DOCSLIB.ORG

DNS/ENUM Guidelines for Service Providers & GRX/IPX

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
DNS/ENUM Guidelines for Service Providers & GRX/IPX GSM Association Non Confidential Official Document IR.67 IR.67 - DNS/ENUM Guidelines for Service Providers & GRX/IPX Providers 6.0 1 December 2011 This is a non-binding permanent reference document of the GSM Association. Security Classification – NON-CONFIDENTIAL GSMA Material Copyright Notice Copyright © 2011 GSM Association Antitrust Notice The information contain herein is in full compliance with the GSM Association’s antitrust compliance policy. V6.0 Page 1 of 78 GSM Association Non Confidential Official Document IR.67 Table of Contents IR.67 - DNS/ENUM Guidelines for Service Providers & GRX/IPX Providers .......... 1 6.0 ............................................................................................................................... 1 1 December 2011 ....................................................................................................... 1 1 Introduction ...................................................................................................... 5 1.1 Overview ..................................................................................................... 5 1.2 Scope .......................................................................................................... 5 1.3 Definition of Acronyms and Abbreviations ................................................... 5 1.4 Definition of Terms ...................................................................................... 6 1.5 Document Cross-References ...................................................................... 7 2 DNS As Used on the GRX/IPX ......................................................................... 9 2.1 Introduction.................................................................................................. 9 2.2 Architecture ................................................................................................. 9 2.3 Domains .................................................................................................... 12 2.3.1 Introduction................................................................................................ 12 2.3.2 General ..................................................................................................... 12 2.3.3 Domain names used on the GRX/IPX DNS ............................................... 13 2.3.4 Domain names used on the Internet DNS (and owned by GSMA) ............. 22 2.3.5 Domain names used on the GRX/IPX DNS for UNI ................................... 26 2.4 Non-service specific hostnames and domains ........................................... 29 3 General DNS Configuration for Service Providers ...................................... 30 3.1 Introduction................................................................................................ 30 3.2 DNS Server Hardware ............................................................................... 30 3.3 DNS Server Software ................................................................................ 30 3.4 DNS Server naming ................................................................................... 30 3.5 Domain Caching ........................................................................................ 30 3.6 Reverse Mapping ...................................................................................... 31 3.7 Use of DNS Interrogation Modes ............................................................... 31 3.8 Use of the GRX/IPX Root DNS Server ...................................................... 32 3.9 Provisioning of Service Provider's DNS servers ......................................... 32 3.10 Resource Records ..................................................................................... 32 3.11 Support for IPv4 and IPv6 .......................................................................... 32 4 DNS Aspects for Standardised Services ...................................................... 33 4.1 Introduction................................................................................................ 33 4.2 General Packet Radio Service (GPRS) ..................................................... 33 4.2.1 Introduction................................................................................................ 33 4.2.2 APN resolution in PDP Context activation ................................................. 33 4.2.3 Inter-SGSN handovers for active PDP Contexts ........................................ 35 4.3 Multi-media Messaging Service (MMS) ..................................................... 36 4.3.1 Introduction................................................................................................ 36 4.3.2 MM delivery based on MSISDN for the Direct Interconnect model ............. 37 4.3.3 MM delivery based on MSISDN for the Indirect Interconnect model .......... 38 4.3.4 MM delivery based on NAI/e-mail address................................................. 39 4.4 WLAN Inter-working .................................................................................. 39 4.4.1 Introduction................................................................................................ 39 4.5 IP Multi-media core network Sub-system (IMS) ......................................... 40 4.5.1 Introduction................................................................................................ 40 4.5.2 SIP server configuration ............................................................................ 41 4.5.3 Domain Names used ................................................................................. 43 4.6 Generic Authentication Architecture (GAA) ................................................ 43 4.6.1 Introduction................................................................................................ 43 4.7 Generic Access Network (GAN) ................................................................ 43 V6.0 Page 2 of 78 GSM Association Non Confidential Official Document IR.67 4.7.1 Introduction................................................................................................ 43 4.8 Secure User Plane Location (SUPL).......................................................... 44 4.8.1 Introduction................................................................................................ 44 4.9 Enhanced Packet Core (EPC) ................................................................... 