JP5414001B2 - Cache information exchange method, cache information exchange system, and proxy device - Google Patents

Description

  The present invention relates to a cache information exchange method, a cache information exchange system, and a proxy device in a network.

  In a LAN (Local Area Network) constructed in a company or a home, a packet transmission device in which a function called a Proxy DNS (Domain Name System) function is installed is widely used. This transmission apparatus is realized by a router if it is a TCP / IP network, for example.

  Here, the Proxy DNS function is a proxy response that a router relays a DNS inquiry (name resolution request) transmitted from a client PC or the like included in the LAN side to a DNS server.

  When using the Proxy DNS function, a router is set as a DNS server in the client PC. Then, the router relays the request from the client PC to the existing DNS server, and returns the response from the DNS server to the client PC. With this operation, the client PC can realize name resolution. In other words, the client PC can acquire the IP (Internet Protocol) address of the host based on the domain name of the host to which connection is desired.

  The router also includes a function for caching information about DNS. Therefore, after name resolution is performed on a certain host from a certain client PC, information cached when a name resolution request regarding the certain host is made again from another client PC other than the certain client PC. Can be replied. When such a reply is made, there is no need to make another inquiry to the DNS server, and traffic flowing to the external network can be reduced. Such a router in which the Proxy DNS function is implemented is described in Patent Document 1, for example.

  In addition, the Proxy DNS function may also be referred to as a DNS proxy function or a DNS relay function.

JP 2004030309 A

  As described above, in a general Proxy DNS function, when a router receives a DNS inquiry from a client, the router inquires a DNS server on behalf of the client.

  Then, the router that has received the response from the DNS server responds to the inquiry source client with the response from the DNS server, and holds the result as cache data in a storage area prepared in the main storage device in the router. After that, the router shortens the response time by responding using the information held in the router cache without inquiring the DNS server when inquiring about the same domain name from another client or the like. A function of reducing the load on the server and the network due to the inquiry to the DNS server is implemented.

  However, a router having a general Proxy DNS function does not have a mechanism for sharing information among a plurality of routers. Therefore, there is a problem that even when inquiring about the same domain name, if the router managing the client group is different, traffic in which each router individually inquires to the DNS server through the contract line occurs. Furthermore, there is a problem that each router can realize immediate response and load reduction only within a cache range managed individually.

  For example, in the case of a configuration in which routers that segment into each floor and aggregate the cache for each segment, such as a network in a corporate building, are installed, each router has its own cache. Only the convergence effect can be obtained.

  Further, normally, TTL (time to live) which is the valid time of the cache is set in units of one day to several days. However, there are cases where the TTL is intentionally set to an extremely short time such as several minutes. In this case, in an environment where routers are distributed, there is a problem that a large amount of inquiry load is generated from a plurality of routers every few minutes when the TTL expires. Here, an example in which the TTL is intentionally set to a short time will be given. For example, when implementing a DNS load balancing mechanism that distributes the load by changing the server that is actually accessed by changing the address that responds to each inquiry to the DNS server, with multiple servers having the same domain name, It is possible to intentionally set a short time. Furthermore, it is conceivable that the TTL is intentionally set to a short time when a dynamic DNS mechanism corresponding to the possibility that the address is different every time the address is issued from the provider.

  Therefore, an object of the present invention is to provide a cache information exchange method, a cache information exchange system, and a proxy device that can share cache information among a plurality of routers having a Proxy DNS function.

According to a first aspect of the present invention, there is provided a cache information exchanging method for exchanging cache information among a plurality of proxy devices, wherein any one of the plurality of proxy devices is subordinate to the proxy device. receiving a request from the client queries the DNS (Domain Name System) server on behalf to the client, and a proxy step of the Reply information for inquiry the from the DNS server may on behalf on the client, the plurality synchronizing the steps of synchronizing the reply information between the proxy apparatus, each of the plurality of proxy devices, cache information exchange, characterized in that it has a, a holding step of holding the return information synchronized as cache information A method is provided.

According to a second aspect of the present invention, there is provided a cache information exchanging system for exchanging cache information among a plurality of proxy devices, wherein any one of the plurality of proxy devices is subordinate to the proxy device. receiving a request from the client queries the DNS (Domain Name System) server on behalf to the client, a proxy means capable on behalf of Reply information to the query the to the client from the DNS server, the plurality means synchronizing synchronizing the reply information between the proxy apparatus, each of the plurality of proxy devices, cache information exchange, characterized in that it comprises a holding means for holding said return information synchronized as cache information A system is provided.

According to a third aspect of the present invention, the proxy device accepts a request from any client under the proxy device, makes an inquiry to a DNS (Domain Name System) server on behalf of the client, a proxy means capable on behalf of Reply information for inquiry the from the DNS server to the client, and synchronization means for synchronizing the cache information with other proxy device other than the proxy device, the plurality of proxy device Each of the proxy devices includes a holding unit that holds the synchronized reply information as cache information.

  According to the present invention, cache information can be shared between a plurality of routers having a Proxy DNS function.

It is a figure showing the basic composition of the whole LAN system by an embodiment of the present invention, and the external network connected to it. It is a block diagram which shows the structure of the router by embodiment of this invention. It is a figure which shows the structure of the data memorize | stored in the DNS cache information exchange state memory | storage part shown to FIGS. 2-1. It is a figure which shows the structure of the data memorize | stored in the DNS cache information storage part shown in FIG. It is a flowchart (1/4) showing the basic operation | movement of the whole embodiment of this invention. It is a flowchart (2/4) showing the basic operation | movement of the whole embodiment of this invention. It is a flowchart (3/4) showing the basic operation | movement of the whole embodiment of this invention. It is a flowchart (4/4) showing the basic operation | movement of the whole embodiment of this invention. It is a figure showing the structure of the packet used by embodiment of this invention. It is a figure showing the exchange of the data in the whole embodiment of this invention. It is a figure showing the modification of embodiment of this invention.

  Next, embodiments of the present invention will be described in detail with reference to the drawings.

