Upload File

dns software overview

10
These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (http://creativecommons.org/licenses/by-nc/3.0/) as part of the ICANN, ISOC and NSRC Registry Operations Curriculum. Advanced DNS Operations & Security Software overview

Upload: eijaniee

Post on 18-Jan-2016

229 views

Category:

Documents


0 download

Report

Tags:

DESCRIPTION

DNS Software Overview

TRANSCRIPT

Page 1: DNS Software Overview

These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (http://creativecommons.org/licenses/by-nc/3.0/) as part of the ICANN, ISOC and NSRC Registry Operations Curriculum.

Advanced DNS Operations & Security

Software overview

Page 2: DNS Software Overview

DNS software overview

•  Many vendors and software platforms out there

•  Commercial and Open Source solutions •  Good overview here http://en.wikipedia.org/wiki/Comparison_of_DNS_server_software

•  On the Internet, historically Berkeley/ISC BIND has been the dominant software platform

Page 3: DNS Software Overview

DNS software mini-comparison

•  Many Open Source solutions, both for recursive/caching and authoritative use:

Note: tinydns/djbdns have incomplete v6, EDNS0 support and no DNSSEC support

Software Authoritative Recursive DNSSEC DB / API

ISC BIND X X X X

PowerDNS X X X Native

Unbound X X Native

NSD X X patch

DJB djbdns X ?

DJB tinydns X ?

Page 4: DNS Software Overview

DNS software overview (2)

•  BIND is the most popular •  TinyDNS is still second most popular,

though this might change with IPv6 and DNSSEC

•  We'll focus on 3 implementations – BIND 9.8 – Unbound 1.4 – NSD 3.2

Page 5: DNS Software Overview

DNS software: BIND

•  Version 4 released with BSD 4.3 in 1986 •  Currently at version •  BIND 10 is in development – but still at

least 1-2 years away •  Most feature rich DNS implementation out

there •  Often considered ”the reference”

– BIND zone format is the de-facto notation •  Used in many commercial products

Page 6: DNS Software Overview

DNS software: BIND (2)

•  Features include – ACLs – Views – DB API – Dynamic DNS support – DNSSEC signing and validation – Many more...

Page 7: DNS Software Overview

DNS software: NSD

•  Developed by NLNetLabs •  Authoritative only •  Developed to mitigate risk of a single bug

taking out all BIND implementations •  At least 1 root server uses NSD •  Zones are ”compiled” into a precalculated

”on the wire” format – all possible answers are calculated, then

stored into a binary DB, ready to send out – very fast

Page 8: DNS Software Overview

DNS software: Unbound

•  Developed by NLNetLabs •  Caching only •  Developed with performance in mind •  Much more lightweight that BIND

– More efficient memory usage – More features to control caching – Fast...

Page 9: DNS Software Overview

Questions

?

Page 10: DNS Software Overview

DNS software: UNBOUND


VitalQIP DNS/DHCP & IP Address Management Software and Appliance

DNS: EdgeCast Route - Basic DNS Service Overview

AN OVERVIEW OF DNS ECOSYSTEM

Catalyst 2950 Desktop Switch Software Configuration · PDF fileCatalyst 2950 Desktop Switch Software Configuration Guide 78-11380-04 Understanding DNS 7-48 Default DNS Configuration

Overview - TWNIC · Overview • DNS Protocol Overview • DNS Security • DNS Transactions – TSIG and Lab • DNS Security Extensions (DNSSec) – DNSSEC Lab . 21/06/16 2 DNS

DNS & IPv6 - MENOG · DNS & IPv6 Status DNS status to support IPv6: 1. DNS extensions 2. Software 3. Resolvers 4. Root servers ... Secure64 DNS No Appliance Unbound Yes Linux/Unix

QUICK INSTALLATION GUIDE - global.dlink.com.sgglobal.dlink.com.sg/site_support/DNS-320/QIG/DNS-320_A1QIG_v1.00.pdf · DnS-320 3 ENGLISH System Requirements Hardware Overview Front

NAMING, DNS, AND CHORD · • Naming overview • Flat naming • Routing over flat names via Chord • Hierarchical naming and DNS • Attribute-based naming and LDAP DNS HOSTNAME

