Characterization of Collaborative Resolution in Recursive DNS Resolvers Rami Al-Dalky Kyle Schomp 2018 AKAMAI FASTER FORWARD TM
|
|
- Blanche Baldwin
- 5 years ago
- Views:
Transcription
1 Characterization of Collaborative Resolution in Recursive DNS Resolvers Rami Al-Dalky Kyle Schomp
2 Background on collaborative resolution Recursive Resolver DNS Client 2 PAM 2018
3 Background on collaborative resolution Authoritative Server com Recursive Resolver DNS Client 2 PAM 2018
4 Background on collaborative resolution Authoritative Server com example.com Recursive Resolver DNS Client 2 PAM 2018
5 Background on collaborative resolution Authoritative Server com example.com Recursive Resolver DNS Client 2 PAM 2018
6 Background on collaborative resolution Authoritative Server com example.com Recursive Resolver DNS Client Different Source IPs 2 PAM 2018
7 Background on collaborative resolution Authoritative Server com example.com Recursive Resolver DNS Client Different Source IPs 2 PAM 2018
8 Why study recursive resolvers? DNS resolutions prefaces majority of web transactions But also, resolvers have an outsized role in performance DNS-based Replica Selection 3 PAM 2018
9 Why study recursive resolvers? DNS resolutions prefaces majority of web transactions But also, resolvers have an outsized role in performance DNS-based Replica Selection A B DNS Client 3 PAM 2018
10 Why study recursive resolvers? DNS resolutions prefaces majority of web transactions But also, resolvers have an outsized role in performance DNS-based Replica Selection A Recursive Resolver B IP of A or B DNS Client 3 PAM 2018
11 Why study recursive resolvers? DNS resolutions prefaces majority of web transactions But also, resolvers have an outsized role in performance DNS-based Replica Selection A Recursive Resolver B IP of A or B DNS Client 3 PAM 2018
12 Data Collection Experimental DNS Records n1.example.com 300 IN CNAME n2.example.com n2.example.com 300 IN A / AAAA / 1:2:3:4:: 4 PAM 2018
13 Data Collection Experimental DNS Records n1.example.com 300 IN CNAME n2.example.com n2.example.com 300 IN A / AAAA / 1:2:3:4:: n1.example.com n2.example.com Authoritative Server 4 PAM 2018
14 Data Collection Experimental DNS Records n1.example.com 300 IN CNAME n2.example.com n2.example.com 300 IN A / AAAA / 1:2:3:4:: X n1.example.com Y n2.example.com Authoritative Server 4 PAM 2018 Directed Edge (X Y) is a Pair
15 Removing False Positive Edges 1. Happy eyeballs Include query type (A or AAAA) in the tuple when pairing queries 2. Multiple clients resolving the experimental name at the same time Hostnames encode the client subnet 3. Racing recursive resolvers for fastest response 4. Re-resolution of one, but not both, hostnames Window-based noise elimination 5 PAM 2018
16 Removing False Positive Edges 1. Happy eyeballs Include query type (A or AAAA) in the tuple when pairing queries 2. Multiple clients resolving the experimental name at the same time Hostnames encode the client subnet 3. Racing recursive resolvers for fastest response 4. Re-resolution of one, but not both, hostnames Window-based noise elimination N 1 N 2 Time 5 PAM 2018
17 Removing False Positive Edges 1. Happy eyeballs Include query type (A or AAAA) in the tuple when pairing queries 2. Multiple clients resolving the experimental name at the same time Hostnames encode the client subnet 3. Racing recursive resolvers for fastest response 4. Re-resolution of one, but not both, hostnames Window-based noise elimination N 1 5 seconds N 1 Time N 2 5 PAM 2018
18 Removing False Positive Edges 1. Happy eyeballs Include query type (A or AAAA) in the tuple when pairing queries 2. Multiple clients resolving the experimental name at the same time Hostnames encode the client subnet 3. Racing recursive resolvers for fastest response 4. Re-resolution of one, but not both, hostnames Window-based noise elimination N 1 5 seconds N 1 N 2 N 2 5 seconds Time 5 PAM 2018
19 Data 1 week of authoritative DNS query logs DNS Queries 820M 6 PAM 2018
20 Data 1 week of authoritative DNS query logs Filter down to pairs from the queries DNS Queries Pairs 820M 109M 7 PAM 2018
21 Data 1 week of authoritative DNS query logs Filter down to pairs from the queries Cluster same initiator into pools DNS Queries Pairs Clusters 820M 109M 421K 8 PAM 2018
22 Data 1 week of authoritative DNS query logs Filter down to pairs from the queries Cluster same initiator into pools Recursive Resolvers DNS Queries Pairs Clusters 820M 109M 421K X Y Y Pool: X Y, Z X Z X 8 PAM 2018 Z
23 Data 1 week of authoritative DNS query logs Filter down to pairs from the queries Cluster same initiator into pools Recursive Resolvers DNS Queries Pairs Clusters 820M 109M 421K X Y X Z Y Pool: X Y, Z N X Y, M X Z X 8 PAM 2018 Z