  Referring to FIG. 1, the present embodiment includes a plurality of routers 100, a plurality of clients 200, a contract line router 300, a provider router 400, and a DNS server 500.

  Then, the LAN system 1000 is realized to include a plurality of routers 100, a plurality of clients 200, and a contract line router 300. The external network 2000 includes a provider router 400 and a DNS server 500.

  The plurality of routers 100 include a router 100-1, a router 100-1, and a router 100-n.

  Furthermore, as the plurality of clients 200, 200-1-1, 200-1-2, 200-1-m1, 200-2-1, 200-2-2, 200-2-m2, 200-n-1 , 200-n-2 and 200-n-mn.

  Note that n included in the code used in the present embodiment is a natural number of 2 or more. M1, m2 and mnm are any natural numbers of 1 or more. That is, the number of routers 100 and clients 200 is not necessarily required as shown in FIG.

The client 200-i-j is connected to the i-th router 200-i. For example, taking the client 200-1-2 as an example, the value of i is 1. Taking the router 100-1 as an example, the value of i is 1 as well. Therefore, the client 200-1-2 is connected to the router 100-1.
Each client 200-ij communicates via the router 100-i to which the client 200-ij is connected. In addition, when each client 200-i-j requests name resolution, each router 100-i makes a proxy inquiry to the DNS server 500.

  Here, each client 200 may be an arbitrary device. Examples of the optional device include a personal computer used by a user. Each client 200 may be connected to the router 100 by wire, but a part or all of the clients 200 may be connected to the router 100 wirelessly, wirelessly, or wired. In this case, a wireless access point (not shown) may be included between the router 100 and the client 200, and the router 100 may have a function as a wireless access point.

  The contract line router 300 is a router for connecting to a network outside the LAN, and mediates communication between each router 100 and the external network 2000 using an optical fiber or the like.

  The provider router 400 is a router provided by a contracted provider, and is connected to the contract line router 300.

  The DNS server 500 is a server for associating a domain name as an identifier represented by the alphabet of a host with an IP address as an identifier represented by a number. When DNS server 500 accepts a search using a domain name as a key from the outside, DNS server 500 returns an IP address corresponding to the domain name.

  The object of the present embodiment is to reduce as much as possible the contraction line bandwidth pressure caused by the DNS inquiry traffic that continues to increase with respect to the DNS server 500.

  Usually, a network device on the premises such as the LAN system 1000 can be accelerated at a relatively low cost by using Gigabit Ethernet (registered trademark). However, the contract line for connecting the DNS server 500 and the premises is much more expensive than the costs for the premises network equipment from the viewpoint of introduction costs and running costs. Also, the higher the speed, the higher the cost. For this reason, in this embodiment, traffic for information sharing is confined in a local network that can be increased in speed, and a bandwidth is freed as much as possible without flowing traffic through a contract line. As a result, it is possible to secure a bandwidth for transmitting information used by the original user using the contract line.

  For this purpose, in this embodiment, the DNS inquiry load from a large number of clients 200 is divided into client units belonging to the network segment accommodated by each of the plurality of routers 100 to achieve load distribution of the routers 100 that receive the inquiry. Further, while maintaining the function of immediately responding to DNS queries from the cache, the management of the cache database is unified and the database is shared. As a result, all routers 100-1 to 100-n can respond from the cache in a short time with the inquiry result of one router 100-i without individually making an inquiry to the DNS server 500 regarding the duplicate domain name. And In addition, only the representative router makes an inquiry when the expiration date of the database in which the TTL is set in a short time is expired. This makes it possible to update the same cache database in all routers-1 to 100-n without the need for a plurality of routers to make a large amount of inquiries about the same database in a short time.

  Next, the internal configuration of the router 100 will be described with reference to FIG. 2A, which is a diagram illustrating the internal configuration of the router 100 in the present embodiment.

  Referring to FIG. 2A, the router 100 includes a Proxy DNS function unit 110, a DNS cache information related control unit 120, a packet transmission / reception unit 130, a DNS cache information storage unit 140, and a DNS cache information exchange state storage unit 150.

  The router 100 implements a proxy DNS cache information exchange protocol mechanism unique to the present embodiment. The Proxy DNS cache information exchange protocol mechanism is mainly realized by the DNS cache information related control unit 120 and the DNS cache information exchange state storage unit 150. That is, the DNS cache information related control unit 120 and the DNS cache information exchange state storage unit 150 are the main parts of the server 100 in this embodiment.

  On the other hand, the Proxy DNS function unit 110, the packet transmitting / receiving unit 130, and the DNS cache information storage unit 140 are also provided in a general router. Using these general units, the DNS cache information related control unit 120 and the DNS cache information exchange state storage unit 150 operate as a proxy DNS cache information exchange protocol mechanism unique to the present embodiment.

  The DNS cache information related control unit 120 includes a function of selecting a designated router (designated router: hereinafter abbreviated as “DR”) and a backup designated router (backup designated router: hereinafter abbreviated as “BDR”).

  Further, the DNS cache information related control unit 120 cooperates with the other servers 100 to control the exchange of the DNS database cache between the servers 100.

  The DNS cache information exchange state storage unit 150 is a database used by the DNS cache information related control unit 120. As illustrated in FIG. 2B, the DNS cache information exchange state storage unit 150 stores the address of the router that has become the DR / BDR. Further, the DNS cache information exchange state storage unit 150 stores the DR / BDR priority. Here, the DR / BDR priority is a priority used when selecting DR and BDR, and is appropriately set by the network designer. Further, the DNS cache information exchange state storage unit 150 stores information of a target network that is a target for operating the Proxy DNS cache information exchange protocol mechanism. For example, in the present embodiment, all of the sub-network 105-1 managed by the router 100-1 and the sub-network 105-2 managed by the router 100-2 to the sub-network 105-n managed by the router 100-n are all included. The target network. The DNS cache information exchange state storage unit 150 stores, for example, the address of the router 100-i that manages each network 105-i.

