Creating a custom server

The builtin DNS server plugin is useful, but the beauty of Twisted Names is that you can build your own custom servers and clients using the names components.

  • In this section you will learn about the components required to build a simple DNS server.
  • You will then learn how to create a custom DNS server which calculates responses dynamically.

A simple forwarding DNS server

Lets start by creating a simple forwarding DNS server, which forwards all requests to an upstream server (or servers).

simple_server.py <listings/names/simple_server.py>

In this example we are passing a client.Resolver <twisted.names.client.Resolver> instance to the DNSServerFactory <twisted.names.server.DNSServerFactory> and we are configuring that client to use the upstream DNS servers which are specified in a local resolv.conf file.

Also note that we start the server listening on both UDP and TCP ports. This is a standard requirement for DNS servers.

You can test the server using dig. For example:

$ dig -p 10053 @127.0.0.1 example.com SOA +short
sns.dns.icann.org. noc.dns.icann.org. 2013102791 7200 3600 1209600 3600

A server which computes responses dynamically

Now suppose we want to create a bespoke DNS server which responds to certain hostname queries by dynamically calculating the resulting IP address, while passing all other queries to another DNS server. Queries for hostnames matching the pattern workstation{0-9}+ will result in an IP address where the last octet matches the workstation number.

We'll write a custom resolver which we insert before the standard client resolver. The custom resolver will be queried first.

Here's the code:

override_server.py <listings/names/override_server.py>

Notice that DynamicResolver.query returns a Deferred <twisted.internet.defer.Deferred>. On success, it returns three lists of DNS records (answers, authority, additional), which will be encoded by dns.Message <twisted.names.dns.Message> and returned to the client. On failure, it returns a DomainError <twisted.names.error.DomainError>, which is a signal that the query should be dispatched to the next client resolver in the list.

Note

The fallback behaviour is actually handled by ResolverChain <twisted.names.resolve.ResolverChain>.

ResolverChain is a proxy for other resolvers. It takes a list of IResolver <twisted.internet.interfaces.IResolver> providers and queries each one in turn until it receives an answer, or until the list is exhausted.

Each IResolver <twisted.internet.interfaces.IResolver> in the chain may return a deferred DomainError <twisted.names.error.DomainError>, which is a signal that ResolverChain <twisted.names.resolve.ResolverChain> should query the next chained resolver.

The DNSServerFactory <twisted.names.server.DNSServerFactory> constructor takes a list of authoritative resolvers, caches and client resolvers and ensures that they are added to the ResolverChain <twisted.names.resolve.ResolverChain> in the correct order.

Let's use dig to see how this server responds to requests that match the pattern we specified:

$ dig -p 10053 @127.0.0.1 workstation1.example.com A +short
172.0.2.1

$ dig -p 10053 @127.0.0.1 workstation100.example.com A +short
172.0.2.100

And if we issue a request that doesn't match the pattern:

$ dig -p 10053 @localhost www.example.com A +short
93.184.216.119

Further Reading

For simplicity, the examples above use the reactor.listenXXX APIs. But your application will be more flexible if you use the Twisted Application APIs, along with the Twisted plugin system and twistd. Read the source code of names.tap <twisted.names.tap> to see how the twistd names plugin works.