dns rex
play

DNS Rex Do you need an aggressive benchmark? Alex Rousskov The - PowerPoint PPT Presentation

Oct 29, 2022 •477 likes •713 views

DNS Rex Do you need an aggressive benchmark? Alex Rousskov The Measurement Factory DNS Rex At a Glance A performance test tool for DNS resolvers. Born 2009 A.D. (Cenozoic Era). Designed to intimidate powerful resolvers. Could

  1. DNS Rex Do you need an aggressive benchmark? Alex Rousskov The Measurement Factory

  2. DNS Rex At a Glance ● A performance test tool for DNS resolvers. ● Born 2009 A.D. (Cenozoic Era). ● Designed to intimidate powerful resolvers. ● Could also quickly poison caching resolvers. ● Mission accomplished! ● Publicly released and dormant since 2012. ● Will fossilize without demand and more work.

  3. Why a yet another DNS benchmark? We said “no” more than once, but... ● Most tools focused on authoritative servers. ● Also needed to test cache poisoning defenses. ● Most tools were slow, unreliable, or shady. ● Angst and distrust among resolver engineers (see Exhibit A). ● Experience creating HTTP performance tools; it was “easy” for us to detect/foresee problems.

  4. Exhibit A: Testing Resolver X ● Tool A's conclusion: Maximum throughput: 22'346 qps Lost at that point: 24% ● Tool B's conclusion: Sustained throughput: 120'000 qps Transaction errors: 0 ● Argh!..

  5. Why a yet another DNS benchmark? We said “no” more than once, but... ... gave up and wrote what we needed.

  6. Why no progress since ~2007? (a speculation) ● Easy problems have been solved (in 3K LOC): – send UDP queries at an increasing rate – bail on errors – RELEASE_NOTES: ----------------------- January 10, 2008 Known Issues: - None.

  7. ... Since ~2007 ● No more automagic performance improvement! – MUST use threads for reasonable scale ● Remaining problems are much harder: – fundamental benchmarking problems – threading is difficult enough on its own – solving hard problems while threading is harder ● Past tool suppliers have to focus on survival. ● Insufficient demand???

  8. ... but if we want to move forward What would an ideal tool for measuring caching resolver performance be?

  9. Ideal: Persistence sustaining load for longer than a few minutes “The 3 million record query file has been replaced with a 10 million record query file as 3 million records were not enough for a full run on modern hardware.” -- 2012 testing instructions 10M / 100K QPS = 100 seconds

  10. Ideal: Persistence sustaining load for longer than a few minutes “The longest single attack lasted nine days and 11 hours.” -- NSFOCUS DDoS Threat Report

  11. Ideal: Scalability ● SMP Scalability: “faster” than any resolver on similar hardware but since there is custom and $$$ hardware... ● Swarm-ability: test synchronization and results aggregation across off-the-shelf and/or cheaper drones

  12. Ideal: Scalability worst case scenario? “The single largest attack [rate was] 23 million PPS.” -- NSFOCUS DDoS Threat Report

  13. Ideal: Cache Awareness ability to offer any configured hit ratio ● offered hit ratio is a ratio of hits that would be served by a perfect infinite cache ● relatively short traces: 100% offered hit ratio ● infinitely long traces: X% offered hit ratio

  14. Ideal: Slowness simulating authoritative server problems: ● response delays ● packet drops ● NXDOMAIN ● bad referrals ● errors

  15. Ideal: Independence ● no 3 rd party authoritative servers: – slow (what are you testing?) – difficult to configure correctly for the test – difficult to replicate – limited statistics – the real ones do not want to be attacked ● no resolver libraries? ● no resolver developers???

  16. Ideal: Protocol Features ● IPv6 ● TCP ● DNSSEC (1000s of generated signed zones!) ● NXDOMAIN (hijacking infrastructure tests???)

  17. Ideal: Ease of use ● configuration files ● awareness and assessment of test environment ● detailed performance reports ● GUI???

  18. Ideal: Other Not detailing several key properties/features: ● reliability (but see Exhibit A) ● realism ● cost ● flexibility (scriptability??) ● portability ● openness?

