By hosting your own DNS - you will have full control of your domain ! Your Internet presence does not depend on your contract with your ISP or hosting provider. You can switch to any ISP or Hosting anytime without worrying about losing your domain, websites, mail servers.
Simple yet Powerful
What makes Simple DNS Plus "simple" is its easy-to-use user interface and automation features. All options and settings are available directly from the intuitive Windows user interface. It provides wizards for common tasks such as setting up new zones, importing data, making bulk updates, etc. You never need to mess with cryptic configuration files or registry settings. Novice users can have their DNS server up and running correctly and securely in no time. But make no mistake - Simple DNS Plus is a very capable and full featured DNS server, and it has plenty of options for expert users to tweak it just the way they want.
Simple yet Powerful
What makes Simple DNS Plus "simple" is its easy-to-use user interface and automation features. All options and settings are available directly from the intuitive Windows user interface. It provides wizards for common tasks such as setting up new zones, importing data, making bulk updates, etc. You never need to mess with cryptic configuration files or registry settings. Novice users can have their DNS server up and running correctly and securely in no time. But make no mistake - Simple DNS Plus is a very capable and full featured DNS server, and it has plenty of options for expert users to tweak it just the way they want.
Why you need Simple DNS?
Simple DNS Server is designed to completely replace the DNS servers provided by your ISP or Hosting providers. Using Simple DNS you can host your own domains, websites, mail servers, FTP servers, application servers, provide DNS resolutions for your network and more. You do not have to contact your ISP or Hosting provider to change or add records in your DNS.
Simple DNS Server is designed to completely replace the DNS servers provided by your ISP or Hosting providers. Using Simple DNS you can host your own domains, websites, mail servers, FTP servers, application servers, provide DNS resolutions for your network and more. You do not have to contact your ISP or Hosting provider to change or add records in your DNS.
Authoritative and Recursive (resolver and cache) DNS server
All the DNS server features and functionality you need to host DNS for domain names, assign domain name to computers and devices for easy access, create and delegate sub-domains, resolve other domain names on the Internet, speed up Internet access with centralized DNS caching, etc.
High performance DNS server engine and user interface
Great for hosting and managing anywhere from a few domains to +100,000 domains.
The user interface is optimized to handle really large domain name portfolios.
Highly configurable
Simple DNS Plus has options to configure all aspects of the DNS services, including many unique but important options not found in competing products such as the ability to limit recursion by IP address. Options are well organized and easy to manage in a central Options dialog available directly from first toolbar button in the main program window.
Of course the software comes preconfigured with settings that are appropriate for most users.
Remote Management / Windows Server Core (New in v. 5.2)
The Simple DNS Plus user interface can be run on a desktop computer connecting to a remote Simple DNS Plus server, making it easy and fast to manage the server without Remote Desktop, VNC, or similar.You can even remote manage a Simple DNS Plus service running on Windows Server Core (no GUI on server) - details.
Direct support for dynamic IP clients
Simple DNS Plus supports TSIG authenticated dynamic DNS updates.
This update method is more efficient than the HTTP based and other proprietary update methods typically used because it happens directly via the DNS protocol.
Several dynamic IP updater applications can be used with this.Setup tutorials are provided for DynSite and DirectUpdate.Simple DNS Plus can also function as a dynamic DNS service for more generic HTTP based update clients either by using the DynDNS Service plug-in or by using a web-server front-end.
Full support for IDNs (internationalized domain names)
In Simple DNS Plus you can enter domain names with native characters directly (no punycode conversion needed), and have an option to display native character or punycoded domain names anywhere in the user interface, and quickly switch between these modes. More details...
Full support for IPv6
Simple DNS Plus v. 5.0 has full support for IPv6 - the next Internet Protocol version.
It has an option to control protocol preference (IPv4 / IPv6) on dual-stack computers, and it can even act as IPv6-to-IPv4 or IPv4-to-IPv6 forwarder. More details...
