Products by Protocol
Codenomicon DNS Zone Transfer Test Tool Data Sheet
- Test tool: Codenomicon DNS Zone Transfer Test Tool
- Direction: Server and Client
Domain Name Service (DNS) is a protocol originally intended to translate Internet domain names to Internet Protocol (IP) addresses and vice versa, evolved since to provide many additional types of information related to hosts, networks and domains. Since the proper functioning of DNS is vital to many Internet application services such as WWW and email, the dependability of DNS implementations must be verified. This test tool can be used to test both DNS client and server implementations for security flaws and robustness problems in handling DNS zone transfer responses.
Used specifications
| Specification | Title |
|---|---|
| RFC1034 | Domain Names - Concepts and Facilities |
| RFC1035 | Domain Names - Implementation and Specification |
| RFC1183 | New DNS RR Definitions |
| RFC1348 | DNS NSAP RRs |
| RFC1706 | DNS NSAP Resource Records |
| RFC1712 | DNS Encoding of Geographical Location |
| RFC1876 | A Means of Expressing Location Information in the Domain Name System |
| RFC1996 | A Mechanism for Prompt Notification of Zone Changes (DNS NOTIFY) |
| RFC2136 | Dynamic Updates for the Domain Name System (DNS UPDATE) |
| RFC2163 | Using the Internet DNS to Distribute MIXER Conformant Global Address Mapping (MCGAM) |
| RFC2230 | Key Exchange Delegation Record for the DNS |
| RFC2535 | Domain Name System Security Extensions |
| RFC2538 | Storing Certificates in the Domain Name System (DNS) |
| RFC2671 | Extension Mechanisms for DNS (EDNS0) |
| RFC2672 | Non-Terminal DNS Name Redirection |
| RFC2782 | A DNS RR for specifying the location of services (DNS SRV) |
| RFC2845 | Secret Key Transaction for DNS (TSIG) |
| RFC2874 | DNS Extensions to Support IPv6 Address Aggregation and Renumbering |
| RFC2930 | Secret Key Establishment for DNS (TKEY RR) |
| RFC3123 | A DNS RR Type for Lists of Address Prefixes (APL RR) |
| RFC3403 | Dynamic Delegation Discovery System (DDDS) Part Three: The Domain Name System (DNS) Database |
| RFC3596 | DNS Extensions to Support IP Version 6 |
Test tool general features
- Fully automated black-box negative testing
- Ready-made test cases
- Written in Java(tm)
- GUI, command line, remote interface modes
- Instrumentation (health-check) capability
- Support and maintenance
- Comprehensive user documentation
- Results reporting and analysis
Tool-specific information
| Tested messages | Notes | Specifications |
|---|---|---|
| AXFR QUERY response | RFC1034, 1035 | Supported protocol features | Notes | Specifications |
| Send NOTIFY before test case | RFC1876 | Unsupported protocol features | Notes | Specifications |
| DNSSEC(RRs are tested, however) | RFC2535 | |
| IXFR | RFC1995 | Tested DNS RRs | Notes | Specification |
| A | RFC1035 | |
| NS | RFC1035 | |
| MD | RFC1035 | |
| MF | RFC1035 | |
| CNAME | RFC1035 | |
| SOA | RFC1035 | |
| MB | RFC1035 | |
| MG | RFC1035 | |
| MR | RFC1035 | |
| NULL | RFC1035 | |
| WKS | RFC1035 | |
| PTR | RFC1035 | |
| HINFO | RFC1035 | |
| MINFO | RFC1035 | |
| MX | RFC1035 | |
| TXT | RFC1035 | |
| RP | RFC1183 | |
| AFSDB | RFC1183 | |
| X25 | RFC1183 | |
| ISDN | RFC1183 | |
| RT | RFC1183 | |
| NSAP | RFC1706 | |
| NSAP-PTR | RFC1348 | |
| SIG | RFC2535 | |
| KEY | RFC2535 | |
| PX | RFC2163 | |
| GPOS | RFC1712 | |
| AAAA | RFC3596 | |
| LOC | RFC1876 | |
| NXT | RFC2535 | |
| SRV | RFC2782 | |
| NAPTR | RFC3403 | |
| KX | RFC2230 | |
| CERT | RFC2538 | |
| A6 | RFC2874 | |
| DNAME | RFC2762 | |
| OPT | RFC2671 | |
| APL | RFC3123 | |
| TKEY | RFC2930 | |
| TSIG | RFC2845 |
This page lists the test tool data sheets available for sales and support. Please note that the information in these sheets is subject to periodical change.
Test Tool Datasheet: