METHOD, APPARATUS AND SYSTEM FOR ANTI-ATTACKING IN DOMAIN NAME SYSTEM (DNS)
First Claim
1. A domain name system (DNS) anti-attacking method, comprising:
- receiving, by a recursive server, a domain name search request message, wherein the domain name search request message contains a domain name that is un-cached in the recursive server;
determining, by the recursive server, a first authoritative domain name server according to a first name server (NS) record and an address (A) record of a first name server (NS) corresponding to the domain name and sending by the recursive server the domain name search request message to the first authoritative domain name server;
receiving, by the recursive server, the A record of the domain name, a second NS record and an A record of the second NS returned from the first authoritative domain name server, wherein the second NS record records an authoritative domain name server that is used to parse the domain name and is at a normal working status; and
substituting, by the recursive server, the first NS record with the second NS record and caching the A record of the second NS.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides a DNS anti-attacking method, including receiving a domain name search request message by a recursive server; determining a first authoritative domain name server according to the first NS record and the A record of the first NS corresponding to the domain name and sending a domain name search request message to the first authoritative domain name server by the recursive server; receiving the A record of the domain name, a second NS record and an A record of the second NS returned from the first authoritative domain name server by the recursive server, wherein the second NS record records the authoritative domain name server used to parse the domain name and working at the normal status; and substituting the first NS record with the second NS record and caching the A record of the second NS by the recursive server.
2 Citations
19 Claims
-
1. A domain name system (DNS) anti-attacking method, comprising:
-
receiving, by a recursive server, a domain name search request message, wherein the domain name search request message contains a domain name that is un-cached in the recursive server; determining, by the recursive server, a first authoritative domain name server according to a first name server (NS) record and an address (A) record of a first name server (NS) corresponding to the domain name and sending by the recursive server the domain name search request message to the first authoritative domain name server; receiving, by the recursive server, the A record of the domain name, a second NS record and an A record of the second NS returned from the first authoritative domain name server, wherein the second NS record records an authoritative domain name server that is used to parse the domain name and is at a normal working status; and substituting, by the recursive server, the first NS record with the second NS record and caching the A record of the second NS. - View Dependent Claims (2, 3, 4, 9, 13, 14)
-
-
5. A domain name system (DNS) anti-attacking method, comprising:
-
receiving, by a first authoritative domain name server, a domain name search request message sent from a recursive server, wherein the domain name search request message contains a domain name that is un-cached in the recursive server; determining, by the recursive server, a first authoritative domain name server according to a first name server (NS) record and an address (A) record of the first NS record; and sending the A record of the domain name, a second NS record and the A record of the second NS to the recursive server by the first authoritative domain name server, wherein the second NS record contains information of the authoritative domain name server that is used to parse the domain name and is at a normal working status. - View Dependent Claims (6, 7, 11)
-
-
8. A recursive sever, comprising:
-
a memory, configured to store program instructions; and a processor, configured to call the program instructions stored in the memory and execute the obtained program instructions according to a domain name system (DNS) anti-attacking method, the method including; receiving, by a recursive server, a domain name search request message, wherein the domain name search request message contains a domain name that is un-cached in the recursive server; determining, by the recursive server, a first authoritative domain name server according to a first name server (NS) record and an address (A) record of a first name server (NS) corresponding to the domain name and sending by the recursive server the domain name search request message to the first authoritative domain name server; receiving, by the recursive server, the A record of the domain name, a second NS record and an A record of the second NS returned from the first authoritative domain name server, wherein the second NS record records an authoritative domain name server that is used to parse the domain name and is at a normal working status; and substituting, by the recursive server, the first NS record with the second NS record and caching the A record of the second NS. - View Dependent Claims (12, 15, 16, 17, 18, 19)
-
-
10. (canceled)
Specification