U.S. patent 7814180: Domain name service server. Granted to Pulleyn et. al. (2 total) on 2010-10-12 (filed 2004-03-12) and assigned to Infoblox, Inc.. Currently involved in at least 1 patent litigation: Infoblox Inc v. Bluecat Networks USA Inc et. al. (California). See http://news.priorsmart.com for more info.
U.S. patent 7814180: Domain name service server. Granted to Pulleyn et. al. (2 total) on 2010-10-12 (filed 2004-03-12) and assigned to Infoblox, Inc.. Currently involved in at least 1 patent litigation: Infoblox Inc v. Bluecat Networks USA Inc et. al. (California). See http://news.priorsmart.com for more info.
U.S. patent 7814180: Domain name service server. Granted to Pulleyn et. al. (2 total) on 2010-10-12 (filed 2004-03-12) and assigned to Infoblox, Inc.. Currently involved in at least 1 patent litigation: Infoblox Inc v. Bluecat Networks USA Inc et. al. (California). See http://news.priorsmart.com for more info.
2) United States Patent
Pulleyn et al,
(54) DOMAIN NAME SERVICE SERVER,
(73) Inventors: Ivan W. Palleyn, Chicago, IL (US):
Stuart M. Balle Evanston, IL (US)
(13) Assignee: Infobox, Ine. Santa Cara, CA (US)
(*) Notice: Subject any disclaimer, the term ofthis,
pateat is extended or adjusted under 35
US. 154(b) by O days
(21) Appl.Nos 107799,083
(22) Filed: Mar. 12,2008
6) Prior Publication Data
[US 2004/0210672A1 Oct. 21, 2004
Related US. Application Data
(63) Continuation of application No, 0961:
Jul 13, 2000, now abandoned
(1) mec
GUOE 15/177 (2006.01)
(2) US.c. To9/220; 7091221; 709/222;
09/245
(58) Field of Clasiication Search 7091208,
08/219, 249, 226,227, 220, 221, 222, 285;
T1W201; TOTO, TOWES
‘See application ile for complete seach history
656) References Cited
USS. PATENT DOCUMENTS,
Us007814180B2
(10) Patent No.:
(45) Date of Patent:
US 7,814,180 B2
Oct. 12, 2010
6566216 B2* $2003 Waters 0110
6718385 BI* 412004 Baker etal 109728
6801952 B2* 102004 Betale 7928
6832120 BI* 122004 Franketal 70068,
68321322 BI* 122004 Boden eal 15201
‘7047301 B2* $2006 Skene a. 709.226
TATA BI* 102006 Wilson SOTO R
20020004796 AL* 12002 Vange et 70710
FOREIGN PATENT DOCUMENTS
Wo wos2T680¢
ao * 6999
OTHER PUBLICATIONS
‘Stephen Shankland, Fims flock to rowing server appliance markt
(Oct 27, 1999, hip /newscnet com news 0-1003-200-1420358,
hum
Gail R. James and Paul Anderson, The mame game, Mar
15,1999.up: tion comarhie 19 S040 OFS
1999 hm
* cited by examiner
Primary Esaminer—Kenay S Lin
(74) torn: Agent, or Firm—Van Pelt, Yi & James LLP
on ABSTRACT
A DNS server system provides IP addresses fora host aa
‘computer network. Upon receiving a request romaclient for
an IP adress associated with domain name, the requested
IP address is revieved from an object orients database and
‘ransmited t the client, The DNS server system provides
‘configuration access from a client in ® computer network
‘Communicative coupling is established between a cient web
‘rowserandaDNS serversysiem web server. Auser interface
adapted to provide configuration access to a DNS server
system is requested. The use interface is downloaded from
—
Cone
ree
a 2 GD
aerogptitione .