Easy to integrate with other applications
You can create DNS records or entire zone files from other applications or web-sites and prompt Simple DNS Plus to dynamically load and use this through command line options, a simple HTTP API, and our full .NET/COM programming API.
The included help file contains a complete description of these features.
Simple DNS Plus also allows you to connect with other applications and data from different sources through various plug-ins and can be extended through an open plug-in architecture.
100% .NET 2.0 managed code
This provides great performance - also on 64 bit computers where Simple DNS Plus runs in native 64 bit mode. And it is very secure because common security issues such as buffer overruns simply cannot happen.
All the DNS server features and functionality you need to host DNS for domain names, assign domain name to computers and devices for easy access, create and delegate sub-domains, resolve other domain names on the Internet, speed up Internet access with centralized DNS caching, etc.
High performance DNS server engine and user interface
Great for hosting and managing anywhere from a few domains to +100,000 domains.
The user interface is optimized to handle really large domain name portfolios.
Highly configurable
Simple DNS Plus has options to configure all aspects of the DNS services, including many unique but important options not found in competing products such as the ability to limit recursion by IP address. Options are well organized and easy to manage in a central Options dialog available directly from first toolbar button in the main program window.
Of course the software comes preconfigured with settings that are appropriate for most users.
Remote Management / Windows Server Core (New in v. 5.2)
The Simple DNS Plus user interface can be run on a desktop computer connecting to a remote Simple DNS Plus server, making it easy and fast to manage the server without Remote Desktop, VNC, or similar.You can even remote manage a Simple DNS Plus service running on Windows Server Core (no GUI on server) - details.
Direct support for dynamic IP clients
Simple DNS Plus supports TSIG authenticated dynamic DNS updates.
This update method is more efficient than the HTTP based and other proprietary update methods typically used because it happens directly via the DNS protocol.
Several dynamic IP updater applications can be used with this.Setup tutorials are provided for DynSite and DirectUpdate.Simple DNS Plus can also function as a dynamic DNS service for more generic HTTP based update clients either by using the DynDNS Service plug-in or by using a web-server front-end.
Full support for IDNs (internationalized domain names)
In Simple DNS Plus you can enter domain names with native characters directly (no punycode conversion needed), and have an option to display native character or punycoded domain names anywhere in the user interface, and quickly switch between these modes. More details...
Full support for IPv6
Simple DNS Plus v. 5.0 has full support for IPv6 - the next Internet Protocol version.
It has an option to control protocol preference (IPv4 / IPv6) on dual-stack computers, and it can even act as IPv6-to-IPv4 or IPv4-to-IPv6 forwarder. More details...
Easy to integrate with other applications
You can create DNS records or entire zone files from other applications or web-sites and prompt Simple DNS Plus to dynamically load and use this through command line options, a simple HTTP API, and our full .NET/COM programming API.
The included help file contains a complete description of these features.
Simple DNS Plus also allows you to connect with other applications and data from different sources through various plug-ins and can be extended through an open plug-in architecture.
100% .NET 2.0 managed code
This provides great performance - also on 64 bit computers where Simple DNS Plus runs in native 64 bit mode. And it is very secure because common security issues such as buffer overruns simply cannot happen.
With the user friendly GUI interface of Simple DNS, setting up and managing your own DNS servers becomes a simple task! Below are some of the management feature of Simple DNS Plus Server.
Quick Zone Wizard / Zone Templates
That's all you need to setup a new zone. The IP addresses can even be pre-filled with default values. The Quick Zone Wizard is template based and you easily create your own templates with exactly the DNS records etc. you need when setting up now domains.
Suspending zones
Suspending a zone allows you to temporarily stop serving data for a zone without deleting it. This can be useful for example if you are hosting the domain name for someone else, and they forgot to pay their bill...
Suspended zones are easily recognized in the user interface with a "paused" icon and a red zone name. When someone requests a name in a suspended zones, Simple DNS Plus can either respond as if the zone was configured at all, or synthesize a response (redirect to a "domain suspended" web-page), or respond with a error.
