The DNS of Things. A. 2001:19b8:10 1:2::f5f5:1d Q. WHERE IS Peter Silva Sr. Technical Marketing

Similar documents
August 14th, 2018 PRESENTED BY:

The F5 Intelligent DNS Scale Reference Architecture

Prompta volumus denique eam ei, mel autem

Sichere Applikations- dienste

Cloud DNS. High Performance under any traffic conditions from anywhere in the world. Reliable. Performance

Enterprise Overview. Benefits and features of Cloudflare s Enterprise plan FLARE

Imperva Incapsula Product Overview

What s next for your data center? Power Your Evolution with Physical and Virtual ADCs. Jeppe Koefoed Wim Zandee Field sales, Nordics

Architecture: Consolidated Platform. Eddie Augustine Major Accounts Manager: Federal

Optimize DNS, Secure and Ensure Availability, and Monetize Usage

Security Overview and Cisco ACE Replacement

A Better Way to a Redundant DNS.

The Interactive Guide to Protecting Your Election Website

NINE MYTHS ABOUT. DDo S PROTECTION

WEBSCALE CONVERGED APPLICATION DELIVERY PLATFORM

F5 Synthesis Information Session. April, 2014

CHARTING THE FUTURE OF SOFTWARE DEFINED NETWORKING

Neustar Security Solutions Overview

Check Point DDoS Protector Introduction

BEST PRACTICES FOR IMPROVING EXTERNAL DNS RESILIENCY AND PERFORMANCE

How to Leverage Containers to Bolster Security and Performance While Moving to Google Cloud

An Introduction to DDoS attacks trends and protection Alessandro Bulletti Consulting Engineer, Arbor Networks

How SD-WAN will Transform the Network. And lead to innovative, profitable business outcomes

snoc Snoc DDoS Protection Fast Secure Cost effective Introduction Snoc 3.0 Global Scrubbing Centers Web Application DNS Protection

Safeguard Application Uptime and Consistent Performance

DATACENTER SECURITY. Paul Deakin System Engineer, F5 Networks

THE AUTHORITATIVE GUIDE TO DNS TERMINOLOGY

Cloud & Datacenter EGA

Document Sub Title. Yotpo. Technical Overview 07/18/ Yotpo

Testing & Assuring Mobile End User Experience Before Production Neotys

The Dynamic DNS Infrastructure

F5 and Infoblox DNS Integrated Architecture: Offering a Complete Scalable, Secure DNS Solution

SD-WAN: A Simplified Network for Distributed Enterprises

F5 IPv6 Solutions. Ariel Santa Cruz FSE SoLA F5 Networks Inc. F5 Networks, Inc.

IPv6. Akamai. Faster Forward with IPv6. Eric Lei Cao Head, Network Business Development Greater China Akamai Technologies

Cyber Attacks and Application - Motivation, Methods and Mitigation. Alfredo Vistola Solution Architect Security, EMEA

White paper. Keys to Oracle application acceleration: advances in delivery systems.

How your network can take on the cloud and win. Think beyond traditional networking toward a secure digital perimeter

Simplifying Security for Mobile Networks

Providing Security and Acceleration for Remote Users

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

AKAMAI CLOUD SECURITY SOLUTIONS

BIG-IP DNS Services: Implementations. Version 12.0

Check Point DDoS Protector Simple and Easy Mitigation

The Future of Network Infrastructure & Management

TALK THUNDER SOFTWARE FOR BARE METAL HIGH-PERFORMANCE SOFTWARE FOR THE MODERN DATA CENTER WITH A10 DATASHEET YOUR CHOICE OF HARDWARE

COPYRIGHT 2018 NETSCOUT SYSTEMS, INC. 1

Provisioning IT at the Speed of Need with Microsoft Azure. Presented by Mark Gordon and Larry Kuhn Hashtag: #HAND5

A10 HARMONY CONTROLLER

THE UTILITY OF DNS TRAFFIC MANAGEMENT

BIG-IP DNS Services: Implementations. Version 12.1

Top Priority for Hybrid IT

WHITE PAPER. Why Infoblox for DDI. It is time to migrate from BIND and Microsoft

Securing the Next Generation Data Center

The poor state of SIP endpoint security

Business Strategy Theatre

Securing LTE Networks What, Why, and How

Video-Aware Networking: Automating Networks and Applications to Simplify the Future of Video

McAfee Virtual Network Security Platform 8.4 Revision A

Today s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps

Securing Your Amazon Web Services Virtual Networks

The Emerging Role of a CDN in Facilitating Secure Cloud Deployments

What is SD WAN and should I know or care about it? Ken LaMere Ecessa

OPTIMIZE. MONETIZE. SECURE. Agile, scalable network solutions for service providers.