44 4.9.1 Introduction................................................................................................ 44 4.10 IMS Centralised Services (ICS) ................................................................. 44 4.10.1 Introduction................................................................................................ 44 4.11 Access Network Discovery Support Function (ANDSF) ............................. 44 4.11.1 Introduction................................................................................................ 44 4.12 Mobile Broadcast Services (BCAST) ......................................................... 44 4.12.1 Introduction................................................................................................ 44 4.13 The XCAP Root URI on Ut Interface for MMTEL/IMS profile for Voice and SMS (XCAP) 45 4.13.1 Introduction................................................................................................ 45 5 E.164 Number Translation ............................................................................. 45 5.1 Introduction................................................................................................ 45 5.2 General Requirements .............................................................................. 46 5.3 Architecture ............................................................................................... 47 5.3.1 Introduction................................................................................................ 47 5.3.2 Data Delegation Structure ......................................................................... 47 5.3.3 Resolution procedure ................................................................................ 49 5.3.4 Access to ENUM servers and Interconnection policy ................................. 50 5.3.5 Number Portability considerations ............................................................. 51 5.4 Technical Requirements ............................................................................ 51 5.4.1 Introduction................................................................................................ 51 5.4.2 ENUM Query ............................................................................................. 51 5.4.3 ENUM Response ....................................................................................... 52 6 Processes and Procedures relating to DNS ................................................. 55 6.1 Introduction................................................................................................ 55 6.2 Existing domains/sub-domains on the GRX/IPX network and their Allocation55 6.3 Procedures relating to new domain names on the GRX/IPX network......... 56 7 Annex A: Sample BIND DNS Configuration for GPRS ................................. 56 7.1 Introduction................................................................................................ 56 7.2 The "named.conf" file ................................................................................ 57 7.2.1 The "named.conf" file for a PLMN
Load more

Recommended publications
  • RFC 2168 Resolution of Uris Using the DNS June 1997
    Network Working Group R. Daniel Request for Comments: 2168 Los Alamos National Laboratory Category: Experimental M. Mealling Network Solutions, Inc. June 1997 Resolution of Uniform Resource Identifiers using the Domain Name System Status of this Memo =================== This memo defines an Experimental Protocol for the Internet community. This memo does not specify an Internet standard of any kind. Discussion and suggestions for improvement are requested. Distribution of this memo is unlimited. Abstract: ========= Uniform Resource Locators (URLs) are the foundation of the World Wide Web, and are a vital Internet technology. However, they have proven to be brittle in practice. The basic problem is that URLs typically identify a particular path to a file on a particular host. There is no graceful way of changing the path or host once the URL has been assigned. Neither is there a graceful way of replicating the resource located by the URL to achieve better network utilization and/or fault tolerance. Uniform Resource Names (URNs) have been hypothesized as a adjunct to URLs that would overcome such problems. URNs and URLs are both instances of a broader class of identifiers known as Uniform Resource Identifiers (URIs). The requirements document for URN resolution systems[15] defines the concept of a "resolver discovery service". This document describes the first, experimental, RDS. It is implemented by a new DNS Resource Record, NAPTR (Naming Authority PoinTeR), that provides rules for mapping parts of URIs to domain names. By changing the mapping rules, we can change the host that is contacted to resolve a URI. This will allow a more graceful handling of URLs over long time periods, and forms the foundation for a new proposal for Uniform Resource Names.
    [Show full text]
  • SDM 7.61 Open Source and Third-Party Licenses
    Structured Data Manager Software Version 7.61 Open Source and Third-party Licenses Document Release Date: February 2019 Software Release Date: February 2019 Open Source and Third-party Licenses Legal notices Copyright notice © Copyright 2017-2019 Micro Focus or one of its affiliates. The only warranties for products and services of Micro Focus and its affiliates and licensors (“Micro Focus”) are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice. Adobe™ is a trademark of Adobe Systems Incorporated. Microsoft® and Windows® are U.S. registered trademarks of Microsoft Corporation. UNIX® is a registered trademark of The Open Group. This product includes an interface of the 'zlib' general purpose compression library, which is Copyright © 1995-2002 Jean-loup Gailly and Mark Adler. Documentation updates The title page of this document contains the following identifying information: l Software Version number, which indicates the software version. l Document Release Date, which changes each time the document is updated. l Software Release Date, which indicates the release date of this version of the software. You can check for more recent versions of a document through the MySupport portal. Many areas of the portal, including the one for documentation, require you to sign in with a Software Passport. If you need a Passport, you can create one when prompted to sign in. Additionally, if you subscribe to the appropriate product support service, you will receive new or updated editions of documentation.
