Presentation is loading. Please wait.

Presentation is loading. Please wait.

DNSHarness Duane Wessels DNS-OARC Workshop, Dublin May 12, 2013.

Published byMadlyn Burns Modified over 8 years ago

Similar presentations

Presentation on theme: "DNSHarness Duane Wessels DNS-OARC Workshop, Dublin May 12, 2013."— Presentation transcript:

1 DNSHarness Duane Wessels DNS-OARC Workshop, Dublin May 12, 2013

2 2 Have You Ever Wanted To…

3 3 A testing harness for name server products. Primarily designed for functional, rather than performance, testing. Scriptable. Open Source. Written by Paul Hoffman for Verisign. DNSHarness Is …

4 4 Ubuntu on the “bare metal” VirtualBox for virtualization Debian for virtual servers Lots of Python scripting JSON to describe Projects Underlying Technologies

5 5 The Bits and Pieces l l Host OS (Ubuntu) project scripts and files project scripts and files closed source products NAT VMs (optional) open source VMs external servers closed source products nat2 clone3 clone2 clone1 opensource nat1

6 6 Start with decent system that can support a handful of virtual servers. Make sure processor has “virtualization technology” Intel VT-x AMD-v Tested at Verisign with 8 cores of Xeon 2 GHz 8 GB RAM 1 TB HDD 1 NIC Hardware

7 7 Installation instructions based on [X]Ubunutu 12.04 Might work on similar flavors, but not tested Operating System

8 8 See “Downloads” on http://www.dnsharness.org/http://www.dnsharness.org/ Open doc/Installation.html in browser for easy cut-and- pasting of commands First steps are to install VirtualBox, OpenSSH Server, and Python on Ubuntu. Note in “download debian.iso” step the referenced debian-6.0.3-i386-netinst.iso is no longer on most mirror sites. A copy is saved at http://www.dnsharness.org/third-party/debian-6.0.3- i386-netinst.iso http://www.dnsharness.org/third-party/debian-6.0.3- i386-netinst.iso Download DNSHarness

9 9 The “getsources” step of installation downloads source tarballs for known open source name server implementations: BIND (8, 9, 10) Unbound PowerDNS NSD KnotDNS dnsmasq Approx 2.5 GB download Took me about 3 hours “getsources”

10 10 DNSHarness attempts to compile all downloaded open source implementations Took 11 hours on my system – plan accordingly! “build all”

11 11 DNSHarness can test closed-source implementations Referenced by server IP address User may be able to script start, stop, flush, etc operations if desired. Closed-Source Implementations

12 12 A Sample DNSHarness Project: VERSION.BIND

13 13 projectdesc.json RunOnOpenSource RunOnHost Server Configurations Ancillary Files example.com zone root hints Files We’ll Need

14 14 { "name" : "version.bind", "comment1" : "Send a VERSION.BIND query to every implementation", "targets" : [ { "opensource" : [ "dnsmasq-1\\..*", "dnsmasq-2\\.1[1-9]", "dnsmasq-2\\.[2-9][0-9]", "bind-8.*", "bind-9.*", "unbound-.*", "knot-.*", "nsd-.*", "pdns-.*" ] } ] } projectdesc.json

15 15 Python script Starts and stops open source servers Executes “pre-commands” if necessary e.g., NSD and Knot use compiled zones Tries to capture startup errors But not those that go to syslog http://www.dnsharness.org/examples/version.bind/RunOnOpenSource RunOnOpenSource

16 16 Runs on the Ubuntu system (not a VM) Called at various times Start of project Start of each target To do the actual test End of each target End of project For VERSION.BIND test, calls ‘dig’ and parses its output http://www.dnsharness.org/examples/version.bind/RunOnHost RunOnHost

17 17 $ wget http://www.dnsharness.org/examples/version.bind.tgz $ tar xzvf version.bind.tgz $ DNSharnessRun.py project `pwd`/version.bind Running project version.bind Starting time: 2013-05-09-11-23-26 'dnsmasq-1\..*' expanded to 14 distributions.... 'pdns-.*' expanded to 30 distributions. Total distributions: 374 Starting dnsmasq-1.10 Starting dnsmasq-1.11... Starting pdns-3.2 Elapsed run time for project: 1133 seconds $ less version.bind/Output/* Debugging log file at $HOME/.dnsharness/log/debuglog.txt Running the Test

18 18 SoftwareResult BIND-8.*“8.x.x-REL” BIND-9.*“9.x….” dnsmasq-1.2timeout dnsmasq-1.6 – 1.17upstream’s version.bind dnsmasq-1.18 --“dnsmasq-x.yy” knot-*Warning: Message parser reports malformed message packet. NSD-*“NSD x.y.z” Results

19 19 SoftwareResult pdns-2.9.1 – 2.9.19Warning: Message parser reports malformed message packet. pdns-2.9.22.*Question section mismatch: got version.bind/TXT/IN pdns-3.*“Served by POWERDNS 3.x $Id: packethandler.cc nnnn yyyy-mm-dd” unbound-0.4 – 0.5“unbound 0.x” unbound-0.6 – 1.0.2timeout unbound-1.1.0 --“unbound 1.x.y”

20 20 Downloads, Documentation, and Examples: http://www.dnsharness.org User’s mailing list: https://lists.verisignlabs.com/mailman/listinfo/dnsharness-users Participate!

