Module 4

Question 1

DNS

Answer 1

Domain Name System. A global and highly distributed network service that resolves strings of letters into IP addresses

Question 2

Steps of Recursive Name Resolution

Answer 2

1. Contact Root Server, which will return the TLD server that should be queried
2. Contact the TLD server, which will respond with a redirect to authoritative server.
3. Contact the authoritative server for that specific domain name

Question 3

Name Resolution

Answer 3

The process of using DNS to turn a domain name into an IP address.

Question 4

5 Types of DNS servers

Answer 4

1. Caching name servers
2. Recursive name servers
3. Root name servers
4. TLD Name servers
5. Authoritative Name servers

Question 5

Caching Name Server

Answer 5

Purpose is to store known domain name lookups for a certain amount of time

Question 6

Recursive name servers

Answer 6

Performs full DNS resolution requests to discover correct IP for domain name.

Question 7

Domain Name TTL

Answer 7

A value in seconds that can be configured by the owner of a domain name for how long a name server is allowed to cache an entry before it should discard it and perform a full resolution again

Question 8

How many root servers are there and how are they distributed

Answer 8

13 distributed by across the globe through anycast, a technique used to route traffic to different destinations depending on factors like location, congestion, or link health

Question 9

TLD

Answer 9

Top level domain. Represents the top of the hierarchical DNS name resolution system. it is the last part of a domain like .com, or .biz

Question 10

What protocol does DNS use

Answer 10

UDP. DNS request can fit into a single UDP datagram.

Question 11

Which port is DNS request sent to on the Caching server

Answer 11

53

Question 12

DNS Resource Record Types

Answer 12

1. A record
2. AAAA record
3. CNAME record
4. MX record
5. SRV record
6. TXT record

Question 13

A record

Answer 13

Used to point to certain domain name at a certain IPv4 IP address

Question 14

Round Robbin

Answer 14

Iterating over a list of items one by one in an orderly fashion

Question 15

Quad A record

Answer 15

Used to point to certain domain name at a certain IPv6 IP address

Question 16

CNAME Record

Answer 16

Canonical Name Record.

Ensures that both microsoft.com and www.microsoft.com resolves to the same ip

Question 17

MX record

Answer 17

Mail exchange record. Record is used in order to deliver email to the correct server

Question 18

SRV Record

Answer 18

Defines the location of various specific services

Question 19

TXT record

Answer 19

Text record. Often used to communicate configuration preferences about network services.

Like communicating configuration preferences to an email company that has been entrusted to handle emails services for your company

Question 20

ICANN

Answer 20

The internet Corporation for assigned Names and Numbers.

Works in conjunction with the IANA to help define and control the global IP space and DNS

Question 21

Domains

Answer 21

Used to demarcate where control moves from a TLD name server to an authoritative name server

Question 22

Fully qualified domain name

Answer 22

FQDN. The combined parts of a domain name.

Question 23

Registrar

Answer 23

A company that has an agreement with ICAN to sell unregistered domain names.

Question 24

What is the character limit on a FQDN

Answer 24

255 characters

Question 25

DNS zones

Answer 25

DNS zones are distinct, manageable segments of the Domain Name System (DNS) namespace, which is the hierarchical system responsible for translating human-readable domain names (like example.com) into IP addresses (like 192.0.2.1). DNS zones allow organizations to manage different parts of their domain independently, control how DNS queries are handled, and delegate authority to other entities if needed.

Question 26

How are DNS zones configured

Answer 26

Zone files: Simple configuration files that declare all resource records for a particular zone. Zone files must contain and SOA Record and NS records.

SOA (Start of Authority) Record: Defines the authoritative DNS server for the zone, and includes important administrative information.

NS records: indicates other name servers that might also be responsible for this zone

Question 27

Reverse lookup zone files

Answer 27

Let DNS resolvers ask for ran IP and get the GQDN associated with it returned

Question 28

Pointer Record

Answer 28

PTS. Resolves an IP to a name

Question 29

DHCP

Answer 29

Dynamic Host Configuration Protocol. An application layer protocol that automates the configuration process of hosts on a network.

