SlideShare a Scribd company logo

DNSSEC in UA: Zero to Live in Six Months

Dmitry Kohmanyuk
Dmitry Kohmanyuk

at ICANN 44 Prague meeting

1 of 9
Download to read offline
DNSSEC in UA: Zero to Live in Six Months Dmitry Kohmanyuk June 25, 2012 Prague, ICANN 44 1Monday, June 25, 2012
Test zone UA.UA • Key generated November 8th, 2011, during Fourth IPv6 Workshop in Kiev • Zone UA.UA signed, keys published in DLV (dlv.isc.org) • UA zone updated: DS record for ua.ua • Test web site (use Firefox plugin and dnssec-trigger to verify) 2Monday, June 25, 2012
Zone UA Key Generation Ceremony • Held on December 2nd, 2011 (UA anniversary), UAdom conference • Scripted, rehearsed, recorded – Key parameters: RSASHA512 (algorithm 10) KSK bits: 2048 ZSK bits: 1024 3Monday, June 25, 2012
DNSSEC Testbed Environment Copy of production environment: – BIND 9.8 (then latest release) – some shell and Makefile magic – FreeBSD with jails – rsync over ssh – several sleepless nights 4Monday, June 25, 2012
Public server with cloned UA (signed with test key) • Anycast server: ho1.ua.ua 195.47.253.17 2001:67c:258::17 • Test trust anchor (and KSK): ua. IN DS 29019 10 2 68B5F97978F45398C9C0382161701EA3AB4A882011DCAA4F5188800D D58FE2AD • Not a production zone, use as your own risk (all delegated NS records are the same) 5Monday, June 25, 2012
Public resolver - enabled DNSSEC validation • Announced February 7th, 2012 at Fifth IPv6 Workshop in Kiev • Code name “Lighthouse” – lh.cctld.ua 194.44.71.71 2001:7f8:55:7::71 • Used test authoritative server (anycast) 6Monday, June 25, 2012
Live Deployment • Met Steve Crocker March 14th, 2012 • KSK in UA - March 27th • UA DS in DLV - March 28th • DS in Root Zone - April 13th (Friday) • DS delegations in UA - 6 total: – ua.ua netassist.ua rovno.ua nic.ua; chernovtsy.ua cv.ua (May 2012) 7Monday, June 25, 2012
DNSSEC traffic, ho1.ns.ua anycast (0.2%) 8Monday, June 25, 2012
Questions? www.hostmaster.ua/dnssec info@hostmaster.ua 9Monday, June 25, 2012

Recommended

UA DNSSEC Status Update: ENOG3
UA DNSSEC Status Update: ENOG3UA DNSSEC Status Update: ENOG3
UA DNSSEC Status Update: ENOG3
Dmitry Kohmanyuk
 
Find the Hacker
Find the HackerFind the Hacker
Find the Hacker
Sysdig
 
Swift Install Workshop - OpenStack Conference Spring 2012
Swift Install Workshop - OpenStack Conference Spring 2012Swift Install Workshop - OpenStack Conference Spring 2012
Swift Install Workshop - OpenStack Conference Spring 2012
Joe Arnold
 
Your House is My House: Use of Offensive Enclaves In Adversarial Operations
Your House is My House: Use of Offensive Enclaves In Adversarial OperationsYour House is My House: Use of Offensive Enclaves In Adversarial Operations
Your House is My House: Use of Offensive Enclaves In Adversarial Operations
Dimitry Snezhkov
 
Openstack Trunk Port
Openstack Trunk PortOpenstack Trunk Port
Openstack Trunk Port
benceromsics
 
Configuring Syslog by Octavio
Configuring Syslog by OctavioConfiguring Syslog by Octavio
Configuring Syslog by Octavio
Rowell Dionicio
 
OSMC 2014: Current state of Icinga | Icinga Team
OSMC 2014: Current state of Icinga | Icinga TeamOSMC 2014: Current state of Icinga | Icinga Team
OSMC 2014: Current state of Icinga | Icinga Team
NETWAYS
 
DockerCon EU 2015: Docker Networking Deep Dive
DockerCon EU 2015: Docker Networking Deep DiveDockerCon EU 2015: Docker Networking Deep Dive
DockerCon EU 2015: Docker Networking Deep Dive
Docker, Inc.
 

