SlideShare a Scribd company logo

Benefits of Hosting a DNS Root Server

RIPE NCC
RIPE NCC

Presentation given by Christian Teuschel at RIPE NCC Regional Meeting Almaty, Kazakhstan on 9 June 2014

Technology
1 of 32
Download to read offline
Benefits of Hosting a DNS Root Server Christian Teuschel Science Division RIPE NCC ! Regional Meeting, June 2014, Almaty Regional Meeting | June 2014 | Almaty
DNS Root System
Root DNS System Hosting a Root DNS Server • What is the Root DNS system? • Part of D(omain) N(ame) S(ystem) • Distributed database system to resolved (unique) domain names to other identifiers (usually: IP addresses) • Hierarchical architecture for the purpose of scaling • Root DNS system provides the root zone • “Which server to contact for which top level domain” • Explained in more details: http://www.internetsociety.org/internet-domain-name-system- explained-non-experts-daniel-karrenberg Christian Teuschel - Regional Meeting - June 2014, Almaty 3
Root DNS System Hosting a Root DNS Server • What is the Root DNS system? Christian Teuschel - Regional Meeting - June 2014, Almaty 4
Root DNS System Hosting a Root DNS Server • What is the Root DNS system? • 634 T(op) L(evel) D(omain) (+IDN TLDs) http://www.iana.org/domains/root/db (June 2014) • Maintained by IANA http://www.iana.org/domains/root • Published by DNS root server operators • Operational authority is with the root server operator • Majority of the operation is anycast Christian Teuschel - Regional Meeting - June 2014, Almaty 5
Root DNS System Hosting a Root DNS Server • Who are the root operators? • Organisations (not individuals) providing DNS root services • Selected by IANA • = 12 professional operators / 13 independent operations Christian Teuschel - Regional Meeting - June 2014, Almaty 6 A Verisign, Inc. B Information Sciences Institute C Cogent Communications D University of Maryland E NASA Ames Research Center F Internet Systems Consortium, Inc. G U.S. DOD Network Information Center H U.S. Army Research Lab I Netnod (formerly Autonomica) J Verisign, Inc. K RIPE NCC L ICANN M WIDE Project Each letter identifies an unique IP address (IPv4/IPv6) at which the DNS root service is provided under the responsibility of the root server operator!
Root DNS System Hosting a Root DNS Server • Diversity in the root system is important • Different organisations • Different software (Bind9, NSD, etc.) • Different operating systems • Different hardware • To mitigate: - Bugs in software/hardware - DOS attacks ! • About DDOS: Over-provisioning is not to scale! Christian Teuschel - Regional Meeting - June 2014, Almaty 7
Root DNS System Hosting a Root DNS Server • More information about DNS • http://www.root-servers.org for information on root operators Christian Teuschel - Regional Meeting - June 2014, Almaty 8
Benefits?
Benefits Hosting a Root DNS Server ! ! ! • Assumption: - Hosted DNS root server is anycast operated Christian Teuschel - Regional Meeting - June 2014, Almaty 10
Benefits Hosting a Root DNS Server • Latency! - Which latency? Christian Teuschel - Regional Meeting - June 2014, Almaty 11
Benefits Hosting a Root DNS Server • Latency! - Which latency? Christian Teuschel - Regional Meeting - June 2014, Almaty 12
Benefits 13 Christian Teuschel - Regional Meeting - June 2014, Almaty Hosting a Root DNS Server • Latency! - Properly configured DNS servers cache results per TLD for 48 hours - Hence most of the DNS queries are answered by non-root servers - Misconfigured or broken DNS caching servers can cause a lot of traffic • Latency benefit is lost if subsequent levels are far away - Good connectivity is necessary
Benefits Hosting a Root DNS Server • NXDomain requests are caught early Christian Teuschel - Regional Meeting - June 2014, Almaty 14 Source: http://dsc.ripe.net/cgi-bin/dsc-grapher.pl?plot=rcode&server=K-ROOT
Benefits 15 Christian Teuschel - Regional Meeting - June 2014, Almaty Hosting a Root DNS Server • Keep DNS traffic within an area - Not only is performance an argument to keep traffic local - DNS queries for a ccTLD do not have to leave a country - Requirements: • Preferred root server instance within the country • Subsequent levels also within the country
Considerations
Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date Christian Teuschel - Regional Meeting - June 2014, Almaty 17
Considerations On Hosting Hosting a Root DNS Server 18 • Serial number of the SOA record Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1 Christian Teuschel - Regional Meeting - June 2014, Almaty
Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date • Meet operational requirements Christian Teuschel - Regional Meeting - June 2014, Almaty 19
Operational Requirements Hosting a Root DNS Server • RFC2870 “Root Name Server Operational Requirements” - Load requirements (three times normal load) - Security requirements • Physical security Access control, fire detection system etc. • Network security Meet standards for critical infrastructure - Communication and coordination between IANA and other root operators - etc. (see http://www.rfc-editor.org/rfc/rfc2870.txt) Christian Teuschel - Regional Meeting - June 2014, Almaty 20
Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date • Meet operational requirements • Misconfigurations on the routing level for anycast can easily disrupt the service Christian Teuschel - Regional Meeting - June 2014, Almaty 21
Quick Case-Study
Quick Case Study Hosting a Root DNS Server • Preferred root servers in Kazahkstan Christian Teuschel - Regional Meeting - June 2014, Almaty 23 Source: https://atlas.ripe.net/contrib/comparative_root_rtt.html
Quick Case-Study Hosting a Root DNS Server • DNS root server instances in Kazahkstan Christian Teuschel - Regional Meeting - June 2014, Almaty 24 Source: http://www.root-servers.org
Quick Case Study Hosting a Root DNS Server • L-root instances Christian Teuschel - Regional Meeting - June 2014, Almaty 25 Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1
Quick Case Study Hosting a Root DNS Server • L-root instances Christian Teuschel - Regional Meeting - June 2014, Almaty 26 Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1
Conclusion
Conclusion Hosting a Root DNS Server • Hosting a DNS root server can help to improve latency for local users and can provide means to keep DNS traffic local • But it should be seen as one in many steps to improve network performance Christian Teuschel - Regional Meeting - June 2014, Almaty 28
Monitoring
Monitoring for DNS TLD Ops Hosting a Root DNS Server • Body Level One - Body Level Two • Body Level Three - Body Level Four - Body Level Five Christian Teuschel - Regional Meeting - June 2014, Almaty 30
Monitoring DNS Hosting a Root DNS Server • RIPE Atlas anchors used as vantage points • Currently monitoring small selection of zones - root name servers - 30 ccTLDs and few gTLDs • New zones will be added next year • https://atlas.ripe.net/dnsmon • More details: https://labs.ripe.net/Members/ fatemah_mafi/an-updated-dns-monitoring-service Christian Teuschel - Regional Meeting - June 2014, Almaty 31
Questions?