Faculté Polytechnique

Protecting Your SaaS Investment: Monitoring Office 365 Performance

An introductory look. cloud computing in education

Registry Vulnerabilities An Overview

SOLUTION BRIEF EXTREMEWIRELESS WiNG AZARA AZARA. WiNG RISE TO THE CHALLENGE OF PROVIDING SUPERIOR CONNECTIVITY & WLAN MANAGEMENT

Introduction to the Active Everywhere Database

SCALEFAST COMMERCE CLOUD INFRASTRUCTURE

VMware vcloud Architecture Toolkit Hybrid VMware vcloud Use Case

Re-engineering the DNS One Resolver at a Time. Paul Wilson Director General APNIC channeling Geoff Huston Chief Scientist

Be prepared for future

Intelligent and Secure Network

AMAZON WEB SERVICES RE:INVENT SURVEY REPORT

TOP TEN DNS ATTACKS PROTECTING YOUR ORGANIZATION AGAINST TODAY S FAST-GROWING THREATS

A10 Thunder Series Application Delivery Controller (ADC)

Securing Your Microsoft Azure Virtual Networks

In the Domain Name System s language, rcode 0 stands for: no error condition.

The communications, media, and entertainment industry and the cloud.

Hosting Roadmap Upgrades, Improvements and Changes

Agenda. This Session: Azure Networking Basics, On-prem connectivity options DEMO Create VNET/Gateway Cost-estimation for VNET/Gateways

A custom excerpt from Frost & Sullivan s Global DDoS Mitigation Market Research Report (NDD2-72) July, 2014 NDD2-74

Defining requirements for a successful allflash

F5 comprehensive protection against application attacks. Jakub Sumpich Territory Manager Eastern Europe

BIG-IP V11.3: PRODUCT UPDATE. David Perodin Field Systems Engineer III

Completing your AWS Cloud SECURING YOUR AMAZON WEB SERVICES ENVIRONMENT

ADC im Cloud - Zeitalter

Networks

Maximum Security, Zero Compromise in Availability and Performance

Virtual vs Physical ADC

TREND REPORT. Ethernet, MPLS and SD-WAN: What Decision Makers Really Think

Cisco Spark Hybrid Media Service

STATE OF THE NETWORK STUDY

Dell EMC HyperConverged Infrastructure

Dell EMC Hyper-Converged Infrastructure

A different approach to Application Security

Managing the Subscriber Experience

Cato Cloud. Global SD-WAN with Built-in Network Security. Solution Brief. Cato Cloud Solution Brief. The Future of SD-WAN. Today.

Transcription:

The DNS of Things Peter Silva Sr. Technical Marketing Manager @psilvas Q. WHERE IS WWW.F5.COM? A. 2001:19b8:10 1:2::f5f5:1d

Advanced threats Software defined everything SDDC/Cloud Internet of Things Mobility HTTP is the new TCP F5 Networks, F5 Inc Networks, Inc Confidential 2

Internet Foundation? DNS DNS DEMANDS DOMAIN NAME SYSTEM (DNS) Translates a domain name http://www.google.com More People Mobile devices/apps Complex sites Increased latency into an IP address: 74.125.227.64 (IPv4) http://www.f5.com = 2001:19b8:101:2::f5f5:1d (IPv6) Cloud implementations IPv6 added with IPv4 DDoS attacks WHEN DNS BREAKS EVERYTHING BREAKS F5 Networks, Inc 3

Everything: DNS Internet of Things needs scalable DNS services* Combination = 5 to 10 times Internet revolution** 10bil devices in 2014 = 77bil mobile apps** 35% Y/Y DNS query increase*** Ensure really fast connections and responses* DNS Look Ups F5 Networks, Inc 4

43 50 57 77 82 82 Demand: DNS AVERAGE DAILY LOAD FOR DNS (.COM/.NET TLDS) QUERIES IN BILLIONS TYPICAL FOR A SINGLE WEB PAGE TO CONSUME 100+ DNS QUERIES FROM ACTIVE CONTENT, ADVERTISING, AND ANALYTICS GLOBAL MOBILE DATA (4G/LTE) IS DRIVING THE NEED FOR FAST, AVAILABLE DNS 18X Growth 2011-2016 4G LTE Non-4G LTE 2.4GB /mo 86MB /mo 09 10 11 12 13 DNSSEC DEPLOYMENT EXPANDING SECOND MOST ATTACKED PROTOCOL DISTRIBUTED, AVAILABLE, HIGH- PERFORMANCE GSLB FOR MULTIPLE DATA CENTERS Reflection/amplification DDoS Cache poisoning attacks Drive for DNSSEC adoption Total service availability Geographically dispersed DCs DNS capacity close to subscribers F5 Networks, Inc 5