The Domain Name System Overview Introduction DNS overview How DNS helps us? Summary

DNS / DNSSEC Workshop - start [APNIC TRAINING WIKI]€¦ · DNS / DNSSEC Workshop Generic slides 03 November 2015 2.0-draft4. Overview • DNS Overview • BIND DNS Configuration

Overlay (and P2P) Networks - cs.helsinki.fi ISP Content Provider DNS Server DNS Server CDN DNS Server. ... (overview) Client requests ... (high level DNS server)

Securing DNS Environments Nixu Software

DNS Privacy Overview Allison Mankin & Shumon Huque, Verisign Labs DNS-OARC Fall Workshop October 3, 2015

Overview of DNS

DNS: EdgeCast Route - Technical DNS Service Overview

DNS Sinkhole setup - Whitehats.cawhitehats.ca/main/members/Seeker/seeker_sinkhole/DNS_Sinkhole... · DNS Sinkhole Overview This configuration process is used to deploy DNS sinkhole

Module 4: DNS As a Solution for Name Resolution. Overview Introducing DNS Designing a Functional DNS Solution Securing DNS Enhancing a DNS Design for

VitalQIP DNS/DHCP & IP Management Software · VitalQIP® DNS/DHCP & IP Management Software Appliance Overview | Release 1.8 9YZ045530100DEZZA April 2012 Issue 1

Domain Name System (DNS) Serviceswhp-hou9.cold.extweb.hp.com/pub/networking/software/SR7000dl-Basic-C12-DNS-Nov2006.pdfDomain Name System (DNS) Services Overview Overview Domain Name

2.1 Installing the DNS Server Role Overview of the Domain Name System Role Overview of the DNS Namespace DNS Improvements for Windows Server 2008 Considerations

Dynamic DNS Support for Cisco IOS Software · Dynamic DNS Support for Cisco IOS Software TheDynamicDNSSupportforCiscoIOSSoftwarefeatureenablesCiscoIOSsoftwaredevicestoperform DynamicDomainNameSystem(DDNS

Domain Name System (DNS) Services - Hewlett Packardwhp-aus2.cold.extweb.hp.com/pub/...C12-DNS-Nov2006.pdf · Domain Name System (DNS) Services Overview Overview Domain Name System

Ultra Dns Overview Presentation

DNS and DNSSEC - econinfosec.org · DNS and DNSSEC Samuel Weiler ... Domain Name System (DNS) ... – DNS Resolver Software BIND and Unbound (java), both open source

DNS & X.500. 2 Overview The Domain Name System(DNS) Domain Name Space DNS Name Servers Name resolution algorithm Caching: The Key to Efficiency Domain

Skills overview dns

dnssec day 3-1 - bdNOGwiki.bdnog.org/lib/exe/fetch.php/bdnog7/dnssec_day_3-1.pdf29 June 2016 2.0. Overview •DNS Overview •BIND DNS Configuration •Recursive and Forward DNS

Network Security – Issues and Challenges · Contents Overview • The problem • Historical Perspective • Software - Vulnerability • Networks –IP protocols, Routing, DNS

Windows 2000 and Windows Server 2003 DNS Security Overview ...hosteddocs.ittoolbox.com/DNS Security17.pdf · - 1 - Windows 2000 and Windows Server 2003 DNS Security Overview & Best

Survey of the (Open Source) DNS Privacy Landscape© Men & Mice DNS privacy software • new DNS privacy protocols sparked a large number of new software projects •and much debate

1 DNS Domain Name Systems. 2 Domain Name System DNS Overview DNS Zones Forward Reverse Fowarding DNS Delegation/Parenting Mail Exchangers

Module Overview Installing the DNS Server Role Configuring the DNS Server Role Configuring DNS Zones Configuring DNS Zone Transfers Managing and Troubleshooting

DNS DNS overview DNS operation DNS zones. DNS Overview Name to IP address lookup service based on Domain Names Some DNS servers hold name and address

DNS Arrow XP Overview

Securing DNS Environments - fusionlayer.com · security principles, which have been incorporated in our DNS software appliance, FusionLayer DNS. Figure 2 represents the basic architecture