a versatile platform for dns metrics with its application
play

A versatile platform for DNS metrics with its application to IPv6 - PowerPoint PPT Presentation

Dec 13, 2023 •263 likes •821 views

A versatile platform for DNS metrics with its application to IPv6 St ephane Bortzmeyer AFNIC bortzmeyer@nic.fr RIPE 57 - Dubai - October 2008 1 A versatile platform for DNS metrics with its application to IPv6 Where are we in the talk?

  1. A versatile platform for DNS metrics with its application to IPv6 St´ ephane Bortzmeyer AFNIC bortzmeyer@nic.fr RIPE 57 - Dubai - October 2008 1 A versatile platform for DNS metrics with its application to IPv6

  2. Where are we in the talk? General presentation 1 Measurements based on passive observations 2 Measurements based on active queries 3 Preliminary Results 4 Future work 5 2 General presentation A versatile platform for DNS metrics with its application to IPv6

  3. What is AFNIC AFNIC is the registry for the TLD “ .fr ” (France) . 51 employees, 1.2 million domain names and a quite recent R&D department. 3 General presentation A versatile platform for DNS metrics with its application to IPv6

  4. Motivation A DNS registry has a lot of information it does not use. Our marketing team or the technical team are asking for all sort of things (“How many of our domains are used for e-mail only?”) for which we may have the answer. 4 General presentation A versatile platform for DNS metrics with its application to IPv6

  5. More specific motivation Getting information about the deployment of new techniques like IPv6 We focus on things that we can obtain from the DNS because we are a domain name registry. 5 General presentation A versatile platform for DNS metrics with its application to IPv6

  6. More specific motivation Getting information about the deployment of new techniques like IPv6 We focus on things that we can obtain from the DNS because we are a domain name registry. Possible surveys: IPv6, SPF, DNSSEC, EDNS0, Zonecheck. . . Let’s build a multi-purpose platform for that! 5 General presentation A versatile platform for DNS metrics with its application to IPv6

  7. Other aims 1. Versatile , able to do many different surveys (most known tools deal only with one survey). 2. Works unattended (from cron, for instance), for periodic runs, 3. Stores raw results, not just aggregates, for long-term analysis, 4. Designed to be distributable. 6 General presentation A versatile platform for DNS metrics with its application to IPv6

  8. What we can learn from the DNS (and beyond) ◮ What we send out : active DNS queries sent to domain name servers. 7 General presentation A versatile platform for DNS metrics with its application to IPv6

  9. What we can learn from the DNS (and beyond) ◮ What we send out : active DNS queries sent to domain name servers. ◮ What comes in : DNS queries received by authoritative name servers, passively monitored (“Who knocks at the door and what are they asking for?”). 7 General presentation A versatile platform for DNS metrics with its application to IPv6

  10. What we can learn from the DNS (and beyond) ◮ What we send out : active DNS queries sent to domain name servers. ◮ What comes in : DNS queries received by authoritative name servers, passively monitored (“Who knocks at the door and what are they asking for?”). We will work on both, study the long-term evolution and publish results. 7 General presentation A versatile platform for DNS metrics with its application to IPv6

  11. Where are we in the talk? General presentation 1 Measurements based on passive observations 2 Measurements based on active queries 3 Preliminary Results 4 Future work 5 8 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  12. Passive observation of queries [Warning, not yet started.] It will work by passive monitoring of the “ fr ” name servers. We are talking about long-term monitoring, not just the quick glance that DSC offers. The idea is to address the needs of the R&D or of the marketing, not just the needs of the NOC. 9 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  13. Passive observation of queries [Warning, not yet started.] It will work by passive monitoring of the “ fr ” name servers. We are talking about long-term monitoring, not just the quick glance that DSC offers. The idea is to address the needs of the R&D or of the marketing, not just the needs of the NOC. It will work mostly by port mirroring. 9 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  14. Expected uses of the passive measurements It will allow us to survey things like: 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  15. Expected uses of the passive measurements It will allow us to survey things like: ◮ Percentage of servers without SPR (Source Port Randomisation, see “ .at ” publications). 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  16. Expected uses of the passive measurements It will allow us to survey things like: ◮ Percentage of servers without SPR (Source Port Randomisation, see “ .at ” publications). ◮ Percentage of requests done over IPv6 transport (unlike DSC, we will be able to study long-term trends). 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  17. Expected uses of the passive measurements It will allow us to survey things like: ◮ Percentage of servers without SPR (Source Port Randomisation, see “ .at ” publications). ◮ Percentage of requests done over IPv6 transport (unlike DSC, we will be able to study long-term trends). ◮ Percentage of requests with EDNS0 or DO. 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  18. Expected uses of the passive measurements It will allow us to survey things like: ◮ Percentage of servers without SPR (Source Port Randomisation, see “ .at ” publications). ◮ Percentage of requests done over IPv6 transport (unlike DSC, we will be able to study long-term trends). ◮ Percentage of requests with EDNS0 or DO. ◮ Top N domains for which there is a NXDOMAIN reply. 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  19. Expected uses of the passive measurements It will allow us to survey things like: ◮ Percentage of servers without SPR (Source Port Randomisation, see “ .at ” publications). ◮ Percentage of requests done over IPv6 transport (unlike DSC, we will be able to study long-term trends). ◮ Percentage of requests with EDNS0 or DO. ◮ Top N domains for which there is a NXDOMAIN reply. ◮ But the list is open. . . 10 Measurements based on passive observations A versatile platform for DNS metrics with its application to IPv6