Recommended

UA DNSSEC Status Update: ENOG3
UA DNSSEC Status Update: ENOG3UA DNSSEC Status Update: ENOG3
UA DNSSEC Status Update: ENOG3
Dmitry Kohmanyuk
 
Find the Hacker
Find the HackerFind the Hacker
Find the Hacker
Sysdig
 
Swift Install Workshop - OpenStack Conference Spring 2012
Swift Install Workshop - OpenStack Conference Spring 2012Swift Install Workshop - OpenStack Conference Spring 2012
Swift Install Workshop - OpenStack Conference Spring 2012
Joe Arnold
 
Your House is My House: Use of Offensive Enclaves In Adversarial Operations
Your House is My House: Use of Offensive Enclaves In Adversarial OperationsYour House is My House: Use of Offensive Enclaves In Adversarial Operations
Your House is My House: Use of Offensive Enclaves In Adversarial Operations
Dimitry Snezhkov
 
Openstack Trunk Port
Openstack Trunk PortOpenstack Trunk Port
Openstack Trunk Port
benceromsics
 
Configuring Syslog by Octavio
Configuring Syslog by OctavioConfiguring Syslog by Octavio
Configuring Syslog by Octavio
Rowell Dionicio
 
OSMC 2014: Current state of Icinga | Icinga Team
OSMC 2014: Current state of Icinga | Icinga TeamOSMC 2014: Current state of Icinga | Icinga Team
OSMC 2014: Current state of Icinga | Icinga Team
NETWAYS
 
DockerCon EU 2015: Docker Networking Deep Dive
DockerCon EU 2015: Docker Networking Deep DiveDockerCon EU 2015: Docker Networking Deep Dive
DockerCon EU 2015: Docker Networking Deep Dive
Docker, Inc.
 
Running FreeRTOS on Digilent Zybo board
Running FreeRTOS on Digilent Zybo boardRunning FreeRTOS on Digilent Zybo board
Running FreeRTOS on Digilent Zybo board
Vincent Claes
 
Docker Networking in OpenStack: What you need to know now
Docker Networking in OpenStack: What you need to know nowDocker Networking in OpenStack: What you need to know now
Docker Networking in OpenStack: What you need to know now
PLUMgrid
 
Docker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on LinuxDocker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on Linux
Michael Boelen
 
How to Secure Containers
How to Secure ContainersHow to Secure Containers
How to Secure Containers
Sysdig
 
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
LinuxCon ContainerCon CloudOpen China
 
Integrating Linux Systems with Active Directory Using Open Source Tools
Integrating Linux Systems with Active Directory Using Open Source ToolsIntegrating Linux Systems with Active Directory Using Open Source Tools
Integrating Linux Systems with Active Directory Using Open Source Tools
All Things Open
 
Red Hat demo of OpenStack and ODL at ODL summit 2016
Red Hat demo of OpenStack and ODL at ODL summit 2016 Red Hat demo of OpenStack and ODL at ODL summit 2016
Red Hat demo of OpenStack and ODL at ODL summit 2016
RedHatTelco
 
Delivering a bleeding edge community led open stack distribution- rdo
Delivering a bleeding edge community led open stack distribution- rdoDelivering a bleeding edge community led open stack distribution- rdo
Delivering a bleeding edge community led open stack distribution- rdo
Chandan Kumar
 
Balena: a Moby-based container engine for IoT
Balena: a Moby-based container engine for IoT Balena: a Moby-based container engine for IoT
Balena: a Moby-based container engine for IoT
Balena
 