‘sales
2)
=
res eee eat] eee ml
| [ee | [In
‘ww support infoblox.com |
wrens =e
ro
i. ae
ame
= 4
Newer 192.000US 7,814,180 B2
Sheet 1 of 8
Oct. 12, 2010
US. Patent
bold
aouelddy Jeniag SNG XoIgoyu
maa
OL
oy
ve
Lolo gor zel
Zweig ico xo|qoyuroddns ew
\E U/
BL
oz. =s|
>HOMIEN
sayndwo9
82
LUA! OOLOL'891'z6L ~
a woo xojqojur Woddns: aww <7
a [|
—
oe)US 7,814,180 B2
Sheet 2 of 8
Oct. 12, 2010
US. Patent
oc”
fiddng somo
6e
¥sI0
BE
WVY
9
Add
[ve
ze
Wd Pur Ndd UM pseoqisyjoyy
Soeparu|
rues
SoepeiuT
>HOMJONUS. Patent Oct. 12, 2010 Sheet 3 of 8 US 7,814,180 B2
54
[ 48 46
DNS Config. Web ee
Server Server Server
44
Object
56] Oriented i 58
Database
Operating System
perating Sy! ine
FIG. 3US 7,814,180 B2
Sheet 4 of 8
Oct. 12, 2010
US. Patent
vols
woo'xo|qojul-Hoddns senses
Oo woo'xo|qojuloddns ‘lew
Woo xoiqoyur'sajes' eu
wooxojqojul oddns' www
g9-~ wloo“xoqoyur'sajes
woo-xo)qoyuroddns
eal wooooyeh
|
|
]
wioo'xo|qojul
yo” tw
| |
npe woo
09%US 7,814,180 B2
Sheet 5 of 8
Oct. 12, 2010
US. Patent
$ ‘Old
og.
ZOLOL 891 Z6L
¥SOH
LOL OL'891'z6L
ySOH
00101 eo 'z6L
3S0H
000°82'891'Z6L
HOMJaN-GNS
000'02'891 Z6L
OMION-ANS Igy
000°01'891'26L
SJOMIEN-ANS
000'00'sz1'z61
UOMJON-GNS
000°00'891'z6L
92-7] HOMIEN-GNS
000°00'000'Sz1
HOMJEN-ANS bl
000°00'000'261
SHOMJEN-GNS,US 7,814,180 B2
Sheet 6 of 8
Oct. 12, 2010
US. Patent
"Old
O'O'0'ZEL OMEN
re
96 “1261 0'0'891 'z6L
DUOMSN
O'OL'g91'z6L
(aN eo 291 DMOMION
oz or ‘O01
zop 7“ — = OOLOL'e91-Z6L
woo'xo|qojurpoddns- man
oa "SOW
se 1s zoL ooL
qew Janes MMM
vOl
26 yoddns
woo'xo|qojur Woddns :auozUS 7,814,180 B2
Sheet 7 of 8
Oct. 12, 2010
US. Patent
z-old >UOMON 0'02°89}'Z6} O43 0} SISOH MULION
o'0-0'z61 suomen UoKelado aAOW WONIEN a5eqeIeEdOO XoIgo}U
zl o-0'891'z61
SHOMION
000'02"891'26 1 eer S oanoniae
‘90b
Yo
Lo 00L0z'e91'z61
EW I woo xo|qojur odds: awa
. "}SOH,
001
mann
Zbb OLL- 80L
woo'xo\qqjurHoddns :auoz
woo'xojqoju! :2u0Z
wos SuoZUS 7,814,180 B2
Sheet 8 of 8
Oct. 12, 2010
US. Patent
Ob
ss—7
002.
8°Sld
WO AUEM WO Usseeeee
Ie]
sg 0001 WOH gISOY =
20001 ysoH JIsoy =
90001 ysoH gysoy =
SO00L ySoH pisoy = _
£0001 ysoH elsoy = u 5
ZOO = OH BOW =|) wooroidehurZ &
FOO 0L ysoH jjsoy = CaS
~ s$auoz =
BAOUOY—seeavew wesane WON PPY UOT PPy wrewevee
2 oY ip & FF &
oo
cle
oz
802
902
v0Z
z0z
1-vLzUS 7,814,
1
DOMAIN NAME SERVICE SERVER
FIELD OF THE INVENTION
‘The present invention relates generally to server applies
ances, and more particulary to domain mime service server
‘appliances.
