DNS Proxy (Windows Embedded CE 6.0)
1/6/2010
Name resolution is automated in Windows Embedded CE by having the DHCP server supply the addresses of DNS servers to DHCP clients during address assignment. This scheme fails for the network, because the DNS server resides either with an ISP or on a corporate network, and the correct DNS server address does not become known until a connection is established. Moreover, a typical network does not have a DNS server configured.
To deal with these characteristics of the network, the DHCP allocator on the gateway device can give the local-area address of the gateway as the DNS server address to DHCP clients. Once the Internet connection is established, the gateway device can forward name-resolution requests to the address of the Internet DNS server obtained for the connection. This DNS proxy makes name resolution transparent from the point of view of devices on the network.
The DNS proxy relays DNS requests to the current public network DNS server for the proxy, and replies as a DNS resolver to the client device on the network. The DNS proxy must also keep track of the state of the public DNS requests and try the next DNS server in the configuration if the previous DNS resolution fails.
The DNS proxy enables clients to send DNS queries over IPv6. The proxy listens for DNS queries on the well-known, site-local address FEC0:0:0:FFFF::1, and then relays those queries to the current public network IPv4 DNS server. This functionality allows IPv6 clients to perform DNS name resolution.
The DNS proxy performs the following functions:
- Receives DNS inquiries and forwards them to external DNS address on the Internet.
- May initiate demand-dial when it receives DNS inquiry but has no Internet connection.
The DNS proxy does not require any specific protocol actions. The following list shows the actions the proxy takes when the DNS proxy receives a DNS question message:
- It selects a unique new identifier.
- It records a tuple that contains the original 16-bit identifier of the message, the newly selected identifier, and the endpoint from which the message originated.
- It writes the new identifier in the request.
- It transmits the question to the configured DNS server for the proxy.
The following list shows the actions the proxy takes when the DNS proxy receives a DNS response message:
- It searches for a tuple associated with the identifier in the response message.
- It writes the original identifier in the response message.
- It transmits the response to the endpoint from which the question originated.
DNS proxy can handle multiple DNS servers that resolve addresses on multiple public interfaces. For more information, see Multiple Public Interface Support.