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
Michelle Antebi
 
Open stack wtf_(1)
Open stack wtf_(1)Open stack wtf_(1)
Open stack wtf_(1)
Ilya Sviridov
 
Getting Started with OpenStack from Hong Kong Summit Session November 5
Getting Started with OpenStack from Hong Kong Summit Session November 5Getting Started with OpenStack from Hong Kong Summit Session November 5
Getting Started with OpenStack from Hong Kong Summit Session November 5
Niki Acosta
 
Libssh2 at FSCONS 2009
Libssh2 at FSCONS 2009Libssh2 at FSCONS 2009
Libssh2 at FSCONS 2009
FSCONS
 
Red Teaming macOS Environments with Hermes the Swift Messenger
Red Teaming macOS Environments with Hermes the Swift MessengerRed Teaming macOS Environments with Hermes the Swift Messenger
Red Teaming macOS Environments with Hermes the Swift Messenger
Justin Bui
 
Owin e o Projeto Katana
Owin e o Projeto KatanaOwin e o Projeto Katana
Owin e o Projeto Katana
Andre Carlucci
 
Testing Docker Security Linuxlab 2017
Testing Docker Security Linuxlab 2017Testing Docker Security Linuxlab 2017
Testing Docker Security Linuxlab 2017
Jose Manuel Ortega Candel
 
OVN - Basics and deep dive
OVN - Basics and deep diveOVN - Basics and deep dive
OVN - Basics and deep dive
Trinath Somanchi
 
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
tdc-globalcode
 
Running Docker on ARM
Running Docker on ARMRunning Docker on ARM
Running Docker on ARM
Dieter Reuter
 
Linux Containers (LXC)
Linux Containers (LXC)Linux Containers (LXC)
Linux Containers (LXC)
Vladimir Melnic
 
DNSSEC in UA Domain (ENOG2)
DNSSEC in UA Domain (ENOG2)DNSSEC in UA Domain (ENOG2)
DNSSEC in UA Domain (ENOG2)
Dmitry Kohmanyuk
 
tow nodes Oracle 12c RAC on virtualbox
tow nodes Oracle 12c RAC on virtualboxtow nodes Oracle 12c RAC on virtualbox
tow nodes Oracle 12c RAC on virtualbox
justinit
 

More Related Content

What's hot

Docker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on LinuxDocker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on Linux
Michael Boelen
 
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
LinuxCon ContainerCon CloudOpen China
 

What's hot (20)

Running FreeRTOS on Digilent Zybo board
Running FreeRTOS on Digilent Zybo boardRunning FreeRTOS on Digilent Zybo board
Running FreeRTOS on Digilent Zybo board
 
Docker Networking in OpenStack: What you need to know now
Docker Networking in OpenStack: What you need to know nowDocker Networking in OpenStack: What you need to know now
Docker Networking in OpenStack: What you need to know now
 
Docker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on LinuxDocker Security - Secure Container Deployment on Linux
Docker Security - Secure Container Deployment on Linux
 
How to Secure Containers
How to Secure ContainersHow to Secure Containers
How to Secure Containers
 
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
High Performance Linux Virtual Machine on Microsoft Azure: SR-IOV Networking ...
 
Integrating Linux Systems with Active Directory Using Open Source Tools
Integrating Linux Systems with Active Directory Using Open Source ToolsIntegrating Linux Systems with Active Directory Using Open Source Tools
Integrating Linux Systems with Active Directory Using Open Source Tools
 
Red Hat demo of OpenStack and ODL at ODL summit 2016
Red Hat demo of OpenStack and ODL at ODL summit 2016 Red Hat demo of OpenStack and ODL at ODL summit 2016
Red Hat demo of OpenStack and ODL at ODL summit 2016
 