24 Data 1 week of authoritative DNS query logs Filter down to pairs from the queries Cluster same initiator into pools 14% of clusters contain more than 1 IP DNS Queries Pairs Clusters Singletons Pools 820M 109M 421K 360K 61K 9 PAM 2018
25 What do the pools look like? Number of recursive IPs per pool 10 PAM 2018
26 What do the pools look like? Number of recursive IPs per pool Pools typically consist of a small number of IP addresses 10 PAM 2018
27 What do the pools look like? Distribution in IP-Space IPv4 representation Binary representation PAM 2018
28 What do the pools look like? Distribution in IP-Space IPv4 representation Binary representation Length of covering prefix is PAM 2018
29 What do the pools look like? Distribution in IP-Space 12 PAM 2018
30 What do the pools look like? Distribution in IP-Space Only 50% of pools are in a single /24 12 PAM 2018
31 What do the pools look like? Distribution in IP-Space Only 50% of pools are in a single /24 65% of pools are mostly within a single /24 12 PAM 2018
32 What do the pools look like? Distribution in IP-Space Only 50% of pools are in a single /24 Many pools are spread across IP- Space 65% of pools are mostly within a single /24 12 PAM 2018
33 What do the pools look like? Autonomous Systems per Pool 85% of pools are within a single AS 14% of pools are in 2 ASs Comparing WHOIS entries of most frequently occurring AS pairs shows same organization 13 PAM 2018
34 What do the pools look like? Autonomous Systems per Pool 85% of pools are within a single AS 14% of pools are in 2 ASs Comparing WHOIS entries of most frequently occurring AS pairs shows same organization Pools very rarely cross organizational boundaries 13 PAM 2018
35 What do the pools look like? Geographic Distance within Pools 14 PAM 2018 Berlin to Paris
36 What do the pools look like? Geographic Distance within Pools Maximum distance between any 2 IPs in pool 14 PAM 2018 Berlin to Paris
37 What do the pools look like? Geographic Distance within Pools Weighted by number of occurrences Maximum distance between any 2 IPs in pool 14 PAM 2018 Berlin to Paris
38 What do the pools look like? Geographic Distance within Pools Weighted by number of occurrences Maximum distance between any 2 IPs in pool Most pools are compact, but a few complicate geolocating the clients behind them 14 PAM 2018 Berlin to Paris
39 How are queries distributed within the pool? Category Pools 100% 15 PAM 2018
40 How are queries distributed within the pool? Category Pools with 1 IPv4 / 1 IPv6 address likely dual-stack resolvers 29% have identifiable patterns: and 89ab::1:2:3:4 10% Pools 100% Dual-Stacks 36% and 89ab::4 19% 16 PAM 2018
41 How are queries distributed within the pool? Category Pools with 1 IPv4 / 1 IPv6 address likely dual-stack resolvers Use! " to test for uniformly distributing queries within pool Pools 100% Dual-Stacks 36% Uniform Load Bal 14% 17 PAM 2018
42 How are queries distributed within the pool? Category Pools with 1 IPv4 / 1 IPv6 address likely dual-stack resolvers Use! " to test for uniformly distributing queries within pool Pools where the initiator rarely offloads queries to other resolvers Pools 100% Dual-Stacks 36% Uniform Load Bal 14% Rare Offloading 27% 18 PAM 2018
43 How are queries distributed within the pool? Category Pools with 1 IPv4 / 1 IPv6 address likely dual-stack resolvers Use! " to test for uniformly distributing queries within pool Pools where the initiator rarely offloads queries to other resolvers Other / unknown Pools 100% Dual-Stacks 36% Uniform Load Bal 14% Rare Offloading 27% Other/Unknown 23% 19 PAM 2018
44 How are queries distributed within the pool? Category Pools with 1 IPv4 / 1 IPv6 address likely dual-stack resolvers Use! " to test for uniformly distributing queries within pool Pools 100% Dual-Stacks 36% Uniform Load Bal 14% Rare Offloading 27% Other/Unknown 23% Pools where the Wide initiator range rarely of behaviors offloads suggest that queries to other recursive resolversresolver pools are used for a Other / unknown variety of purposes 19 PAM 2018
45 Questions? Grow revenue opportunities with fast, personalized web experiences and manage complexity from peak demand, mobile devices and data collection. Kyle Schomp
Characterization of Collaborative Resolution in Recursive DNS Resolvers
Characterization of Collaborative Resolution in Recursive DNS Resolvers Rami Al-Dalky 1 and Kyle Schomp 2(B) 1 Case Western Reserve University, Cleveland, USA rami.al-dalky@case.edu 2 Akamai Technologies,
More informationCharacterization of Collaborative Resolution in Recursive DNS Resolvers
Characterization of Collaborative Resolution in Recursive DNS Resolvers Rami Al-Dalky 1 and Kyle Schomp 2 1 Case Western Reserve University 2 Akamai Technologies Abstract. Recursive resolvers in the Domain
More informationDNS Management with Blue Cat Networks at PSU
DNS Management with Blue Cat Networks at PSU Network and System Administrators at Penn State can make their own DNS changes, live, using the Blue Cat Proteus web-based interface. Proteus will be used by
More informationHow to Configure Route 53 for F-Series Firewalls in AWS
How to Configure Route 53 for F-Series Firewalls in AWS If you are running multiple stacks in different AWS regions, or multiple deployments in a single region, you must configure AWS Route 53 to access
More informationUnderstanding the Share of IPv6 Traffic in a Dual-Stack ISP
Understanding the Share of IPv6 Traffic in a Dual-Stack ISP Enric Pujol, Philipp Richter, and Anja Feldmann PAM 2017, Sydney, Australia IPv6 adoption metrics User end hosts Server-side measurements e.g.,
More informationWriting Assignment #1. A Technical Description for Two Different Audiences. Yuji Shimojo WRTG 393. Instructor: Claudia M. Caruana
Writing Assignment #1 A Technical Description for Two Different Audiences Yuji Shimojo WRTG 393 Instructor: Claudia M. Caruana November 9, 2016 1 Introduction I work in IT technical support at a web design
More informationDomain Name Service. Product Description. Issue 03 Date HUAWEI TECHNOLOGIES CO., LTD.
Issue 03 Date 2018-08-15 HUAWEI TECHNOLOGIES CO., LTD. Copyright Huawei Technologies Co., Ltd. 2018. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any
More informationHow we measure IPv6. Geoff Huston, Joao Damas George Michalson APNIC. George Michaelson. Geoff Huston. Joao Damas. APNIC Labs
How we measure IPv6 George Michaelson Geoff Huston, Joao Damas George Michalson APNIC Geoff Huston Joao Damas APNIC Labs Background Measurement is a big topic in today s Internet Reliable, unbiased, open
More informationMobile Content Hosting Infrastructure in China: A View from a Cellular ISP. Zhenhua Li Chunjing Han Gaogang Xie
Mobile Content Hosting Infrastructure in China: A View from a Cellular ISP Zhenyu Li Donghui Yang Zhenhua Li Chunjing Han Gaogang Xie Continuous increase of mobile data CISCO projected: the mobile data
More informationAdvanced Caching DNS Server
This chapter explains how to set the Caching DNS parameters for the advanced features of the server. Before you proceed with the tasks in this chapter, see Introduction to the Domain Name System which
More informationIPv6 in Asia from Akamai Perspective
IPv6 in Asia from Akamai Perspective TWNOG 2018 21st Jun 2018 Who am I? Name: Tonie Wong Company: Akamai Technologies (Hong Kong) Department: Network Partner Services APJ Responsibilities: Service and
More informationThe term "router" in this document refers to both routers and Layer 3 switches. Step Command Remarks. ipv6 host hostname ipv6-address
Contents Configuring IPv6 DNS 1 Overview 1 Configuring the IPv6 DNS client 1 Configuring static domain name resolution 1 Configuring dynamic domain name resolution 1 Displaying and maintaining IPv6 DNS
More informationAPNIC elearning: DNS Concepts
APNIC elearning: DNS Concepts 27 MAY 2015 11:00 AM AEST Brisbane (UTC+10) Issue Date: Revision: Introduction Presenter Sheryl Hermoso Training Officer sheryl@apnic.net Specialties: Network Security IPv6
More informationApplication Layer: OSI and TCP/IP Models
Application Layer Application Layer: OSI and TCP/IP Models The communication process between two communicating nodes is actually a communication process between two applications on these devices. Service
More informationHow do we make the transition less painful? IPv6 & recursive resolvers:
How do we make the transition less painful? IPv6 & recursive resolvers: 11.5.2009 Overview of the problem IPv6 rollout may not impact production IPv4 Rolling out dedicated IPv6 hostnames is not a good
More informationManage Your DNS In The Cloud Get Started With Route 53
Manage Your DNS In The Cloud Get Started With Route 53 Expected Learning Manage DNS In The Cloud With Route 53 By the end of this section, you should be able to: Understand the basics of DNS Describe AWS
More informationThe Anatomy of LDNS Clusters: Findings and Implications for DNS-Based Network Control
The Anatomy of LDNS Clusters: Findings and Implications for DNS-Based Network Control Hussein A. Alzoubi Case Western Reserve University Michael Rabinovich Case Western Reserve University Oliver Spatscheck
More informationEvaluation and consideration of multiple responses. Kazunori Fujiwara, JPRS OARC 28
Evaluation and consideration of multiple responses Kazunori Fujiwara, JPRS fujiwara@jprs.co.jp OARC 28 Past discussion Background DNS is query response based protocol Each query contains one QNAME / QTYPE