Bulk Update Wizard
Quickly and easily update thousands of zones in one quick step:
- Find and replace an IP address.
- Find and replace a host name
- Update DNS record TTL values
- Update zone e-mail servers (MX-records)
- Update zone DNS servers (NS- and SOA-records)
- Update SOA-record data fields
- Promote secondary server to primary (convert all secondary zones to primary)
- Update primary DNS server IP address for secondary zones
Copy zone function
Quickly setup a new zone using any existing zone as a template.
Import Wizard
This function makes it very simple to import zones from other DNS server implementations. This includes zone transfer, import zone file, import set of zone files based on a boot file, and import a list of domain names using data from an existing zone.
Easy IP-to-Name Mapping dialog for reverse zones
Forget "in-addr.arpa" and reversing IP address segments.
With the "IP-to-Name Mapping", you simply type the corresponding host name next to each IP address represented by the reverse zone. An "auto scan" function can scan all forward zones for A-records and automatically create matching reverse records.
"Zone Groups" for easy managements of large domain portfolios
You can arrange zones in custom groups, or by primary/secondary status.
Automatic creation of reverse DNS records
Automatically create/update reverse DNS when an A-record (or AAAA-record) is added or modified.
DNS record and zone comment fields
Enter comments for individual DNS records and zones. For example client account numbers, or reminders about what certain records do, etc. For DNS records updated dynamically or via DHCP, the comment field will automatically contain a timestamp and other information about the update.
Quick Zone Wizard / Zone Templates
That's all you need to setup a new zone. The IP addresses can even be pre-filled with default values. The Quick Zone Wizard is template based and you easily create your own templates with exactly the DNS records etc. you need when setting up now domains.
Suspending zones
Suspending a zone allows you to temporarily stop serving data for a zone without deleting it. This can be useful for example if you are hosting the domain name for someone else, and they forgot to pay their bill...
Suspended zones are easily recognized in the user interface with a "paused" icon and a red zone name. When someone requests a name in a suspended zones, Simple DNS Plus can either respond as if the zone was configured at all, or synthesize a response (redirect to a "domain suspended" web-page), or respond with a error.
Bulk Update Wizard
Quickly and easily update thousands of zones in one quick step:
- Find and replace an IP address.
- Find and replace a host name
- Update DNS record TTL values
- Update zone e-mail servers (MX-records)
- Update zone DNS servers (NS- and SOA-records)
- Update SOA-record data fields
- Promote secondary server to primary (convert all secondary zones to primary)
- Update primary DNS server IP address for secondary zones
Copy zone function
Quickly setup a new zone using any existing zone as a template.
Import Wizard
This function makes it very simple to import zones from other DNS server implementations. This includes zone transfer, import zone file, import set of zone files based on a boot file, and import a list of domain names using data from an existing zone.
Easy IP-to-Name Mapping dialog for reverse zones
Forget "in-addr.arpa" and reversing IP address segments.
With the "IP-to-Name Mapping", you simply type the corresponding host name next to each IP address represented by the reverse zone. An "auto scan" function can scan all forward zones for A-records and automatically create matching reverse records.
"Zone Groups" for easy managements of large domain portfolios
You can arrange zones in custom groups, or by primary/secondary status.
Automatic creation of reverse DNS records
Automatically create/update reverse DNS when an A-record (or AAAA-record) is added or modified.
DNS record and zone comment fields
Enter comments for individual DNS records and zones. For example client account numbers, or reminders about what certain records do, etc. For DNS records updated dynamically or via DHCP, the comment field will automatically contain a timestamp and other information about the update.
Simple DNS is probably the most secured DNS server in the planet today. While other DNS servers are continually being victimized by DNS attacks, Simple DNS servers were able to repulse any DDOS attack PROACTIVELY without any updates! The built in security features of Simple DNS provides a PROACTIVE protection against DDOS attacks on DNS.