Growth of Nouns 2013:80 2014:100 2020:250 152 Million Cars F5 Networks, Inc 6

Growth of Sensors F5 Networks, Inc 7

The Earth s Connected Devices F5 Networks, Inc 8

Critical: DNS 76% are willing to wait 10 seconds or less for a single web page to load on Mobile phone before leaving. 2009 2013 157% As of December 2013, there were over 184 million active websites, a growth of 157% over the last 5 years. 2013 Every 100ms delay Costs Amazon 1% in sales. 2009 DNS has grown over 91% in the last 5 years. F5 Networks, Inc 9

DNS Deployments CONVENTIONAL DNS THINKING Internet External Firewall DNS Load Balancing Array of DNS Servers Internal Firewall Hidden Master DNS Performance = Add DNS boxes Weak DoS/DDoS Protection Firewall is THE bottleneck DMZ Datacenter PARADIGM SHIFT Internet DNS DELIVERY REIMAGINED BIG-IP Master DNS Infrastructure DNS Firewall DNS DDoS Protection Protocol Validation Authoritative DNS Caching Resolver Transparent Caching High Performance DNSSEC DNSSEC Validation Intelligent GSLB Massive performance over 10M RPS! Best DoS/DDoS protection Lower CapEx and OpEx F5 Networks, Inc 10

Efficient DNS Delivers High-speed response & DDoS protection with in-memory DNS. Authoritative DNS served out of RAM. Configuration size for tens of millions of records. Scale and consolidate DNS servers. DNS Server Clients DNS in DMZ Answer DNS Query Manage DNS Records Answer DNS Query Answer DNS Query OS Admin Auth Roles Internet Answer DNS Query Answer DNS Query NIC Dynamic DNS DHCP F5 Networks, Inc 12

Optimized DNS Manageable and predictable data center utilization Easy integration into existing DNS infrastructure for high availability and security Support over 10 million DNS responses per second (RPS) F5 Networks, Inc 13

The DNS Value SCALABLE UP TO 20X DENIAL OF SERVICE MITIGATION 6 3 0 Low Query Query Growth Query Spike Query Decline Max DNS COMPLETE DNS CONTROL SUPPORT CLIENT REQUESTS AND CONSOLIDATE IT Access Denied: IPv6 to IPv4 ROUTE BASED ON GEOLOCATION SECURE DNS QUERY RESPONSES http://f5.com F5 Networks, Inc 14

Market Pulse Research: Managing DNS Capacity Key Findings Respondents most frequently cite improved application availability and application performance (speed) as highly important benefits of DNS. A majority (63%) report that their organizations DNS volume has increased over the past year. Contributing factors: rollout of new services, applications. Cloud migration and traffic spikes. Most often, organizations manage DNS capacity by adding more servers (53%) and/or adding more bandwidth (36%). Average of 24 DNS servers in use. With regard to current DNS implementations, outages are the top concern (70% highly concerned). Most concerning consequences: loss of productivity and a poor customer experience. Nearly one-third of respondents (29%) report their organizations have experienced DNS outages in the past 12 months. Culprit? One-quarter of these (25%) report a traffic surge. Among those who indicate their organizations are planning to expand DNS services to the cloud, increasing capacity is the most common driver. On-premise DNS primary case over the next year. Use of public cloud DNS slight increase in next 12 months. F5 Networks, Inc 16

The Five Takeaways Scalability: In times of high traffic, enterprises DNS servers must be able to handle shifting volumes of traffic. Security: Denial-of-service attacks frequently target IP addresses that cause DNS server outages. Intelligence: To be protective, IT must be proactive. That means being able to pinpoint application or service delivery accuracy, based on location of users, with geolocation services. Manageability: Enterprises need visibility into DNS services across cloud and on-premises networks, in order to ensure uptime and performance. IT also needs to be able to identify unusual activity that may indicate probing for vulnerabilities. Reliability: With more customers accessing corporate web sites, DNS server performance has the potential to impact user experience and employee productivity. Given these trends, DNS servers must be extremely reliable. F5 Networks, Inc 17

Story Arch deviantart.net F5 Networks, Inc 18

admissions.tufts.edu F5 Networks, Inc 19

DNS Story Arc Climax Body ADC Complication Add Infrastructure Denouement Peace of Mind Introduction DNS Traffic Market Conditions F5 Networks, Inc 20

Intelligent & Secure DNS that Scales Scale and manage DNS and apps globally Improve application performance and availability Robust, Flexible and Secure DNS Infrastructure Mitigate DNS DDoS Attacks Support hybrid IP Environments Complete DNS Security F5 Networks, Inc 21

Intelligent DNS Scale PROTECTS Web Properties and Brand Reputation. IMPROVES Web application performance. DIRECTS Customers to the best data center or cloud. LOWERS Stress of DNS Outages. REDUCES Data center costs. F5 Networks, Inc 22

Explore The F5 DNS Reference Architecture f5.com/solutions @f5networks F5 Networks, Inc 23

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback