comparing dns resolvers in the wild
play

Comparing DNS Resolvers in the Wild Bernhard Ager Wolfgang M - PowerPoint PPT Presentation

Apr 01, 2023 •24 likes •144 views

Comparing DNS Resolvers in the Wild Bernhard Ager Wolfgang M uhlbauer Georgios Smaragdakis Steve Uhlig { bernhard|steve|georgios } @net.t-labs.tu-berlin.de { wolfgang.muehlbauer@tik.ee.ethz.ch } Technische Universtit at Berlin/Deutsche

  1. Comparing DNS Resolvers in the Wild Bernhard Ager Wolfgang M¨ uhlbauer Georgios Smaragdakis Steve Uhlig { bernhard|steve|georgios } @net.t-labs.tu-berlin.de { wolfgang.muehlbauer@tik.ee.ethz.ch } Technische Universtit¨ at Berlin/Deutsche Telekom Laboratories ETH Z¨ urich November 1 2010 Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 1

  2. Motivation Domain Name System (DNS) DNS: resolve www.fg-inet.de to 85.214.78.63 Send HTTP request through Internet towards 85.214.78.63 ⇒ Fundamental building block of the Internet ⇒ Its performance is critical Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 2

  3. Motivation Motivation DNS according to the text book A commodity service: everyone is using it Resolves hostnames to IP addresses Same view from everywhere Caching Resolver assigned by ISP Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 3

  4. Motivation Motivation DNS according to the text book DNS in the wild A commodity service: New (mis)uses of DNS [Vixie’09] everyone is using it Locality aware replies Dynamic load balancing Resolves hostnames to IP NXDOMAIN catching addresses Use as directory service Same view from everywhere Third party resolvers, e. g., Caching Google Public DNS and Resolver assigned by ISP OpenDNS [Vixie’09] P. Vixie. What DNS is not. Commun. ACM , 52(12):43–47, 2009. Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 3

  5. Motivation Motivation DNS according to the text book DNS in the wild A commodity service: New (mis)uses of DNS [Vixie’09] everyone is using it Locality aware replies Dynamic load balancing Resolves hostnames to IP NXDOMAIN catching addresses Use as directory service Same view from everywhere Third party resolvers, e. g., Caching Google Public DNS and Resolver assigned by ISP OpenDNS DNS is changing ⇒ Study across content, locations and resolvers Compare DNS deployment of different ISPs and different resolvers Metrics: responsiveness and quality of replies [Vixie’09] P. Vixie. What DNS is not. Commun. ACM , 52(12):43–47, 2009. Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 3

  6. Data and Approach Data and Approach Overview Custom script 3 DNS resolvers: Google DNS, OpenDNS, local resolver 10k+ hostnames: Popular content: Top 5000 from Alexa Less popular content: Bottom 2000 from Alexa Many objects on websites: 3000+ “embedded” hostnames Two back-to-back queries for each hostname for each resolver ⇒ > 60 traces from all around the globe, > 50 different ISPs Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 4

  7. Results First vs. second query time The expected 5000 GOOGLE Scatterplot LOCAL 2000 OPENDNS 5000 ms timeout Time for second query (ms) Minima indicate RTT to 500 DNS server 200 Small variance for second 100 query due to caching 50 ⇒ Local DNS apparently better 20 than OpenDNS and GoogleDNS 10 10 20 50 100 500 2000 5000 Time for first query (ms) Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 5

  8. Results First vs. second query time The expected and the unexpected 5000 5000 GOOGLE GOOGLE LOCAL LOCAL 2000 OPENDNS OPENDNS 2000 Time for second query (ms) Time for second query (ms) 500 500 200 100 100 50 50 20 20 10 10 10 20 50 100 500 2000 5000 10 20 50 100 500 2000 5000 Time for first query (ms) Time for first query (ms) Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 5

  9. Results Impact of redirection How many replies are in the same AS as the vantage point? Google Local 800 OpenDNS # returned IPs that are in same AS Distant DNS servers 600 CDN optimizes for resolver IP address 400 Up to 1000 hosts with local resolval available 200 not locally resolved with GoogleDNS/OpenDNS 0 vantage points (sorted by # returned IPs that are in same AS) Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 6

  10. Summary Summary Summary Application performance depends on DNS deployment Local DNS not always the performance champion But for content locality you have to use local DNS DNS is a “battlefield” with many players How do we get to an open DNS system that can cope with today’s needs? Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 7

  11. Summary Current work Current work Repeat experiment in wider scope ⇒ Please help and run our new measurement script from http://www.fg-inet.de/ at your home No privacy implications No interference with your personal data Source code fully open Manual trace upload Little overhead Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 8