More informationManaging DNS Firewall
, page 1 DNS firewall controls the domain names, IP addresses, and name servers that are allowed to function on the network. This enables Internet Service Providers (ISP), enterprises, or organizations
More informationCSCE 463/612 Networks and Distributed Processing Spring 2018
CSCE 463/612 Networks and Distributed Processing Spring 2018 Application Layer IV Dmitri Loguinov Texas A&M University February 13, 2018 1 Chapter 2: Roadmap 2.1 Principles of network applications 2.2
More informationConfiguring the Management Access List
The following topics explain how to configure the various system settings that are grouped together on the page. The settings cover overall system function. Configuring the Management Access List, page
More informationConsiderations and Actions of Content Providers in Adopting IPv6
Considerations and Actions of Content Providers in Adopting IPv6 Sheng Jiang / Huawei Brian Carpenter / University of Auckland www.huawei.com IPv6 Trends Global IPv4 registry (IANA) ran out of spare blocks
More informationManaging Zones. Staged and Synchronous Modes CHAPTER. See Also
CHAPTER 15 Managing Zones The Domain Name System (DNS) is a distributed database for objects in a computer network. By using a nameserver approach, the network consists of a hierarchy of autonomous domains
More informationIn rdns We Trust Revisiting rdns Use by Clients on the Internet
In rdns We Trust Revisiting rdns Use by Clients on the Internet Tobias Fiebig 1,2,3, Kevin Borgolte 2, Shuang Hao 4, Christopher Kruegel 2, Giovanni Vigna 2, Anja Feldmann 3,5 1 TU Delft 2 UC Santa Barbara
More informationF5 and Infoblox DNS Integrated Architecture: Offering a Complete Scalable, Secure DNS Solution
F5 Technical Brief F5 and Infoblox DNS Integrated Architecture: Offering a Complete Scalable, Secure DNS Solution As market leaders in the application delivery market and DNS, DHCP, and IP Address Management
More informationTowards a Model of DNS Client Behavior
Towards a Model of DNS Client Behavior Kyle Schomp Michael Rabinovich Mark Allman CWRU CWRU ICSI MoCvaCon Previous studies considered aggregate DNS behavior: At root or TLD Per-organizaCon Per-home What
More informationManaging Caching DNS Server
This chapter explains how to set the Caching DNS server parameters. Before you proceed with the tasks in this chapter, see Introduction to the Domain Name System which explains the basics of DNS. Configuring
More informationMCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration. Chapter 5 Introduction to DNS in Windows Server 2008
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008 Objectives Discuss the basics of the Domain Name System (DNS) and its
More informationECE 435 Network Engineering Lecture 7
ECE 435 Network Engineering Lecture 7 Vince Weaver http://web.eece.maine.edu/~vweaver vincent.weaver@maine.edu 25 September 2018 HW#3 was Posted Announcements 1 HW#2 Review C code will be discussed next
More informationMoving Beyond Sockets
Moving Beyond Sockets Architecture and Observations Tommy Pauly (tpauly@apple.com) TAPS IETF 97, November 2016, Seoul 1 Context TAPS is about providing easier ways to use various transport protocols, and
More informationIdentifier Technology Health Indicators (ITHI)
Identifier Technology Health Indicators (ITHI) Yaovi Atohoun Stakeholder Engagement & Operations Manager, Africa UbuntuNet Connect 2018 19-20, November 2018; Zanzibar, Tanzania 1 ICANN Coordinating with
More informationCommunication Networks
Communication Networks Prof. Laurent Vanbever Solution: Exercises week 15 E-mail and recap E-mail Answer the following questions about e-mail with True or False and justify your choice. a) SMTP and IMAP
More informationNetwork+ Guide to Networks 5 th Edition. Chapter 10 In-Depth TCP/IP Networking
Network+ Guide to Networks 5 th Edition Chapter 10 In-Depth TCP/IP Networking Objectives Understand methods of network design unique to TCP/IP networks, including subnetting, CIDR, and address translation
More informationRe-engineering the DNS One Resolver at a Time. Paul Wilson Director General APNIC channeling Geoff Huston Chief Scientist
Re-engineering the DNS One Resolver at a Time Paul Wilson Director General APNIC channeling Geoff Huston Chief Scientist 1 In this presentation I ll talk about the DNS, and the root server infrastructure
More informationJohn S. Otto Mario A. Sánchez John P. Rula Fabián E. Bustamante
John S. Otto Mario A. Sánchez John P. Rula Fabián E. Bustamante Northwestern, EECS http://aqualab.cs.northwestern.edu ! DNS designed to map names to addresses Evolved into a large-scale distributed system!
