Table of Contents
Advertisement
1. LDNS sends a normal type A request with the DO bit set to the mydnssec.com ADNS
2. If the ADNS supports DNSSEC, the response has the DO bit set and a RRSIG record for the
3. The LDNS will then fetch the DNSKEY used in the RRSIG from the ADNS
4. DNSKEY validation at the LDNS occurs as follows:
ServerIron ADX Global Server Load Balancing Guide
53-1002437-01
response RRset in the answer section
•
It is configured to trust the DNSKEY for the root (.).
•
It fetches the DS record for the .com zone from the root.
•
It fetches the DNSKEY for the .com zone from the .com name server. This DNSKEY would
be validated by checking against the signed hash in the DS record from the previous step.
•
It fetches the DS record for the mydnssec.com zone from the .com nameserver
•
This DS record validates the DNSKEY that was obtained from the mydnssec.com ADNS
1
DNSSEC
113
Advertisement
Table of Contents
Related Manuals for Brocade Communications Systems ServerIron ADX 12.4.00
Related Products for Brocade Communications Systems ServerIron ADX 12.4.00
- Brocade Communications Systems ServerIron ADX 12.4.00a
- Brocade Communications Systems SERVERIRON ADX 1000
- Brocade Communications Systems SERVERIRON ADX 10000
- Brocade Communications Systems ServerIron ADX 1000F
- Brocade Communications Systems SERVERIRON ADX 4000
- Brocade Communications Systems ServerIron ADX 8000
- Brocade Communications Systems A7533A - Brocade 4Gb SAN Switch Base
- Brocade Communications Systems AE370A - Brocade 4Gb SAN Switch 4/12
- Brocade Communications Systems AA979A - StorageWorks SAN Switch 2/8V
- Brocade Communications Systems A7990A - StorageWorks SAN Director 4/16 Blade Switch
- Brocade Communications Systems AP7420 Series
- Brocade Communications Systems AM866A - StorageWorks 8/8 Base SAN Switch
- Brocade Communications Systems SMI Agent 120.11.0
- Brocade Communications Systems Access Gateway
- Brocade Communications Systems Network Advisor SMI Agent 12.0.0
- Brocade Communications Systems 200E Series