  19. DNS Rex vs The Ideal (marketing) Reliability Persistence Scalability Cache Awareness Slowness Independence IPv6 TCP DNSSEC Ease of use

  20. DNS Rex vs The Ideal (reality) ¾ Reliability ...... Rex needs more exposure/testing to be sure Persistence ½ Scalability ...... Rex supports SMP scale but not swarming ¾ Cache Awareness only 0% and 100% hit ratio is configurable ¾ Slowness ...... configurable think time but not error ratio Independence IPv6 ...... mostly ready but lacking configuration TCP ⅕ DNSSEC ...... sends DO but relies on manual zone signing ½ Ease of use ...... Rex has config file, detects overload, but ...

  21. What's Next? ● Leave DNS Rex as is, allowing it to die? or ● Relaunch the project? – focusing on what features?

  22. Feedback Alex Rousskov The Measurement Factory info@measurement-factory.com http://rex.measurement-factory.com/

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Slide 2 Caching is both the most effective AND the most cost-effective method for schools to

Slide 2 Caching is both the most effective AND the most cost-effective method for schools to

Slide 2 Caching is both the most effective AND the most cost-effective method for schools to optimise internet connections. ApplianSys caching appliance CACHE BOX is the most widely selected caching solution by far in the E-Rate program since

655 views • 29 slides
A A Comprehensiv ive R Revie iew o of the Chal alle lenges an and Opportunit itie ies

A A Comprehensiv ive R Revie iew o of the Chal alle lenges an and Opportunit itie ies

A A Comprehensiv ive R Revie iew o of the Chal alle lenges an and Opportunit itie ies Con onfronti ting C g Cache M Memor ory System Perfor ormance ce Photograph of Intel Xeon processor 7500 series die showing cache memories [ 1 ]

615 views • 24 slides
GEOCACHING MARKETING THE DESTINATION the sport where YOU are the search engine Link Agenda

GEOCACHING MARKETING THE DESTINATION the sport where YOU are the search engine Link Agenda

GEOCACHING MARKETING THE DESTINATION the sport where YOU are the search engine Link Agenda What is Geocaching? A Brief History How Geocaching Can Work For You Q&A What is Geocaching? From Wikipedia, the free

698 views • 36 slides
CURB TAIL LATENCY WITH PELIKAN ABOUT ME 6 years at Twitter, on cache maintainer of

CURB TAIL LATENCY WITH PELIKAN ABOUT ME 6 years at Twitter, on cache maintainer of

IN-MEMORY CACHING: CURB TAIL LATENCY WITH PELIKAN ABOUT ME 6 years at Twitter, on cache maintainer of Twemcache & Twitters Redis fork operations of thousands of machines hundreds of (internal) customers Now working on

987 views • 62 slides
Cache Lab Implementation and Blocking Slides courtesy of: Aditya Shah, CMU 1 Carnegie Mellon

Cache Lab Implementation and Blocking Slides courtesy of: Aditya Shah, CMU 1 Carnegie Mellon

Carnegie Mellon Cache Lab Implementation and Blocking Slides courtesy of: Aditya Shah, CMU 1 Carnegie Mellon Welcome to the World of Pointers ! 2 Carnegie Mellon Outline Schedule Memory organization Caching Different types

807 views • 34 slides
Shared Memory Bus for Multiprocessor Systems Mat Laibowitz and Albert Chiou Group 6 Shared

Shared Memory Bus for Multiprocessor Systems Mat Laibowitz and Albert Chiou Group 6 Shared

Shared Memory Bus for Multiprocessor Systems Mat Laibowitz and Albert Chiou Group 6 Shared Memory Architecture Memory CPU ? ? ? ? ? ? ? ? CPU CPU Memory We want multiple processors to share memory Question: How do we

426 views • 18 slides
Solving Difficult Memory Performance Problems Jiri Olsa Joe Mario January 27, 2017 Red Hat

Solving Difficult Memory Performance Problems Jiri Olsa Joe Mario January 27, 2017 Red Hat

Solving Difficult Memory Performance Problems Jiri Olsa Joe Mario January 27, 2017 Red Hat Engineering Red Hat Performance Engineering Agenda Overview: Where does my program get its memory from? Types of expensive memory accesses

