What are two roles of Domain Name Services (DNS)? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.DE.
The correct answers are D and E.
Domain Name Services (DNS) is a system that translates domain names into IP addresses, allowing applications and devices to communicate over a network. It is a critical component of the Internet infrastructure, and it performs several roles, including:
D. Enables applications to identify resources by name instead of IP address: Instead of having to remember the IP address of a website or a device on the network, DNS allows users to type in a human-readable domain name, such as www.example.com, which is then translated into the corresponding IP address. This makes it easier for users to access resources on the network and reduces the risk of errors caused by mistyping IP addresses.
E. Allows a single host name to be shared across more than one IP address: DNS also enables load balancing and fault tolerance by allowing multiple IP addresses to be associated with a single domain name. When a user requests a resource from the domain name, DNS can return one of several IP addresses in a round-robin fashion or based on other load balancing algorithms. This can improve the performance and availability of applications and services.
A. Builds a flat structure of DNS names for more efficient IP operations: This answer is incorrect. DNS uses a hierarchical naming structure, with domains and subdomains organized into a tree-like structure. This allows for efficient resolution of domain names to IP addresses and supports delegation of authority for managing different parts of the namespace.
B. Encrypts network traffic as it travels across a WAN by default: This answer is also incorrect. DNS does not encrypt network traffic by default. However, DNS over HTTPS (DoH) and DNS over TLS (DoT) are two protocols that provide encryption for DNS queries and responses.
C. Improves security by protecting IP addresses under Fully Qualified Domain Names (FQDNs): This answer is partially correct. DNS does provide a level of security by allowing FQDNs to be used instead of IP addresses, which can be more difficult to guess or enumerate. However, DNS alone does not protect against all types of attacks, such as DNS spoofing or DNS cache poisoning. Additional security measures, such as DNSSEC, are required to secure the DNS infrastructure.