DNS

26K

Solutions

25K

Contributors

The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Share tech news, updates, or what's on your mind.

Sign up to Post

Andy's VMware vSphere tip#11: DNS (Domain Name System) - this has really go nothing to do with VMware vSphere BUT your VMware vSphere Infrastructure is ONLY as GOOD as your WORKING DNS (servers) for your organisation.  So please ensure you get into the habit, of understanding DNS, what it does, and ensure you have at least two working DNS servers, BEFORE you start implementing VMware vSphere. and DO NOT USE IP Addresses for ESXi servers, vCenter Servers, or any other VMware component. Use hostnames, and fully qualified domain names (FQDN) for everything in your  VMware vSphere environment, and this means pen and paper before you start implementing and writing down names of servers and IP Addresses, and then entering A Records for those in your DNS servers., and then check you can resolve those IP Addresses to hostnames, fqdn, and hostames and fqdn to IP Addresses.

Otherwise your installations WILL FAIL!

VMware vSphere is dependant on GOOD working DNS (this can be hosted on Windows, Linux, Unix)

Please see here

https://docs.vmware.com/en/VMware-vSphere/6.0/com.vmware.vsphere.upgrade.doc/GUID-1DD8E69C-4551-4C18-8698-7BFE01BEA8B7.html

If you would like to discuss this post further please post a question to the VMware Topic area.
1
Upgrade your Question Security!
LVL 12
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

CloudFlare and APNIC have launched a free DNS service @ 1.1.1.1 that claims to prevent your ISP from selling your data:
https://blog.cloudflare.com/dns-resolver-1-1-1-1/

The claim to be the "fastest" comes with the caveat of "privacy-first" -- I wonder how it stacks up against DNS services that don't provide any inherent perceived privacy?

On a related note, the service is being hammered by multiple gbps of trash data:
https://www.zdnet.com/article/1-1-1-1-cloudflares-new-dns-attracting-gigabits-per-second-of-rubbish/

Personally, I've used Google's public DNS for years now, since it's always seemed to be more stable than my ISPs, but this CloudFlare option is really tempting. Handing over literally all of my browsing data to Google is probably not the best idea.
1
LVL 44

Expert Comment

by:noci
IPv6 patterns:
Google:
google-public-dns-a.google.com. 21599 IN AAAA   2001:4860:4860::8888

Cloudflare:
1dot1dot1dot1.cloudflare-dns.com. 299 IN AAAA   2606:4700:4700::1001
1dot1dot1dot1.cloudflare-dns.com. 299 IN AAAA   2606:4700:4700::1111

Quad9:
dns.quad9.net.          119     IN      AAAA    2620:fe::fe

level3 has no  ipv6...???
0
LVL 19

Expert Comment

by:Kyle Santos
I need an ELI5 version of what this does.  What am I doing by doing what they said here?
See https://1.1.1.1/ because it's that simple!
0
3
hi
 it could impossible to work in our environment if we develop app.
Our new plateform need to be in Linux Debiian,


And to do it, we do a Worktation Linux environment with vmware;

And idea is to make a VM by service.
Example : 1 vm for LDAP, 1 vm for NFS, 1 vm for DNS, 1 vm for DHCP, 1 vm for Shared files, 1 vm for Samba...

And at the end, it ll push by Ansible. We'll make this with that if it's not possible to do it normaly,

so i work with Workstation with Linux Debian
0
5
LVL 19

Expert Comment

by:Kyle Santos
A Bug Has No Name
+1 for the Game of Thrones reference.
2
I absolutely despise dealing with 1&1 Internet.  I've been trying to do a Domain Transfer from one 1&1 Account to another 1&1 Account for over two weeks and it's still in the 'Transferring' process. 1&1 tech support are utterly useless with no control over the actual transfer.  Does anyone else have problems with them?
0
Tech Bomb - Currently GoDaddy DNS shows signs of lunacy. Problem appears to be in their communication of NS records to global DNS root servers. Via - dig $site ns - this shows up as a different list of NS records each time dig is issued, which leads to...

Symptom - site IP (DNS A records) are randomized. Sometimes correct. Sometimes random.

Effect - Ad Networks suspend your accounts. SEO plummets, as GoDaddy flags your site as serving Malware.

It’s unclear whether this is a GoDaddy technical issue or GoDaddy is being hacked somewhere deep in their systems.

*Fix* - Move all your DNS records out of GoDaddy + set your site’s DNS records to point to the outside DNS service.