More informationCSC 574 Computer and Network Security. DNS Security
CSC 574 Computer and Network Security DNS Security Alexandros Kapravelos kapravelos@ncsu.edu (Derived from slides by Will Enck and Micah Sherr) A primer on routing Routing Problem: How do Alice s messages
More informationNetwork Security Part 3 Domain Name System
Network Security Part 3 Domain Name System Domain Name System The$domain$name$system$(DNS)$is$an$applica6on7layer$ protocol$$for$mapping$domain$names$to$ip$addresses$ DNS www.example.com 208.77.188.166
More informationDNS/DNSSEC Workshop. In Collaboration with APNIC and HKIRC Hong Kong. Champika Wijayatunga Regional Security Engagement Manager Asia Pacific
DNS/DNSSEC Workshop In Collaboration with APNIC and HKIRC Hong Kong Champika Wijayatunga Regional Security Engagement Manager Asia Pacific 22-24 January 2018 1 Agenda 1 2 3 Introduction to DNS DNS Features
More informationDNS Fundamentals. Steve Conte ICANN60 October 2017
DNS Fundamentals Steve Conte ICANN60 October 2017 Names and Numbers IP addresses easy for machines but hard for people IPv4: 192.0.2.7 IPv6: 2001:db8::7 People need to use names In the early days of the
More informationTHE AUTHORITATIVE GUIDE TO DNS TERMINOLOGY
Ebook: THE AUTHORITATIVE GUIDE TO DNS TERMINOLOGY From A Record & DNS to Zones 603 668 4998 Your Master List of Key DNS Terms As more users and more online services (sites, microservices, connected things,
More informationAkamai's V6 Rollout Plan and Experience from a CDN Point of View. Christian Kaufmann Director Network Architecture Akamai Technologies, Inc.
Akamai's V6 Rollout Plan and Experience from a CDN Point of View Christian Kaufmann Director Network Architecture Akamai Technologies, Inc. Agenda About Akamai General IPv6 transition technologies Challenges
More informationEnabling and Configuring DNS Traffic Control in NIOS 7.x
DEPLOYMENT GUIDE Enabling and Configuring DNS Traffic Control in NIOS 7.x 2016 Infoblox Inc. All rights reserved. Infoblox-DG-0141-00 Enabling and Configuring DNS Traffic Control May 2016 Page 1 of 20
More informationOversimplified DNS. ... or, even a rocket scientist can understand DNS. Step 1 - Verify WHOIS information
Oversimplified DNS... or, even a rocket scientist can understand DNS Step 1 - Verify WHOIS information GOALS: Make sure that WHOIS reports every name server you have, and doesn't report any that aren't
More informationScaling up: How we made millions of domains happier. Tom Arnfeld, DNS Engineer Pavel Odintsov, DNS Engineer
Scaling up: How we made millions of domains happier Tom Arnfeld, DNS Engineer Pavel Odintsov, DNS Engineer Cloudflare DNS Services Authoritative DNS IPv4 and IPv6 support Low latency propagation DNSSEC
More informationSplit DNS. Finding Feature Information
The feature enables a Cisco device to respond to Domain Name System (DNS) queries using a specific configuration and associated host table cache that are selected based on certain characteristics of the
More informationSplit DNS. Finding Feature Information
The feature enables a Cisco device to respond to Domain Name System (DNS) queries using a specific configuration and associated host table cache that are selected based on certain characteristics of the
More informationDetecting and Quantifying Abusive IPv6 SMTP!
