DNS
DNS Client Cache
(DNS Resolver Cache) A temporary database maintained by the DNS client that contains previously resolved FQDNs and their matching IP addresses.
Domain Name System(DNS)
A service that resolves fully qualified domain names (FQDNs) to IP addresses and IP addresses to FQDNs.
Secondary (Slave) Zone
A standard read-only zone that contains a copy of the records contained in a primary zone and used for fault tolerance and load balancing.
Primary (Master) Zone
A standard read-write zone that contains original, authoritative DNS records.
(DNSSEC)
A technology used to secure the Domain Name System (DNS) process. DNSSEC is used to verify whether a response was actually what was sent out by the replying server and whether the server sending it is really who they claim to be.
DNS Server Cache
A temporary database maintained by the DNS server that contains previously resolved FQDNs and their matching IP addresses.
DNS Server
A type of name server that responds to DNS queries using a database of hostnames and their associated records.
Host File
A plain text file that maps FQDNs to IP addresses.
DNS Recursion Policy
A policy that controls how the DNS server performs recursion for a query.
DNS Transfer Policy
A policy that controls whether a zone transfer is allowed.
DNS Query Resolution Policy
A policy that specifies how incoming resolution queries are handled by a DNS server.
GlobalNames Zone
A zone containing a the static list of global records with single-label names mapped to IP addresses.
DANE
A protocol that allows X.509 certificates (commonly used for Transport Layer Security), to be bound to DNS names to help prevent man-in-the-middle attacks.
A (Host Address)
A records map DNS host names to IPv4 (32-bit) addresses. This is the most common resource record type.
Create a virtual disk using the New-NanoServerImage command and the following options:
-Edition Standard-DeploymentType Guest-mediaPath <path to Windows Server 2016 installation disk>-BasePath <working folder>-TargetPath <file name that will be the virtual disk, either vhd or vhdx>-ComputerName <computer name>-DomainName <domain name>-Package Microsoft-NanoServer-DNS-Package
Import the Nano image creation modules and functions using the Import-Module
.\NanoServerImageGeneration -Verbose command.
NS Record
A DNS resource record that identifies a DNS server for a DNS domain.
MX Record
A DNS resource record that identifies a mail server for a DNS domain.
SOA Record
A DNS resource record that is integrated into the zone properties dialog box that contains the name of the DNS server, the zone administrator, and other key settings.
SRV Record
A DNS resource record that resolves a domain service to an IP address.
Host Record
A DNS resource record that resolves an FQDN to an IP address.
PTR Record
A DNS resource record that resolves an IP address to an FQDN.
CNAME (Alias) Record
A DNS resource record that specifies that one FQDN name is an alias for another FQDN.
DNS Cache Locking
A DNS security feature that controls how long before a cached entry can be overwritten. This helps prevent attacks that attempt to pollute information in the cache to direct traffic to a malicious site.
Response Rate Limiting
A DNS security feature that helps protect a DNS server from denial of service attacks by limiting the frequency and size of the response to a query.
DNS Socket Pooling
A DNS security feature where multiple TCP ports are used when performing queries.
Authoritative DNS
A DNS server that holds original and definitive DNS records for the domains it is responsible for.
DNS Suffix Search List
A DNS suffix search list is a list of DNS domains.
Stub Zone
A DNS zone containing a list of authoritative DNS servers for a specific DNS domain.
Forward Lookup Zone
A DNS zone containing records used to resolve FQDNs to IP addresses.
Reverse Lookup Zone
A DNS zone containing records used to resolve IP addresses to FQDNs.
Active Directory Integrated Zone
A DNS zone where DNS records are stored in Active Directory data structures.
Standard Zone
A DNS zone where DNS records are stored in text files.
DNS Client
A client computer that is configured to send name resolution queries to a DNS server.
Dnscmd
A command line utility used for routine DNS setup, configuration, and management.
dnscmd
A command line utility used for routine DNS setup, configuration, and management.
DNS Performance Alert
A feature added to Server Manager when the DNS role is added to send alerts when CPU usage and available memory cross a configurable threshold.
DNS Performance Alerts
A feature added to Server Manager when the DNS role is added to send alerts when CPU usage and available memory cross a configurable threshold.
DNS Suffix Search List
A list of DNS domains appended by the DNS client to single-label names when sending queries to a DNS server.
DNS Policy
A new feature in Windows Server 2016 that gives the DNS server flexibility when responding to queries.
AAAA (Quad-A)
AAAA records map DNS host names to IPv6 (128-bit) addresses.
Second-Level Domain
Additional domains, or second-level domains, are registered to an individual or organization for use on the internet.