One good example is the Kaminsky bug - other DNS servers were heavily affected by this DNS attack but not Simple DNS.
Below are the security features of Simple DNS server
Strong security features
Protects against DNS spoofing (a.k.a. "cache poisoning")
"DNS spoofing" is a term used for malicious cache poisoning where forged data is placed in the cache of DNS server. Spoofing attacks can result in serious security problems, for example causing users to be directed to wrong Internet sites or e-mail being routed to non-authorized mail servers.
Simple DNS Plus automatically protects against this in several ways:
- It automatically filters out any response received which does not match a sent request.
- All records in received DNS answers are checked for authority, and records for which the answering DNS server does not have authority are ignored.
- It uses random requests IDs.
- It sends outbound DNS requests from random port numbers (a.k.a. "port randomization").
- It queues identical requests to prevent "birthday attacks".
- It has an option to "Ignore responses not coming from the IP address that request was sent to".
- It has an option to "Ignore responses which do not echo the request question section".
Restrict recursion by client IP address
You can specify exactly which clients (by IP address / subnet) that you want the server to perform recursion for.
Response Filtering stops "DNS rebinding attacks"
Web-browsers generally allow any script, Java object, Flash object, etc. to communicate via HTTP / TCP with the server that served a web-page for as long as that web-page is open in the browser. This is controlled by the host name specified in the web-page URL. A "DNS rebinding attack" is done by having the DNS record for the host name time out very quickly (low TTL and other tricks) and then serve a new IP address for the host name in response to the next DNS request ("rebinding"). The new IP address would be the private/local IP address of an intranet server or device at your location. Now with a bit of scripting, the attacker can in effect use your browser as a gateway to your entire intranet - completely bypassing your firewall. The same type attack may also be possible with other Internet applications that rely on host names for security. Browser companies are taking steps to prevent this in new browser versions, but it is much more efficient and secure to stop this type of attack at the DNS level by filtering out any private/local IP addresses in DNS responses from outside DNS servers.
"Stealth DNS" option
A hacker may use a software utility known as a "DNS port scanner" to search for potential targets. This software sends dummy DNS requests to a range of IP addresses on different service ports simply to register which addresses/ports respond. Any addresses/ports that responded will then be probed further for possible vulnerabilities. Simple DNS Plus has a special "stealth" option which makes it invisible to such DNS port scanners, by not responding to a DNS request unless it is for data in local zones or originates from a client offered recursion.
Secure Zone Transfers
Avoid revealing all your server addresses and other potentially sensitive data by limiting who can zone transfer your zones. Simple DNS Plus supports secure zone transfer (TSIG authenticated). Both zone transfer requests and responses are authenticated so this provides protection in two ways; it prevents unauthorized transfers (only people / servers with the correct key can transfer), and it ensures data integrity on secondary servers (not possible to spoof / inject false data during transfers). Zone transfers can also be limited by IP address for cases where the secondary DNS server does not support TSIG signed zone transfers (less secure but much better than letting anyone zone tranfer your data).
IP Address blocking
Ignore packets from known offenders, and automatically add anyone making too many requests to quickly (DoS attack) to the list. You can specify how long an IP address block should be in effect, and you can enter comments for each block, for example about why an IP address was blocked or should not be blocked for easy reference.
One good example is the Kaminsky bug - other DNS servers were heavily affected by this DNS attack but not Simple DNS.
Below are the security features of Simple DNS server
Strong security features
Protects against DNS spoofing (a.k.a. "cache poisoning")
"DNS spoofing" is a term used for malicious cache poisoning where forged data is placed in the cache of DNS server. Spoofing attacks can result in serious security problems, for example causing users to be directed to wrong Internet sites or e-mail being routed to non-authorized mail servers.
Simple DNS Plus automatically protects against this in several ways:
- It automatically filters out any response received which does not match a sent request.
- All records in received DNS answers are checked for authority, and records for which the answering DNS server does not have authority are ignored.
- It uses random requests IDs.