  20. Where are we in the talk? General presentation 1 Measurements based on passive observations 2 Measurements based on active queries 3 Preliminary Results 4 Future work 5 11 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  21. Active queries This is my main subject. 12 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  22. Active queries This is my main subject. This is the realm of our DNSwitness program. 12 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  23. Active queries This is my main subject. This is the realm of our DNSwitness program. Announced here for the first time. 12 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  24. Related work ◮ Patrick Maigron’s measurements on IPv6 penetration http: //www-public.it-sudparis.eu/~maigron/ ◮ JPRS, the ”.jp” registry makes for a long time detailed measures on IPv6 use (not yet published, see http://v6metric.inetcore. com/en/index.html ) ◮ “ iis.se ” ”engine”, part of their dnscheck tools, allows scanning the entire zone to test every subdomain is properly configured http://opensource.iis.se/trac/ dnscheck/wiki/Engine ◮ And many others 13 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  25. How it works DNSwitness mostly works by asking the DNS. It loads a list of delegated zones and queries them for various records. 14 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  26. How it works DNSwitness mostly works by asking the DNS. It loads a list of delegated zones and queries them for various records. But it can also perform other queries: HTTP and SMTP tests, running Zonecheck. . . 14 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

  27. The first algorithm Crude version of DNSwitness (everyone at a TLD registry wrote such a script at least once). Here, to test SPF records: for domain in $(cat $DOMAINS); do echo $domain dig +short TXT $domain | grep "v=spf1" done 15 Measurements based on active queries A versatile platform for DNS metrics with its application to IPv6

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

An Application of Ontology-based Rules to Situation Awareness Christopher J. Matheus Versatile

An Application of Ontology-based Rules to Situation Awareness Christopher J. Matheus Versatile

An Application of Ontology-based Rules to Situation Awareness Christopher J. Matheus Versatile Information Systems, Inc. Framingham, MA USA cmatheus vistology.com Versatile Information Systems, Inc. 2005 W3C Workshop on Rule Languages

312 views • 10 slides
JVM Web Application Metrics & Monitoring FOLIO @krrrr38 2 3 1. 2. 3. JVM Web

JVM Web Application Metrics & Monitoring FOLIO @krrrr38 2 3 1. 2. 3. JVM Web

JVM Web Application Metrics & Monitoring FOLIO @krrrr38 2 3 1. 2. 3. JVM Web Application 4 5 Metrics 6 Metrics JVM http JMX jcmd, jstat, ... 7 Metrics server/process pull /push 8 pull /push push server -(process)->

528 views • 36 slides
Proposal Versatile Link 45 mm GBLD 7 mm GBTX SF-VTRx Opto Working Group Mini Workshop, 8

Proposal Versatile Link 45 mm GBLD 7 mm GBTX SF-VTRx Opto Working Group Mini Workshop, 8

Versatile Link Small Form-factor Versatile Transceiver ( SF-VTRx) Csaba Soos CERN PH-ESE-BE Motivation Versatile Link CMS tracker Phase II upgrade Need low profile optical interface for the new front-end hybrid Footprint constraint

118 views • 8 slides
The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation

The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation

The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation Hao Wang Ph.D. hao.wang@chalmers.se Division of Systems and Synthetic Biology Department of Biology and Biological Engineering Chalmers University

610 views • 28 slides
Platform Health Metrics Paul Resnick Michael D. Cohen Collegiate Professor Associate Dean for