    [Show full text]
  • The Elinks Manual the Elinks Manual Table of Contents Preface
    The ELinks Manual The ELinks Manual Table of Contents Preface.......................................................................................................................................................ix 1. Getting ELinks up and running...........................................................................................................1 1.1. Building and Installing ELinks...................................................................................................1 1.2. Requirements..............................................................................................................................1 1.3. Recommended Libraries and Programs......................................................................................1 1.4. Further reading............................................................................................................................2 1.5. Tips to obtain a very small static elinks binary...........................................................................2 1.6. ECMAScript support?!...............................................................................................................4 1.6.1. Ok, so how to get the ECMAScript support working?...................................................4 1.6.2. The ECMAScript support is buggy! Shall I blame Mozilla people?..............................6 1.6.3. Now, I would still like NJS or a new JS engine from scratch. .....................................6 1.7. Feature configuration file (features.conf).............................................................................7
    [Show full text]
  • URI Use and Abuse Contributing Authors
    URI Use and Abuse Contributing Authors • Nathan McFeters – Senior Security Analyst – Ernst & Young Advanced Security Center, Chicago • Billy Kim Rios – Senior Researcher – Microsoft, Seattle • Rob Carter – Security Analyst – Ernst & Young Advanced Security Center, Houston URIs – An Overview • Generic – http://, ftp://, telnet://, etc. • What else is registered? – aim://, firefoxurl://, picasa://, itms://, etc. URIs – Interaction With Browsers • Developers create URI hooks in the registry for their applications • Once registered they can be accessed and interacted with through the browser • XSS can play too! URI Discovery – Where and What? • RFC 4395 defines an IANA-maintained registry of URI Schemes • W3C maintains *retired* schemes • AHA! The registry! Enter DUH! DUH Tool – Sample Output Attacking URIs – Attack Scope • URIs link to applications • Applications are vulnerable to code flaws and functionality abuse • URIs can be accessed by XSS exposures Stack Overflow in Trillian’s aim.dll Through the aim:// URI • The aim:// URI is associated with the command ‘Rundll32.exe “C:\Program Files\Trillian\plugins\aim.dll”, aim_util_urlHandler url=”%1” ini="c:\program files\trillian\users \default\cache\pending_aim.ini”’. Stack Overflow in Trillian’s aim.dll Through the aim:// URI • Attacker controls the value that is put into aim_util_urlHandler through the URI, such as aim://MyURL. • Value is copied without bounds checking leading to a stack overflow Stack Overflow in Trillian’s aim.dll Through the aim:// URI Example: • aim:///#1111111/11111111111111111111111111111111111
    [Show full text]
  • XEP-0156: Discovering Alternative XMPP Connection Methods
    XEP-0156: Discovering Alternative XMPP Connection Methods Joe Hildebrand Peter Saint-Andre Lance Stout mailto:jhildebr@cisco:com mailto:xsf@stpeter:im mailto:lance@andyet:com xmpp:hildjj@jabber:org xmpp:peter@jabber:org xmpp:lance@lance:im http://stpeter:im/ 2020-07-07 Version 1.3.1 Status Type Short Name Draft Standards Track alt-connections This document defines an XMPP Extension Protocol for discovering alternative methods of connecting to an XMPP server using two ways: (1) DNS TXT Resource Record format; and (2) Web Host Metadata Link format. Legal Copyright This XMPP Extension Protocol is copyright © 1999 – 2020 by the XMPP Standards Foundation (XSF). Permissions Permission is hereby granted, free of charge, to any person obtaining a copy of this specification (the ”Specification”), to make use of the Specification without restriction, including without limitation the rights to implement the Specification in a software program, deploy the Specification in a network service, and copy, modify, merge, publish, translate, distribute, sublicense, or sell copies of the Specifi- cation, and to permit persons to whom the Specification is furnished to do so, subject to the condition that the foregoing copyright notice and this permission notice shall be included in all copies or sub- stantial portions of the Specification. Unless separate permission is granted, modified works that are redistributed shall not contain misleading information regarding the authors, title, number, or pub- lisher of the Specification, and shall not claim endorsement of the modified works by the authors, any organization or project to which the authors belong, or the XMPP Standards Foundation. Warranty ## NOTE WELL: This Specification is provided on an ”AS IS” BASIS, WITHOUT WARRANTIES OR CONDI- TIONS OF ANY KIND, express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE.