Delivering a bleeding edge community led open stack distribution- rdo
Delivering a bleeding edge community led open stack distribution- rdoDelivering a bleeding edge community led open stack distribution- rdo
Delivering a bleeding edge community led open stack distribution- rdo
 
Balena: a Moby-based container engine for IoT
Balena: a Moby-based container engine for IoT Balena: a Moby-based container engine for IoT
Balena: a Moby-based container engine for IoT
 
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
Docker swarm-mike-goelzer-mv-meetup-45min-workshop 02242016 (1)
 
Open stack wtf_(1)
Open stack wtf_(1)Open stack wtf_(1)
Open stack wtf_(1)
 
Getting Started with OpenStack from Hong Kong Summit Session November 5
Getting Started with OpenStack from Hong Kong Summit Session November 5Getting Started with OpenStack from Hong Kong Summit Session November 5
Getting Started with OpenStack from Hong Kong Summit Session November 5
 
Libssh2 at FSCONS 2009
Libssh2 at FSCONS 2009Libssh2 at FSCONS 2009
Libssh2 at FSCONS 2009
 
Red Teaming macOS Environments with Hermes the Swift Messenger
Red Teaming macOS Environments with Hermes the Swift MessengerRed Teaming macOS Environments with Hermes the Swift Messenger
Red Teaming macOS Environments with Hermes the Swift Messenger
 
Owin e o Projeto Katana
Owin e o Projeto KatanaOwin e o Projeto Katana
Owin e o Projeto Katana
 
Testing Docker Security Linuxlab 2017
Testing Docker Security Linuxlab 2017Testing Docker Security Linuxlab 2017
Testing Docker Security Linuxlab 2017
 
OVN - Basics and deep dive
OVN - Basics and deep diveOVN - Basics and deep dive
OVN - Basics and deep dive
 
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
 
Running Docker on ARM
Running Docker on ARMRunning Docker on ARM
Running Docker on ARM
 
Linux Containers (LXC)
Linux Containers (LXC)Linux Containers (LXC)
Linux Containers (LXC)
 

Similar to DNSSEC in UA: Zero to Live in Six Months

OSC-Fall-Tokyo-2012-v9.pdf
OSC-Fall-Tokyo-2012-v9.pdfOSC-Fall-Tokyo-2012-v9.pdf
OSC-Fall-Tokyo-2012-v9.pdf
nitinscribd
 
Node.js, toy or power tool?
Node.js, toy or power tool?Node.js, toy or power tool?
Node.js, toy or power tool?
Ovidiu Dimulescu
 
Docker Online Meetup #28: Production-Ready Docker Swarm
Docker Online Meetup #28: Production-Ready Docker SwarmDocker Online Meetup #28: Production-Ready Docker Swarm
Docker Online Meetup #28: Production-Ready Docker Swarm
Docker, Inc.
 

Similar to DNSSEC in UA: Zero to Live in Six Months (20)

DNSSEC in UA Domain (ENOG2)
DNSSEC in UA Domain (ENOG2)DNSSEC in UA Domain (ENOG2)
DNSSEC in UA Domain (ENOG2)
 
tow nodes Oracle 12c RAC on virtualbox
tow nodes Oracle 12c RAC on virtualboxtow nodes Oracle 12c RAC on virtualbox
tow nodes Oracle 12c RAC on virtualbox
 
DNSSEC/DANE/TLS Testing in Go6Lab
DNSSEC/DANE/TLS Testing in Go6LabDNSSEC/DANE/TLS Testing in Go6Lab
DNSSEC/DANE/TLS Testing in Go6Lab
 
ION Islamabad - DANE/DNSSEC/TLS Testing in the go6lab
ION Islamabad - DANE/DNSSEC/TLS Testing in the go6labION Islamabad - DANE/DNSSEC/TLS Testing in the go6lab
ION Islamabad - DANE/DNSSEC/TLS Testing in the go6lab
 