Detecting and Quantifying Abusive IPv6 SMTP Casey Deccio Verisign Labs Internet2 2014 Technical Exchange October 30, 2014 Spam, IPv4 Reputation and DNSBL Spam is pervasive Annoying (pharmaceuticals) Dangerous
More informationAssigning IP Address and Domain Name Server
This chapter describes how to create the initial configuration (for example, assigning the IP address and default gateway information) for the Cisco LoRaWAN Gateway by using a variety of automatic and
More informationMultiserver extensions to HTTP draft-ford-http-multi-server-00. Mark Handley, UCL Alan Ford, Roke Manor Research
Multiserver extensions to HTTP draft-ford-http-multi-server-00 Mark Handley, UCL Alan Ford, Roke Manor Research 1 General Idea Have one HTTP client pull different parts of the same document from multiple
More informationDNS. Introduction To. everything you never wanted to know about IP directory services
Introduction To DNS everything you never wanted to know about IP directory services Linux Users Victoria, April 3 rd 2007 what is the domain name system anyway? it's like a phone book...kinda DNS is (1)
More informationProtecting Privacy: The Evolution of DNS Security
Protecting Privacy: The Evolution of DNS Security Burt Kaliski Senior Vice President and CTO, Verisign NSF Technology Transfer to Practice in Cyber Security Workshop November 4, 2015 Agenda DNS Overview
More informationIPv6 at Facebook. Donn Lee, Will Lawton Network Engineering Team 10 June 2010 Google IPv6 Implementors Conference
IPv6 at Facebook Donn Lee, Will Lawton Network Engineering Team 10 June 2010 Google IPv6 Implementors Conference Agenda 1 Intro 2 Project Chicago 3 Project Cakewalk Goals Serve Facebook application to
More informationPractical Comprehensive Bounds on Surreptitious Communication Over DNS
Presenting: Wietse Venema IBM Research, Yorktown Heights, USA Practical Comprehensive Bounds on Surreptitious Communication Over DNS Vern Paxson 12 Mihai Christodorescu 3 Mobin Javed 1 Josyula Rao 4 Reiner
More informationTable of Contents 1 DNS Configuration 1-1
Table of Contents 1 DNS Configuration 1-1 DNS Overview 1-1 Static Domain Name Resolution 1-1 Dynamic Domain Name Resolution 1-1 Configuring Domain Name Resolution 1-3 Configuring Static Domain Name Resolution
More informationMac OS X Server Network Services Administration. For Version 10.3 or Later
Mac OS X Server Network Services Administration For Version 10.3 or Later apple Apple Computer, Inc. 2003 Apple Computer, Inc. All rights reserved. The owner or authorized user of a valid copy of Mac OS
More informationCS519: Computer Networks. Lecture 6: Apr 5, 2004 Naming and DNS
: Computer Networks Lecture 6: Apr 5, 2004 Naming and DNS Any problem in computer science can be solved with another layer of indirection David Wheeler Naming is a layer of indirection What problems does
More information1/18/13. Network+ Guide to Networks 5 th Edition. Objectives. Chapter 10 In-Depth TCP/IP Networking
Network+ Guide to Networks 5 th Edition Chapter 10 In-Depth TCP/IP Networking Objectives Understand methods of network design unique to TCP/IP networks, including subnetting, CIDR, and address translation
More informationHands-On Microsoft Windows. Chapter 8 p Managing Windows Server 2008 Network Services
Hands-On Microsoft Windows Server 2008 Chapter 8 p Managing Windows Server 2008 Network Services Objectives Install, configure, and troubleshoot DNS Implement Microsoft WINS Install, configure, and troubleshoot
More informationDNS and SMTP. James Walden CIT 485: Advanced Cybersecurity. James WaldenCIT 485: Advanced Cybersecurity DNS and SMTP 1 / 31
DNS and SMTP James Walden CIT 485: Advanced Cybersecurity James WaldenCIT 485: Advanced Cybersecurity DNS and SMTP 1 / 31 Table of contents 1. DNS 2. DNS Protocol Packets 3. DNS Caching 4. DNS Cache Poisoning
More informationAdvanced Computer Networks Exercise Session 7. Qin Yin Spring Semester 2013
Advanced Computer Networks 263-3501-00 Exercise Session 7 Qin Yin Spring Semester 2013 1 LAYER 7 SWITCHING 2 Challenge: accessing services Datacenters are designed to be scalable Datacenters are replicated
More informationDomain Name Service. FAQs. Issue 07 Date HUAWEI TECHNOLOGIES CO., LTD.
Issue 07 Date 2019-03-05 HUAWEI TECHNOLOGIES CO., LTD. Copyright Huawei Technologies Co., Ltd. 2019. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any
More informationInternet Engineering. DNS Message Format. Contents. Robert Elz.
Internet Engineering 241-461 Robert Elz kre@munnari.oz.au kre@coe.psu.ac.th http://fivedots.coe.psu.ac.th/~kre Contents The Domain Name System The DNS Database DNS Protocols DNS Message Formats ueries
More informationIPv6 Transition Mechanisms
IPv6 Transition Mechanisms Petr Grygárek rek 1 IPv6 and IPv4 Coexistence Expected to co-exist together for many years Some IPv4 devices may exist forever Slow(?) transition of (part of?) networks to IPv6
More informationCharacterizing Dark DNS Behavior
Characterizing Dark DNS Behavior Jon Oberheide*, Manish Karir, Z. Morley Mao*, Farnam Jahanian* *University of Michigan Merit Network, Inc. DIMVA 2007 July 12, 2007 Presentation Summary Sell/short/don't
More informationElectrical Engineering Department EE 400, Experiment # 4 IP Addressing and Subnetting
Electrical Engineering Department EE 400, Experiment # 4 IP Addressing and Subnetting Objectives: After this experiment, the students should be able to configure for networking, assign IP address, and
More informationMigration to IPv6 using DNS64/NAT64. Stephan Lagerholm
Migration to IPv6 using DNS64/NAT64 Stephan Lagerholm Agenda / About me DNS Architect at Secure64 Software Corp. Director and founder of the TXv6TF Personal blog at IPv4depletion.com 1 IPv4 depletion Global