  The Proxy DNS function unit 110 is a part for causing the router 100 to realize the Proxy DNS function. The Proxy DNS function unit 110 relays a name resolution request transmitted from the client 200-i-j under the router 100-i to the DNS server as a router and makes a proxy response. Further, the Proxy DNS function unit 110 stores the information acquired from the DNS server in the proxy response in the DNS cache information storage unit 140.

  The DNS cache information storage unit 140, as shown in FIG. 2-3, in addition to information such as the domain name assigned to each host, its length and type, the host IP address and the lifetime of the cache Is stored. Further, the router 100-i counts the number of times the subordinate client 200-i-j refers to each domain name each time. This count value is also stored in the DNS cache information storage unit 140.

  The packet transmission / reception unit 130 packetizes or releases the data transmitted / received by the Proxy DNS function unit 110 and the DNS cache information exchange state storage unit 150 in accordance with a standard compliant with the network to which the router 100 is connected. Send and receive.

  Subsequently, operations mainly performed by the DNS cache information related control unit 120 and the DNS cache information exchange status storage unit 150 (hereinafter referred to as “Proxy DNS cache information exchange protocol mechanism” as appropriate) are illustrated in FIGS. This will be described with reference to the flowchart of FIG.

  The Proxy DNS cache information exchange protocol mechanism first performs DR / BDR selection. Note that the router 100 that has not been selected as either DR or BDR is hereinafter referred to as “OTHER” as appropriate. Thereby, each of the plurality of routers 100 in the network determines its role as one of DR, BDR, and OTHER.

  DR / BDR selection is performed using a DR / BDR search packet 601 shown in FIG. 4 in an initial state such as when the router 100 is activated.

  Specifically, the DNS cache information related control unit 120 first generates a DR / BDR search packet 601. At this time, “DR search” is set in the F (operation flag) field of the DR / BDR search packet 601. Also, C (control information) contains the DR / BDR priority of the router 100 itself set in the DNS cache information exchange state storage unit 150.

  Further, the DNS cache information related control unit 120 transmits the generated DR / BDR search packet 601 via the packet transmission / reception unit 130 (step S11). The transmission destination is each router 100 included in the target network set in the DNS cache information exchange state storage unit 150.

  If a DR already exists in the target network (Yes in step S12), this DR generates a DR / BDR control packet 602. At this time, in the DR / BDR control packet 602, “DR notification” is set in the F (operation flag) field. In addition, a DR address is designated in C (control information). The generated DR / BDR control packet 602 is notified to the source router 100 of the DR / BDR search packet 601 in step S11 (step S13).

  The router 100 that has received the DR / BDR control packet 602 changes itself to the OTHER state. Further, the router 100 that has received the DR / BDR control packet 602 newly generates a DR / BDR control packet 602, and transmits the generated DR / BDR control packet 602 to the DR (step S14). At this time, “synchronization request” is set in the F (operation flag) field of the DR / BDR control packet 602 to be transmitted. C (control information) is empty.

  The DR that has received the DR / BDR control packet 602 reads the DNS cache information stored in its own DNS cache information storage unit 140. Then, a DNS difference information packet 603 in which the read information is described in I (DNS database) is generated. The generated DNS difference information packet 603 is notified to the source router 100 of the DR / BDR control packet 602 in step S14 (step S15).

  The server 100 that has received the DNS difference information packet 603 from the DR reads the DNS cache information from I (DNS database) in the DNS difference information packet 603, and uses its read DNS cache information for its own DNS cache information storage unit 140. Update. Then, the router 100 ends the two processes of the DR / BDR selection process and the synchronization process, and thereafter shifts to a standby state until a difference in DNS cache information occurs (step S16).

  On the other hand, although the DR / BDR search packet 601 has been transmitted, the DR may not yet be determined (No in step S12). In this case, the DR / BDR search packet 601 is waited for a predetermined time after being transmitted, and the DR / BDR control packets 602 that have been transmitted to each other during that time are compared (step S17).

  As a result of the comparison, if the router itself is the highest priority router (Yes in step S18), a new DR / BDR control packet 602 is generated. “DR notification” is set in the F (operation flag) field of the DR / BDR control packet 602, and its own address is set in C (control information). Then, by transmitting this DR / BDR control packet 602 to the other router 100, it notifies the other router that it will become a DR (step S19). Thereafter, the operations after step S14 are performed.

  On the other hand, the other router 100 that has received the DR / BDR control packet 602 from the higher priority router 100 (No in step S18), the DR / BDR in which the DR notification from the higher priority router 100 is set. Wait for control packet 602. If the DR / BDR control packet 602 in which the DR notification is set is notified (Yes in step S20), the notified address is set in the DR address management information of its own DNS cache information exchange state storage unit 150. To do. Thereafter, the operations after step S14 are performed.

  In this regard, the DR / BDR control packet 602 in which the DR notification is set is constant due to a failure or the like, although the DR search is performed by the DR / BDR search packet 601 from the router 100 having higher priority than itself. It is conceivable that the time is not sent (No in step S20). In this case, the DR / BDR search packet 601 in which F (operation flag) is set to “DR search” is transmitted to the network again. That is, the operations after step S11 are performed again.

  The router 100 repeats this until the DR is finally determined.

  In the above description, DR was selected. On the other hand, BDR selection is performed in the same manner as DR selection. A DR / BDR control packet in which the second highest priority router sets BDR notification in the F (operation flag) field and sets its own address in C (control information). Except for transmitting 602, DR selection and operation are the same.

  Next, three cases of an operation when the router 100 becomes DR, an operation when the router 100 becomes BDR, and an operation when the router 100 becomes OTHER will be described.

  First, the operation when the router 100 becomes DR will be described.

  The router 100 that has become the DR synchronizes the contents of the DNS cache information storage unit 140 between the target routers 100 having the Proxy DNS cache information exchange protocol mechanism among all the routers 100 that have become one of DR, BDR, and OTHER. It works for the purpose of making it happen. For this reason, the router 100 that has become the DR places all the information of the DNS cache information storage unit 140 that it holds in the I (DNS database) of the DNS difference information packet 603 that is transmitted for the first time immediately after becoming the DR. . Then, the DR distributes the DNS difference information packet 603 carrying all the information to all the transmission target routers 100 by multicast (step S30). Here, the routers 100 to be transmitted are the router 100 that has become BDR and the router 100 that has become OTHER.

  The DR for which the distribution of the first DNS difference information packet 603 has been completed is the case where newly added DNS cache information is generated by a DNS inquiry from a client accommodated by the client, or a new one generated in the same manner in BDR / OTHER. When the DNS difference information packet 603 is notified of the added DNS cache information (Yes in step S31), its own DNS cache information storage unit 140 is updated. Then, the updated information is put on I (DNS database) of the DNS difference information packet 603, and is distributed to all the target routers 100 as difference information by multicast (step S32). Thereafter, the operation after step S31 is performed again.

  In addition, the target router 100 newly joining the network may send a DR / BDR control packet 602 in which “synchronization request” is set in the F (operation flag) field to the DR (in step S31). No, Yes in step S33). In this case, the DR notifies all the DNS cache information at that time held in its own DNS cache information storage unit 140 to the target router 100 newly joining the network by unicast (step S34). . Thereafter, the operation after step S31 is performed again.

  Further, the DR confirms the usage status of the corresponding cache cache before the TTL of the DNS cache information cached in its own DNS cache information storage unit 140 elapses (No in step S33, Yes in step S35). For this purpose, a DR / BDR control packet 602 is generated. Specifically, F (operation flag) of the DR / BDR control packet 602 is set to “time elapsed confirmation”, and information specifying the corresponding cache is placed in C (control information). The generated DR / BDR control packet 602 is transmitted to all the target routers 100 by multicast (step S36).

  The BDR or OTHER router 100 that has received the DR / BDR control packet 602 refers to its own DNS cache information storage unit 140 and performs a reference count for the domain name specified by the information included in the DR / BDR control packet 602. read out. As a result of reading, if the count is not 0 (Yes in step S37), a DR / BDR control packet 602 is generated. Specifically, F (operation flag) is set to “update request”, and a DR / BDR control packet 602 in which information specifying the corresponding cache is placed in C (control information) is generated. The generated DR / BDR control packet 602 is transmitted to the DR. The DR receives the DR / BDR control packet 602 (step S38).

  In the DR, after receiving the DR / BDR control packet 602, the DNS server is inquired regarding the corresponding DNS cache information, and the TTL is initialized (step S39). Then, the DR notifies the BDR or OTHER router 100 with the DNS difference information packet 603 by using the TTL initialization information of the updated DNS cache information as difference information (step S40). Thereafter, the operation after step S31 is performed again. Accordingly, only the DR makes an inquiry to the DNS server 500, and the BDR or OTHER router 100 can update the cache information without making an inquiry to the DNS server. On the other hand, if the reference count of all the BDR and OTHER routers 100 is 0, this domain is not referenced. Therefore, the DNS server 500 is not inquired, and the DNS cache information regarding this domain is deleted as the TTL elapses.

  Next, the operation when the router 100 becomes BDR will be described.

  In the case of BDR, the router 100 monitors the live / dead state of the DR. Specifically, the life / death state of the DR is monitored by a method designated by a network designer such as ICMP (Internet Control Message Protocol) ECHO (step S40).

  When the BDR detects that the DR is down (Yes in step S41), the BDR immediately makes a state transition to the DR. Further, it notifies that it has been promoted from BDR to DR (step S42). For this purpose, the BDR sets F (operation flag) to “DR update”, sets its own address as the new DR address in C (control information), and places the old DR address before the change as the old DR address. A DR / BDR control packet 602 is generated. The generated DR / BDR control packet 602 is transmitted to another router 100 that is OTHER.

  The router 100 in the OTHER state that has received the DR / BDR control packet 602 reflects the address of the new DR in the DR address management information of its own DNS cache information storage unit 140 (step S43).

  Thereafter, the router 100 in the OTHER state transmits a DR / BDR control packet 602 in which F (operation flag) is set to “BDR search” and C (control information) is emptied to the other routers 100 in the OTHER state. To do. This prompts the other routers 100 in the OTHER state to re-select BDR (step S44).

  The BDR operation is the same as OTHER except for the DR life / death monitoring.

  The monitoring of the BDR life / death state is performed in DR. For example, the monitoring is passively performed based on whether a monitoring request such as ICMP ECHO periodically arrives from the BDR. Then, it is determined that the BDR is down when the monitoring request from the BDR is not received. In this case, the DR transmits a DR / BDR control packet 602 in which F (operation flag) is set to “BDR search” and C (control information) is emptied to the router 100 in the OTHER state. This prompts the other routers 100 in the other state to re-select the BDR.

  Next, the operation when the router 100 becomes OTHER will be described.

  In the case of OTHER, the first main role is to reflect the DNS cache difference information notified by the DNS difference information packet 603 notified from the DR in its own DNS cache information storage unit 140.

  When new DNS information that does not exist in the DNS cache information is generated by a DNS inquiry from a client accommodated by itself, the difference information is reported to the DR by a DNS difference information packet 603 placed in I (DNS database). Requesting distribution to other routers 100 is the second main role. When it becomes OTHER, it is fundamental to play these two main roles.

  However, when it becomes OTHER, an operation for preparing for simultaneous DR / BDR down is also performed. Specifically, when the DNS cache difference information packet 603 is sent to the DR, the delivery status is monitored because the delivery from the DR should come (step S50). Then, when the distribution has not been performed for a certain time (Yes in step S51), DR by the DR / BDR control packet 602 in which F (operation flag) from the BDR is set to DR update and C (control information) is emptied. A timer for waiting for the promotion notification is set for a certain time (step S52). Even if the fixed time has passed, the DR / BDR selection process is again executed by determining that both DR / BDR are down only when the DR promotion notification is not received (Yes in step S53) ( Step S54).

  In OTHER, only the router 100 that transmitted the DNS cache difference information packet 603 performs this monitoring process. As a result, the generation of traffic only for monitoring and the generation of processing load can be minimized.

