Upload File

32-bit asn for dns services

14
http://www.ripe.net RIPE Network Coordination Centre 1 Anand Buddhdev RIPE 60, May 2010 32-bit ASN for DNS Services Anand Buddhdev DNS Services Manager, RIPE NCC

Upload: ripe-meetings

Post on 12-Nov-2014

1.264 views

Category:

Technology


0 download

Report

Tags:

DESCRIPTION

Presented by Anand Buddhdev in Closing Plenary at RIPE 60, Prague

TRANSCRIPT

Page 1: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

1Anand Buddhdev RIPE 60, May 2010

32-bit ASN for DNS Services

Anand BuddhdevDNS Services Manager, RIPE NCC

Page 2: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

RIPE 60, May 2010 2Anand Buddhdev

Background

• RIPE NCC managed zones- Forward zones (ripe.net, etc)- Reverse zones (IPv4 and IPv6)- ENUM (e164.arpa)- Secondary for ip6.arpa and many other zones

• Two servers- ns-pri.ripe.net- ns-sec.ripe.net

• Single servers• Unicast

Page 3: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

Upcoming Changes

• Multi-server architecture• Anycast

- 193.0.9.0/24- 2001:67c:e0::/48

• Serve in-addr.arpa• Independent ASN

RIPE 60, May 2010 3Anand Buddhdev

Page 4: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

RIPE 60, May 2010 4Anand Buddhdev

ASN 197000

Page 5: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

Interoperability

• Older BGP speakers talk to AS 23456• Transitive attribute AS4_PATH contains the 32-bit

ASN• 32-bit ASN speakers reconstruct the correct path• All major vendors have 32-bit ASN support

RIPE 60, May 2010 5Anand Buddhdev

Page 6: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

Connection Details

• Connection at Amsterdam Internet Exchange• 6 transit providers

- All support 32-bit ASNs

• Peering with AMS-IX route servers- Recent OpenBGPD- Also supports 32-bit ASNs- 111 of 333 peers have 32-bit ASN support

RIPE 60, May 2010 6Anand Buddhdev

Page 7: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

View from Route Servers

SAIX Route Server (older Cisco IOS)

BGProutingtableentryfor193.0.9.0/24,version62729846Paths:(4available,best#4,tableDefault-IP-Routing-Table)Notadvertisedtoanypeer3491 6939 23456

196.25.9.45from196.43.9.254(196.43.9.254)OriginIGP,metric2,localpref100,valid,internalCommunity:5713:777Originator:196.43.9.245,Clusterlist:196.43.9.254

RIPE 60, May 2010 7Anand Buddhdev

Page 8: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

View from Route Servers

RIPE 60, May 2010 8Anand Buddhdev

Opentransit Route Server (JunOS 9.3S7.2)

193.0.9.0/24*[BGP/170]2w6d10:26:46,MED100,localpref85,from193.251.245.11

AS path: 1273 197000 I

Page 9: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

Success Criteria

• Prefix visibility in NetSense• Visibility in DNSMON

- Will DNS clients be able to reach us?

RIPE 60, May 2010 9Anand Buddhdev

Page 10: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

100% Visibility in NetSense

RIPE 60, May 2010 10Anand Buddhdev

Page 11: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

100% Visibility in DNSMON (IPv4)

RIPE 60, May 2010 11Anand Buddhdev

Page 12: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

100% Visibility in DNSMON (IPv6)

RIPE 60, May 2010 12Anand Buddhdev

Page 13: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

“It Just Works!”

RIPE 60, May 2010 13Anand Buddhdev

Page 14: 32-bit ASN for DNS Services

http://www.ripe.net

RIPE Network Coordination Centre

14Anand Buddhdev RIPE 60, May 2010


IPv6 bij BIT - Teunteun.tv/bit-ipv6tf.pdf · • IPv6 op colocatie en ethernet diensten • Native IPv6 op DSL (bridged) • DNS via IPv6 • Loadbalancing (eigen diensten en klanten)

Networking:! UDP&!DNS! · 2018-06-27 · Root DNS Servers com DNS servers org DNS servers edu DNS servers poly.edu DNS servers umass.edu DNS servers yahoo.com DNS servers amazon.com

DNS サーバ設定ガイド - bit-drive...bit-driveセカンダリDNS をご利用になる場合) FQDN : ns1.bit-drive.ne.jp ※ bit-drive セカンダリDNS サーバIP アドレスにつきましては、bit-drive

