Answered: How to use Wireshark to caputre a DNS…

Database System Concepts

7th Edition

ISBN:9780078022159

Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Chapter1: Introduction

Section: Chapter Questions

Problem 1PE

See similar textbooks

Related questions

Concept explainers

Question

How to use Wireshark to caputre a DNS request-response exxhange? Make sure to involve screenshots for each step.

Expert Solution

Step 1: Basics of question

DNS - DNS stands for Domain Name System, and it is a fundamental technology used on the internet to translate human-friendly domain names into IP addresses, which computers and network devices use to identify each other on the internet.

DNS working -

Domain Names: When you browse the internet, you typically use domain names like "www.example.com" to access websites and services. These domain names are easy for humans to remember and use.
IP Addresses: Computers and servers on the internet, on the other hand, are identified by numeric IP addresses, such as "192.168.0.1" or "2001:0db8:85a3:0000:0000:8a2e:0370:7334" (IPv6). These IP addresses are not user friendly.
DNS Resolution: When you enter a domain name in your web browser, your computer needs to know the corresponding IP address to establish a connection. It does this by performing a DNS resolution process:
- Your computer first checks its local DNS cache to see if it already knows the IP address for the domain. If it does, it can use it immediately.
- If the IP address is not in the local cache, your computer sends a DNS query to a DNS resolver, which is often provided by your internet service provider (ISP).
- The DNS resolver then queries the DNS hierarchy to find the authoritative DNS server responsible for the domain (starting with the root DNS servers, then the top-level domain servers, and finally the authoritative server for the specific domain).
- The authoritative DNS server for the domain provides the IP address back to the resolver, which, in turn, provides it to your computer.
- Your computer stores this IP address in its local cache for future use.
Establishing Connections: With the resolved IP address, your computer can establish a connection to the web server hosting the website or service you want to access.

Wireshark - Wireshark is a popular and widely used open-source network protocol analyzer. It is a powerful tool for capturing, inspecting, and analyzing network traffic in real-time. Wireshark is available for various operating systems, including Windows, macOS, and Linux.

Trending now

This is a popular solution!

Step by step

Solved in 4 steps with 4 images

SEE SOLUTION Check out a sample Q&A here

Knowledge Booster

Learn more about

Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.

Similar questions