    [Show full text]
  • DMARC Jesse Thompson, Technical Architect University of Wisconsin-Madison [email protected] Motivation → Authenticity
    Email Authenticity with DMARC Jesse Thompson, Technical Architect University of Wisconsin-Madison [email protected] Motivation → Authenticity ● Mail your institution sends isn’t accounted for ● Mail claiming to be your domain may be fraud ● Instead of filtering the bad...we start authenticating the good? Functional Motivators for Email Authenticity 1. Deliverability: Google/MS/etc starting to require 2. Policies: DHS Binding Operational Directive 18-01 3. Security: Stop abuse Build on SPF SPF = Sender Policy Framework Publish in DNS a list of servers authorized for MAIL FROM (SMTP envelope return path). Receivers consult list. https://tools.wordtothewise.com/spf/check/wisc.edu wisc.edu. 3600 IN TXT "v=spf1 ip4:144.92.197.128/25 ?all" Build on DKIM DKIM = Domain Keys Identified Mail Attach signatures to email. Public key in DNS. Receivers verify signature. https://tools.wordtothewise.com/dkim/check/wisc.edu/selector1 DKIM-Signature: v=1; a=rsa-sha256; d=wisc.edu; s=selector1; c=relaxed/relaxed; q=dns/txt; t=1126524832; x=1149015927; h=from:to:subject:date:keywords:keywords; bh=MHIzKDU2Nzf3MDEyNzR1Njc5OTAyMjM0MUY3ODlqBLP=; b=hyjCnOfAKDdLZdKIc9G1q7LoDWlEniSbzc+yuU2zGrtruF00ldcF VoG4WTHNiYwG Build on SPF and DKIM SPF Problems: ○ Users can’t see MAIL FROM / no alignment to Header From domain ○ Forwarding / mailing lists ○ DNS lookup limit of 10 ○ Inconsistent enforcement by receivers DKIM Problems: ○ Users can’t see key selector / no alignment to Header From domain ○ Message modification in transit / mailing lists ○ Key management / vendor support Protagonist → Header From domain Need to create a link between the domain and the message. dmarc.org What is DMARC? Domain-based Message Authentication Reporting and Conformance 1.
    [Show full text]
  • Difference Between Url and Uri with Example
    Difference Between Url And Uri With Example lixiviatesUnchronicled that gobo.Wyndham Tiptop taints pluvious, her marmalades Amery gallop so man-hourpenetratingly and that redresses Angel laggedMiletus. very scrutinizingly. Richie still yeast supply while pinacoidal Gabriel This url with urls and examples would there any. Tells you with. Perfect examples of such acronyms are URIs and URLs In this article will'll try that look at how subtle differences between URIs and URLs. Uri with urls and stands for a difference between a virtualized url provides their street address or conceptual and additional time, and sets the differences. Uri is a symbolic name for boys born on Hanukkah. Uri examples would need to difference between url shows example. URI The prison of certain system Top. Personalisierungsfirma Ezoic verwendet, um Weiterleitungen zu verfolgen. How to copy a web page link or URL. URLs and fragment identifiers. Universal Resource Identifiers are specified in the Internet Engineering Task. As urls and examples and paste text has confirmed. Urn and uris to differences between a resource is an example of the prime minister offers us. If html does not have either class, do not show lazy loaded images. Resources are between url uri and with example. It different uris? It different uris and urls below to difference between them, but a uri? Resolves to an url from cbt nuggets uses cookies de votre consentement soumis ne peut être un esempio di questo trattamento dei nostri partner possono trattare i this. Base Domain URL vs Full Path URL What's the Difference. Uris differ by the url is the web servers what is a web utiliza cookies sind cookies de tracker le temps que vous recevez une expérience.
