Domain name Searches (DNS):

Recursive DNS querying:

---> Recursive DNS Querying is where one DNS server communicates with other DNS servers in order to locate a specific IP address (CloudFlare).

Iterative DNS Querying:

---> Iterative DNS Querying is where the client communicates directly with multiple DNS servers in order to locate a specific IP (CloudFlare).

Major Differences:

The major difference consists of the concepts of iteration and recursion. Recursive DNS requires the first DNS server to respond back with the corresponding IP regardless of how many other DNS servers it has to query. In an Iterative Query the client would ask the DNS server. The server would say “sorry we dont know, try checking here” and the client would then ask the next DNS server (CloudFlare).

DNS Attacks:

---> DNS Recursion [Any client]:
---> DNS Amplification Attack / DOS: [Multiple requests for information are sent from name servers which results in amplification due to the amount of requests sent. This ultimately can overwhelm system targets] (Hostadvice) ---> DNS Cache poisoning: [Cached responses from clients can be poisoned with incorrect information which can disrupt the affected name server] (HostAdvice)

Major Differences:

The major difference consists of the concepts of iteration and recursion. Recursive DNS requires the first DNS server to respond back with the corresponding IP regardless of how many other DNS servers it has to query. In an Iterative Query the client would ask the DNS server. The server would say “sorry we dont know, try checking here” and the client would then ask the next DNS server (CloudFlare).

Suggestions for corporate: (Cisco)
The major consideration when using recursive DNS would be to use an intrusion detection system as well as DNS guard. Intrusion Detection systems essentially check packet data to confirm the source/destination IP/Mac address are congruent with what is expected. If the packet is deemed intrusive it gets dropped. DNS Guard essentially analyzes and provides context for DNS requests from both upstream and downstream.

IPAM

A suite of tools built for the planning, integration, and monitoring of a corporate IPv4 && IPv6 system. This includes tracking that works with DHCP, Static, and Reserved IP assignment. It can be applied to the following Window Servers: Server 2022, Server 2019, Server 2016.(Microsoft)
It is useful in a production environment as it can correct any duplicated IPs on the network. It automatically does IP allocation and confirms the DNS records are connected to the correct IP address. It also automatically keeps records of all network IP addresses. (Gyongyo)