Recommended

Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015
Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015
Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015alanfgates
 
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...SpringPeople
 
Apache HBase: State of the Union
Apache HBase: State of the UnionApache HBase: State of the Union
Apache HBase: State of the UnionDataWorks Summit/Hadoop Summit
 
Strata feb2013
Strata feb2013Strata feb2013
Strata feb2013alanfgates
 
Evolving HDFS to Generalized Storage Subsystem
Evolving HDFS to Generalized Storage SubsystemEvolving HDFS to Generalized Storage Subsystem
Evolving HDFS to Generalized Storage SubsystemDataWorks Summit/Hadoop Summit
 
Yeti DNS Project
Yeti DNS ProjectYeti DNS Project
Yeti DNS ProjectAPNIC
 
Hadoop 3.0 - Revolution or evolution?
Hadoop 3.0 - Revolution or evolution?Hadoop 3.0 - Revolution or evolution?
Hadoop 3.0 - Revolution or evolution?Uwe Printz
 
Apache Hive on ACID
Apache Hive on ACIDApache Hive on ACID
Apache Hive on ACIDDataWorks Summit/Hadoop Summit
 

Recommended

Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015
Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015
Hive & HBase for Transaction Processing Hadoop Summit EU Apr 2015alanfgates
 
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...
Best Practices for Administering Hadoop with Hortonworks Data Platform (HDP) ...SpringPeople
 
Apache HBase: State of the Union
Apache HBase: State of the UnionApache HBase: State of the Union
Apache HBase: State of the UnionDataWorks Summit/Hadoop Summit
 