Whenever a device connects to a network it will query the DHCP server and receive all the network configuration data it needs.

Question 30

How do DHCP servers assign IP’s

Answer 30

Dynamic Allocation: The DHCP server assigns an IP address to a device for a limited period of time or until the device explicitly releases the IP address. How it Works: When a device connects to the network, it sends a DHCP request, and the server assigns an available IP address from a pool. The device is assigned a lease for this IP, which must be renewed periodically. Example Use Case: Home or office networks where devices come and go frequently (e.g., laptops, smartphones).

Automatic Allocation: The DHCP server permanently assigns an IP address to a device the first time it requests one. Once assigned, the IP address remains the same for that device, unless manually changed by an administrator. How it Works: When a device requests an IP address for the first time, the DHCP server assigns one from the available pool. The IP is retained for that device even if it disconnects and reconnects later.
Example Use Case: Networks where devices are generally static, but administrators prefer to automate the IP allocation.

Fixed Allocation: the DHCP server assigns a specific IP address to a device based on its MAC address. The IP address is always the same for that device whenever it connects to the network. How it Works: The administrator configures a mapping between the device’s MAC address and an IP address on the DHCP server. Whenever the device requests an IP, the server gives it the pre-assigned, fixed IP.
Example Use Case: Devices that require a consistent IP address, like servers, printers, or network infrastructure devices.

Question 31

4 things every network needs to have configured

Answer 31

1. IP Address
2. Subnet Mask
3. Gateway
4. Name Server

Question 32

DHCP Discovery

Answer 32

The process by which a client configured to use DHCP attempts to get network configuration information.

Question 33

The DHCP Discovery Process

Answer 33

1. A DHCPREQUEST message is sent via UDP from the client 0.0.0.0:68 to the server on 255.255.255.255:67
2. The DHCP server will look at it’s configuration and make a decision on what IP address to offer the client.
3. The server then sends a DHCPOFFER message from 192.168.1.1:67 to 255.255.255.255:68

Question 34

DHCP Lease

Answer 34

The amount of time an Ip address is leased to a specific device by the DHCP server. When the lease expires, the device will have to request a new Ip from the DHCP server.

Question 35

NAT

Answer 35

Network Address Translation (NAT) is a method used by routers to modify the IP address information in the headers of packets as they pass through a network. NAT allows multiple devices on a local network (using private IP addresses) to access the internet using a single public IP address. It is essential for reducing the number of public IP addresses needed and adds a layer of security to the local network.

Question 36

IP masquerading

Answer 36

When a router hides the source ip by replacing it with it’s own ip

Devices within a local network are assigned private IP addresses (such as 192.168.x.x or 10.x.x.x).

When a device with a private IP wants to send a request to the internet, the router modifies the private IP and port number to the public IP (and a different port, if necessary).

The router keeps track of this translation in a NAT table so that it can route any return traffic to the correct private IP.

When the response from the internet arrives, the router looks up the entry in its NAT table and forwards the response to the correct internal device.

Question 37

Port Preservation

Answer 37

Port preservation refers to the process by which Network Address Translation (NAT) maintains the original source port number of a connection when it translates the internal (private) IP address to a public IP address. This ensures that the port used on the internal device remains the same as it passes through the NAT device to communicate with external systems.

Question 38

Port forwarding

Answer 38

Port forwarding is a networking technique that allows an external device on the internet to communicate with a specific device inside a private local network by routing traffic through a router. It essentially opens up a specific port on your router and forwards incoming connections to a particular device in the internal network, making services hosted behind the router accessible from the outside.

Question 39

VPN

Answer 39

A VPN (Virtual Private Network) is a service that creates a secure, encrypted connection between your device and a remote server over the internet. By routing your internet traffic through this encrypted tunnel, a VPN helps ensure privacy, security, and anonymity online.

It provides:

1. Encryption
2. IP Masking
3. Remote or Proxy servers to hide location.

Question 40

Reverse Proxy

Answer 40

Distributes incoming requests

A service that might appear to be a singe server to external clients, but actually represents many servers living behind it.

Question 40

Proxy Service

Answer 40

A server that acts on behalf of a client in order to access another service