An experimental study for the performance assessment of the DNS server architecture on IPv6 network (original) (raw)

The Network Topology Based Domain Name Service

1999

The explosively increase of Internet population client-server model. Multiple servers providing a single service is the trend for both supporting good quality of service and reducing the cost. This makes a great difference in domain name service. A new kind of domain name service algorithm is proposed in this paper. It was migrated from the Round-Robin DNS that was announced by NCSA.

A comparative study of the DNS design with DHT-based alternatives

2006

Abstract���The current Domain Name System (DNS) follows a hierarchical tree structure. Several recent efforts proposed to re-implement DNS as a peer-to-peer network with a flat structure that uses Distributed Hash Tables (DHT) to improve the system availability. In this paper we compare the performance and availability of these two designs, enabled by caching and redundancy in both cases. We show that the caching and redundancy mechanisms in each design are closely bound to its system structure.

AN EMPIRICAL STUDY ON INTERNET PROTOCOL IPV6 IN NETWORKING

The internet protocol IPv4 has met requires for years, but the number of addresses, while huge is finite. It has several shortcomings which are unavoidable and complicate such exhausted address space, security issues, non-availability of auto-configuration and in some cases present a obstacle to, the advance improvement of the Internet. The resolution to mitigate this problem was the development of the new IPv6 protocol which enlarges the address space from 32-bits to 128-bits. IPv6 assembles a high address space, superior address design and better safety among other profits. IPv6 distribution necessitates deep and careful firm to minimize network disruption and ensure that the profits of IPv6 are accessed. Due to the issues of IPv4, now-a-days IPv6 is extremely popular in associations, corporations and Internet Service Providers (ISP). In this paper, we aim to provide a Literature Survey which describes the various techniques to implement IPv6 transition most optimal method to increase the network performances.

Understanding and Preparing for DNS Evolution

2010

The Domain Name System (DNS) is a crucial component of today's Internet. The top layer of the DNS hierarchy (the root nameservers) is facing dramatic changes: cryptographically signing the root zone with DNSSEC, deploying Internationalized Top-Level Domain (TLD) Names (IDNs), and addition of other new global Top Level Domains (TLDs). ICANN currently plans to deploy all of these changes in the next year or two, and there is growing interest in measurement, testing, and provisioning for foreseen (or unforeseen) complications. We describe the Day-in-the-Life annual datasets available to characterize workload at the root servers, and we provide some analysis of the last several years of these datasets as a baseline for operational preparation, additional research, and informed policy. We confirm some trends from previous years, including the low fraction of clients (0.55% in 2009) still generating most misconfigured "pollution", which constitutes the vast majority of observed queries to the root servers. We present new results on security-related attributes of the client population: an increase in the prevalence of DNS source port randomization, a short-term measure to improve DNS security; and a surprising decreasing trend in the fraction of DNSSEC-capable clients. Our insights on IPv6 data are limited to the nodes who collected IPv6 traffic, which does show growth. These statistics serve as a baseline for the impending transition to DNSSEC. We also report lessons learned from our global trace collection experiments, including improvements to future measurements that will help answer critical questions in the evolving DNS landscape.

A Comparative Analysis on Existing DNS Performance Measurement Mechanisms

2013, 2014

DNS maps the complex IP addresses, making it crucial for internet communication for users and applications. DNS, an integral component of internet, is faced with many challenges. Enormous data growth and inherent security weakness demands continuous monitoring and performance measurement of DNS traffic. DNSSEC can improve security at the cost of DNS performance. This tradeoff needs to be evaluated before actual implementation. DNS performance measurement is critical for this evaluation. IPv6 will increase load on DNS exponentially, resulting in greater need for DNS performance evaluation. Despite the critical need for DNS performance measurement, very little research has happened on DNS performance measurement. Most of this little research has been done on client and authoritative layers of DNS. The most vulnerable and functionally important Caching layer performance measurement is hugely under researched. There are some software and hardware techniques available for DNS performance measurement. The software techniques provide burst of unrealistic data for limited time, restricting the scope of performance measurement and evaluation. Hardware data generation systems can be both expensive and inflexible. There is a need for more realistic DNS data traffic which can be used for flexible and cost effective performance measurement over a longer period for thorough evaluation.

A global reference model of the domain name system

2012

Global reference model Traffic behavior prediction a b s t r a c t The domain name system (DNS) is a crucial component of the Internet. At this time, the DNS is facing major changes such as the introduction of DNSSEC and Internationalized Domain Name extensions (IDNs), the adoption of IPv6 and the upcoming extension of new generic top-level domains. These changes can significantly impact the behavior of the DNS. This paper presents a global DNS reference model for predicting DNS traffic behavior under specific conditions. The quantitative reference model is intended to be used for analyzing ''what-if'' scenarios-for example, how would DNS query rates at the recursive and authoritative name servers increase if DNSSEC validation errors were to cause more ServFail responses to be sent to DNS clients? The DNS reference model takes into account all relevant components present in the DNS architecture. Real-world data from recursive resolvers is analyzed statistically in order to characterize the system variables that describe query behavior at each of the independent system components. In addition, experimental results that characterize DNS client behavior and data from the literature are used to model the behavior of authoritative name servers. The reference model is validated by comparing the model predictions with the behavior observed in real-world operations. The validation results demonstrate the accuracy of the model predictions. A what-if scenario dealing with the effect of ServFail responses on DNS traffic flow is also presented to demonstrate the applicability of the model. & 2012 Elsevier B.V. All rights reserved.

"A Comparative Study of Current DNS with DHT-Based Alternatives"

The current Domain Name System (DNS) follows a hierarchical tree structure. Several recent efforts proposed to re-implement DNS as a peer-to-peer network with a flat structure that uses Distributed Hash Tables (DHT) to improve the system availability. In this paper we compare the performance and availability of these two designs, enabled by caching and redundancy in both cases. We show that the caching and redundancy mechanisms in each design are closely bound to its system structure. We further demonstrate that each of the two system structures provides unique advantages over the other, while each has its own shortcomings. Using analysis and tracedriven simulations, we show that hierarchical structure enables high performance caching and that DHT structures provide high degree of robustness against targeted attacks. We further show that the current DNS design offers engineering flexibilities which have been utilized to optimize system performance under typical Internet failures and traffic loads, and which can be further extended to overcome DNS weaknesses against the aforementioned attacks.

DNS transport size issues in IPv6 environment

2004

Abstract The nature of data exchanged between DNS (domain naming system) servers and resolvers has been changed since the introduction of IPv6 (Internet protocol version 6) because of the increased address length and other technical enhancements. These changes and recent security concerns raise questions against fundamental design principles of the DNS protocols, especially to the transport layer and the payload size.

Operational Implications of the DNS Control Plane

2011

The Domain Name System (DNS)[7] provides vital mapping services for the Internet. It maps domain names such as ucla. edu to values ranging from IP addresses to email servers to geographic locations and more. Virtually every Internet application relies on looking up some form of DNS data. This article first describes a dichotomy that exists between DNS'well structured and ordered data plane (the hierarchical tree of domain names) and its, as yet underappreciated, control plane (the interconnected graph of name servers).