Nodejs - A quick tour (v4)
Nodejs - A quick tour (v4)Nodejs - A quick tour (v4)
Nodejs - A quick tour (v4)
 
DNSSEC implementation in Russia
DNSSEC implementation in Russia DNSSEC implementation in Russia
DNSSEC implementation in Russia
 
Dockercon 2015 Recap
Dockercon 2015 RecapDockercon 2015 Recap
Dockercon 2015 Recap
 
Using PerfDHCP tool to scale DHCP in OpenStack Neutron
Using PerfDHCP tool to scale DHCP in OpenStack NeutronUsing PerfDHCP tool to scale DHCP in OpenStack Neutron
Using PerfDHCP tool to scale DHCP in OpenStack Neutron
 
ELC2019 - Poster - Update Anything
ELC2019 - Poster - Update Anything ELC2019 - Poster - Update Anything
ELC2019 - Poster - Update Anything
 
FreeBSD is not Linux
FreeBSD is not LinuxFreeBSD is not Linux
FreeBSD is not Linux
 
OSC-Fall-Tokyo-2012-v9.pdf
OSC-Fall-Tokyo-2012-v9.pdfOSC-Fall-Tokyo-2012-v9.pdf
OSC-Fall-Tokyo-2012-v9.pdf
 
This one goes to 11!
This one goes to 11!This one goes to 11!
This one goes to 11!
 
Nodejs - A quick tour (v5)
Nodejs - A quick tour (v5)Nodejs - A quick tour (v5)
Nodejs - A quick tour (v5)
 
Node.js, toy or power tool?
Node.js, toy or power tool?Node.js, toy or power tool?
Node.js, toy or power tool?
 
Amis puppet building blocks demo for Oracle Database and Weblogic cluster
Amis puppet building blocks demo for Oracle Database and Weblogic clusterAmis puppet building blocks demo for Oracle Database and Weblogic cluster
Amis puppet building blocks demo for Oracle Database and Weblogic cluster
 
From Docker Swarm to OCCS and Wercker: Live-hacking at Oracle CODE Mexico 2017
From Docker Swarm to OCCS and Wercker: Live-hacking at Oracle CODE Mexico 2017From Docker Swarm to OCCS and Wercker: Live-hacking at Oracle CODE Mexico 2017
From Docker Swarm to OCCS and Wercker: Live-hacking at Oracle CODE Mexico 2017
 
Practical guide to Oracle Virtual environments
Practical guide to Oracle Virtual environmentsPractical guide to Oracle Virtual environments
Practical guide to Oracle Virtual environments
 
BIND 9 - making a modern DNS server
BIND 9 - making a modern DNS serverBIND 9 - making a modern DNS server
BIND 9 - making a modern DNS server
 
Docker Online Meetup #28: Production-Ready Docker Swarm
Docker Online Meetup #28: Production-Ready Docker SwarmDocker Online Meetup #28: Production-Ready Docker Swarm
Docker Online Meetup #28: Production-Ready Docker Swarm
 
Apache Directory and the OSGi Service Platform - Enrique Rodriguez, PMC Membe...
Apache Directory and the OSGi Service Platform - Enrique Rodriguez, PMC Membe...Apache Directory and the OSGi Service Platform - Enrique Rodriguez, PMC Membe...
Apache Directory and the OSGi Service Platform - Enrique Rodriguez, PMC Membe...
 