APNIC Seminar › wp-content › uploads › other › ...Nov 27, 2003  · APNIC services & activities Resources Services • IPv4, IPv6, ASN, reverse DNS • Policy development –

UU0052014 ASN

ASN Filter Designer - Home - ASN Home

DNS 101 - Team Cymru · DNS 101 John Kristoff jtk@ ... most queries/answers use UDP ... • Two of the original 3-bit Z field bits now defined:

ASN Training

1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts: – IP address (32 bit) - used for addressing datagrams – “name”, e.g.,

32-bit ASN Adjustment to Global Policy Proposal

DNS Amplification Attack - ANY+RD - NANOG Archive...DNS(Amplificaon(A;acks(D(ANY+RD @dynchip @DynInc Top(Targets 6 IP ASN Org Country 23.29.116.196 13354 EBLGLOBAL US 113.21.221.18

IPv6 bij BIT - teun.tvteun.tv/bit-ipv6tf.pdf• IPv6 op colocatie en ethernet diensten • Native IPv6 op DSL (bridged) • DNS via IPv6 • Loadbalancing (eigen diensten en klanten)

ASN Handbook

輸送帶式解決方案 優異的性能,完整的合規性75 * asn 6031p/asn 9031p 115 * asn 6032p/asn 9032p 175 * asn 6033p/asn 9033p 450 75 * asn 6041p/asn 9041p 115 * asn 6042p/asn

ASN Presentasi

ASN - Dynisco

32-bit AS Numbers The view from the 16-bit ASN BGP world Geoff Huston March 2007 APNIC

storlann.co.uk/asn-slt # asn-slt # gàidhlig

dns-Drechselkurse - Drechselstube Neckarsteinach · dns-Einsteigerkurs dns-Fortgeschrittenenkurs dns-Themenkurse dns-Profikurse dns-Betriebseventkurs Anmeldung / Anfahrt / Übenrachtung

O Z o z O o O o o O O N O O O o O O O O O O O o o o o o o ... fileES asn csn asn osn €s osn asn csn asn asn osn osn sleuno( SdV sot sleunoí SdY-uou asn asn 9sz asn 1st asn osn 9sz

IP Address, subnet mask, gateway, DNS dan DHCP · PDF fileangka biner 32 bit yang digunakan untuk membedakan ... dibagi ke beberapa subnet dengan menggunakan bilangan 8-bit. ... Tabel

Increased DNS Forgery Resistance Through 0x20 …hnw/courses/cs780S/papers/p211-dagon.pdfIncreased DNS Forgery Resistance Through 0x20-Bit Encoding ... be given the IP address of that

Introduction - Microsoft...  · Web viewstone: An inactive DNS ... [X690] ITU-T, "Information Technology - ASN.1 Encoding Rules: Specification of Basic Encoding ... This protocol

ASN 9000 卓越性能,完全合规 - Mettler Toledo · asn 9024p 干燥的环境 彻底擦拭清洁 ip44 300 75 * asn 9031p 115 * asn 9032p 175 * asn 9033p 450 75 * asn 9041p 115

CS3516-8-DNS · 2019-09-05 · Application Layer 2-4 DNS: domain name system people: many identifiers: § SSN, name, passport # Internet hosts, routers: § IP address (32 bit) - used

Pelatihan HTML untuk ASN dan non ASN Pemerintah Kota

Increased DNS Forgery Resistance Through 0x20-Bit Encodingcourses.isi.jhu.edu/netsec/papers/increased_dns_resistance.pdfthe Domain Name System (DNS) [21, 22], maps between names and

Manajemen asn

Networking:! UDP&!DNS! · Root DNS Servers com DNS servers org DNS servers edu DNS servers poly.edu DNS servers umass.edu DNS servers yahoo.com DNS servers amazon.com

PEMUTAKHIRAN DATA MANDIRI ASN DAN PPT Non ASN

ASN TOOLKIT. ASN Toolkit “Leveraging Supply Chain Information”

Formulir Asn

Asn Xpress pvt. Ltdasnxprs.com › doc › asn-brochure.pdf · ASN offers fast safe International Air freight service globally to our customers. At ASN, our customers benefit from

Sosialisasi Asn

Asn Gateway