Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Advanced Computer Networks > DNS > Flashcards

DNS Flashcards

1
Q

What is a stub resolver?

A

Provides recursive resolution fora system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a (dns) forwarder?

A

forwards dns queries to another resolver

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a authorative name server?

A

Has auth info on set of zones. Gets queried

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a TLD nameserver?

A

auth nameserver for TLD zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Name the 5 components of an DNS message

A

Header, Question, Answer, Authority, Additional

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Name the 6 most important DNS types?

A 
A - IPv4
AAAA - IPv6
CNAME - domain name
NS - Auth name server
SOA - Start of zone authoritz
MX - Mail eXchange
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a DNS zone?

A

Content of a contiguous section of the domain space bounded by administrative boundaries. Each zone is in a separate file with entries called Resource Records.
- Starts with SOA record, ends with next SOA record

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are delegations on DNS?

A

NS record pointing to authoritive NS for zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are glue records?

A

Records in parent zone that resolve FQDN of NS for child zone.
Non authoritive records in parent zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What problem can arise if the NS records points to an IP address

A

it might not be reachable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What problem can arise if there is a typo in the domain name?

A

Domain highjacking might be possible. Or domain name is not registrable -> reliability issue

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is lame delegation?

A

NS record pointing to host without DNS service or without authoritive infomation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is Trusted Computing Base (TCB)?

A

Set of components critical to a systems security.

In DNS, a TCP consists of all zones in the delegation path for this zone.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Name the 2 requirements for name server resilience

A
  • NS which provide redundant service for the data in zone

- Servers must be placed at both topologically and geographically dispersed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Where do we continue?

A

DNS Slide 80

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which transport protocol does edns use?

A

It uses tcp as fallback if packets are too large

17
Q

Name 3 protocols that should enhance the security of dns?

A

Dnssec - auth & integrety
Dns enc: encryption (dns over tls) DoH
Qname minimization: protects privacy of client & reduces info sent to server

18
Q

What does dnssec add to the dns queries

A

Signs dns records with pub keys. Chain of trust from root auth server
Rrsig (resource record sign)
Dnskey: pubkey
Nsec/nsec3: next sec record

19
Q

What are pros and cons of dns enc?

A 
\+ Client traffic encrypted
- internal dns can be overwritten
 ? Faster? 
? Prevents censorship? 
? Prevents collection - not at resolver level
20
Q

How does qname work?

A

It sends the exact qname only to root ns. Subsequent recursion lookups only resolve the Label for each auth ns.

Advanced Computer Networks (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions