All Products
Search

This Product

    Alibaba Cloud DNS:Cache-accelerated Domain Name

    Document Center

    Alibaba Cloud DNS:Cache-accelerated Domain Name

    Last Updated:Dec 09, 2024

      Overview

      Cache-accelerated Domain Name is a Domain Name System (DNS) proxy service that enables enterprises to use the infrastructure of Alibaba Cloud DNS without DNS migration. This service helps enterprises improve the DNS protection capability, accelerate DNS access, and support backup for DNS servers.

    Benefits

    • Distributed denial of service (DDoS) attack mitigation: DNS responses are cached to protect your authoritative DNS servers from DDoS attacks and reduce the loads on your authoritative DNS servers.

    • DNS access acceleration: Alibaba Cloud DNS provides global nodes. This allows you to access the nearest node and increases the access speed.

    • Backup for DNS servers: If an error occurs in your authoritative DNS server, the Cache-accelerated Domain Name service allows you to use the service before the cached DNS records expire. This shortens the time wasted by the error.

    • Cost-effectiveness: If you use on-premises DNS servers, the Cache-accelerated Domain Name service can help you reduce bandwidth usage to save costs. image.png

    Terms in the console

    1. Cache-accelerated Domain Name

      The domain name for which you want to activate the Cache-accelerated Domain Name service. It only can be a primary domain name.

    2. Origin DNS Servers

      The addresses and ports of authoritative DNS servers. If the address of an authoritative DNS server is ns1.alidns.com, ns1.alidns.com:53 is displayed in the Origin DNS Servers column.

    3. Alibaba Cloud DNS Access Status

      The state of the Cache-accelerated Domain Name service.

      State

      Description

      Solution

      Normal

      The DNS servers of a domain name are changed to cache1.alidns.com and cache2.alidns.com, and the Cache-accelerated Domain Name service is activated for the DNS servers.

      N/A

      Have not used AlibabaCloudDNS

      The DNS servers of a domain name are not changed to cache1.alidns.com or cache1.alidns.com.

      Change the DNS servers of the domain name to cache1.alidns.com and cache2.alidns.com.

      Running exception

      The information about the DNS servers of a domain name is not obtained.

      For more information, see DNS server status.

    Limits

    1. If Alibaba Cloud DNS is applied to both a primary domain name and a subdomain name, you cannot use the Cache-accelerated Domain Name service for the subdomain name.

    2. You cannot configure intelligent DNS resolution for the Cache-accelerated Domain Name service.

    Procedure

    1. Log on to the Alibaba Cloud DNS console.

    2. In the left-side navigation pane, click Authoritative Domain Name. On the Authoritative Domain Name page, click the Cache-accelerated Domain Names tab.

    3. Click Create Cache-accelerated Domain Name and set the required parameters.

      You must set the following parameters:

      Cache-accelerated Domain Name: the domain name for which you want to activate the Cache-accelerated Domain Name service.

      Service Instance: the instance that you want to bind. You can select a Cache-accelerated Domain Name instance that you have purchased from the drop-down list. If no instance is displayed in the drop-down list, click here to buy one.

      Minimum TTL Period of Back-to-origin Cached Data and Maximum TTL Period of Back-to-origin Cached Data: the minimum and maximum time-to-live (TTL) periods. During the TTL periods, the DNS records of the domain name for which you want to activate the Cache-accelerated Domain Name service are effective. Unit: second. Valid values: 30 to 86400.

      Note

      After the Cache-accelerated Domain Name service is activated, the TTL period of the local DNS is subject to the TTL period specified when you activate the Cache-accelerated Domain Name service. If an Internet service provider (ISP) extends the TTL period, contact the ISP to resolve the issue.

      Back-to-origin DNS Query Protocol: Resolution requests are sent to authoritative DNS servers over UDP. Only UDP is supported.

      Support for EDNS Client Subnet on Origin DNS Servers: You can select this check box if your authoritative DNS servers support the Extension Mechanisms for DNS (EDNS) protocol. Assume that the local DNS also supports the EDNS protocol. When the local DNS sends a recursive resolution request, the Cache-accelerated Domain Name service sends the egress IP address of the client contained in the resolution request to your origin DNS server.

      Origin DNS Servers: You can specify one or more origin DNS servers. The default port is 53. You can specify the actual ports of the origin DNS servers. image.png