Strata feb2013
Strata feb2013Strata feb2013
Strata feb2013alanfgates
 
Evolving HDFS to Generalized Storage Subsystem
Evolving HDFS to Generalized Storage SubsystemEvolving HDFS to Generalized Storage Subsystem
Evolving HDFS to Generalized Storage SubsystemDataWorks Summit/Hadoop Summit
 
Yeti DNS Project
Yeti DNS ProjectYeti DNS Project
Yeti DNS ProjectAPNIC
 
Hadoop 3.0 - Revolution or evolution?
Hadoop 3.0 - Revolution or evolution?Hadoop 3.0 - Revolution or evolution?
Hadoop 3.0 - Revolution or evolution?Uwe Printz
 
Apache Hive on ACID
Apache Hive on ACIDApache Hive on ACID
Apache Hive on ACIDDataWorks Summit/Hadoop Summit
 
IPv6 on the Interop Network
IPv6 on the Interop NetworkIPv6 on the Interop Network
IPv6 on the Interop NetworkNetwork Utility Force
 
Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)Chris Nauroth
 
Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014alanfgates
 
Cassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache CassandraCassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache CassandraDataStax Academy
 
Hadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the FieldHadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the FieldDataWorks Summit
 
Root servers
Root serversRoot servers
Root serversWillem Kuypers
 
Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014hadooparchbook
 
a Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application Resourcesa Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application ResourcesDataWorks Summit
 
LLAP: Sub-Second Analytical Queries in Hive
LLAP: Sub-Second Analytical Queries in HiveLLAP: Sub-Second Analytical Queries in Hive
LLAP: Sub-Second Analytical Queries in HiveDataWorks Summit/Hadoop Summit
 
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFSHadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFSErik Krogen
 
How the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside DownHow the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside DownDataWorks Summit
 
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache HiveAdding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache HiveDataWorks Summit
 
LLAP: long-lived execution in Hive
LLAP: long-lived execution in HiveLLAP: long-lived execution in Hive
LLAP: long-lived execution in HiveDataWorks Summit
 
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)Michael Arnold
 
Sub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scaleSub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scaleYifeng Jiang
 
Spotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great SuccessSpotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great SuccessNick Barkas
 
Webinar: The Future of Hadoop
Webinar: The Future of HadoopWebinar: The Future of Hadoop
Webinar: The Future of HadoopCloudera, Inc.
 
DNS Survival Guide
DNS Survival GuideDNS Survival Guide
DNS Survival GuideAPNIC
 
LAN Fundamentals
LAN FundamentalsLAN Fundamentals
LAN FundamentalsSteven Baule
 
Storage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduceStorage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduceChris Nauroth
 
1 technical-dns-workshop-day1
1 technical-dns-workshop-day11 technical-dns-workshop-day1
1 technical-dns-workshop-day1DNS Entrepreneurship Center
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarMen and Mice
 

More Related Content

What's hot

Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)Chris Nauroth
 
Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014alanfgates
 
Cassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache CassandraCassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache CassandraDataStax Academy
 
Hadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the FieldHadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the FieldDataWorks Summit
 
Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014hadooparchbook
 
a Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application Resourcesa Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application ResourcesDataWorks Summit
 
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFSHadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFSErik Krogen
 
How the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside DownHow the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside DownDataWorks Summit
 
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache HiveAdding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache HiveDataWorks Summit
 
LLAP: long-lived execution in Hive
LLAP: long-lived execution in HiveLLAP: long-lived execution in Hive
LLAP: long-lived execution in HiveDataWorks Summit
 
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)Michael Arnold
 
Sub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scaleSub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scaleYifeng Jiang
 
Spotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great SuccessSpotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great SuccessNick Barkas
 
Webinar: The Future of Hadoop
Webinar: The Future of HadoopWebinar: The Future of Hadoop
Webinar: The Future of HadoopCloudera, Inc.
 