21 Thank You © 2013 VeriSign, Inc. All rights reserved. VERISIGN and other trademarks, service marks, and designs are registered or unregistered trademarks of VeriSign, Inc. and its subsidiaries in the United States and in foreign countries. All other trademarks are property of their respective owners.

Download ppt "DNSHarness Duane Wessels DNS-OARC Workshop, Dublin May 12, 2013."

Similar presentations

Updates to ‘dnscap’ Duane Wessels DNS-OARC Workshop Dublin May 12, 2013.

Updates to ‘dnscap’ Duane Wessels DNS-OARC Workshop Dublin May 12, 2013.
Introduction To The Course Network Architecture Hervey Allen Chris Evans Phil Regnauld September 3 - 4, 2009 Santiago, Chile.

Introduction To The Course Network Architecture Hervey Allen Chris Evans Phil Regnauld September 3 - 4, 2009 Santiago, Chile.
Web Application Server Apache Tomcat Downloading and Deployment Guide.

Web Application Server Apache Tomcat Downloading and Deployment Guide.
ITE PC v4.0 Chapter 1 1 Operating Systems Computer Networks– 2.

ITE PC v4.0 Chapter 1 1 Operating Systems Computer Networks– 2.
Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.

Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.
Cambodia-India Entrepreneurship Development Centre - : :.... :-:-

Cambodia-India Entrepreneurship Development Centre - : :.... :-:-
Installing software on personal computer

Installing software on personal computer
In-Band Detection of Virtual Machines Estefan Ortiz & Cory Hayes Computer Science and Engineering Graduate Operating Systems December 16, 2011 1.

In-Band Detection of Virtual Machines Estefan Ortiz & Cory Hayes Computer Science and Engineering Graduate Operating Systems December 16,
Measuring DANE TLSA Deployment Liang Zhu 1, Duane Wessels 2, Allison Mankin 2, John Heidemann 1 1. USC ISI 2. Verisign Labs 1.

Measuring DANE TLSA Deployment Liang Zhu 1, Duane Wessels 2, Allison Mankin 2, John Heidemann 1 1. USC ISI 2. Verisign Labs 1.
Virtualization A way To Begin with Virtual Reality… - Rahul Khanwani.

Virtualization A way To Begin with Virtual Reality… - Rahul Khanwani.
Integrating HADOOP with Eclipse on a Virtual Machine Moheeb Alwarsh January 26, 2012 Kent State University.

Integrating HADOOP with Eclipse on a Virtual Machine Moheeb Alwarsh January 26, 2012 Kent State University.
Paper on Best implemented scientific concept for E-Governance Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola By Nitin V. Choudhari, DIO,NIC,Akola.

Paper on Best implemented scientific concept for E-Governance Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola By Nitin V. Choudhari, DIO,NIC,Akola.
Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.

Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.
1 © 2006 Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Using the Cisco Technical Support & Documentation Website for Security.

1 © 2006 Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Using the Cisco Technical Support & Documentation Website for Security.
Tanenbaum 8.3 See references

Tanenbaum 8.3 See references
Nagios and Mod-Gearman In a Large-Scale Environment Jason Cook 8/28/2012.

Nagios and Mod-Gearman In a Large-Scale Environment Jason Cook 8/28/2012.
Paper on Best implemented scientific concept for E-Governance projects Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola.

Paper on Best implemented scientific concept for E-Governance projects Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola.
Troubleshooting. Why Troubleshoot? What Can Go Wrong? –Misconfigured zone –Misconfigured server –Misconfigured host –Misconfigured network.

Troubleshooting. Why Troubleshoot? What Can Go Wrong? –Misconfigured zone –Misconfigured server –Misconfigured host –Misconfigured network.
Computer System Laboratory

Computer System Laboratory
ISG We build general capability Introduction to Olympus Shawn T. Brown, PhD ISG MISSION 2.0 Lead Director of Public Health Applications Pittsburgh Supercomputing.

ISG We build general capability Introduction to Olympus Shawn T. Brown, PhD ISG MISSION 2.0 Lead Director of Public Health Applications Pittsburgh Supercomputing.

Similar presentations

Ads by Google