More informationA SUBSYSTEM FOR FAST (IP) FLUX BOTNET DETECTION
Chapter 6 A SUBSYSTEM FOR FAST (IP) FLUX BOTNET DETECTION 6.1 Introduction 6.1.1 Motivation Content Distribution Networks (CDNs) and Round-Robin DNS (RRDNS) are the two standard methods used for resource
More information6 Misconceptions About IPv6. Jen Linkova,
6 Misconceptions About IPv6 Jen Linkova, furry13@gmail.com Misconception #1 It s Been 25 Years, IPv6 Is Not Going to Be Deployed 2 Obligatory IPv6 Adoption Graph deployment IPv6 Launch just geeks... IPv6
More informationIntroduction to the Domain Name System
The Domain Name System (DNS) handles the growing number of Internet users. DNS translates names, such as www.cisco.com, into IP addresses, such as 192.168.40.0 (or the more extended IPv6 addresses), so
More informationCisco Network Address Translation (NAT)
Cisco Network Address Translation (NAT) Introduction IETF NGTrans working group defined several translation mechanisms to enable communications between IPv6-only and IPv4-only hosts. One such example is
More informationDNS. A Massively Distributed Database. Justin Scott December 12, 2018
DNS A Massively Distributed Database Justin Scott December 12, 2018 What is DNS? Translates Hostnames to IP Addresses What is DNS? Example: www.serverlogic.com 23.185.0.4 What is DNS? Example: www.serverlogic.com
More informationCisco Expressway-E and Expressway-C - Basic Configuration
Cisco Expressway-E and Expressway-C - Basic Configuration Deployment Guide First Published: December 2013 Last Updated: March 2018 Cisco Expressway X8.9 Cisco Systems, Inc. www.cisco.com 2 Preface Preface
More informationTop-Down Network Design
Top-Down Network Design Chapter Six Designing Models for Addressing and Naming Copyright 2010 Cisco Press & Priscilla Oppenheimer Guidelines for Addressing and Naming Use a structured model for addressing
More informationRolling the Root KSK. Geoff Huston. APNIC Labs. September 2017
Rolling the Root KSK Geoff Huston APNIC Labs September 2017 Will this break the Internet? Why? If we stuff up this trust anchor key roll then resolvers that perform DNSSEC validation will fail to provide
More informationCOMP 631: NETWORKED & DISTRIBUTED SYSTEMS 9/6/16 COMP 631: NETWORKED & DISTRIBUTED SYSTEMS. IP Addressing. Jasleen Kaur. Fall 2016
COMP 631: NETWORKED & DISTRIBUTED SYSTEMS IP Addressing Jasleen Kaur Fall 2016 1 How to Deal With Heterogeneity & Scale? Requirements from IP addressing: Should be globally unique Should facilitate easy
More informationSIP Server Deployment Guide. SRV address support in Contact and Record-Route headers
SIP Server Deployment Guide SRV address support in Contact and Record-Route headers 1/17/2018 Contents 1 SRV address support in Contact and Record-Route headers 1.1 Feature Configuration 1.2 Feature Limitations
More informationIPv6 on Campus. The stuff you need to know
IPv6 on Campus The stuff you need to know Campfire! http://xkcd.com/ 742/ What is IPv6 and Why do I care? Next generation Internet addressing protocol ISPs around the world are handing out IPv6 addresses
More informationDNS Firewall with Response Policy Zone. Suman Kumar Saha bdcert Amber IT Limited
DNS Firewall with Response Policy Zone Suman Kumar Saha bdcert suman@bdcert.org Amber IT Limited suman@amberit.com.bd DNS Response Policy Zone(RPZ) as Firewall RPZ allows a recursive server to control
More informationDomain Name System.
Domain Name System http://xkcd.com/302/ CSCI 466: Networks Keith Vertanen Fall 2011 Overview Final project + presentation Some TCP and UDP experiments Domain Name System (DNS) Hierarchical name space Maps
More informationFTP. Client Server Model. Kent State University Dept. of Computer Science. CS 4/55231 Internet Engineering. Server Models
Client Server Model Client: Any program can be a client temporarily of a specific remote service. Generally it is invoked, controlled by user. It runs only one session. CS 4/55231 Internet Engineering
More informationInternet Content Distribution
Internet Content Distribution Chapter 1: Introduction Jussi Kangasharju Chapter Outline Introduction into content distribution Basic concepts TCP DNS HTTP Outline of the rest of the course Kangasharju:
More informationContent Distribution. Today. l Challenges of content delivery l Content distribution networks l CDN through an example
Content Distribution Today l Challenges of content delivery l Content distribution networks l CDN through an example Trends and application need " Some clear trends Growing number of and faster networks
More informationCisco Expressway-E and Expressway-C - Basic Configuration
Cisco Expressway-E and Expressway-C - Basic Configuration Deployment Guide First Published: December 2013 Last Updated: July 2017 Cisco Expressway X8.10 Cisco Systems, Inc. www.cisco.com 2 Preface Preface
More informationNAVAL POSTGRADUATE SCHOOL
NPS-CS-13-002 NAVAL POSTGRADUATE SCHOOL MONTEREY, CALIFORNIA INFERRING INTERNET SERVER IPV4 AND IPV6 ADDRESS RELATIONSHIPS by Robert Beverly Arthur Berger Nicholas Weaver Larry Campbell June 21, 2013 Approved
More informationConfiguring IPv6 DNS. Introduction to IPv6 DNS. Configuring the IPv6 DNS client. Configuring static domain name resolution
Contents Configuring IPv6 DNS 2 Introduction to IPv6 DNS 2 Configuring the IPv6 DNS client 2 Configuring static domain name resolution 2 Configuring dynamic domain name resolution 2 Displaying and maintaining
More informationAn Update on Anomalous DNS Behavior
An Update on Anomalous DNS Behavior Duane Wessels, and CAIDA wessels@measurement-factory October 23 Motivation Why are root servers getting slammed? Are caching/forwarding DNS servers doing the right thing?