DNS Survival Guide
DNS Survival GuideDNS Survival Guide
DNS Survival GuideAPNIC
 
Storage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduceStorage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduceChris Nauroth
 

What's hot (20)

IPv6 on the Interop Network
IPv6 on the Interop NetworkIPv6 on the Interop Network
IPv6 on the Interop Network
 
Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)Hadoop & cloud storage object store integration in production (final)
Hadoop & cloud storage object store integration in production (final)
 
Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014Hive acid-updates-summit-sjc-2014
Hive acid-updates-summit-sjc-2014
 
Cassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache CassandraCassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
Cassandra Day Atlanta 2015: Troubleshooting with Apache Cassandra
 
Hadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the FieldHadoop Operations - Best Practices from the Field
Hadoop Operations - Best Practices from the Field
 
Root servers
Root serversRoot servers
Root servers
 
Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014Application Architectures with Hadoop - Big Data TechCon SF 2014
Application Architectures with Hadoop - Big Data TechCon SF 2014
 
a Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application Resourcesa Secure Public Cache for YARN Application Resources
a Secure Public Cache for YARN Application Resources
 
LLAP: Sub-Second Analytical Queries in Hive
LLAP: Sub-Second Analytical Queries in HiveLLAP: Sub-Second Analytical Queries in Hive
LLAP: Sub-Second Analytical Queries in Hive
 
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFSHadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
Hadoop Meetup Jan 2019 - Mounting Remote Stores in HDFS
 
How the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside DownHow the Internet of Things are Turning the Internet Upside Down
How the Internet of Things are Turning the Internet Upside Down
 
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache HiveAdding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
Adding ACID Transactions, Inserts, Updates, and Deletes in Apache Hive
 
LLAP: long-lived execution in Hive
LLAP: long-lived execution in HiveLLAP: long-lived execution in Hive
LLAP: long-lived execution in Hive
 
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
Hadoop Operations: Starting Out Small / So Your Cluster Isn't Yahoo-sized (yet)
 
Sub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scaleSub-second-sql-on-hadoop-at-scale
Sub-second-sql-on-hadoop-at-scale
 
Spotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great SuccessSpotify: Horizontal Scalability for Great Success
Spotify: Horizontal Scalability for Great Success
 
Webinar: The Future of Hadoop
Webinar: The Future of HadoopWebinar: The Future of Hadoop
Webinar: The Future of Hadoop
 
DNS Survival Guide
DNS Survival GuideDNS Survival Guide
DNS Survival Guide
 
LAN Fundamentals
LAN FundamentalsLAN Fundamentals
LAN Fundamentals
 
Storage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduceStorage and-compute-hdfs-map reduce
Storage and-compute-hdfs-map reduce
 

Similar to Benefits of Hosting a DNS Root Server

RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarMen and Mice
 
Abuse of DNS wildcards in China - from passiveDNS perspective
Abuse of DNS wildcards in China - from passiveDNS perspectiveAbuse of DNS wildcards in China - from passiveDNS perspective
Abuse of DNS wildcards in China - from passiveDNS perspectiveAPNIC
 
DNS Measurements
DNS MeasurementsDNS Measurements
DNS MeasurementsAFRINIC
 
Chapter 4 configuring and managing the dns server role
Chapter 4 configuring and managing the dns server roleChapter 4 configuring and managing the dns server role
Chapter 4 configuring and managing the dns server roleLuis Garay
 
Demystifying SharePoint Infrastructure – for NON-IT People
Demystifying SharePoint Infrastructure – for NON-IT People Demystifying SharePoint Infrastructure – for NON-IT People
Demystifying SharePoint Infrastructure – for NON-IT People SPC Adriatics
 
DNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul IslamDNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul IslamMyNOG
 
Monitoring DNS Records and Servers
Monitoring DNS Records and ServersMonitoring DNS Records and Servers
Monitoring DNS Records and ServersThousandEyes
 
CNIT 40: 2: DNS Protocol and Architecture
CNIT 40: 2: DNS Protocol and ArchitectureCNIT 40: 2: DNS Protocol and Architecture
CNIT 40: 2: DNS Protocol and ArchitectureSam Bowne
 
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenchesInternet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenchesAPNIC
 
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01velimamedov
 
Orion Network Performance Monitor (NPM) Optimization and Tuning Training
Orion Network Performance Monitor (NPM) Optimization and Tuning TrainingOrion Network Performance Monitor (NPM) Optimization and Tuning Training
Orion Network Performance Monitor (NPM) Optimization and Tuning TrainingSolarWinds
 
Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24APNIC
 
NZNOG 2013 - Experiments in DNSSEC
NZNOG 2013 - Experiments in DNSSECNZNOG 2013 - Experiments in DNSSEC
NZNOG 2013 - Experiments in DNSSECAPNIC
 
Honeypots and Security
Honeypots and SecurityHoneypots and Security
Honeypots and SecurityAPNIC
 
DNS Measurement Activity on ITB 2010
DNS Measurement Activity on ITB 2010DNS Measurement Activity on ITB 2010
DNS Measurement Activity on ITB 2010Affan Basalamah
 

Similar to Benefits of Hosting a DNS Root Server (20)

1 technical-dns-workshop-day1
1 technical-dns-workshop-day11 technical-dns-workshop-day1
1 technical-dns-workshop-day1
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinar
 
Abuse of DNS wildcards in China - from passiveDNS perspective
Abuse of DNS wildcards in China - from passiveDNS perspectiveAbuse of DNS wildcards in China - from passiveDNS perspective
Abuse of DNS wildcards in China - from passiveDNS perspective
 
DNS Measurements
DNS MeasurementsDNS Measurements
DNS Measurements
 
Chapter 4 configuring and managing the dns server role
Chapter 4 configuring and managing the dns server roleChapter 4 configuring and managing the dns server role
Chapter 4 configuring and managing the dns server role
 
Demystifying SharePoint Infrastructure – for NON-IT People
Demystifying SharePoint Infrastructure – for NON-IT People Demystifying SharePoint Infrastructure – for NON-IT People
Demystifying SharePoint Infrastructure – for NON-IT People
 
DNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul IslamDNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul Islam
 
Monitoring DNS Records and Servers
Monitoring DNS Records and ServersMonitoring DNS Records and Servers
Monitoring DNS Records and Servers
 
Spotify: Data center & Backend buildout
Spotify: Data center & Backend buildoutSpotify: Data center & Backend buildout
Spotify: Data center & Backend buildout
 
CNIT 40: 2: DNS Protocol and Architecture
CNIT 40: 2: DNS Protocol and ArchitectureCNIT 40: 2: DNS Protocol and Architecture
CNIT 40: 2: DNS Protocol and Architecture
 
Intro to DNS
Intro to DNSIntro to DNS
Intro to DNS
 
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenchesInternet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
 
Day 20.i pv6 lab
Day 20.i pv6 labDay 20.i pv6 lab
Day 20.i pv6 lab
 
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
Chapter4 configuringandmanagingthednsserverrole-140520003253-phpapp01
 
Orion Network Performance Monitor (NPM) Optimization and Tuning Training
Orion Network Performance Monitor (NPM) Optimization and Tuning TrainingOrion Network Performance Monitor (NPM) Optimization and Tuning Training
Orion Network Performance Monitor (NPM) Optimization and Tuning Training
 
Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24
 
2 technical-dns-workshop-day1
2 technical-dns-workshop-day12 technical-dns-workshop-day1
2 technical-dns-workshop-day1
 
NZNOG 2013 - Experiments in DNSSEC
NZNOG 2013 - Experiments in DNSSECNZNOG 2013 - Experiments in DNSSEC
NZNOG 2013 - Experiments in DNSSEC
 
Honeypots and Security
Honeypots and SecurityHoneypots and Security
Honeypots and Security
 
DNS Measurement Activity on ITB 2010
DNS Measurement Activity on ITB 2010DNS Measurement Activity on ITB 2010
DNS Measurement Activity on ITB 2010
 

More from RIPE NCC

Navigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryNavigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryRIPE NCC
 
Traces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionTraces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionRIPE NCC
 
Governing Environmental Sustainability in Tech
Governing Environmental Sustainability in TechGoverning Environmental Sustainability in Tech
Governing Environmental Sustainability in TechRIPE NCC
 
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfGerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfRIPE NCC
 
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISLIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISRIPE NCC
 
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopIntro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopRIPE NCC
 
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfIGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfRIPE NCC
 
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfOpportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfRIPE NCC
 
RIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC
 
IPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsIPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsRIPE NCC
 