BACKGROUND OF THE INVENTION
vo
‘A domain name service (DNS) is generally directory
service for translating user friendly alphanumeric names for
specific computes or hosts within a computer network ato
‘computer recognizable mimerical addresses, While DNS was
originally developed to facilitate communications between
computers via the Intemet, the use of DNS is becoming
increasingly common in intranet environments, especially
those which employ Intent Protocol (IP to send data from
‘one compute o another withia a network.
Intranet and Intemet-connected computers wtlize a
‘numeri akressing system to locate and route communica
tions to other computers within a network. The mumeric
addressing system requires that each computer connected to
the Intemet have its own unique numeric IP addres. IP
addesses are typically 32 bit addresses that are represented >
by a string of numbers separated by periods, such a for
example, "192.168.10.100° Since numeric adresses ae dif
ficult to remember, DNS was create to enable the pairing of
domain namesto specific numeri IP addesses. For example,
‘when an Intemet user types in the domain name “www.sup-
portinfoblox.com.” DNS is the intermediary system that
‘ranslates the domain name to the corresponding numeric IP
addess,“192.168.10.100."
“There are generally two different entities which interact,
With the DNS server clients and administrators. Clients are
‘zeneally other computers which request IP addresses as
ciated with specifi domain names from the DNS server
Adminstators are the individual responsible for managing
the DNS data store in the DNS server
‘Many large organizations, such as for example corporate
intranets, commercial Intemet Service Providers (ISPs),
Intemet content providers and educational and government
‘stitutions maintain IP based computer networks, Such ona
izations typically develop andanaiatsin their wn DNS sev
cr for Interet and intanet applications. For prior art sys
‘emsestablshing a DNS server usualy requires the expertise
ofan information technology (IT specialist and iavolves the
soletion and integration of mule hardware and software
ccomponeats
‘The software components in a prior at system typically
‘include an operating system and a DNS server software pack
age. The DNS server hardware generally consists of typical
‘computer hardware including a processor, harddrive, and
‘netory. The DNS server sofivate typically includes a DNS,
server engine, a database forstring DNS data anda graphical
user interface (GUL) which permits the administrator to
access database. The DNS server engine responds to clint
requests for DNS data by retrieving the requested data from,
the DNS database and forwarding the retieved data to the
client @
“TheDNS server software can be selected from a numberof
prior art DNS server software packages available for pure
chase ora DNS software package, Berkeley Intemet Domain
‘Name (BIND), can be downloaded fee of charge from the
Intemet Software Consortium, Since the DNS server hare
‘ware andthe operating system are acquired separately from
the DNS server sofiware, DNS server software developers
180 B2
2
‘may beunableto create sftwareto optimize the pecformance
ofthe DNS server for particular harvare and software sys-
teas. The specifications ofthe DNS server hardware, suchas
tho specific har drive model, the processor speed, the
memory size and hardware component redundancies aswel
as operating system porate such 9 Transmission Con-
tro ProoeoV internet Proogol (TCP/IP) stack parameters and
em! memory allocation sizas are peerally unknowa tothe
NS server software developers at the time they are devel-
oping such software
Sletng appropiate hadvare and an appropriate operat
ing system forthe DNS server requires researe ino the
‘minimum operating system requirements and the minimum
Inrvare requirements necessary to suppor te DNS server
soltwaze In addition, standard operating systems typieally
include « multitude of drivers that ae Unnecessary foe the
operation ofa DNS server, suchas for example drivers for
sound cards, vdeo cards and all avaiable disk dives. The
presence of ena drivers within the operating system eretes
a peta for colts with ther DNS server softwarecom
ponents theehy increasing he iktibood of ero ormalfne-
tions. The larger kernel size of an operating system with
unecessary drivers often results in deceased DNS server
perfomance, such 2s reed inpuouput throughput othe
computer network aha dive
Following the selection of the appropriate DNS sone
hardware, the DNS server software requesting 1 the
selected ardvare to opinize the perormance ofthe DNS
server. For example, kemelbuler sizes have tobe st 10
‘match the specific inpuvouput hardware including disk
contol and network adapters
Priorart DNS server software packages typically inludea
relational database fr storing DNS data, DNS data generally
consis of numerous data items with often complex intereon-
nections between thse items. Relational databases do not
easily sopporteamplex mapping between data ites and a
resll mule complex relation qories in a relational
query language, suchas Stuctured Query Language (SQL),
‘ay be reguted to perfom simple modifications to data
relationships within the database.