  In the present embodiment, centralized management and distribution of DNS information by DR is performed in such a manner as DR / BDR / OTHER. Thereby, this embodiment has many effects as shown below.

  First, in the present embodiment, there is an effect that maximum DNS cache information can be shared with each router 100 by performing centralized management and distribution of DNS information by DR.

  Further, in the present embodiment, since the maximum DNS cache information is shared in this way, it is possible to promptly respond from the DNS cache information to the DNS inquiry from the client without inquiring the DNS server. There is an effect.

  Furthermore, in this embodiment, since the maximum amount of DNS cache information is shared in this way, it is possible to reduce the chance of proxy inquiry to the DNS server. In particular, it is possible to prevent a plurality of routers 100 from repeatedly performing a query to a DNS server in a short time for DNS information having a TTL set in a short time for the purpose of DNS load balancing.

  Next, how the data is exchanged and the DNS database is shared in the Proxy DNS cache information exchange protocol mechanism in this embodiment will be described with reference to FIG.

  In the example shown in FIG. 5, it is assumed that the DR / BDR priority of each router 100 is set in advance by configuration by the network administrator. Specifically, it is assumed that the router 100-1 has a high DR / BDR priority, the router 100-2 is medium, and the router 100-n is low. In this explanation, the priority is set to three levels of high, medium and low, but the priority may be set to more levels.

  Each router 100 performs DR / BDR selection according to this priority setting. In this case, the router 100-1 transits to DR because there is no other router with higher priority than itself.

  The router 100-2 has a lower priority than the router 100-1, but has a higher priority than the other routers, and therefore transitions to BDR. Furthermore, since the router 100-n has two routers having higher priority than itself, the router 100-n transits to OTHER.

  Next, the actual flow of sharing the DNS cache database will be described.

  In the configuration of FIG. 5, each router terminates a DNS inquiry from a client 200 (hereinafter referred to as “client group”) aggregated regardless of DR / BDR / OTHER.

  When a DNS inquiry (a) from the client group is generated, the router 100 that has received the inquiry confirms whether or not the corresponding DNS cache information storage unit 140 has a corresponding cache. Here, if there is a corresponding cache, a response is returned from there, and if there is no cache, the DNS server 500 is directly inquired through the route (b).

  A response returned from the DNS server 500 in response to this inquiry is returned from the router 100 to the client 200 that is the inquiry source. At the same time, the router 100 registers the content of the response returned from the DNS server 500 in its own DNS cache information storage unit 140.

  In this embodiment, the sharing operation starts from this point. Specifically, if the copy of the information added to the DNS cache information storage unit 140 is itself BDR or OTHER, it is notified to the DR in the flow of (c). Upon receiving the notification, the DR distributes the cache information to other routers 100 by multicast.

  As a result, the corresponding database can be registered in the DNS cache information storage unit 140 without using the router that accommodates the inquiring client. As a result, when an inquiry about the same domain name occurs thereafter, an immediate response can be made without making an inquiry to the DNS server 500.

  If the router 100 that manages the client group in which the DNS inquiry (a) is generated is DR, the notification in (c) is omitted. However, the operation itself for distributing to other routers 100 by multicast and sharing cache information is the same.

  In this way, cache information is shared by all routers 100 in response to a DNS inquiry from a client group managed by any router 100 in the network. After that, even if a DNS inquiry occurs in any client group, each router 100 already has a cache, so that it is possible to respond immediately without generating inquiry traffic in the route (b). It becomes.

  The update corresponding to the TTL expiration of the cached DNS cache information, which is another function of the present embodiment, will be described.

  When a certain DNS cache information is about to expire, the router 100 that has become the DR uses the route (c) for a predetermined time before the expiration date to multicast the usage status of the corresponding DNS cache information to each router 100. Inquire.

  Each router 100 always monitors the usage status of DNS cache information, and when a response is returned from the DNS cache information storage unit 140 to the client, the number of times the corresponding DNS cache information is referenced is measured as a reference count. Then, when the use status of the DNS cache information is inquired from the DR, only when the reference count is read and not 0, the cache update request is notified to the DR using the route (c).

  In the DR, only when this cache update request is received from any of the routers 100, the DNS inquiry of the corresponding DNS cache information is performed using the route (d). As a result, a response in which the TTL is initialized is obtained, and the result is distributed to each router 100 using the route (c).

  Upon receiving this distribution, the router 100 updates the corresponding DNS cache information in the DNS cache information storage unit 140, and as a result, the TTL time can be extended only by an inquiry for one DR. Therefore, it is possible to prevent the traffic from being concentrated on the external network near the TTL expiration date.

  On the other hand, there is a case where none of the routers 100 returns a response to the usage status inquiry of the corresponding DNS cache information from the DR, that is, the corresponding DNS cache information is not used. In this case, a DNS inquiry for updating DNS cache information from the DR is not performed. As a result, all routers 100 expire according to the deadline specified in TTL. For this reason, DNS cache information that is used infrequently is deleted in synchronization with all the routers 100, and resources such as the memory of the router 100 can be freed for effective use.

  Next, a specific operation for realizing the data exchange described above will be described with reference to FIG.

  The router 100 according to the present embodiment, which implements the Proxy DNS cache information exchange protocol mechanism, performs a DR search using the route (c) in order to search whether the DR already exists when the apparatus is activated.

  When the DR / BDR has not yet been determined due to the initial operation of the network, the router 100-1, the router 100-2, and the router 100-n each transmit a DR search using the route (c). .

  At present, since the DR has not yet been determined, the notification that the DR exists is not transmitted from any router 100. Therefore, each router 100 performs a DR / BDR selection operation. Of course, the DR / BDR priority of the router 100 itself sent is included in the DR search packet transmitted when the apparatus is activated. Therefore, it is not necessary to send out a new packet for DR / BDR selection.

  Each router 100 monitors DR search packets from other routers 100, and stores the routers 100 having the first and second priority levels in the temporary storage area as compared with its own priority level. . If there is no notification from the DR and the terminal itself is first in the order of priority, the state transitions to the DR. 100 is notified.