Replication Scope
An Active Directory-integrated zone option that controls how records are replicated between domain controllers.
PowerShell
An automated task framework provided by Microsoft with a command line shell and scripting language. There are several DNS cmdlets that can be uses to set up, configure, and manage a DNS server.
DNS Zone
Any distinct, contiguous portion of the domain name space in the Domain Name System.
Sub-Domain
In an FQDN, any domain between the hostname and the second-level domain is a sub-domain. Sub-domains are not registered. Responsibility for sub-domains lies with the individual or organization that registered the second-level domain. Docs.microsoft.com and news.google.com are examples of sub-domains in the DNS domain tree.
Nano Server:
Is similar to Server Core mode, Has a significantly smaller footprint, Uses less disk space,Installs quickly,Has fewer patches and reboots than the fully featured Windows Server,These feature make Nano Server and ideal platform for a DNS server.
Conditional Forwarding
Occurs when a DNS server forwards queries for certain DNS domains to certain DNS servers.
DNS Forwarding
Occurs when one DNS server queries another DNS server when it can't resolve a FQDN.
DNS Devolution
Part of the single-label name resolution process where the DNS client will automatically append portions of primary DNS suffix when sending queries to a DNS server.
Top-Level Domain(TDL)
Sometimes known as a first-level domain, a TDL is the last part of a domain name (.com, .edu, .gov). TDLs are managed by the Internet Corporation of Assigned Names and Numbers (ICANN).
Netmask Ordering
The DNS process of responding to client queries for an FQDN that has multiple IP addresses. The IP address are ordered by IP address proximity.
Round Robin
The DNS process of responding to client queries for an FQDN that has multiple IP addresses. The IP addresses are reordered in a round robin fashion by the DNS server.
Fully Qualified Domain Names(FQDN)
The FQDN includes the host name and all domain names separated by periods. The final period, which is for the root domain, is normally omitted and only implied.
NS (Name Server)
The NS resource record identifies all DNS servers that can perform name resolution for the zone. Typically, there is an entry for the primary server and all secondary servers for the zone (all authoritative DNS servers).
DNS Logging
The ability to configure the type of events to include in the DNS log
SOA (Start of Authority)
The first record in any DNS database file is the SOA. The SOA record:Defines the general parameters for the DNS zone.Is assigned to the DNS server hosting the primary copy of a zone.Is the first record in the zone database file. There is only one SOA record in each database.Includes parameters such as the authoritative server and the zone file serial number.Includes an email address for the administrator responsible for the DNS domain.
Hostname
The hostname is the part of a FQDN that represents a specific host. It is the left-most name in an FQDN. For example, "www" is the hostname of www.example.com.
Primary DNS suffix
The name of the DNS domain to which a client belongs.
Zone Scavenging
The process of eliminating obsolete DNS records
Secure Dynamic Updates
The process of integrating DNS with Active Directory so that DNS host and pointer records can only be updated by authenticated computers that are members of the Active Directory domain.
DNS Performance Tuning
The process of monitoring and configuring the DNS server's critical resources to optimize DNS performance.
Root Hints
The process of resolving FQDNs by first contacting root DNS servers followed by contacting delegated DNS servers.
Single-Label Name Resolution
The process of resolving a non-FQDN host name to an IP address.
Delegation
The process of responding to DNS queries by delegating to a DNS server that is lower in the DNS tree, but closer to the requested FQDN.
. (dot) Domain
The root domain, or root of the DNS domain tree, denotes a fully qualified unambiguous domain name.
Zone Transfer
The transfer of records from a primary zone to a secondary zone.
Third-Level Domain
Third-level domains are only used in the United Kingdom (UK) and are associated with the co.uk first- and second-level name domains. Third-level domains are registered to individuals or organizations for use on the internet in the same way second-level domains are registered in the rest of the world. An example of a third-level domain in the DNS domain tree is bbc.co.uk.
Standard secondary zones
are copies of primary zones and are read-only and are used for fault tolerance and load balancing.
Zone Transfers
are initiated by the secondary zone when a change is made to the primary zone or the zone is nearing the end of its refresh interval. zone transfers are sent in clear text and secured through permissions.
Active Directory-Integrated Zones
they are stored in AD; ADI zones are multi-master primary; ADI zone transfers are secured through ad Encrypted replication; ADI uses secure dynamic updates
DNS Devolution
using the primary DNS suffix, the client forms a DNS query by appending the single-label name to every DNS domain above it in the DNS tree.
GlobalNames Zone
when a single-label name query is received by a DNS server, it checks its GlobalNames zone for matching host records.To implement a GlobalNames zone: C:\>dnscmd /enableglobalnamesupport 1 and create a CNAME record for all single labeled named clients