RPKI For Routing Security
RPKI For Routing SecurityRPKI For Routing Security
RPKI For Routing SecurityRIPE NCC
 
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfSEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfRIPE NCC
 
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasKnow Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasRIPE NCC
 
Minimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasMinimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasRIPE NCC
 
RIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure111 views of Swiss Internet Infrastructure
111 views of Swiss Internet InfrastructureRIPE NCC
 
The RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenThe RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenRIPE NCC
 

More from RIPE NCC (20)

Navigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryNavigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet Registry
 
Traces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionTraces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate Action
 
Governing Environmental Sustainability in Tech
Governing Environmental Sustainability in TechGoverning Environmental Sustainability in Tech
Governing Environmental Sustainability in Tech
 
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfGerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
 
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISLIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
 
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopIntro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
 
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfIGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
 
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfOpportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
 
RIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement Tools
 
IPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsIPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the Baltics
 
RPKI For Routing Security
RPKI For Routing SecurityRPKI For Routing Security
RPKI For Routing Security
 
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfSEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
 
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasKnow Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
 
Minimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasMinimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE Atlas
 
RIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement Services
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure
 
The RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenThe RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in Sweden
 

Recently uploaded

Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 

Recently uploaded (20)

Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort ServiceHot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 

Benefits of Hosting a DNS Root Server

  • 1. Benefits of Hosting a DNS Root Server Christian Teuschel Science Division RIPE NCC ! Regional Meeting, June 2014, Almaty Regional Meeting | June 2014 | Almaty
  • 3. Root DNS System Hosting a Root DNS Server • What is the Root DNS system? • Part of D(omain) N(ame) S(ystem) • Distributed database system to resolved (unique) domain names to other identifiers (usually: IP addresses) • Hierarchical architecture for the purpose of scaling • Root DNS system provides the root zone • “Which server to contact for which top level domain” • Explained in more details: http://www.internetsociety.org/internet-domain-name-system- explained-non-experts-daniel-karrenberg Christian Teuschel - Regional Meeting - June 2014, Almaty 3
  • 4. Root DNS System Hosting a Root DNS Server • What is the Root DNS system? Christian Teuschel - Regional Meeting - June 2014, Almaty 4
  • 5. Root DNS System Hosting a Root DNS Server • What is the Root DNS system? • 634 T(op) L(evel) D(omain) (+IDN TLDs) http://www.iana.org/domains/root/db (June 2014) • Maintained by IANA http://www.iana.org/domains/root • Published by DNS root server operators • Operational authority is with the root server operator • Majority of the operation is anycast Christian Teuschel - Regional Meeting - June 2014, Almaty 5
  • 6. Root DNS System Hosting a Root DNS Server • Who are the root operators? • Organisations (not individuals) providing DNS root services • Selected by IANA • = 12 professional operators / 13 independent operations Christian Teuschel - Regional Meeting - June 2014, Almaty 6 A Verisign, Inc. B Information Sciences Institute C Cogent Communications D University of Maryland E NASA Ames Research Center F Internet Systems Consortium, Inc. G U.S. DOD Network Information Center H U.S. Army Research Lab I Netnod (formerly Autonomica) J Verisign, Inc. K RIPE NCC L ICANN M WIDE Project Each letter identifies an unique IP address (IPv4/IPv6) at which the DNS root service is provided under the responsibility of the root server operator!