Prior ar DNS. server software packages also inclades
arapical user interfaces (GUIS) which permit the adainis-
fetor to acces the relational database. GUIs are typically
insallod ona single computer and accessible ony on tht
computer by the administrator. Typically, DNS server sft
‘war does ot permit accesso the GUIs rom any networked
computer within computer network. The section andi
gation of network saitare, sch as PC Anywhere withthe
DNS serversystem may be usedo peemitthe administrtorto
access the GUI over a computer network. However, such
Soitware does not work with Wold Wide Web (WWW) peo-
tocols and requires special iastallaton oa every computer
sed to aces the DNS server compute. Aso prior art DNS
servers typically do not include «web bse interice to
access GUh.
Prior at DNS servers may also have mutile unnecessary
arare and software acess pints, For example the DNS
server hardware can be acess via a monitor keyboard, a
‘mouse «parallel pr, serial ports, a network interface anda
‘mies Seria bus (USB) interface. The availability of ml
tiple access pons render the DNS server susceptible 10
accesshy unauthorized personne. nad, standard oper-
ating systems also inclnde mule acess pons, such ssa
console eminal and numerous network ports. The avilable
ity f sch unnecessary access pot rene the DNS server
vulnerable to potential tacks from computer hackers and
‘nay also case the DNS server to un ineliientyUS 7,814,
3
SUMMARY OF THE INVENTION
A method of providing configuration aooess to a DNS.
serve system from a client in a eompoter network includes
«stblishing communicative coupling between a client web
‘browserand aDNS serversystem web server.A serinteface
‘adapled to provide configuration aecess to a DNS server
system is requested, The user interface is downloaded from
the DNS server system over the computer network,
‘The user interface may comprise a GUL.
‘The user interface may comprise a JGUIL.
Te user interface may beadapledto provide configuration
access to a DNS database.
‘Theuserinterface may beadaptedio provide configuration
‘acess to a DNS object orieated database
“The user interface may be adaped to provide accesso an
object oriented database.
‘Communicative coupling may be established between the
client web browser and « DNS configuration serve.
‘The computer network may comprise the Interet,
‘The computer network may comprise an IP based com:
puter network
‘The computer network may comprise an intranet,
‘Communicative coupling may be established between the
ser interface and a configuration sever.
‘The DNS server system may comprise a DNS server ppl
Tn accordance with another aspect ofthe preset invention,
a method of providing an IP adklress fora hos in computer
‘network includes receiving a request for an IP address ass0-
ciated with a domain same from a cient in a computer net-
‘work, The requested IP address is retrieved from an object.
‘oriented database, The retrieved address is transmitted tothe
client
Communicative coupling may be established between a
client web browser and a DNS server,
‘The computer network may comprise the Intemet
‘The computer network may comprise an IP based com-
puter network,
“The computer network may comprise an intranet,
The DNS server system may comprise a DNS server pp
w
x“
BRIEF DESCRIPTION OF THE DRAWINGS
FIG. Lisa block diagram representation ofthe DNS server **
appliance within a computer networkin accordance with the
principles ofthe present invention.
FIG.2 isa block diagram representation of the hardware
‘components ofthe DNS server appliance of FIG. 1
IG. 3 is a block diagram representation of the sofware
ccomponeats ofthe DNS server appliance of FIG. 1.
