identifies this record as an SRV record
0: Priority, if there are multiple SRV records for the same service, the user will try to connect the record with the lowest priority first
100: Load balancing mechanism, multiple SRVs with the same priority, then the user will try to connect the record with high weight first
389: The port used by this service
NS.contoso.com:提供此服务的主机
7. PTR record
PTR records are also known as pointer records, PTR records are reverse records of A records, which resolves IP addresses into domain names. Since we mentioned earlier that the reverse zone of DNS is responsible for resolving from IP to domain name, if you want to create a PTR record, you must create it in the reverse zone.
The above are just some simple introductions, and especially explain the format of SRV records, if you master these for future AD management, it will be of great help!
If there is something wrong with what you say, please advise, and if you don't say it in place, please add! Thank you!
DNS Site Analysis Website:
The hyperlink login is visible.
|
Posted on 8/18/2018 10:12:25 PM
|
|
|
|