  • 7. Root DNS System Hosting a Root DNS Server • Diversity in the root system is important • Different organisations • Different software (Bind9, NSD, etc.) • Different operating systems • Different hardware • To mitigate: - Bugs in software/hardware - DOS attacks ! • About DDOS: Over-provisioning is not to scale! Christian Teuschel - Regional Meeting - June 2014, Almaty 7
  • 8. Root DNS System Hosting a Root DNS Server • More information about DNS • http://www.root-servers.org for information on root operators Christian Teuschel - Regional Meeting - June 2014, Almaty 8
  • 10. Benefits Hosting a Root DNS Server ! ! ! • Assumption: - Hosted DNS root server is anycast operated Christian Teuschel - Regional Meeting - June 2014, Almaty 10
  • 11. Benefits Hosting a Root DNS Server • Latency! - Which latency? Christian Teuschel - Regional Meeting - June 2014, Almaty 11
  • 12. Benefits Hosting a Root DNS Server • Latency! - Which latency? Christian Teuschel - Regional Meeting - June 2014, Almaty 12
  • 13. Benefits 13 Christian Teuschel - Regional Meeting - June 2014, Almaty Hosting a Root DNS Server • Latency! - Properly configured DNS servers cache results per TLD for 48 hours - Hence most of the DNS queries are answered by non-root servers - Misconfigured or broken DNS caching servers can cause a lot of traffic • Latency benefit is lost if subsequent levels are far away - Good connectivity is necessary
  • 14. Benefits Hosting a Root DNS Server • NXDomain requests are caught early Christian Teuschel - Regional Meeting - June 2014, Almaty 14 Source: http://dsc.ripe.net/cgi-bin/dsc-grapher.pl?plot=rcode&server=K-ROOT
  • 15. Benefits 15 Christian Teuschel - Regional Meeting - June 2014, Almaty Hosting a Root DNS Server • Keep DNS traffic within an area - Not only is performance an argument to keep traffic local - DNS queries for a ccTLD do not have to leave a country - Requirements: • Preferred root server instance within the country • Subsequent levels also within the country
  • 17. Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date Christian Teuschel - Regional Meeting - June 2014, Almaty 17
  • 18. Considerations On Hosting Hosting a Root DNS Server 18 • Serial number of the SOA record Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1 Christian Teuschel - Regional Meeting - June 2014, Almaty
  • 19. Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date • Meet operational requirements Christian Teuschel - Regional Meeting - June 2014, Almaty 19
  • 20. Operational Requirements Hosting a Root DNS Server • RFC2870 “Root Name Server Operational Requirements” - Load requirements (three times normal load) - Security requirements • Physical security Access control, fire detection system etc. • Network security Meet standards for critical infrastructure - Communication and coordination between IANA and other root operators - etc. (see http://www.rfc-editor.org/rfc/rfc2870.txt) Christian Teuschel - Regional Meeting - June 2014, Almaty 20
  • 21. Considerations On Hosting Hosting a Root DNS Server • Hosting a DNS root server instance means responsibility • Keep the root zone up-to-date • Meet operational requirements • Misconfigurations on the routing level for anycast can easily disrupt the service Christian Teuschel - Regional Meeting - June 2014, Almaty 21
  • 23. Quick Case Study Hosting a Root DNS Server • Preferred root servers in Kazahkstan Christian Teuschel - Regional Meeting - June 2014, Almaty 23 Source: https://atlas.ripe.net/contrib/comparative_root_rtt.html
  • 24. Quick Case-Study Hosting a Root DNS Server • DNS root server instances in Kazahkstan Christian Teuschel - Regional Meeting - June 2014, Almaty 24 Source: http://www.root-servers.org
  • 25. Quick Case Study Hosting a Root DNS Server • L-root instances Christian Teuschel - Regional Meeting - June 2014, Almaty 25 Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1
  • 26. Quick Case Study Hosting a Root DNS Server • L-root instances Christian Teuschel - Regional Meeting - June 2014, Almaty 26 Source: https://atlas.ripe.net/contrib/root_anycast.html?msm_id=1
  • 28. Conclusion Hosting a Root DNS Server • Hosting a DNS root server can help to improve latency for local users and can provide means to keep DNS traffic local • But it should be seen as one in many steps to improve network performance Christian Teuschel - Regional Meeting - June 2014, Almaty 28
  • 30. Monitoring for DNS TLD Ops Hosting a Root DNS Server • Body Level One - Body Level Two • Body Level Three - Body Level Four - Body Level Five Christian Teuschel - Regional Meeting - June 2014, Almaty 30
  • 31. Monitoring DNS Hosting a Root DNS Server • RIPE Atlas anchors used as vantage points • Currently monitoring small selection of zones - root name servers - 30 ccTLDs and few gTLDs • New zones will be added next year • https://atlas.ripe.net/dnsmon • More details: https://labs.ripe.net/Members/ fatemah_mafi/an-updated-dns-monitoring-service Christian Teuschel - Regional Meeting - June 2014, Almaty 31