FIG, 4 is 9 representation of hierarchical structure of
‘ones and sub-zones ia the DNS system,
FIG. $ is block diagram representation of data routes
froma client to a host via sub-networks
FIG. 6s block diagram representation of objects ty
cally stored ina DNS object oriented database
FIG. 7 isa block diagram representation illustrating the
rerouting of host objects witha the DNS object oriented
database.
FIG. Bisanexample ofa GUI foraccessng the DNSserver
appliance.
DETAILED DESCRIPTION OF THE INVENTION
s
Referring to FIG. 1, domain name service (DNS) server
appliance 10 in aoordance with a prefered embodiment of
180 B2
4
the present invention is shown in a computer network 16
‘Matched hardware and pre-installed sofiware components
are integrated int a fully functional package to facilitate the
installation and operation of the DNS server appliance 10.
“The DNS server appliance 10 includes a power button 2nd
asttus ight 14 which is tumed on when power is supplied io
the DNS server appliance 10.
‘The DNS server appliance 10s adapted foruse i Interaet
Protocol (1P) based computer networks, such a the Internet
‘and intranet applications emplaying IP to convey data fom,
‘one networked device to another networked device. The com-
puter network 16 including» pluality of hosts 18,» plurality
‘ofeliens 20 andthe DNS server appliance 10 is shown, Each
host 18s identifiable by atleast one domaia name 22 and a
‘unique IPaddeess 24 For example, the host computer 18 may
be identified by its domain name “www support iafoblox.
com 26 or by its IP address os “192.168.10.100°" 28,
‘The DNS server appliance 10s limited to enable interac
tion with clients 20 and administrators. When a client 20,
‘wishes to establish a network connection with the host com-
puter 18 for “ww support infoblox com,” 26 the elit 20,
contacts the DNS server appliance 10 and requests the IP
adress 24 associated with the domain name “wwwsuppor.
infoblox.com” 26. The DNS server appliance 10 supplivs the
client 20 with the comesponding TP address
“192.168,10.100°"28, The client 20 then uses the received IP
adress 24 send data packosto the host 18. The DNS server
appliance 10 is designed io enable the administrator io access
the DNS server appliance 10 va the computer network 16,
‘using aay client 18, This permis an administer to perform,
routine administrative functions, such as updating the IP
addres 24 fora domain name 22, via a remote networked
‘computer.
Reterrng now to FIG. 2, the DNS server appliance hard
‘ware 30, the platform for runing and storing DNS server
appliance softwar, storing DNS data and providing an inter-
face tothe computer network 16, is shown, The DNS server
‘appliance hardvare 30 generally includes a computer moth-
ctboard 32 including a central processing unit (CPU) 34
‘coupled to random access memory (RAM) 36, A disk 38,
(ea, computer readable medium), suchas for example a
:multigigabyte hard drive is uso o store DNS server appli
fnce software and DNS data and is coupled t the mother-
board 32. power supply 39 s adapted to be coupled to an
alternating curtent (AC) power source (not shown), such as
forexamplea 110Volt AC pawver source, vigapower input 41
“The power supply 39 is also coupled tothe motherboard 32,
and converts the AC power supplied by the power soure into
direct curent (DC) voltage, such as for example #5 DC
vols, to power the motherboard 32. The power butloa 12 is
coupled tothe power supply 39 and controls the application of
power othe motherboard 32, The satu ht 14, suc as for
‘exaauple alight emitting diode (LED), is coupled tthe moth-
cerboard 32 and provides an indication of when power is
supplied othe motherboard 32 and the DNS server appliance
1Wis powered on. A neowork interface 43 tthe motherboard
32 is provided to permit a client 20 to acess the DNS server
Appliance 10 to request an IP addeess 24 fora specifi domain
‘ame 22, A serial interface 40 wo the motherboard 32 provides
‘the administrator with access tothe mothorboard 32 o assign
an IP adress 24 to the DNS server appliance 10. The DNS
server appliance 1 bardwareconiguratio limits the number
ofhaniware access ports to minimize the risk unauthorized
access to the DNS server appliance software and DNS dat,
Limiting the aumber of hanlware access ports also reducesUS 7,814,180 B2
5
the numberof software drivers necessary to operate the DNS.