  12. Summary Current work Current work Repeat experiment in wider scope ⇒ Please help and run our new measurement script from http://www.fg-inet.de/ at your home No privacy implications No interference with your personal data Source code fully open Manual trace upload Little overhead Questions? Ager et al (TUB/DT Labs/ETH) Comparing DNS Resolvers in the Wild Nov 1 2010 8

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

DNS Resolvers Considered Harmful Kyle Schomp, Mark Allman, and Michael Rabinovich 2 DNS

DNS Resolvers Considered Harmful Kyle Schomp, Mark Allman, and Michael Rabinovich 2 DNS

DNS Resolvers Considered Harmful Kyle Schomp, Mark Allman, and Michael Rabinovich 2 DNS resolvers abstract complexity and offer the possibility of improved performance and better scalability . Why are they harmful? 3 Resolvers Are Vulnerable

618 views • 34 slides
CS371m - Mobile Computing Content Providers And Content Resolvers Content Providers One of

CS371m - Mobile Computing Content Providers And Content Resolvers Content Providers One of

CS371m - Mobile Computing Content Providers And Content Resolvers Content Providers One of the four primary application components: activities content providers / content resolvers services broadcast receivers 2 Android

728 views • 50 slides
Hoda Rohani Anastasios Poulidis Supervisor: Jeroen Scheerder System and Network Engineering

Hoda Rohani Anastasios Poulidis Supervisor: Jeroen Scheerder System and Network Engineering

Hoda Rohani Anastasios Poulidis Supervisor: Jeroen Scheerder System and Network Engineering July 2014 DNS Main Components Server Side: Authoritative Servers Resolvers (Recursive Resolvers, cache) Client Side: Stub resolvers

429 views • 30 slides
Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals

Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals

Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals live? Wild animals live in their natural habit, this is where they are born. They do not depend on humans. Giant Panda Bear Research

366 views • 9 slides
Probing for Open DNS Resolvers John Kristoff jtk@depaul.edu Midwest Security Workshop jtk

Probing for Open DNS Resolvers John Kristoff jtk@depaul.edu Midwest Security Workshop jtk

Probing for Open DNS Resolvers John Kristoff jtk@depaul.edu Midwest Security Workshop jtk (jtk@depaul.edu) DNS Probing September 30, 2006 1 / 9 Open Resolvers Recursive - open access to a full resolver Forwarder - proxy access to a

371 views • 9 slides
Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro

Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro

Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro Ogud@shinkuro.com Motivation: Open Questions What is the market share for resolver X What can we deduct from traces to a subset of authorative

623 views • 19 slides
Shrug Daemon Doing DNS the Hard Way Since 2015

Shrug Daemon Doing DNS the Hard Way Since 2015

Shrug Daemon Doing DNS the Hard Way Since 2015 https://en.wikipedia.org/wiki/Ayn_Rand#/media/File:Objectivist1.jpg Problem Statement RIPE Atlas probes have 2 DNS resolvers: Resolver local to probe RIPE Atlas central resolvers

713 views • 6 slides
DNS Rex Do you need an aggressive benchmark? Alex Rousskov The Measurement Factory DNS Rex At a

DNS Rex Do you need an aggressive benchmark? Alex Rousskov The Measurement Factory DNS Rex At a

DNS Rex Do you need an aggressive benchmark? Alex Rousskov The Measurement Factory DNS Rex At a Glance A performance test tool for DNS resolvers. Born 2009 A.D. (Cenozoic Era). Designed to intimidate powerful resolvers. Could

713 views • 22 slides
Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable

Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable

Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable September 26, 2017 1 We must develop a broad coalition of interest groups and

355 views • 18 slides
Comparing Several Samples We are often interested in comparing measurements made under more than

Comparing Several Samples We are often interested in comparing measurements made under more than

ST 380 Probability and Statistics for the Physical Sciences Comparing Several Samples We are often interested in comparing measurements made under more than two different sets of conditions. Examples Strengths of concrete beams manufactured

436 views • 15 slides
In Inferring the Deployment of f In Inbound Source Address Validation Using DNS Resolvers

In Inferring the Deployment of f In Inbound Source Address Validation Using DNS Resolvers

In Inferring the Deployment of f In Inbound Source Address Validation Using DNS Resolvers Maciej Korczyski*, Yevheniya Nosyk*, Qasim Lone , Marcin Skwarek*, Baptiste Jonglez*, and Andrzej Duda* *Universit Grenoble Alpes, CNRS, Grenoble

546 views • 16 slides
Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random

Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random

Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random research, rants, etc. Nmap dev news Password database I post updates to Twitter https://twitter.com/iagox86 My job... Tenable Network Security

990 views • 88 slides
Comparing Two Samples We are often interested in comparing measurements made under two different

Comparing Two Samples We are often interested in comparing measurements made under two different

