Introduction
DNS (Domain Name System) is a service that translates human-readable web addresses (e.g., app.example.com) into computer-readable IP addresses
(e.g., 192.1.1.1) and stores them in a hierarchical address database.
The IP address enables the browser to locate the server with the requested content. The pairing of the hostname and the IP address is called a namespace. Monitoring your DNS records helps you insure that the DNS continues to route traffic properly to your websites, services, and electronic communications.
Components of DNS
The individual records of a DNS are called Resource Records (RR) and the individual parts of a DNS database are called zones. Within these zones are several server and record types. In order to successfully monitor DNS, it is important to be familiar with what each component does in the larger system.
How does DNS work
The process of using a hostname (e.g., app.example.com) to get an IP address (e.g., 192.1.1.1) is called resolving. Resolving a hostname requires four different DNS server types. So these four different DNS servers work together to get you to the content you need:
- DNS Recursor
- Root Name Server
- TLD Nameserver
- Authoritative Nameserver
Let us quickly look at these server types and what they do.
- DNS Recursor: The recursor server receives queries from client machines through applications like web browsers and checks for the resolving IP address in its cache. This server is also responsible for making any additional requests to satisfy the client’s DNS query. Recursor servers have no authority over record information.
- Root Name Server: The root server takes up the job when a DNS Recursor cannot find the relevant address in its cache. It exists at the top of the DNS hierarchy in a space known as the root zone. Queries reaching the root zone are redirected to the correct zone by responding to the recursor with the IP address of the Top-Level Domain (TLD) nameserver that should handle the query. The internet consists of 13 root zone servers.
- TLD Nameserver: The top-level domain server (TLD) handles the next step in the search for a specific IP address. It categorizes domain names and provides the recursor server with the relevant authoritative nameserver’s IP address that it should check.
- Authoritative Nameserver: The authoritative nameserver has information for specific hostnames, such as example.com. It resolves the hostname to its corresponding IP address and sends that address back to the recursor server, where it is then passed to the client’s browser. The browser then accesses the site using the IP address.
DNS Record Types
There are 40 different DNS record types, all of which include multiple fields that specify information about the domain.
Following are few of the most commonly used DNS record types:
- Address Mapping record (A Record): Also known as a DNS host record, stores a hostname and its corresponding IPv4 address.
- IP Version 6 Address record (AAAA Record): Stores a hostname and its corresponding IPv6 address.
- Canonical Name record (CNAME Record): It can be used to alias a hostname to another hostname. When a DNS client requests a record that contains a CNAME, which points to another hostname, the DNS resolution process is repeated with the new hostname.
- Mail exchanger record (MX Record): It specifies an SMTP email server for the domain, used to route outgoing emails to an email server.
- Name Server records (NS Record): It specifies that a DNS Zone, such as “example.com” is delegated to a specific Authoritative Name Server, and provides the address of the name server.
- Reverse-lookup Pointer records (PTR Record): It allows a DNS resolver to provide an IP address and receive a hostname (reverse DNS lookup).
- Certificate record (CERT Record): It stores encryption certificates—PKIX, SPKI, PGP, and so on.
- Service Location (SRV Record): The service record gives the host and port for a service such as instant messaging.
- Text Record (TXT Record): These records are plain text entries that you may use for notes. They are important for holding domain owners accountable for how they use domains. It is also one way to protect your domain from being used to send spam.
- Start of Authority (SOA Record): Your SOA record has a serial number that the system updates each time a change happens anywhere on your DNS entry. Knowing a change has been made can help you prevent a possible attack. This record appears at the beginning of a DNS zone file, and indicates the Authoritative Name Server for the current DNS zone, contact details for the domain administrator, domain serial number, and information on how frequently DNS information for this zone should be refreshed.
To keep an eye on your DNS consider monitoring some of them like IP address(es), SOA Record, MX record and SRV record, NS record and root servers.
What does DNS response probe do:
A particular host or domain is resolved as expected without any delay. It queries your Domain Name Server (DNS) and monitors the response time from the server.
Supported Target Version
Supported Target Versions |
---|
No Specific version |
Integration Version History
Application Version | Bug fixes / Enhancements |
---|---|
2.0.2 | Enhancements related to Latest snapshot, Activity Log, Debug Handler. |
2.0.1 | The DNS Response application were experiencing issues with empty record responses impacting metric resolution time. However, response times are displayed on the metric graph when the record has not been resolved by the DNS server. |
2.0.0 | Patch update with MS / NS / TXT / AAAA records as default metrics. |
1.0.1 | Initial resource discovery and monitoring implementations. |
- See, Working with DNS Response Probe for more information on how to configure DNS Response Probe.
- See Supported Metrics and Default Monitoring Configuration for more information about Supported Metrics and Default Monitoring Configuration of DNS Response Probe.
- See Supported Alert and Resource Filter Input keys for more information about Supported Alert and Resource Filter Input keys of DNS Response Probe.
- See Risk, Limitations and Assumptions for more information about the Risk, Limitations and Assumptions of DNS Response Probe.