672 views • 63 slides
TSX-V: V:CA CAY Exploring for Near-Surface Gold in Nunavut 08-24-2017 Forward Looking

TSX-V: V:CA CAY Exploring for Near-Surface Gold in Nunavut 08-24-2017 Forward Looking

TSX-V: V:CA CAY Exploring for Near-Surface Gold in Nunavut 08-24-2017 Forward Looking Statement All statements in this presentation, other than statements of historical fact, are "forward-looking information" with respect to Cache

508 views • 18 slides
N 39 47.457 W

N 39 47.457 W

N 39 47.457 W 076 59.677 (WGS84) What is Geocaching? Treasure Hunting for GPS Users Cache (The Hidden Treasure) The Players (Geocachers) Hiding

726 views • 71 slides
Cache Slough Landowners Meeting LITTLE EGBERT TRACT PROJECT Flood Hydraulics Don Trieu P.E. May

Cache Slough Landowners Meeting LITTLE EGBERT TRACT PROJECT Flood Hydraulics Don Trieu P.E. May

Cache Slough Landowners Meeting LITTLE EGBERT TRACT PROJECT Flood Hydraulics Don Trieu P.E. May 23,2019 Little Egbert Tract (RD 2084) Located within the Yolo Bypass Floodway 3100 acres Flow Easement with restricted deed elevation

344 views • 6 slides
W ITH RECENT widespread deployment of new peer- MSS and the MHs could become a scalability

W ITH RECENT widespread deployment of new peer- MSS and the MHs could become a scalability

IEEE JOURNAL ON SELECTED AREAS IN COMMUNICATIONS, VOL. 25, NO. 1, JANUARY 2007 179 GroCoca: Group-based Peer-to-Peer Cooperative Caching in Mobile Environment Chi-Yin Chow, Student Member, IEEE, Hong Va Leong, Member, IEEE Computer Society, IEEE

681 views • 13 slides
Application aware access and distribution of digital objects using Named Data Networking (NDN)

Application aware access and distribution of digital objects using Named Data Networking (NDN)

Application aware access and distribution of digital objects using Named Data Networking (NDN) July 4, 2017 University of Amsterdam System and Network Rahaf Mousa Engineering Supervisor: dr.Zhiming Zhao 1 Motivation In big data

586 views • 21 slides
GPU vs Xeon Phi: Performance of Bandwidth Bound Applications with a Lattice QCD Case Study

GPU vs Xeon Phi: Performance of Bandwidth Bound Applications with a Lattice QCD Case Study

GPU vs Xeon Phi: Performance of Bandwidth Bound Applications with a Lattice QCD Case Study Mathias Wagner GTC 2015 | Mathias Wagner | Indiana University | Lattice Quantum ChromoDynamics and Deep Learning sorry, not (yet?) here. GTC

595 views • 46 slides
Etisalat DNS Internet Core Services By Mohamed Albanna Manager/ Internet Core Services Outline

Etisalat DNS Internet Core Services By Mohamed Albanna Manager/ Internet Core Services Outline

Etisalat DNS Internet Core Services By Mohamed Albanna Manager/ Internet Core Services Outline 1. Introduction 2. DNS setup (1996 - 2015) 3. Challenges 4. DNS Modernization Plan (2015 2017) 5. Performance Indicators 6. Future Plan 1

313 views • 17 slides
Next Generation Multipurpose Microprocessor Activity Overview DASIA 2010 June 1 st , 2010

Next Generation Multipurpose Microprocessor Activity Overview DASIA 2010 June 1 st , 2010

Next Generation Multipurpose Microprocessor Activity Overview DASIA 2010 June 1 st , 2010 www.aeroflex.com/gaisler Overview NGMP is an ESA activity developing a multi-core system with higher performance compared to earlier generations of

518 views • 48 slides
Build Your Own Static WCET Analyzer the Case of f the Automotiv ive Proce cessor AURIX TC275

Build Your Own Static WCET Analyzer the Case of f the Automotiv ive Proce cessor AURIX TC275

Build Your Own Static WCET Analyzer the Case of f the Automotiv ive Proce cessor AURIX TC275 2020-01-29 @ ERTS 2020 Wei-Tsun SUN* ASTC-Design France; IRT Saint Exupry, France; IRIT - University of Toulouse, France Eric JENN IRT Saint