  In the state where the DR / BDR has already been determined and the router 100 has joined the network later, the DR / BDR notifies each of the first DR search packets so that it can be known. Therefore, the router 100 that has joined the network later changes itself to OTHER as it is. At this time, even if the router 100 that has joined since then has a higher priority than the router 100 that is already operating as a DR / BDR, the DR / BDR authority is not transferred.

  This is to prevent problems caused by the change of DR each time a new router 100 participates. The problem is that the router 100 currently operating as the DR takes over the cache database information accumulated so far, and the DR address management / BDR address management of the OTHER router 100 is frequently changed. If this happens, efficiency will deteriorate. Therefore, the router 100 with higher priority that participates later is promoted to DR / BDR only at the time of DR / BDR re-election when the existing DR / BDR stops functioning due to a failure or the like.

  Regarding DR / BDR re-election, first, when the DR becomes a failure, the router 100 waiting as the BDR performs a state transition to the immediate DR. Then, the router 100 that has transitioned to the DR activates the DR / BDR selection mechanism in order to promptly recover the role of the DR and reselect the BDR that has become vacant.

  At this time, there is a possibility that the router 100 with a higher priority that participates later becomes a BDR. Here, the expression “possibility” is because the router 100 having a higher priority may participate at that time.

  Next, when the DR becomes alive and the BDR becomes faulty, the DR 100 is not re-selected, but only the BDR is re-selected, so that even in this scene, the router 100 having a high priority may become the BDR.

  Furthermore, if DR / DBR simultaneously fails, the router 100 operating at that time will re-select both the DR / BDR as well as the initial operation of the network. Therefore, there is a possibility of becoming a DR and a possibility of becoming a BDR.

  In any case, when the DR / BDR selection is completed by the above-described operation, the DNS cache database synchronization operation centering on DR starts.

  At the time when the DR is determined, the DNS cache information cached in the DNS cache information storage unit 140 at that time as the DNS cache information that is the basis of sharing is first transferred to all the routers 100 of the BDR / OTHER (c ) Is used for multicast distribution.

  The BDR / OTHER router 100 that has received this compares it with the DNS cache information cached in its own DNS cache information storage unit 140, and applies the information it does not have to its own cache DNS cache information. On the other hand, when the cache DNS information that is not included in the notified DNS cache information is stored in the own cache DNS cache information, the difference information is notified by unicast to the DR using the route (c).

  The DR that has received the difference information may also perform multicast distribution individually each time the difference information comes from other routers 100 as well. However. If multicast distribution is performed every time difference information arrives, the distribution will frequently occur. For this reason, multicast distribution is not performed every time difference information is received, but information for a plurality of devices is aggregated after waiting for a certain time, and then is distributed to all routers 100 by the route (c).

  Thereby, the cache DNS cache information of all the routers 100 is once synchronized.

  Thereafter, in order to maintain the synchronized state, when new information that does not exist in the cache DNS cache information is generated by the DNS inquiry (a) from the client, the difference information is transferred from the router 100 in which the DNS cache information is generated to the DR each time (c ) To report by unicast. The DR multicasts the difference information to all participating routers 100 via the route (c). As a result, the synchronization state is maintained in all the BDR / OTHER routers 100.

  In other words, new DNS cache information is generated by inquiring the DNS server only from the router 100-1 that first received a DNS inquiry for a domain name not included in the cache DNS cache information from the client, and reporting the result to the DR. Is synchronized with all routers 100 by DR. Therefore, even if a DNS inquiry about the same domain name occurs in a client under another router 100, the DNS cache information already exists in the DNS cache information storage unit 140 in each router 100, and the DNS server is not inquired again. Immediate response is possible.

  Note that it is also conceivable that the router 100 that has acquired new information that is not cached in the DNS cache information storage unit 140 in response to a DNS inquiry (a) from the client is a DR. In this case, the operation of delivering the difference from the DR to the other router 100 and maintaining the synchronization state is merely performed by omitting the operation in which the other router 100 notifies the difference information through the route (c). It is done unchanged.

  Next, an operation when information already applied to the cache DNS cache information approaches the expiration time due to TTL will be described.

  When the expiry time approaches due to the TTL, the DR checks the usage status of the corresponding DNS cache information and determines whether or not the update is necessary. For this purpose, first, the reference count of its own database is read. If the value of the reference counter is not 0, an inquiry is made to the DNS server 500 via the route (d) without confirming the usage status to the other routers 100. Thereafter, when receiving a response from the DNS server 500, the DR updates its own DNS cache information storage unit 140. In addition, the update notification of the corresponding DNS cache information is transmitted to the other router 100 using the route (c).

  On the other hand, if its own reference count is 0, it prompts each router 100 to confirm the reference count via the route (c). If there is an update request for any one unit after waiting for a response for a predetermined time, the update process is performed using the route (d). If there is no response from each router 100 for a certain period of time, it is determined that the corresponding database is not frequently used, and the database is deleted after holding the time specified in TTL without performing update processing.

  If there is no update notification from the DR, the routers 100 other than the DR also delete each after holding it according to the time specified in the TTL.

  In this way, when the database needs to be updated, the DR performs the update on behalf of the router, so that each router 100 does not have to individually check with the DNS server. Therefore, it is possible to efficiently operate without reducing the load on the DNS server, the traffic through the contract line, and the bandwidth of the contract line.

  As described above, the present embodiment has the following effects.

  The first effect is that the traffic on the contract line can be reduced and the bandwidth of the contract line can be utilized more efficiently.

  The reason will be described. In the general Proxy DNS function, even when an inquiry to the same database is made, if the router managing the client group is different, traffic is generated in which each router individually inquires the DNS server through a contract line. However, in this embodiment, the DNS database is shared between routers. As a result, after any one of the routers makes an inquiry to the DNS server in the external network, all routers store the correspondence relationship between the domain and the IP address obtained by the inquiry in the database owned by each router. In addition, traffic for information sharing can be closed within a network in a corporate building unit without passing through a contract line. This is the reason for the first effect.