More from Dmitry Kohmanyuk

UA Perspectives: Talk at UAdom 2012
UA Perspectives: Talk at UAdom 2012UA Perspectives: Talk at UAdom 2012
UA Perspectives: Talk at UAdom 2012
Dmitry Kohmanyuk
 
IPv6 for Developers - icamp.lviv.ua 2011
IPv6 for Developers - icamp.lviv.ua 2011IPv6 for Developers - icamp.lviv.ua 2011
IPv6 for Developers - icamp.lviv.ua 2011
Dmitry Kohmanyuk
 
Dnssec in UA - Talk at UAdom 2011
Dnssec in UA - Talk at UAdom 2011Dnssec in UA - Talk at UAdom 2011
Dnssec in UA - Talk at UAdom 2011
Dmitry Kohmanyuk
 

More from Dmitry Kohmanyuk (7)

UA Perspectives: Talk at UAdom 2012
UA Perspectives: Talk at UAdom 2012UA Perspectives: Talk at UAdom 2012
UA Perspectives: Talk at UAdom 2012
 
DNS Alphabet Soup
DNS Alphabet SoupDNS Alphabet Soup
DNS Alphabet Soup
 
IPv6 for Developers - icamp.lviv.ua 2011
IPv6 for Developers - icamp.lviv.ua 2011IPv6 for Developers - icamp.lviv.ua 2011
IPv6 for Developers - icamp.lviv.ua 2011
 
.UA ccTLD Overview - ENOG1
.UA ccTLD Overview - ENOG1.UA ccTLD Overview - ENOG1
.UA ccTLD Overview - ENOG1
 
Dnssec in UA - Talk at UAdom 2011
Dnssec in UA - Talk at UAdom 2011Dnssec in UA - Talk at UAdom 2011
Dnssec in UA - Talk at UAdom 2011
 
DNSSEC: там и здесь
DNSSEC: там и здесьDNSSEC: там и здесь
DNSSEC: там и здесь
 
DNSSEC in the World and Ukraine
DNSSEC in the World and UkraineDNSSEC in the World and Ukraine
DNSSEC in the World and Ukraine
 

DNSSEC in UA: Zero to Live in Six Months

  • 1. DNSSEC in UA: Zero to Live in Six Months Dmitry Kohmanyuk June 25, 2012 Prague, ICANN 44 1Monday, June 25, 2012
  • 2. Test zone UA.UA • Key generated November 8th, 2011, during Fourth IPv6 Workshop in Kiev • Zone UA.UA signed, keys published in DLV (dlv.isc.org) • UA zone updated: DS record for ua.ua • Test web site (use Firefox plugin and dnssec-trigger to verify) 2Monday, June 25, 2012
  • 3. Zone UA Key Generation Ceremony • Held on December 2nd, 2011 (UA anniversary), UAdom conference • Scripted, rehearsed, recorded – Key parameters: RSASHA512 (algorithm 10) KSK bits: 2048 ZSK bits: 1024 3Monday, June 25, 2012
  • 4. DNSSEC Testbed Environment Copy of production environment: – BIND 9.8 (then latest release) – some shell and Makefile magic – FreeBSD with jails – rsync over ssh – several sleepless nights 4Monday, June 25, 2012
  • 5. Public server with cloned UA (signed with test key) • Anycast server: ho1.ua.ua 195.47.253.17 2001:67c:258::17 • Test trust anchor (and KSK): ua. IN DS 29019 10 2 68B5F97978F45398C9C0382161701EA3AB4A882011DCAA4F5188800D D58FE2AD • Not a production zone, use as your own risk (all delegated NS records are the same) 5Monday, June 25, 2012
  • 6. Public resolver - enabled DNSSEC validation • Announced February 7th, 2012 at Fifth IPv6 Workshop in Kiev • Code name “Lighthouse” – lh.cctld.ua 194.44.71.71 2001:7f8:55:7::71 • Used test authoritative server (anycast) 6Monday, June 25, 2012
  • 7. Live Deployment • Met Steve Crocker March 14th, 2012 • KSK in UA - March 27th • UA DS in DLV - March 28th • DS in Root Zone - April 13th (Friday) • DS delegations in UA - 6 total: – ua.ua netassist.ua rovno.ua nic.ua; chernovtsy.ua cv.ua (May 2012) 7Monday, June 25, 2012
  • 8. DNSSEC traffic, ho1.ns.ua anycast (0.2%) 8Monday, June 25, 2012