ST 380 Probability and Statistics for the Physical Sciences Comparing Two Samples We are often interested in comparing measurements made under two different sets of conditions. Examples Water quality measurements below an effluent outfall,

384 views • 22 slides
Caching in with Resolvers Norman Walsh http://www.sun.com/ XML Conference & Exposition 2003

Caching in with Resolvers Norman Walsh http://www.sun.com/ XML Conference & Exposition 2003

Caching in with Resolvers Norman Walsh http://www.sun.com/ XML Conference & Exposition 2003 07-12 December 2003 Version 1.0 Introduction Using URIs The Problem Solutions Catalog-based Resolution Proxy Caches

1.26k views • 47 slides
Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson

Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson

Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson National Forest can utilize the Jicarilla Wild Horses Territory (JWHT) for Eco-Tourism, Rural Economic Development, Preservation of the Historical

419 views • 17 slides
Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing

Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing

TWO S OR MEDIANS: COMPARISONS Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing the means of two unrelated samples Comparing the medians of two unrelated samples Old exam question Further study

397 views • 38 slides
Towards the Direct Numerical Simulation of a Nuclear Pebble Bed Flow Star-CD User Conference

Towards the Direct Numerical Simulation of a Nuclear Pebble Bed Flow Star-CD User Conference

Towards the Direct Numerical Simulation of a Nuclear Pebble Bed Flow Star-CD User Conference 22-23 March, 2011 Amsterdam A. Shams, F. Roelofs, E.M.J. Komen shams@nrg.eu Presentation Plan Introduction: Problem Description Strategies

560 views • 34 slides
Semantic based DNS Forensics Samuel Marchal, J er ome Fran cois, Radu State and Thomas

Semantic based DNS Forensics Samuel Marchal, J er ome Fran cois, Radu State and Thomas

samuel.marchal@uni.lu 3/12/12 Semantic based DNS Forensics Samuel Marchal, J er ome Fran cois, Radu State and Thomas Engel Motivations Semantic analysis Experiments and Results Conclusion Outline 1 Motivations 2 Semantic analysis 3

509 views • 19 slides
Installing TEAMserver Technical requirements and recommendations 2014 Installing TEAMserver

Installing TEAMserver Technical requirements and recommendations 2014 Installing TEAMserver

Installing TEAMserver Technical requirements and recommendations 2014 Installing TEAMserver Before installing the TEAMserver, we would like to know: What is the hardware used? Are you planning to install TEAMserver and SQL Server on

220 views • 10 slides
DNS OF TURBULENT PIPE FLOW : H OW FAR CAN WE REACH TODAY ? M.Quadrio 1 & P . Luchini 2 1

DNS OF TURBULENT PIPE FLOW : H OW FAR CAN WE REACH TODAY ? M.Quadrio 1 & P . Luchini 2 1

The well-designed DNS Pipe or channel? The (far) future of DNS What can we do today? Conclusions DNS OF TURBULENT PIPE FLOW : H OW FAR CAN WE REACH TODAY ? M.Quadrio 1 & P . Luchini 2 1 Politecnico di Milano, Dip. Ing. Aerospaziale 2

498 views • 24 slides
Domain Name System (DNS) Session 2: Resolver Operation and debugging Joe Abley AfNOG Workshop,

Domain Name System (DNS) Session 2: Resolver Operation and debugging Joe Abley AfNOG Workshop,

Domain Name System (DNS) Session 2: Resolver Operation and debugging Joe Abley AfNOG Workshop, AIS 2017, Nairobi DNS Resolver Operation How Resolvers Work (1) If we've dealt with this query before recently, answer is already in the cache

558 views • 42 slides
Securing the Internet's Identifier Systems DNSSec and other short stories John Crain ICANN

Securing the Internet's Identifier Systems DNSSec and other short stories John Crain ICANN

Securing the Internet's Identifier Systems DNSSec and other short stories John Crain ICANN john.crain@icann.org 1 Criticality of the Domain Name System Most transactions on the Internet start with a user known name and use the DNS to

514 views • 18 slides
D&D of malware with exotic C&C D&D = Description & Detection C&C = Command

D&D of malware with exotic C&C D&D = Description & Detection C&C = Command

D&D of malware with exotic C&C D&D = Description & Detection C&C = Command & Control Automotive Consumer Energy & Chemicals Paul Rascagneres - @r00tbsd Eric Leblond - @Regiteric D&D of malware with exotic C&C

781 views • 34 slides
Project 1 Robert Windisch Automated security check for WordPress plugins Static Code Analysis

Project 1 Robert Windisch Automated security check for WordPress plugins Static Code Analysis

Project 1 Robert Windisch Automated security check for WordPress plugins Static Code Analysis Powered by RIPS Technologies High-tech company based in Bochum, Germany Supports the full feature stack of the PHP language Detects

1.06k views • 47 slides

More recommend