    [Show full text]
  • How the Internet Works: DNS Activity Unit 3
    (http://csmatters.org) 3 - 5 0b11 - 0b101 How the Internet Works: DNS Activity Unit 3. Information and the Internet Revision Date: Jan 04, 2020 Duration: 2 50-minute sessions Lesson Summary Pre-lesson Preparation This lesson will require some room setup or prep for best delivery of instruction. Some of the setup should have been done in the previous lesson. Summary In this lesson, students will expand their knowledge of how the Domain Name System (DNS) works by acting as a class to simulate the use of DNS to retrieve web pages. Once the simulation is functioning students enhance its efficiency through the use of caching. Poison the DNS cache by adding false DNS replies (DNS poisoning). Students discuss with their groups how DNS works and how it supports Internet growth. Then they explain in their journals how: DNS works Caching is both a benefit and a security risk. DNS supports Internet growth. In this lesson, students will expand their knowledge of how DNS works by acting out a simulation of DNS in action and using it to retrieve web pages. This is a two-session lesson. The first session is for students to get the simulation functioning, with the teacher serving as director. As students realize they need to "fix" their implementation of the simulation (modify their scripts), they record the insights in their journals. In Session Two, students take on different roles and conduct a dress rehearsal that is entirely student-led. Teachers then introduce DNS caching and DNS poisoning. Once the simulation is functioning, students will address both increased efficiency due to DNS caching, and cybersecurity concerns associated with DNS.
    [Show full text]
  • <A Href=“ to Yahoo!</A> Hyperlinks Can “Link” To
    Hyperlinks can “link” to: Other web pages Images Files Places in the same document E-mail address A hyperlink is a word, phrase, or image that you can click on to jump to a new document or a new section within the current document. Hyperlinks are found in nearly all Web pages, allowing users to click their way from page to page. Text hyperlinks are often blue and underlined (that’s the default), but can be styled to be a different color. When you move the cursor over a hyperlink, whether it is text or an image, the arrow should change to a small hand pointing at the link. When you click it, a new page will open or the browser will jump to a place in the current page. After a hyperlink is clicked, it changes to a “visited” link and is purple by default. Paths There are two types of paths in HTML, known as relative paths and absolute paths. An absolute path contains the full URL of the item being referenced (starting with the http:// part). A relative path contains directions to the item relative to the HTML page. If it is in the same folder, it’s just the filename. This path will always be in quotation marks in the HTML tag. Anchor Tags The HTML tag used to create a hyperlink is an anchor tag, which is simply an A. However, an anchor tag can’t do anything on its own. You must also specific a hyperlink reference (where it is linking to) and the words (or image) that will be clicked on to take you there.
    [Show full text]
  • The Internet the Internet Is Simply a System, Like a Courier Service, for Communicating Digital Information from One Place to Another
    The Internet The Internet is simply a system, like a courier service, for communicating digital information from one place to another – World Wide Web (WWW) is only one part of the Internet (Tim Berners-Lee) – Others ● Email ● File Transfer Protocol (FTP) ● Internet Relay Chat (IRC) ● USENET The Internet – concept 1 of 6 ● The HyperText Transfer Protocol – (HTTP) – HTTP servers, also known simply as Web servers, are designed specifically to distribute hypertext documents to browsers, and to let the browser send back information for processing on the server The Internet – concept 2 of 6 ● Uniform Resource Locators, or URLs. – These are the means by which Internet resources are addressed in the World Wide Web. – Common URL schemes: ● HTTP URLs http://www.nytimes.com ● Mailto URLs mailto:[email protected] ● News URLs news:comp.infosystems.www ● FTP URLs ftp://ftp.mysite.org/path/file.txt The Internet – concept 3 of 6 ● HyperText Markup Language – (HTML) – This is the markup langauge with which World Wide Web hypertext documents are written, and it allows you to create hypertext links, fill-in forms, and so forth. The Internet – concept 4 of 6 ● Cascading Style Sheets – (CSS) Controls page layout and formatting – A language that works with HTML documents to define how such documents should be formatted and displayed by the web browser. The Internet – concept 5 of 6 ● Browser-side scripting – This lets an author include script programs within Web pages. – Allows significant interactivity on the browser without any connection to a server. – Example: JavaScript The Internet – concept 6 of 6 ● Server-side processing – This lets a user with a Web browser interact with resources lying on an HTTP server, providing a tunnel through the server to these resources.
