Pro DNS and BIND

Product Description

Pro DNS and BIND guides you through the challenging array of features surrounding DNS, with a special focus on BIND, the worlds most popular DNS implementation. This book unravels the mysteries of DNS, offering insight into origins, evolution, and key concepts like domain names and zone files. This book focuses on running DNS systems based on BIND 9.3.0the first stable release that includes support for the latest DNSSEC (DNSSEC.bis) standards and a major functional upgrade from previous BIND 9 releases.

If you administer a DNS system or are thinking about running one, or if you need to upgrade to support IPv6 DNS, need to secure a DNS for zone transfer, dynamic update, or other reasons, or if you need to implement DNSSEC, or simply want to understand the DNS system, then this book provides you with a single point of reference. Pro DNS and BIND starts with simple concepts, then moves on to full security-aware DNSSEC configurations. Various features, parameters, and resource records are described and, in the majority of cases, illustrated with one or more examples.

The book contains a complete reference to zone files, Resource Records, and BINDs configuration file parameters. You can treat the book as as a simple paint-by-numbers guide to everything from a simple caching DNS, to the most complex secure DNS (DNSSEC) implementation. Background information is still included for when you need to know what to do and why you have to do it, and so that you can modify processes to meet your unique needs.


Topics Include:

Introduction to the DNS
Basic DNS types with complete configuarion examples
DNS and IPv6
Installing BIND on Linux, FreeBSD and Windows
Subdomain delegation
DNS and load balancing
Reverse map delegation
DNSSEC (DNSSEC.bis) and the DLV experimental service
Key rollover and DNSSEC maintenance
DNS tools and diagnostics

Product Details

* Amazon Sales Rank: #252585 in Books
* Published on: 2005-08-08
* Original language: English
* Number of items: 1
* Binding: Paperback
* 608 pages

Editorial Reviews

About the Author
Ronald Aitchison is the founder of Zytrax, Inc., a company that specializes in the design, development, and marketing of IP network solutions and services.
Customer Reviews

Wonderful book for both novice and expert!5
This is by far the best book available on DNS. It is very informative and yet the reading style is entertaining (not fluffy though). Overall, it is a joy to read. The author is able to communicate effectively to both the expert and the novice. Look no further than here for a great DNS reference book. Way to go Ron Aitchison!

Definitely the Best!5
Ron Aitchison's Pro DNS and BIND packs a whopping 550 pages of material which is easy to read for the novice or ongoing DNS administrator, and which is very well written (I greatly enjoyed the author's style). After a short introduction in which I learnt some interesting facts about the provisioning of the root servers, the author implements a first zone describing the necessary concepts such as resource records, queries and zone transfers very clearly, followed by the different types of DNS setups (master, slave, caching, forwarding and stealth servers); these are covered in depth in chapter 7. Chapter five covers IPv6 and its relevance to BIND. Throughout the book, references to other DNS server implementations are given, but the primary focus is of course BIND 9.3.0.

Aitchison leads the reader through detailed installation of BIND on Linux, FreeBSD and even Windows (ISC has an installer for Windows in its portfolio), after which common DNS tasks are discussed (how to delegate a subdomain, how to define SPF records, etc. read it on-line here) as well as a chapter on tools.

The third part of the book is dedicated to securing DNS configurations with topics ranging from simple administrative issues (chroot jails) through securing DNS updates and zone transfers with TSIG and DNSSEC.bis which is covered very extensively in chapter 11.

Chapters 12 and 13 provide extensive commented references on BIND configuration and Zone files. There is of course plenty of on-line reference information on these two topics (including the author's very good DNS for Rocket Scientists) but I like to have reference information on hardcopy (in the event my DNS servers fail, and I can't reach the on-line documentation :-) )

In part 5 the author shortly covers programming with the BIND API and the resolver libraries, and he follows that with an interesting chapter on DNS Messages and Records, good to have if you want to sniff your way through DNS traffic.

The publisher's web site carries a sample chapter as well as the source code to the book which is also available in TAR format on the author's web site together with complementary information and pointers to further resources.

My only complaint about this otherwise excellent book is that on two or three occasions I read a paragraph that I thought I'd just read before; some duplication must have taken place (or I was tired). For the next edition, I'd like to read a chapter on interoperability between BIND and Microsoft Windows DNS servers, specifically regarding DNSSEC.

This book is an absolute must have for anybody who needs to understand DNS in the first place (irrespective of the implementation he or she plans to use), and it is a must have for a systems administrator who is either intending to deploy or has already deployed BIND 9.3. I wish I'd read this book before the first mentioned above.

Online VS. Hardcopy version5
After reading several of the chapter sections at the authors website, I needed a bit more understanding about how to install and configure Bind 9 onto our Windows box. I wanted to use Bind on old hardware running NT4. I fired off an email to the author and got several pointers that fixed the problems I was having. I realized the pointers he had given me were all covered in his book. After purchasing the book, I not only found out lots of stuff about what all the parameters are but also discovered how to manage bind over the LAN in a secure way. This book is a must have for anyone that wants to use Bind 9 for the first time. It has helped me several times already.