Platform Health Metrics Paul Resnick Michael D. Cohen Collegiate Professor Associate Dean for

Platform Health Metrics Paul Resnick Michael D. Cohen Collegiate Professor Associate Dean for Research and Faculty Affairs November 29, 2018 The Iffy Quotient Outline Platform Health Metrics Motivation Desiderata The Iffy Quotient

657 views • 29 slides
A Versatile Sharp I nterface I mmersed A Versatile Sharp I nterface I mmersed Boundary Method

A Versatile Sharp I nterface I mmersed A Versatile Sharp I nterface I mmersed Boundary Method

A Versatile Sharp I nterface I mmersed A Versatile Sharp I nterface I mmersed Boundary Method with Application to Boundary Method with Application to Complex Biological Flows Complex Biological Flows Rajat Mittal Mittal Rajat Mechanical

680 views • 38 slides
Technology Platform Layers Technology Platform Supporting Application Functionality Lecture

Technology Platform Layers Technology Platform Supporting Application Functionality Lecture

Architecture Perspective: Technology Platform Layers Technology Platform Supporting Application Functionality Lecture Objectives Look at a common layer architecture Understand the application-technology boundary Begin

253 views • 12 slides
What we learned from Community Metrics Agenda Why are metrics used? How metrics are used

What we learned from Community Metrics Agenda Why are metrics used? How metrics are used

What we learned from Community Metrics Agenda Why are metrics used? How metrics are used in two Open Source communities Common pitfalls and ways to avoid them Why use Metrics? Transparency Who is contributing to the

166 views • 14 slides
Rubber Test Application Highlights Versatile and Dynamic ElectroForce Instruments 1

Rubber Test Application Highlights Versatile and Dynamic ElectroForce Instruments 1

Rubber Test Application Highlights Versatile and Dynamic ElectroForce Instruments 1 TAINSTRUMENTS.COM TAINSTRUMENTS.COM TA Instruments Thermal Analysis Rheology Thermogravimetric Analysis Microcalorimetry Dynamic Mechanical Analysis

378 views • 8 slides
Cross-Platform Development CS 4720 Mobile Application Development CS 4720 Which Platform?

Cross-Platform Development CS 4720 Mobile Application Development CS 4720 Which Platform?

Cross-Platform Development CS 4720 Mobile Application Development CS 4720 Which Platform? Weve discussed this! Where are the users you want to target? How much do you plan to charge? How much do you want to invest?

300 views • 17 slides
Application of Application of Loss Metrics to Loss Metrics to Multimedia Multimedia Streams

Application of Application of Loss Metrics to Loss Metrics to Multimedia Multimedia Streams

Application of Application of Loss Metrics to Loss Metrics to Multimedia Multimedia Streams Streams Nagarjuna Venna Nagarjuna Venna Kaynam Hedayat Kaynam Hedayat IPPM WG IPPM WG November 2006 November 2006 Outline Outline Need

307 views • 7 slides
VTRx/VTTx Status and production plan Versatile Link Jan Troska Stphane Dtraz, Lauri

VTRx/VTTx Status and production plan Versatile Link Jan Troska Stphane Dtraz, Lauri

VTRx/VTTx Status and production plan Versatile Link Jan Troska Stphane Dtraz, Lauri Olanter, Csaba Soos, Sarah Storey, Christophe Sigaud, Franois Vasey Versatile Link Overview Versatile Link Optical Fibre VTRx TRx (SFP+) and

417 views • 10 slides
AGENCY OPERATIONS METRICS The Metrics of Me The Metrics of Me x 159 13,006 5 days old books

AGENCY OPERATIONS METRICS The Metrics of Me The Metrics of Me x 159 13,006 5 days old books

Dont trust your gut AGENCY OPERATIONS METRICS The Metrics of Me The Metrics of Me x 159 13,006 5 days old books read so far in 2018 The Metrics of Me 6.3 4.5 4 0 hours of sleep hours in dance class hours cooking hours commuting

549 views • 20 slides
Energy Efficiency Metrics and Cray XE6 Application Performance Wilfried Oed Principal Engineer

Energy Efficiency Metrics and Cray XE6 Application Performance Wilfried Oed Principal Engineer

Energy Efficiency Metrics and Cray XE6 Application Performance Wilfried Oed Principal Engineer September 8, 2011 Cray Proprietary Slide 1 What made this machine so unique ? Some answers Novel vector architecture Packaging

375 views • 13 slides
Proposal Metrics Dashboard What Gets Measured Gets Done Topics Why Keep Metrics? What

