Design And Implementation Of DNS Resolution Test System Based On Private Root Domain

Domain name system depends on the root domain name server resolution,which takes the root server as the core to carry out the centralized structure of the network topology.The root DNS is a single architecture,which has the disadvantage of single point failure.The number of existing root servers is small,owned by a small number of countries.When DNS service is denied to any country that does not have the right to control the root domain name,the country's network will be paralyzed,which is not conducive to national cyberspace security.Therefore,the study of the root domain name system is necessary.A decentralization scheme is proposed in this paper for root domain name system.The theory of domain name system and the principle of block chain are studied to solve the centralization problem of the root DNS.In order to simulate the network environment required for the operation of the decentralized domain name system,we build the virtualized network based on the virtualization technology,provides the running environment for the private root domain name experiment system.Multiple parallel root server nodes are established to solve single point failure and the domain name sovereignty problem.In order to monitor the virtual nodes,this paper studies the virtual node cluster management technology,design the system monitoring platform to provide users with human-computer interaction interface.Firstly,a virtualized network environment is built,and virtual network nodes are managed by container technology.Virtual network partitioning is implemented by using network partitioning algorithm.By configuring firewall access rules,virtual nodes are mapped to physical nodes to complete virtual node communication.Secondly,it analyzes the structure of domain name system,the principle of parsing and the content of DNS protocol.Based on the block chaining technology,the root zone data collection strategy,root zone data management and root domain name resolution function are designed to realize the decentralization of the root domain name system.Then,the virtual cluster management functions provide for the virtual nodes.The Consul module is responsible for node registration;the management of the virtual nodes cluster is realized based on the swarm module and DNS traffic monitoring module is designed to achieve real-time monitoring of the root server DNS traffic;the system monitoring function is achieved based on Shipyard.Finally,the test of the private root domain name test system is completed to verify the feasibility of the system.To sum up,this paper completed a DNS analysis experiment based on the private root DNS.The system test shows that the private root domain name experiment system can realize the decentralization of the root domain name system,solve the problem of single point failure,provide a solution for the national domain name sovereignty problem,and the system test result conforms to the system design goal.