Every website on the Internet has its own unique address. It’s called an IP address. But unlike the physical street address for a house or building, an IP address consists of a set of numbers strung together and separated by periods. A typical IP address in the IPv4 address space looks like: 126.96.36.199. If customers had to memorize the IP addresses of every website they visited, they wouldn’t spend much time on the Internet. Thankfully, we use URLs instead. And behind the scenes, there’s an “address book” of sorts that helps convert these user-friendly URLs and web addresses into the IP addresses that computers understand. It’s called a Domain Name System, or DNS.
In the simplest form, a DNS is a directory of domain names that align with IP addresses. They bridge the gap between computer language and human language – keeping both servers and people happy.
Okay, so a DNS is like a sophisticated address book for the Internet – but how does it work? Glad you asked.
The DNS directory isn’t located in one physical place or even one corner of the vast Internet. It’s distributed all over the world and stored on many different servers that communicate with one another to regularly provide updates, information, and redundancies.
DNS information is shared among a variety of servers, but it’s also cached locally on individual computers and devices. This prevents users’ computers from having to query the name server for commonly used IP addresses every time. The result is far greater efficiency.
In all, there are four different DNS servers involved in loading a webpage (assuming it’s not already cached on the user’s computer or device):
For the most part, DNS works flawlessly in the background. However, it’s been around for decades and hackers are continuously finding ways to compromise the underlying system (which was never developed with security in mind). Here are some common attacks we see:
Hackers today are sophisticated professionals who develop advanced, ever-changing attacks. As such, network security is more important than ever before. Whether it’s DNS attacks, or something else entirely, your business must commit to staying safe and protected around the clock.