|
DNS & BIND 5th Edition
DNS and BIND tells you everything you need to work with one
of the Internet's fundamental building blocks: the
distributed host information database that's responsible for
translating names into addresses, routing mail to its proper
destination, and even listing phone numbers with the new
ENUM standard. This book brings you
up-to-date with the
latest changes in this crucial service.
The fifth edition covers BIND 9.3.2, the most recent release
of the BIND 9 series, as well as BIND 8.4.7. BIND 9.3.2
contains further improvements in security and IPv6 support,
and important new features such as internationalized domain
names, ENUM (electronic numbering), and SPF (the Sender
Policy Framework).
Whether you're an administrator involved with DNS on a daily
basis or a user who wants to be more informed about the
Internet and how it works, you'll find that this book is
essential reading.
Topics include:
What DNS does, how it works, and when you need to use it
How to find your own place in the Internet's namespace
Setting up name servers
Using MX records to route mail
Configuring hosts to use DNS name servers
Subdividing domains (parenting)
Securing your name server: restricting who can query your
server, preventing unauthorized zone transfers, avoiding
bogus servers, etc.
The DNS Security Extensions (DNSSEC) and Transaction
Signatures (TSIG)
Mapping one name to several servers for load sharing
Dynamic updates, asynchronous notification of change to a
zone, and incremental zone transfers
Troubleshooting: using nslookup and dig, reading debugging
output, common problems
DNS programming using the resolver library and Perl's
Net::DNS module
Preface
1. Background
A (Very) Brief History of the Internet
On the Internet and Internets
The Domain Name System, in a Nutshell
The History of BIND
Must I Use DNS?
2. How Does DNS Work?
The Domain Namespace
The Internet Domain Namespace
Delegation
Nameservers and Zones
Resolvers
Resolution
Caching
3. Where Do I Start?
Getting BIND
Choosing a Domain Name
4. Setting Up BIND
Our Zone
Setting Up Zone Data
Setting Up a BIND Configuration File
Abbreviations
Hostname Checking
Tools
Running a Primary Nameserver
Running a Slave Nameserver
Adding More Zones
What's Next?
5. DNS and Electronic Mail
MX Records
Movie.edu's Mail Server
What's a Mail Exchanger, Again?
The MX Algorithm
DNS and Email Authentication
6. Configuring Hosts
The Resolver
Resolver Configuration
Sample Resolver Configurations
Minimizing Pain and Suffering
Additional Configuration Files
The Windows XP Resolver
7. Maintaining BIND
Controlling the Nameserver
Updating Zone Datafiles
Organizing Your Files
Changing System File Locations
Logging
Keeping Everything Running Smoothly
8. Growing Your Domain
How Many Nameservers?
Adding More Nameservers
Registering Nameservers
Changing TTLs
Planning for Disasters
Coping with Disaster
9. Parenting
When to Become a Parent
How Many Children?
What to Name Your Children
How to Become a Parent: Creating Subdomains
Subdomains of in-addr.arpa Domains
Good Parenting
Managing the Transition to Subdomains
The Life of a Parent
10. Advanced Features
Address Match Lists and ACLs
DNS Dynamic Update
DNS NOTIFY (Zone Change Notification)
Incremental Zone Transfer (IXFR)
Forwarding
Views
Round-Robin Load Distribution
Nameserver Address Sorting
Preferring Nameservers on Certain Networks
A Nonrecursive Nameserver
Avoiding a Bogus Nameserver
System Tuning
Compatibility
The ABCs of IPv6 Addressing
Addresses and Ports
11. Security
TSIG
Securing Your Nameserver
DNS and Internet Firewalls
The DNS Security Extensions
12. nslookup and dig
Is nslookup a Good Tool?
Interactive Versus Noninteractive
Option Settings
Avoiding the Search List
Common Tasks
Less Common Tasks
Troubleshooting nslookup Problems
Best of the Net
Using dig
13. Reading BIND Debugging Output
Debugging Levels
Turning On Debugging
Reading Debugging Output
The Resolver Search Algorithm and Negative Caching (BIND 8)
The Resolver Search Algorithm and Negative Caching (BIND 9)
Tools
14. Troubleshooting DNS and BIND
Is NIS Really Your Problem?
Troubleshooting Tools and Techniques
Potential Problem List
Transition Problems
Interoperability and Version Problems
TSIG Errors
Problem Symptoms
15. Programming with the Resolver and Nameserver Library Routines
Shell Script Programming with nslookup
C Programming with the Resolver Library Routines
Perl Programming with Net::DNS
16. Architecture
External, Authoritative DNS Infrastructure
Forwarder Infrastructure
Internal DNS Infrastructure
Operations
Keeping Up with DNS and BIND
17. Miscellaneous
Using CNAME Records
Wildcards
A Limitation of MX Records
Dial-up Connections
Network Names and Numbers
Additional Resource Records
ENUM
Internationalized Domain Names
DNS and WINS
DNS, Windows, and Active Directory
A. DNS Message Format and Resource Records
B. BIND Compatibility Matrix
C. Compiling and Installing BIND on Linux
D. Top-Level Domains
E. BIND Nameserver and Resolver Configuration
Index
|