1.1k views • 69 slides
Design Space Optimization of Embedded Memory Design Space Optimization of Embedded Memory Systems

Design Space Optimization of Embedded Memory Design Space Optimization of Embedded Memory Systems

Design Space Optimization of Embedded Memory Design Space Optimization of Embedded Memory Systems via Data Remapping Systems via Data Remapping Krishna V. Palem, Rodric M. Rabbah, Vincent J. Mooney III, Pinar Korkmaz and Kiran Puttaswamy Center

775 views • 38 slides
Simultaneous Multithreading on Pentium 4 Presented by: Thomas Repantis trep@cs.ucr.edu

Simultaneous Multithreading on Pentium 4 Presented by: Thomas Repantis trep@cs.ucr.edu

Hyper-Threading: Simultaneous Multithreading on Pentium 4 Presented by: Thomas Repantis trep@cs.ucr.edu CS203B-Advanced Computer Architecture, Spring 2004 p.1/32 Overview Multiple threads executing on a single processor without

980 views • 32 slides
Semantics of Caching with SPOCA: A Stateless, Proportional, Optimally-Consistent Addressing

Semantics of Caching with SPOCA: A Stateless, Proportional, Optimally-Consistent Addressing

Context of the problem Requirements for routing Hashing algorithm Geographic distribution Experiments Semantics of Caching with SPOCA: A Stateless, Proportional, Optimally-Consistent Addressing Algorithm Piotr Skowron November 6, 2011

718 views • 33 slides
ARM big.LITTLE Technology 1 1. Introduction 2. ARM Architecture Instruction Set 1.

ARM big.LITTLE Technology 1 1. Introduction 2. ARM Architecture Instruction Set 1.

Advanced Seminar Computer Engineering Philipp Gsching 08.12.2015 ARM big.LITTLE Technology 1 1. Introduction 2. ARM Architecture Instruction Set 1. Microarchitecture 2. CPUs 3. 3. big.LITTLE Cache Coherency 1. Distributed Virtual

740 views • 69 slides
MONITORING SERVERLESS ARCHITECTURES CAN YOU HELP WITH SOME PRODUCTION PROBLEMS? Your Manager

MONITORING SERVERLESS ARCHITECTURES CAN YOU HELP WITH SOME PRODUCTION PROBLEMS? Your Manager

MONITORING SERVERLESS ARCHITECTURES CAN YOU HELP WITH SOME PRODUCTION PROBLEMS? Your Manager @RafalGancarz (CC) Rachel Gardner Rafal Gancarz Lead Consultant @ OpenCredo @RafalGancarz WHAT IS SERVERLESS? @RafalGancarz (CC) theaucitron

929 views • 66 slides
Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure Coding Universit degli Studi di Genova December 3rd, 2018 Overview Meltdown breaks memory isolation and allows a process to read the entire

526 views • 25 slides
PoWA 3 June, 28 2016 - 5432... Meet us! Authors Ronan Dunklau DBA @ Dalibo Open-Source:

PoWA 3 June, 28 2016 - 5432... Meet us! Authors Ronan Dunklau DBA @ Dalibo Open-Source:

PoWA 3 June, 28 2016 - 5432... Meet us! Authors Ronan Dunklau DBA @ Dalibo Open-Source: Multicorn... Some PostgreSQL contributions (IMPORT FOREIGN SCHEMA...) Julien Rouhaud DBA @ Dalibo Open-Source: HypoPG, OPM... Some PostgreSQL

971 views • 60 slides
SPLIT ARRAY CACHES FOR EMBEDDED APPLICATIONS Euromicro DSD 2010 Alice M. Tokarnia, Marina

SPLIT ARRAY CACHES FOR EMBEDDED APPLICATIONS Euromicro DSD 2010 Alice M. Tokarnia, Marina

A. M. Tokarnia, M. Tachibana Schoool of Electrical and Computer Engineering, UNICAMP DESIGN OF TRACE-BASED SPLIT ARRAY CACHES FOR EMBEDDED APPLICATIONS Euromicro DSD 2010 Alice M. Tokarnia, Marina Tachibana Introduction Split Array Caches

298 views • 26 slides

More recommend