    [Show full text]
  • Mailto Forms and Using Color
    Mailto Forms and Using Color: Using The Mailto URL With Forms One of the more difficult aspects of forms is creating the server-side scripts that process the form data. This can be a daunting task for non-programmers and impossible for those webmasters who cannot create server-side scripts at all. Fortunately, all is not lost. It is possible to create forms and retrieve user-supplied data without writing or installing server-side processing scripts. The trick is to use the mailto URL to retrieve the form data. Normally, the mailto URL is used in a conventional link. When clicked by the user, the browser opens some sort of mail composition window, collects a message, and sends it to the address specified in the URL. When used as the action attribute of a form, the mailto URL instead mails the form data to the address in the URL. By setting this address to yourself, you can receive form data as conventional email messages. Before showing how all this works, keep in mind several caveats: · This does not work with Internet Explorer 3.0 · The data is sent to you in an encoded form (but can be converted, as I discuss below) · Conventional user feedback is not possible after the form is processed Given these warnings, let's go ahead and use this idea anyway! A Simple Example Here is a simple form, with a mailto URL as the form action: <form method=POST action="mailto:[email protected]" enctype="text/plain"> Name: <input type=text name="Name" size=40><br> Phone:<input type=text name="Phone" size=10 maxlength=10><br> Category:<input type=radio
    [Show full text]
  • Technical Realization of Communication Networks
    TECHNISCHE UNIVERSITAT ••• WIEN • • • institute of Vienna University of Technology • e • telecommunications Lecture Notes Technical Realization of Communication Networks Course Number: 388.031 Part : Networking o. Univ. Prof. Dr. Hannen R. van As Institute of Telecommunications Vienna University of Technology 2011 2 CONTENTS 1.5.14 Adrnii;sion control 59 l.5.15 Flow control .... 60 1.5.16 Congestion control 61 1.6 Mobility 62 1. 7 Security . .. 63 Contents 2 Source and transmission coding 65 2.1 Introduction . 66 2.2 Source coding . 67 2.3 Linc coding aJJd modulation . 68 2.3.1 Binary coding . 69 1 Networking 1 2.3.2 I3lock <.'Oding .... 70 1.1 Network architecture . 2 2.3.3 Convolution coding . 71 1.1.1 Network planes . .. 2 2.4 Modulation . 72 1.1.2 Wired and wireless media 3 2.4.l OFDM ....... 73 1.1.3 Transmission . 3 2.4.2 CMSK .. .. ... 74 1.1.4 Switching . 9 2.5 System-related coding and tra.nsrnh;sion 75 1.1.5 Signaling and control . 13 2.5.1 PCM .......... .... 76 1.1.6 Network intelligence 14 1.1.7 Network management 14 3 Tuansmission 77 1.1.8 Service transport . 14 3.1 Introduction . 78 1.1.9 Communication and content services 14 3.2 Transmission media . 82 1.1.10 Technological layering 14 3.2.l CoaxiaJ cable 82 1.1.11 Geographical areas 15 3.2.2 Copper twisted pair 82 1.2 Protocol Architecture 19 3.2.3 Fiber . 83 1.3 Network protocols 23 3.2.4 Free-space optic link 83 1.4 Network availability 27 3.2.5 Frequency spcctmrn 83 1.5 Network control .
    [Show full text]