.br technical overview Frederico Neves <fneves@registro.br> - - PowerPoint PPT Presentation

br technical overview
SMART_READER_LITE
LIVE PREVIEW

.br technical overview Frederico Neves <fneves@registro.br> - - PowerPoint PPT Presentation

Oct 20, 2022 177 likes •321 views

.br technical overview Frederico Neves <fneves@registro.br> CTO NIC.br ICANN ccNSO tech workshop - So Paulo - 20061207 .br brief history and numbers Started public registration in 1996 with the commercial Internet in Brazil In

slide-1
SLIDE 1

.br technical overview

Frederico Neves <fneves@registro.br> CTO NIC.br ICANN ccNSO tech workshop - São Paulo - 20061207

slide-2
SLIDE 2

.br brief history and numbers

  • Started public registration in 1996 with the commercial Internet in Brazil
  • In 1998 with 30k domains changed to a completely automated registration

system with a 100% re-registration phase (took 8 months)

  • Today 1M domains distributed on 800k owners
  • Net grow ~170k year (last 3 years)
  • 26 people working directly with the registry (12 cs, 7 eng, 7 noc)
  • Daily updated stats at: http://registro.br/estatisticas.html

2

slide-3
SLIDE 3

Foundation

  • 100% Based on Free Software and Open Standards
  • OO technology
  • Persistence using RDB
  • Solid base - evolved in the last 8 years still maintaining fundamental design
  • principals. Biggest changes were:
  • IP distribution system; IPv6; IDN; EPP and a myriad of registration rules

(release process, etc)

3

slide-4
SLIDE 4

Object Model

4

Domain Entity

Contact ISP

1 n 1 n 3 n 1 n

slide-5
SLIDE 5

Software Development

  • Environment
  • SVN
  • EMACS
  • G++
  • STL, OpenSSL, GD, XERCES++, others

5

slide-6
SLIDE 6

Data Replication Schema

6

Master Read Load

Ext. Backup Backup

FE/BE systems (EPP , WEB) Whois XFRD

slide-7
SLIDE 7

.br EPP protocol extensions

  • Extension for the Contact Mapping (RFC3733) to add a unique external ID

(CNPJ/CPF), responsible, contact handle and attorney

  • Extension for the Domain Mapping (RFC3731) to add subordination of

domain names to Registrant object, ticket support, automatic renewal and the release process

  • More info at:
  • http://registro.br/epp/index-EN.html (protocol)
  • http://registro.br/info/epp/ (ISPs)

7

slide-8
SLIDE 8

DNS QuasiOnLine Publication

  • From 8 hours to 30 minutes
  • XFRD server
  • A more efficient system (propagating only changes)
  • on a 24h period normally less then 1% of changes
  • Included journal of changes on the provisioning system
  • Journal read every 30’
  • Optimized for [AI]XFR
  • Designed for the future

8

slide-9
SLIDE 9

XFRD design

9

DataBase Provisioning (zone/Journal)

XFRD

Disk DNS QuasiWireFormat (Zone/Increment)

Notier Server

AuthServer BIND/NSD

2 1 fork fork 5 4 3 [1] Zone Info (Full / Journal) [2] Update Publishing Flags + SOA version [3] Secure Zone representation on Disk [4] Forks New Hidden Master Servers [5] Notify Auth Server

slide-10
SLIDE 10

DNS publishing

  • Aggregated of 35kq/s
  • 5 delegated servers [a-e].dns.br
  • 3 inside the country (São Paulo, Rio de Janeiro e Brasília)
  • 2 outside (US, GR)
  • Moving all of them to clusters of machines
  • Multiples Routers, Switches and Servers per cluster,Anycast “in the local” based on

ECMP balancing

  • 2 New sites entering in production
  • DENIC (substituting GR), KRNIC

10

slide-11
SLIDE 11

Software Infrastructure

  • OS FreeBSD/Linux/OpenBSD
  • Basic Services - Apache, Postfix
  • MUA Mutt with lisp software to deal with CS
  • Monitoring - RRDTool , Nagios
  • DNS - BIND e NSD
  • Backup - Bacula

11

slide-12
SLIDE 12

Physical Infrastructure

  • 80m2 data center (30 x 44U racks space)
  • 1+1 (60kVA) UPSs
  • 1 Power Generator (360kVA)
  • 2+1 (45 TR) Cooling Systems
  • CFTV + Proximity cards + Biometric
  • Fire Suppress system
  • Fire resistant safe for backups

12

slide-13
SLIDE 13

Network Infrastructure

  • Fully redundant L2 network
  • 3 Transit provider
  • 20+ Peering Agreements

13

slide-14
SLIDE 14

Questions ? Thank You !

14