  The second effect is that only the update process for only one DR is required, so that the effect of reducing traffic on the contract line, which is the first effect, can be further enhanced.

  The reason will be described. When the TTL that is the effective time of the database is intentionally set to an extremely short time for the DNS load balancing mechanism, the dynamic DNS mechanism, etc. We had to make frequent DNS queries to the server. As a result, the bandwidth of the contracted line was consumed. However, in the present embodiment, this DNS inquiry is automatically made according to the frequency of use before a fixed time before the DR expires, the database is updated, and the update result is distributed to each router and shared. Therefore, the above-described second effect is achieved.

  Next, a modification of the present embodiment will be described with reference to FIG.

  Referring to FIG. 6, the present modification includes a first area 1000-A, a second area 1000-B, and a third area 1000-C. Each of these areas is a group of routers in a certain management unit divided into areas, and each corresponds to the LAN system 1000 of this embodiment. Therefore, each of these areas includes a plurality of routers 100 and clients 200. In each of these areas, the above-described Proxy DNS cache information exchange protocol mechanism operates.

  Here, in this modification, the combined area 3000 is constructed by selecting one router or a plurality of routers in each area. In this description, it is assumed that the router 100-A, the router 100-B, and the router 100-C are selected. Then, the Proxy DNS cache information exchange protocol mechanism is operated between routers belonging to the combined area 3000. Thereby, the structure which shares the DNS cache database between each area is constructed | assembled.

  In this case, the router 100 belonging to the combined area 3000 activates the process for the combined area 3000 separately from the Proxy DNS cache information exchange protocol mechanism process for the area to which each belongs.

  The router 100 belonging to the combined area 3000 may be any one of DR / BDR / OTHER as long as it is a synchronized router in each area. Even if the DR of each area is combined with the combined area 3000, the processing load on the corresponding router may be increased if it also serves as the DR. Therefore, the DR / BDR priority set by the network designer may be appropriately adjusted so that the low priority ones belong to the combined area 3000 in each individual area.

  As a result, DNS cache information can be shared synchronously between routers across multiple areas, and communication with the DNS server 500 in the external network 2000 can be further reduced.

  In the above description, it is assumed that the Proxy DNS function is included in the router 100. However, the proxy DNS function may be provided in a dedicated proxy device. In this case, the client 200 inquires of the proxy device about the IP address corresponding to the domain name. The DNS cache information between proxy devices is synchronized via the subnetwork 105, the router 100, and the network 107 between the routers 100. Inquiries from the proxy device to the DNS server 500 are made via the sub-network 105, the router 100, the network 107 between the routers 100, the contract line router 300, and the provider router 400.

  Note that the router 100 described above can be realized by hardware, software, or a combination thereof. The cache information exchange method performed by the router 100 can also be realized by hardware, software, or a combination thereof. Here, “realized by software” means realized by a computer reading and executing a program.

  The program may be stored using various types of non-transitory computer readable media and supplied to the computer. Non-transitory computer readable media include various types of tangible storage media. Examples of non-transitory computer readable media include magnetic recording media (for example, flexible disks, magnetic tapes, hard disk drives), magneto-optical recording media (for example, magneto-optical disks), CD-ROMs (Read Only Memory), CD- R, CD-R / W, semiconductor memory (for example, mask ROM, PROM (Programmable ROM), EPROM (Erasable PROM), flash ROM, RAM (random access memory)). The program may also be supplied to the computer by various types of transitory computer readable media. Examples of transitory computer readable media include electrical signals, optical signals, and electromagnetic waves. The temporary computer-readable medium can supply the program to the computer via a wired communication path such as an electric wire and an optical fiber, or a wireless communication path.

  Moreover, although the above-described embodiment is a preferred embodiment of the present invention, the scope of the present invention is not limited only to the above-described embodiment, and various modifications are made without departing from the gist of the present invention. Implementation in the form is possible.

  A part or all of the above-described embodiment can be described as in the following supplementary notes, but is not limited thereto.

(Supplementary Note 1) A cache information exchanging method for exchanging cache information between a plurality of proxy devices,
Any one of the plurality of proxy devices receives a request from any client under the proxy device, makes an inquiry to the server on behalf of the client, and sends response information to the inquiry from the server to the client A proxy step to get on behalf of,
A synchronization step of synchronizing the response information among the plurality of proxy devices;
A holding step in which each of the plurality of proxy devices holds the synchronized reply information as cache information;
A cache information exchanging method characterized by comprising:

(Supplementary note 2) The cache information exchange method according to supplementary note 1, wherein
Each of the plurality of proxy devices makes an inquiry to the server when the cache information held by the own device does not include reply information to the inquiry of the client that has issued the inquiry request. The obtained reply information is returned to the client, and when the cache information includes reply information for the inquiry of the client who has issued the inquiry request, the cache information is not inquired to the server. A cache information exchanging method, wherein the reply information contained therein is returned to the client.

(Supplementary note 3) The cache information exchange method according to supplementary note 1 or 2,
A selection step of selecting a representative proxy device among the plurality of proxy devices;
In the synchronization step, the representative proxy device serving as the representative notifies the proxy device other than the representative proxy device of the reply information that the representative proxy device holds as cache information, thereby A cache information exchanging method, wherein the reply information is synchronized between proxy devices.

(Appendix 4) The cache information exchanging method according to appendix 3,
When a proxy device other than the representative proxy device makes an inquiry to the server, it sends reply information returned from the server to the representative proxy device.
The representative proxy device holds the transmitted reply information as cache information, and transmits the transmitted reply information to a proxy device other than the representative proxy device,
A cache information exchanging method, wherein a proxy device other than the representative proxy device, which has transmitted the reply information from the representative proxy device, holds the reply information as the cache information.

(Supplementary note 5) The cache information exchange method according to any one of supplementary notes 2 to 4,
In the selection step, in addition to the representative proxy device serving as the representative, a preliminary representative proxy device is further selected,
Only the spare representative proxy device of the proxy devices monitors the representative transmission device by sending data for confirming whether or not the representative proxy device is operating normally, and the result of the monitoring A cache information exchanging method, wherein when it is determined that the representative proxy device is not operating normally, the spare representative proxy device operates as a new representative proxy device.