server appliance 10 thereby reducing inefficiencies in the
system,
In an altemative embodiment, multiple disks may be used
to provide redundancy and increase system relicblity. In
another embodiment, a wireless acces pot, such a an inka
report, may beaddeto the system or may be substituted for
the serial interfice 40. Such a port would enable an admin
‘ratortossignan IP address 24 tothe DNSserverwiththeuse
‘of apersonal assistant device, suc ava Palm Pilot, While the
prefered embodiment of the DNS server appliance 10
Jncludes the disclosed hardware configuration, altenatve
configurations of hardware adapted to optimize DNS server
appliance performance and provide limited access to DNS.
server appliance software are considered to be within the
scope ofthe invention
“Turning now to FIG. 3, the DNS server appliance software
‘components 42 including DNS server 44,4 Web server 46nd
‘configuration server 48 all rn onan operating system 52.
"Network ports 4 provide communication finksbeween each
server and the computer network 16, An object oriented data-
base $6 is wenerally used to sore domain name data and IP
des data. graphical user interface (GUD 88s provided
tw enable the administrator to access the object oriented data
‘base 56 to perform configuration changes, suchas modifica 2
‘ions and updates. In an alternative embodiment, a dynamic
host configuration protocol (DHCP) server may also be
‘cludes as a component of the DNS server appliance 10,
‘The DNS server 42 is coupled tothe computer network 16
via a network por $4 and tothe objet oriented database 56
‘When a cient 20 sues a request for an IP address 24 asso
ciated with a specific domain name 22, the DNS server
responds othe request hy accessing the object oriented data
‘ase $610 retrieve the requested IP address 24 and conveying
the retrieved IP address 24 tothe client 20 via the network pot
54,
“The web server 46isadaptedo perform the single function
‘of responding to request from the administrator to retrieve
‘and deliver the GUI SB othe administrator. Te adinistator
uses a networked client 20, o convey a request tthe web
server 46 to download the GUL $8, The web server 46
responds tothe request by retrieving the GULS8 fom the disk
‘and conveying it via the computer network 16 to the adn
{stratr's networkod client 20, The downloaded GUI $8 runs
fn a standard web browser, such as Netscape oF Internet
Explorer and establishes an interface between the cient 20,
being used by the administrator, and the configuration server
448, The configuration server 48respondsto commands ised
by the administrator vie the GULS8 o peeform configuration
changes tothe object oriented database $6,
The DNS seeverappliancesofware components and the
‘operating system 52 are specifically matched and tuned to
accommodate the specifications ofthe DNS server appliance
‘hardware components 300 optimize the overall performance
ofthe DNS server appliace 10,
In the prefered embodiment, the operating system $2 is
erived from an operating system kernel, as is included in a
standard Linux distribution. The necessary device drivers are
aed to the operating system kernel. The deviee drivers used
are specially matched tothe DNS serve appliance hard
‘ware 30 and updated withthe most recat patches to achieve
the higher levels of system stability and performance. For
example, unnecessary drivers or othe utilities are present in
the kemel operating systemare removed or disabled. The lack
of extra drivers reduces the possiblity of conflicts occurring
between the operating system software and other DNS server
‘appliance software compoaens. The reduced kerael size of
s
6
the operating system $2 increases DNS server appliance per-
formance, For example, inpuvoutput throughput tothe com
puter neovork 16 and hard deve is increased, The operating
system 52 is also stramfined to eliminate unnecessary soft-
ware access points, such a unnecessary network ports §4,
“This races the vulnerability ofthe DNS server appliance 10
to potential attacks by hackers. In addition, the DNS server
software components 42 are pre-installed and pre-configured
for operations as to reduce the time and expertise necessary
‘o install and operate the DNS server appliance 10,
An alternative embodiment of the DNS server appliance
includes a microkemal operating system which may be
embedded in a read only memory (ROM) boot image. In
another embodiment, a solid state storage device is used to
sre the objet oriented database. The use of a microkeral
‘operating system, ROM boot image, and solid state storage