More informationIPv6 Campus Deployment Updates
IPv6 Campus Deployment Updates Shumon Huque University of Pennsylvania Internet2 Joint Techs Conference Salt Lake City, Utah February 1st 2010 1 Campus Deployment Updates Panel Shumon Huque, University
More informationCSCE 463/612 Networks and Distributed Processing Spring 2018
CSCE 463/612 Networks and Distributed Processing Spring 2018 Application Layer III Dmitri Loguinov Texas A&M University February 8, 2018 Original slides copyright 1996-2004 J.F Kurose and K.W. Ross 1 Chapter
More informationCIA Lab Assignment: Domain Name System (1)
CIA Lab Assignment: Domain Name System (1) A. Bakker N. Sijm J. van der Ham M. Pouw Feedback deadline: September 22, 2015 10:00 CET Abstract The Domain Name System (DNS) is a hierarchical, distributed
More informationComputer Network 2015 Mid-Term Exam.
Computer Network 2015 Mid-Term Exam. Question : ``Basic of Computer Networks and the Internet' Please fill into the blanks (15%) a) The amount of time required to push all of a packet s bits into a link
More informationOSI Session / presentation / application Layer. Dr. Luca Allodi - Network Security - University of Trento, DISI (AA 2015/2016)
OSI Session / presentation / application Layer Dr. Luca Allodi - Network Security - University of Trento, DISI (AA 2015/2016) 1 Higher level protocols On top of IP, TCP, UDP, etc. there are a plethora
More informationAddressing the Network IPv4
Addressing the Network IPv4 Network Fundamentals Chapter 6 1 IP Addressing Structure Describe the dotted decimal structure of a binary IP address and label its parts 2 IP Addressing Structure Describe
More informationToday: Naming. Example: File Names
Today: Naming Names are used to share resources, uniquely identify entities and refer to locations Need to map from name to the entity it refers to E.g., Browser access to www.cnn.com Use name resolution
More informationGoal of this session
DNS refresher Overview Goal of this session What is DNS? How is DNS built and how does it work? How does a query work? Record types Caching and Authoritative Delegation: domains vs zones Finding the error:
More informationScrutinizing a Country using Passive DNS and Picviz or how to analyze big dataset without loosing your mind
Scrutinizing a Country using Passive DNS and Picviz or how to analyze big dataset without loosing your mind Sebastien Tricaud, Alexandre Dulaunoy March 10, 2012 Disclaimer Passive DNS is a technique to
More informationNew Topic: Naming. Differences in naming in distributed and non-distributed systems. How to name mobile entities?
New Topic: Naming Names are used to share resources, uniquely identify entities and refer to locations Need to map from name to the entity it refers to E.g., Browser access to www.cnn.com Use name resolution
More informationResource Records APPENDIXA
APPENDIXA Resource Records Resource records comprise the data within a DNS zone. There is no fixed limit to the number of resource records a zone can own. In general, there can be zero, one, or more resource
More informationMeasuring IPv6 at web clients and caching resolvers
Measuring IPv6 at web clients and caching resolvers emile.aben@ripe.net Early 21st centry http://www.ripe.net 1 Introduction We want more insight into IPv6 deployment IPv6 deployment numbers: - Routing
More informationThis is just a continuation of green bug / ISMDOOR. To look at the previous report please go to the following link.
GREENBUG / ISMDOOR v2 This is just a continuation of green bug / ISMDOOR. To look at the previous report please go to the following link. http://udurrani.com/0fff/dng.html Green bug is a backdoor that
More informationCisco Expressway-E and Expressway-C - Basic Configuration
Cisco Expressway-E and Expressway-C - Basic Configuration Deployment Guide First Published: December 2013 Last Updated: January 2019 Cisco Expressway X8.11.4 Cisco Systems, Inc. www.cisco.com 2 Preface
More information