DNS wildcard beaconing
First Claim
1. A method comprising:
- receiving a network request from a resolver to resolve a hostname, the network request from the resolver comprising a network address of the resolver, the hostname comprising a unique wildcard portion that makes the hostname unresolvable by the resolver;
in response to receiving the network request from the resolver to resolve a hostname, wherein the network address from the resolver comprises the network address of the resolver, storing first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver;
receiving a network request from a client for a resource, the network request from the client for a resource comprising a network address of the client and at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver;
storing second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client;
associating the client with the resolver based on the first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver and the second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client; and
storing third information representing the association between the client and the resolver;
using the third information to route subsequent requests to resolve hostnames to resolvers; and
wherein the method is performed by one or more computing devices.
8 Assignments
0 Petitions
Accused Products
Abstract
DNS wildcard beaconing. In one embodiment, for example, a computer-implemented method comprises: receiving a network request from a resolver to resolve a hostname, the network request from the resolver comprising a network address of the resolver, the hostname comprising a unique wildcard portion; storing first data representing an association between at least the unique wildcard portion and the network address of the resolver; receiving a network request from a client for a resource, the network request from the client comprising a network address of the client and at least the unique wildcard portion; storing second data representing an association between at least the unique wildcard portion and the network address of the client; based on the first data and the second data, associating the client with the resolver; and storing third data representing the association between the client and the resolver.
61 Citations
29 Claims
-
1. A method comprising:
-
receiving a network request from a resolver to resolve a hostname, the network request from the resolver comprising a network address of the resolver, the hostname comprising a unique wildcard portion that makes the hostname unresolvable by the resolver; in response to receiving the network request from the resolver to resolve a hostname, wherein the network address from the resolver comprises the network address of the resolver, storing first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver; receiving a network request from a client for a resource, the network request from the client for a resource comprising a network address of the client and at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver; storing second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client; associating the client with the resolver based on the first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver and the second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client; and storing third information representing the association between the client and the resolver; using the third information to route subsequent requests to resolve hostnames to resolvers; and wherein the method is performed by one or more computing devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
receiving a plurality of domain name resolution requests from a plurality of resolvers, each of the domain name resolution requests comprising a network address of the resolver that sent the domain name resolution request and a hostname to resolve comprising a unique wildcard portion that makes the hostname unresolvable by the resolver; storing first information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of domain name resolution requests and the network addresses of the plurality of resolvers; receiving a plurality of resource requests from a plurality of clients, each of the resource requests comprising a network address of the client that sent the resource request and at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver received in one of the plurality of domain name resolution requests; storing second information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of resource requests and the network addresses of the plurality of clients; and associating each of the plurality of clients with one of the plurality of resolvers based on the first information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of domain name resolution requests and the network addresses of the plurality of resolvers and the second information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of resource requests and the network addresses of the plurality of clients; storing third information representing the associations between the plurality of clients and the plurality of resolvers; and using the third information to route subsequent requests to resolve hostnames to resolvers; and wherein the method is performed by one or more computing devices. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. One or more non-transitory computer-readable media storing instructions which, when executed by one or more computing devices, cause the one or more computing devices to perform a method comprising:
-
receiving a network request from a resolver to resolve a hostname, the network request from the resolver comprising a network address of the resolver, the hostname comprising a unique wildcard portion that makes the hostname unresolvable by the resolver; storing first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver; receiving a network request from a client for a resource, the network request from the client for a resource comprising a network address of the client and at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver; storing second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client; associating the client with the resolver based on the first information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the resolver and the second information representing an association between at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver and the network address of the client; storing third information representing the association between the client and the resolver; and using the third information to route subsequent requests to resolve hostnames to resolvers. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
-
23. One or more non-transitory computer-readable media storing instructions which, when executed by one or more computing devices, cause the one or more computing devices to perform a method comprising:
-
receiving a plurality of domain name resolution requests from a plurality of resolvers, each of the domain name resolution requests comprising a network address of the resolver that sent the domain name resolution request and a hostname to resolve comprising a unique wildcard portion that makes the hostname unresolvable by the resolver; storing first information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of domain name resolution requests and the network addresses of the plurality of resolvers; receiving a plurality of resource requests from a plurality of clients, each of the resource requests comprising a network address of the client that sent the resource request and at least the unique wildcard portion of the hostname that makes the hostname unresolvable by the resolver received in one of the plurality of domain name resolution requests; storing second information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of resource requests and the network addresses of the plurality of clients; and associating each of the plurality of clients with one of the plurality of resolvers based on the first information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of domain name resolution requests and the network addresses of the plurality of resolvers and the second information representing associations between at least the unique wildcard portions of the hostname that makes the hostname unresolvable by the resolver in the plurality of resource requests and the network addresses of the plurality of clients; storing third information representing the associations between the plurality of clients and the plurality of resolvers; and using the third information to route subsequent requests to resolve hostnames to resolvers. - View Dependent Claims (24, 25, 26, 27, 28)
-
-
29. A system comprising:
-
one or more processors and memory; an authoritative domain name resolver module configured to receive a network request from a resolver to resolve a hostname, the network request from the resolver comprising a network address of the resolver, the hostname comprising a unique alphanumeric sequence that makes the hostname unresolvable by the resolver; the authoritative domain name resolver module further configured to store first information representing an association between at least the unique alphanumeric sequence that makes the hostname unresolvable by the resolver and the network address of the resolver, in response to receiving the network request from the resolver; a web server module configured to serve a first resource to a client, the first resource comprising at least the unique alphanumeric sequence; the web server module further configured to receive a network request from the client for a second resource, the network request from the client comprising a network address of the client and at least the unique alphanumeric sequence that makes the hostname unresolvable by the resolver served to the client as part of the first resource; the web server module further configured to serve the second resource to the client in response to receiving the network request from the client; the web server module further configured to store second information representing an association between at least the unique alphanumeric sequence that makes the hostname unresolvable by the resolver and the network address of the client, in response to receiving the network request from the client; an aggregation server module configured to associate the client with the resolver, based on the first information representing an association between at least the unique alphanumeric sequence that makes the hostname unresolvable by the resolver and the network address of the resolver and the second information representing an association between at least the unique alphanumeric sequence that makes the hostname unresolvable by the resolver and the network address of the client; and the aggregation server module further configured to store third information representing the association between the client and the resolver; a load balancing server module further configured to select, based on the third information representing the association between the client and the resolver or information derived from the third information representing the association between the client and the resolver, network addresses to resolves hostnames to, in response to receiving requests to resolve the hostnames from the resolver.
-
Specification