This has come to light over the past few days when several of my clients have had their Ad Network accounts suspended + or sites flagged in Google Search Console as serving Malware, when sites are clean.

Just another day of tech randomness.
0
LVL 23

Expert Comment

by:Alan
Hi David,

Are you seeing issues only where a customer has multiple A records for a given hostname, or any issues where they have only a single IP for a given hostname?

I have not had any problems (that I know of yet!) but I don't have any with multiple IPs.

Thanks,

Alan.
0
Protect DNS: A Conversation With Dave Dufour of Webroot

DNS is one of the basic services on which the web is based and it has proven to be robust and scalable to an astounding degree. Unfortunately, it's also vulnerable to hacking and can be a serious attack vector if left unprotected. Dave Dufour, director of cybersecurity and engineering at Webroot, is an expert on DNS and its implications in network security. Security Now talked with Dufour about the issues with DNS and what organizations should be doing to protect their networks, employees and customers from DNS-based threats.

Read more of the interview on Security Now.
2
A little background, I keep getting errors in google Chrome (NXDOMAIN, DNS Probe errors).  

I keep getting a 8012 Event ID error code 9005 when I flush and then register DNS on WIN 10 machines.  
I have setup a reverse DNS zone and see the PTR records for those very machines fill the list.  

Any help would be greatly appreciated!
0
LVL 26

Expert Comment

by:Brian B
You have entered this as a post. To get more Expert to respond, try asking a question instead: https://www.experts-exchange.com/askQuestion.jsp
1
LVL 19

Administrative Comment

by:Andrew Leniart
Hi Mrosale6,

What you have done is made a "Post" here.  To get expert help, you need to "Ask a Question" so that more experts are able to see that you need help. Click the Big blue button near the top of your screen.

Ask a Question

The following link also explains more about asking for help at Experts Exchange...
http://support.experts-exchange.com/customer/portal/articles/336330

Hope that's helpful.

Regards,
Andrew
EE Topic Advisor
0
In case you did not see it, below is the apology statement from Marketo regarding their outage yesterday.
Dear Marketo Customers and Partners:

Today, for a number of hours, our main web site, Marketo.com along with a small number of other Marketo domain properties were rendered inaccessible, preventing log in to our application. While the issue is now largely resolved, and I can assure you that the core Marketo application continued to operate in the background and your data was never at risk. I want to sincerely apologize to you and on behalf of the entire Marketo team as we take any disruption to your service very seriously.

I also want to be completely transparent with you on what happened and assure you that it won't happen again.

We renew thousands of domain name properties we own every year with precision, yet the auto renew process for registering our main domain, Marketo.com, failed. This catalyzed a cascading series of issues, but ultimately human and process error are to blame and again, we take full responsibility.

While our global support team in Ireland was working with our DNS registrar in the very early morning hours, members of our customer and partner community helped pinpoint specific issues that aided us significantly. While this does not absolve Marketo of responsibility for this serious situation, I would like to thank the individuals who assisted us. We greatly appreciate your support during a trying time.

For our global customers, please…
3
Cloud Class® Course: Python 3 Fundamentals
LVL 12
Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

DNS-Protection-with-ConnectWise.png
It's always exciting around here! We're thrilled to expand our partnership with ConnectWise to offer customers better protection and performance. To get insight into why this matters, we sat down with George Anderson, Webroot’s product marketing director for business solutions, and Gavin Gamber, vice president of Channel Sales and Alliances at ConnectWise.
 
What is DNS Protection? Why is it important? Why do ConnectWise partners need this?  
 
Read more here.
4
For the past few months I've been a Beta tester for a new service called DNS Spy.  It's a service that Monitors, validates and verifies your DNS configurations.  

It might be worth a look if you are looking for something that monitors your External DNS.  Link below:
https://dnsspy.io/
1
Haven't tried it out yet, but this looks cool.

Why DNSCrypt is so significant
In the same way the SSL turns HTTP web traffic into HTTPS encrypted Web traffic, DNSCrypt turns regular DNS traffic into encrypted DNS traffic that is secure from eavesdropping and man-in-the-middle attacks.  It doesn’t require any changes to domain names or how they work, it simply provides a method for securely encrypting communication between our customers and our DNS servers in our data centers.  

https://www.opendns.com/about/innovations/dnscrypt/
2

DNS

26K

Solutions

25K

Contributors

The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.