|
|
Everything you need to know about network DNS servers[br][br][img src="/storage/emulated/0/Download/detail-of-orange-cables-in-a-server-room-130899950-57ac95663df78cf45994b514.webp"][br][br]A DNS server is a computer server that contains a database of public IP addresses and their associated hostnames, and in most cases serves to resolve, or translate, those names to IP addresses as requested. DNS servers run special software and communicate with each other using special protocols.[br][br]You may see a DNS server referred to by other names, such as a name server or nameserver, and a domain name system server.[br][br]The Purpose of DNS Servers[br]It's easier to remember a domain or hostname like lifewire.com than it is to remember the site's IP address numbers 151.101.129.121.[br][br]Screenshot showing how to access Lifewire.com from its IP address[br]Tim Fisher[br]When you want to navigate to the Lifewire website, all you have to type in is the URL https://www.lifewire.com. Conversely, computers and network devices don't work well with names when trying to locate each other on the internet. It's far more efficient and precise to use an IP address.[br][br]The DNS server sits in the space between humans and computers to help facilitate their communication.[br][br]Malware Attacks That Change DNS Server Settings[br]It's always important to be running an antivirus program. One reason is that malware can attack your computer in a way that changes the DNS server settings, which is definitely something you don't want to happen.[br][br]For example, if your computer uses Google's DNS servers (8.8.8.8 and 8.8.4.4) and you navigate to your bank's website, you naturally expect that when you enter its familiar URL, you'll be sent to the bank's website.[br][br]However, if malware changes your DNS server settings, which can happen without your knowledge after an attack on your system, your system is no longer contacting Google's DNS servers but instead a hacker's server that poses as your bank's website. This fake bank site might look exactly like the real one, but rather than logging you into your bank account, it harvests your username and password you just typed in, giving the hackers the essential information they need to get into your bank account.[br][br]Malware attacks that hijack your DNS server settings may also redirect traffic away from popular websites to ones that are full of advertisements or a fake site that is designed to scare you into believing your computer has been infected with a virus, and that you must buy their advertised software program to remove it.[br][br]Don't fall for websites that suddenly pop up with flashing warnings telling you your computer has been infected with a virus, and that you must purchase some software to get rid of it. These are deceptive and dangerous to be tricked by.[br][br]Protecting Yourself From DNS Attacks[br]There are two things you should do to avoid becoming a victim of a DNS settings attack. The first is to install antivirus software so that malicious programs are caught before they can do any damage.[br][br]The second is to pay close attention to the appearance of important websites you visit regularly. If you visit one and the site looks off in some way—maybe the images are all different or the site's colors have changed, or menus don't look right, or you find misspellings (hackers can be dreadful spellers)—or you get an "invalid certificate" message in your browser, it might be a sign that you're on a faked website.[br][br]How DNS Redirection Can Be Positively Used[br]This ability to redirect traffic can be used for positive purposes. For example, OpenDNS can redirect traffic to adult websites, gambling websites, social media websites, or other sites network administrators or organizations don't want their users visiting. Instead, they may be sent to a page with a "Blocked" message.[br][br]Primary and Secondary DNS Servers[br]In most cases, a primary and a secondary DNS server are configured on your router and/or computer when you are connected to your internet service provider (ISP). There are two DNS servers in case one of them happens to fail, in which case the second is used to resolve hostnames you enter.[br][br]Several publicly accessible DNS servers are available for you to use. If you want to change the DNS servers your network connects to, see our Free & Public DNS Servers List for an up-to-date listing, and How Do I Change DNS Servers?.[br][br]Why You Might Change Your DNS Server Settings[br]Some DNS servers can provide faster access times than others. This is often a function of how close you are to those servers. If your ISP's DNS servers are closer to you than Google's, for example, you may find domain names are resolved quicker using the default servers from your ISP than with a third-party server.[br][br]If you experience connection issues where it seems no websites will load, it's possible there's an issue with the DNS server. If the DNS server isn't able to find the correct IP address that's associated with the hostname you enter, the website can't be located and loaded.[br][br]A computer or device, including smartphones, tablets, and others, connected to your router may use a different set of DNS servers to resolve internet addresses. These will supersede those configured on your router and will be used instead.[br][br]How to Obtain Internet Server Information[br]The nslookup command is used to query your DNS server on Windows PCs.[br][br]Screenshot of the 'nslookup lifewire.com' command in the Windows 10 Command Prompt[br] 'nslookup lifewire.com' in Command Prompt.[br]Start by opening the Command Prompt tool and then typing the following:[br][br]nslookup lifewire.com[br]This should return something like this:[br][br]
[br][br]Name: lifewire.com[br]Addresses: 151.101.193.121[br] 151.101.65.121[br] 151.101.1.121[br] 151.101.129.121[br]In the example above, the nslookup command tells you the IP address, or several IP addresses in this case, that the lifewire.com address translates to.[br][br]DNS Root Servers[br]There are 13 important DNS root servers on the internet that store a complete database of domain names and their associated public IP addresses. These top-tier DNS servers are named A through M for the first 13 letters of the alphabet. Ten of these servers are in the US, one in London, one in Stockholm, and one in Japan.[br][br]The Internet Assigned Numbers Authority (IANA) keeps this list of DNS root servers if you're interested. |
|
发表于 2019-05-03 00:16:06
收藏
Like
Stick Card
Jack