Proposal Metrics Dashboard What Gets Measured Gets Done Topics Why Keep Metrics? What

Proposal Metrics Dashboard What Gets Measured Gets Done Topics Why Keep Metrics? What Metrics Should We Keep? What is the Easiest Way to Collect Metrics? What is the Easiest Way to Report Metrics? Tips and Tricks to Building a

578 views • 16 slides
Software Metrics Chapter 4 1 SW Metrics SW process and product metrics are quantitative

Software Metrics Chapter 4 1 SW Metrics SW process and product metrics are quantitative

Click here to review OO Testing Strategies Software Metrics Chapter 4 1 SW Metrics SW process and product metrics are quantitative measures that enable SW people to gain insight into the efficacy of SW process and the projects that are

897 views • 44 slides
ICANN Update Champika Wijayatunga <champika.wijayatunga@icann.org> Regional Security

ICANN Update Champika Wijayatunga <champika.wijayatunga@icann.org> Regional Security

ICANN Update Champika Wijayatunga <champika.wijayatunga@icann.org> Regional Security Engagement Manager Asia Pacific TWNIC OPM / TWNOG 27-28 November 2018 | 1 Overview Coordinating with our partners, we help make the Internet work.

555 views • 24 slides
The iLab Experience a blended learning hands-on course concept you set the focus WWW Security /

The iLab Experience a blended learning hands-on course concept you set the focus WWW Security /

The iLab Experience a blended learning hands-on course concept you set the focus WWW Security / Your Exercise Topic Pitch 2018-05-8 10.4. Kick Off, IPv6 1 IPv6 BGP 17.4. 2 Minilab 1 2 mini labs Advanced Wireless Playground BGP 24.4.

646 views • 40 slides
DNSSEC @ Mozilla OSCON, 2011 Shyam Mani shyam@mozilla.com about:mozilla Agenda The Basics

DNSSEC @ Mozilla OSCON, 2011 Shyam Mani shyam@mozilla.com about:mozilla Agenda The Basics

DNSSEC @ Mozilla OSCON, 2011 Shyam Mani shyam@mozilla.com about:mozilla Agenda The Basics Implementation What we I messed up The Future What and the Why DNS Security Extensions Based on public key crypto RFC

783 views • 64 slides
DNSSEC for Everybody: A Beginners Guide | ICANN 55 | March 2016 The Schedule

DNSSEC for Everybody: A Beginners Guide | ICANN 55 | March 2016 The Schedule

DNSSEC for Everybody: A Beginners Guide | ICANN 55 | March 2016 The Schedule Outline(Concept( Segment( Duration( Speaker( Welcome'and'Introduction' 2'mins' Dan' (((((((((((((((((((((((((Welcome( Caveman''DNSSEC'5000BC' 3'mins'

667 views • 48 slides
ICANN's New Generic Top Level Domains Strategies for Domain Name Registration and Brand Protection

ICANN's New Generic Top Level Domains Strategies for Domain Name Registration and Brand Protection

ICANN's New Generic Top Level Domains Strategies for Domain Name Registration and Brand Protection presents presents A Live 90-Minute Teleconference/Webinar with Interactive Q&A Today's panel features: Today s panel features: J. Scott

469 views • 30 slides
Whois/RDAP lookup for mere mortals Why should we care? Case study: ch-co.club A Whatsapp

Whois/RDAP lookup for mere mortals Why should we care? Case study: ch-co.club A Whatsapp

i.whoswho Whois/RDAP lookup for mere mortals Why should we care? Case study: ch-co.club A Whatsapp avalanche scam. Lifetime long enough for considerable damage. What if there had been a simply way of checking? http://www.coop. ch-co.club

207 views • 10 slides
SPECIAL GENERAL MEETING CEO Presentation 31 July 2017 1 auDAs Constitution - Preamble

SPECIAL GENERAL MEETING CEO Presentation 31 July 2017 1 auDAs Constitution - Preamble

SPECIAL GENERAL MEETING CEO Presentation 31 July 2017 1 auDAs Constitution - Preamble Taking the view that the Internet Domain Name System is a public asset, and that the .au ccTLD is under the sovereign control of the Commonwealth of

573 views • 46 slides
Experience in using Mechanical Turk for Network Measurement

Experience in using Mechanical Turk for Network Measurement

Experience in using Mechanical Turk for Network Measurement Gokay Huz (NPS), Steven Bauer (MIT), kc claffy (CAIDA), Robert Beverly (NPS) ACM

528 views • 19 slides

More recommend