- It sends outbound DNS requests from random port numbers (a.k.a. "port randomization").
- It queues identical requests to prevent "birthday attacks".
- It has an option to "Ignore responses not coming from the IP address that request was sent to".
- It has an option to "Ignore responses which do not echo the request question section".
Restrict recursion by client IP address
You can specify exactly which clients (by IP address / subnet) that you want the server to perform recursion for.
Response Filtering stops "DNS rebinding attacks"
Web-browsers generally allow any script, Java object, Flash object, etc. to communicate via HTTP / TCP with the server that served a web-page for as long as that web-page is open in the browser. This is controlled by the host name specified in the web-page URL. A "DNS rebinding attack" is done by having the DNS record for the host name time out very quickly (low TTL and other tricks) and then serve a new IP address for the host name in response to the next DNS request ("rebinding"). The new IP address would be the private/local IP address of an intranet server or device at your location. Now with a bit of scripting, the attacker can in effect use your browser as a gateway to your entire intranet - completely bypassing your firewall. The same type attack may also be possible with other Internet applications that rely on host names for security. Browser companies are taking steps to prevent this in new browser versions, but it is much more efficient and secure to stop this type of attack at the DNS level by filtering out any private/local IP addresses in DNS responses from outside DNS servers.
"Stealth DNS" option
A hacker may use a software utility known as a "DNS port scanner" to search for potential targets. This software sends dummy DNS requests to a range of IP addresses on different service ports simply to register which addresses/ports respond. Any addresses/ports that responded will then be probed further for possible vulnerabilities. Simple DNS Plus has a special "stealth" option which makes it invisible to such DNS port scanners, by not responding to a DNS request unless it is for data in local zones or originates from a client offered recursion.
Secure Zone Transfers
Avoid revealing all your server addresses and other potentially sensitive data by limiting who can zone transfer your zones. Simple DNS Plus supports secure zone transfer (TSIG authenticated). Both zone transfer requests and responses are authenticated so this provides protection in two ways; it prevents unauthorized transfers (only people / servers with the correct key can transfer), and it ensures data integrity on secondary servers (not possible to spoof / inject false data during transfers). Zone transfers can also be limited by IP address for cases where the secondary DNS server does not support TSIG signed zone transfers (less secure but much better than letting anyone zone tranfer your data).
IP Address blocking
Ignore packets from known offenders, and automatically add anyone making too many requests to quickly (DoS attack) to the list. You can specify how long an IP address block should be in effect, and you can enter comments for each block, for example about why an IP address was blocked or should not be blocked for easy reference.
By "static" we mean an IP address which does not change, or only very seldom changes.It doesn't matter how the IP address is assigned to your computer/router (manually or dynamically).
Many "always-on" Internet connections such as cable and ADSL connections provide an Internet IP address which never actually change even if it is supposed be be "dynamic". Such an IP address can be considered "static" and works fine for hosting domain names.
Many "always-on" Internet connections such as cable and ADSL connections provide an Internet IP address which never actually change even if it is supposed be be "dynamic". Such an IP address can be considered "static" and works fine for hosting domain names.
| Operating System: |
Any edition of Window 2000, XP, 2003, 2003-R2, Vista, 2008, 2008-R2, or Windows 7. Both 32 bit and 64 bit Windows versions are fully supported. "Windows Home Server" is also supported. "Windows Server Core" is also supported. |
| Software: |
Microsoft .NET Framework 2.0 SP2 (automatically downloaded and installed if missing) |
| Processor (CPU): | 400 MHz or better. |
| Memory (RAM): | 64 MB + Windows and .NET Framework requirements. |
| Hard disk space: | 10 MB + Windows and .NET Framework requirements. |
| Network: | Any type of TCP/IP (IPv4 or IPv6) connection. |
| Internet IP address: | You need a static (*) Internet IP address only if you want to use Simple DNS Plus for hosting domain names on the Internet. A dynamic IP address can be used for a resolving and caching Internet domain names. |
DEPLOYMENT SCENARIOS
Simple DNS can be deployed to suit the needs of your network.