(Supplementary note 6) The cache information exchange method according to supplementary note 5, wherein
Performing the selection step when there is no response from the representative proxy device and there is no notification from the standby representative proxy device that the standby representative proxy device operates as a new representative proxy device. A characteristic cache information exchange method.

(Supplementary note 7) The cache information exchange method according to any one of supplementary notes 1 to 6,
When the expiration date of the cache information is approaching, one of the proxy devices makes an inquiry to the server to update the cache information that is approaching the expiration date, and the updated information is A cache information exchanging method, further comprising an update step of transmitting to a proxy device other than one.

(Appendix 8) The cache information exchange method according to appendix 7,
If all of the proxy devices have not used the cache information whose expiration date is approaching after the previous expiration date, the update step is not performed even if the expiration date is approaching. A characteristic cache information exchange method.

(Supplementary note 9) A cache information exchange system for exchanging cache information among a plurality of proxy devices,
Any one of the plurality of proxy devices receives a request from any client under the proxy device, makes an inquiry to the server on behalf of the client, and sends response information to the inquiry from the server to the client A proxy means obtained on behalf of
Synchronization means for synchronizing the response information among the plurality of proxy devices;
Each of the plurality of proxy devices holds holding information that is synchronized as cache information,
A cache information exchange system comprising:

(Appendix 10) A proxy device,
A proxy unit that accepts a request from any client under the proxy device, queries the server on behalf of the client, and obtains response information from the server on behalf of the client;
Synchronization means for synchronizing cache information with other proxy devices other than the proxy device;
Each of the plurality of proxy devices holds holding information that is synchronized as cache information,
A proxy device comprising:

100 Router 110 Proxy DNS Function Unit 120 DNS Cache Information Related Control Unit 130 Packet Transmission / Reception Unit 140 DNS Cache Information Storage Unit 150 DNS Cache Information Exchange State Storage Unit 200 Client 300 Contract Line Router 400 Provider Router 500 DNS Server 1000 LAN System 1000-A First area 1000-B Second area 1000-C Third area 2000 External network 3000 Combined area

Claims (10)

A cache information exchange method for exchanging cache information between a plurality of proxy devices,
Any one of the plurality of proxy devices receives a request from any client under the proxy device, makes an inquiry to a DNS (Domain Name System) server on behalf of the client, and from the DNS server a surrogate steps that may on behalf of Reply information to the query to the client,
Synchronizing the steps of synchronizing the Reply information between the plurality of proxy device,
A holding step in which each of the plurality of proxy devices holds the synchronized reply information as cache information;
A cache information exchanging method characterized by comprising: The cache information exchanging method according to claim 1,
Each of the plurality of proxy devices makes an inquiry to the DNS server when the cache information held by the own device does not include reply information to the inquiry of the client who has issued the inquiry request. the return information back to the client obtained by, in the cache information, if it contains reply information for the inquiry of the client that issued the request of the inquiry, without performing a query to the DNS server, the cache A cache information exchanging method, wherein reply information included in the information is returned to the client. The cache information exchanging method according to claim 1 or 2,
A selection step of selecting a representative proxy device among the plurality of proxy devices;
In the synchronization step, the representative proxy device serving as the representative notifies the proxy device other than the representative proxy device of the reply information that the representative proxy device holds as cache information, thereby A cache information exchanging method, wherein the reply information is synchronized between proxy devices. The cache information exchanging method according to claim 3,
When a proxy device other than the representative proxy device makes an inquiry to the DNS server, it sends reply information returned from the DNS server to the representative proxy device.
The representative proxy device holds the transmitted reply information as cache information, and transmits the transmitted reply information to a proxy device other than the representative proxy device,
A cache information exchanging method, wherein a proxy device other than the representative proxy device, which has transmitted the reply information from the representative proxy device, holds the reply information as the cache information. The cache information exchanging method according to any one of claims 2 to 4,
In the selection step, in addition to the representative proxy device serving as the representative, a preliminary representative proxy device is further selected,
Only the spare representative proxy device of the proxy devices monitors the representative transmission device by sending data for confirming whether or not the representative proxy device is operating normally, and the result of the monitoring A cache information exchanging method, wherein when it is determined that the representative proxy device is not operating normally, the spare representative proxy device operates as a new representative proxy device. The cache information exchanging method according to claim 5,
Performing the selection step when there is no response from the representative proxy device and there is no notification from the standby representative proxy device that the standby representative proxy device operates as a new representative proxy device. A characteristic cache information exchange method. A cache information exchanging method according to any one of claims 1 to 6,
When the expiration date of the cache information is approaching, one of the proxy devices makes an inquiry to the DNS server to update the cache information that is approaching the expiration date. The cache information exchanging method further comprising an updating step of transmitting to the proxy device other than the one device. The cache information exchanging method according to claim 7,
If all of the proxy devices have not used the cache information whose expiration date is approaching after the previous expiration date, the update step is not performed even if the expiration date is approaching. A characteristic cache information exchange method. A cache information exchange system for exchanging cache information between a plurality of proxy devices,
Any one of the plurality of proxy devices receives a request from any client under the proxy device, makes an inquiry to a DNS (Domain Name System) server on behalf of the client, and from the DNS server a proxy means capable on behalf of Reply information to the query to the client,
Means synchronizing synchronizing the Reply information between the plurality of proxy device,
Each of the plurality of proxy devices holds holding information that is synchronized as cache information,
A cache information exchange system comprising: A proxy device,
Receiving a request from one of the clients under the proxy device, queries the DNS server on behalf to the client, the Reply information for inquiry the from the DNS (Domain Name System) server on behalf the client A proxy means to obtain,
Synchronization means for synchronizing cache information with other proxy devices other than the proxy device;
Each of the plurality of proxy devices holds holding information that is synchronized as cache information,
A proxy device comprising:

Images