Simple DNS can be deployed to suit the needs of your network.
1.) Hi-Availability Simple DNS Server for DNS resolution of LAN .
Dual Simple DNS server used as DNS resolver for the local network - no domain hosting. Local configured to use Simple DNS as the preferred and alternate DNS server replacing the DNS servers provided by the ISP. This will provide a faster Internet browsing for the local users.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
Dual Simple DNS server used as DNS resolver for the local network - no domain hosting. Local configured to use Simple DNS as the preferred and alternate DNS server replacing the DNS servers provided by the ISP. This will provide a faster Internet browsing for the local users.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
|
|
2.) Hi-Availabiltiy Simple DNS Server for Domain Hosting and DNS resolution of LAN .
You can host your domains and publish your websites, mail server and any servers to the Internet. Create unlimited DNS records, sub domains and provide DNS resolution for your network users. You do not need to use the DNS of your ISP. We can also provide secondary DNS service for failover in any case your DNS ever goes offline.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
You can host your domains and publish your websites, mail server and any servers to the Internet. Create unlimited DNS records, sub domains and provide DNS resolution for your network users. You do not need to use the DNS of your ISP. We can also provide secondary DNS service for failover in any case your DNS ever goes offline.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
|
Deployment Scenario 1
Typically used by small to large networks requiring DNS resolution but will not host domains.
Typically used by small to large networks requiring DNS resolution but will not host domains.
|
4.) Hi-Availabiltiy setup of Simple DNS Server integrated with Windows Active Directory. Used for Domain Hosting and DNS resolution of LAN .
Similar ro Deployment scenario 3 , except that Simple DNS is used as the DNS server by the Active Directory. Simple DNS completely replaces the Windows DNS server and the DNS servers by the ISP.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
Similar ro Deployment scenario 3 , except that Simple DNS is used as the DNS server by the Active Directory. Simple DNS completely replaces the Windows DNS server and the DNS servers by the ISP.
Alternatively, Simple DNS can be used as the DHCP for the LAN .
Deployment Scenario 3
Setup of Simple DNS for domain hosting, DNS resolution and DHCP for network with Active Directory.
Setup of Simple DNS for domain hosting, DNS resolution and DHCP for network with Active Directory.
Deployment Scenario 4
Setup of Simple DNS integrated with the Active Directory and for domain hosting, DNS resolution and DHCP.
Setup of Simple DNS integrated with the Active Directory and for domain hosting, DNS resolution and DHCP.
Deployment Scenario 2
Setup of Simple DNS for domain hosting, DNS resolution and DHCP for network without Active Directory.
Setup of Simple DNS for domain hosting, DNS resolution and DHCP for network without Active Directory.
3.) Hi-Availabiltiy setup of Simple DNS Server with Active Directory or LDAP. Used for Domain Hosting, and DNS resolution for LAN .
Simple DNS is setup as to provide the DNS resolution and domain hosting for the network. You can host your domains and publish your websites, mail server and any servers to the Internet. The local clients use the Windows DNS server as the preferred DNS server. Using DNS forwarding' all DNS resolutions are simply forwarded by the Windows DNS to Simple DNS for recursion. The Simple DNS will provide the DNS recursion of the network. Alternatively, Simple DNS can be used as the DHCP for the LAN .
Simple DNS is setup as to provide the DNS resolution and domain hosting for the network. You can host your domains and publish your websites, mail server and any servers to the Internet. The local clients use the Windows DNS server as the preferred DNS server. Using DNS forwarding' all DNS resolutions are simply forwarded by the Windows DNS to Simple DNS for recursion. The Simple DNS will provide the DNS recursion of the network. Alternatively, Simple DNS can be used as the DHCP for the LAN .
Copyright © 1999-2011 by SAV25 Data Systems · All Rights reserved ·
Related Products
White Papers & Data Sheet
Stay connected with SAV25