DNS Issues Within Native IPv6 GEANT GEANT-TF, Amsterdam, 06/06/2003.

Slides:

Advertisements

Similar presentations

1 Addition of IPv6 servers to in-addr.arpa tree DNS Operations Sig APNIC 18 2 September 2004, Fiji.

Advertisements

1 Securing BGP using DNSSEC Lutz Donnerhacke db089309: 1c1c 6311 ef09 d819 e029 65be bfb6 c9cb.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

IPv6 DHCPv6 DNS. Implementing DHCP for IPv6

Sweeping lame DNS reverse delegations APNIC16 – DNS Operations SIG Seoul, Korea, 20 August 2003.

2.1 Installing the DNS Server Role Overview of the Domain Name System Role Overview of the DNS Namespace DNS Improvements for Windows Server 2008 Considerations.

Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.

Name Service in IPv6 Mohd Norman Maraddin. IPv6 and DNS  Assumptions : Everyone knows / has little knowledge on how to configure the IPv4 DNS.

DNS Session 4: Delegation and reverse DNS Joe Abley AfNOG 2006 workshop.

DNS. DNS is a network service that enables clients to resolve names to IP address and vice-versa. Allows machines to be logically grouped by domain names.

1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Open Address Policy Meeting What is Reverse DNS October 26th, Brisbane Bruce.

DirectAccess is an Enterprise Solution: No support for Windows 7 Professional Requires two consecutive public IP addresses Cannot NAT to the DirectAccess.

Hands-On Microsoft Windows Server 2003 Networking Chapter 6 Domain Name System.

The Domain Name System Unix System Administration Download PowerPoint Presentation.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.

Domain Name System ( DNS )  DNS is the system that provides name to address mapping for the internet.

Module 12: Domain Name System (DNS)

The Domain Name System (DNS)

Technical Area Report Bryon Ellacott, Technical Area Manager APNIC 28.

Domain Name Services Oakton Community College CIS 238.

Windows Server 2008 Chapter 8 Last Update

Engineering Workshops DNS Rick Summerhill. Engineering Workshops Basic Ideas DNS in IPv6 is much like DNS in IPv4 Keep files and delegations as simple.

Lecturer : Ms.Trần Thị Ngọc Hoa Chapter 2 Methods Configuring Name Resolution Methods.

11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

Domain Name Service (DNS) at Colorado State University

Krakow Workshop Extra Exercises IPv6 workshop Krakow May 2012 Carlos Friaças, FCCN Luc De Ghein, CISCO

Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 17 Domain Name System (DNS)

SaudiNIC's IPv6 Support in Saudi Domain Names IPv6 2 nd Workshop, 10 May 2011 Raed Al-Fayez SaudiNIC – CITC سجل. السعودية.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.

IPv6 support in the DNS Speaker name (or address)

資管 Lee Lesson 13 IPv6 and Name Resolution. 資管 Lee Lesson Objectives IPv6 name-to-address and address-to-name resolution IPv6 name resolution support.

IPv6 Testing Within Native IPv6 GEANT TF-NGN 12, Cambridge, September 2003.

An overview of IP addressing history and policy issues Leo Vegoda Number Resources Manager, IANA.

GEANT-TF, Rome, 31/03/2003.

Dedicated to preserving the central coordinating functions of the global Internet for the public good. John L. Crain, Chief Technical Officer, ICANN

APNIC Status Report ARIN X Eugene, Oregon Oct 30-Nov 1, 2002.

Configuring and Troubleshooting Domain Name System

Configuring Name Resolution and Additional Services Lesson 12.

1 Domain Name System (DNS). 2 3 How DNS Works Application Transport Internet Network Application Transport Internet Network DNS Resolver Name Server.

REVERSE DNS Why and how AFRINIC-II Maputo,Mozambique 26 April 2005 Alain AINA.

2.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 2: Examining.

© F5 Networks, Inc. 1 How Does DNS Work? A user browses to A user browses to

September 1, 2004 IPv6 DNS Service Deployment in Korea Billy MH Cheon

Happy Eyeballs for the DNS Geoff Huston, George Michaelson APNIC Labs October 2015.

CS2910 Week 5, Class 2 Today DNS Muddy Points More HTTP Headers Review for Midterm Exam This coming Monday: Midterm Exam SE-2811 Slide design: Dr. Mark.

Registry Functions Essential components for operating a ccTLD registry.

4343 X2 – Outline The Domain Name System The Web.

RDAP Andy Newton, Chief Engineer. Background WHOIS (Port 43) – Old, very old – Lot’s of problems Under specified, no I18N, insecure, no authentication,

Web Server Administration Chapter 4 Name Resolution.

OPTION section It is the first section of the named.conf User can use only one option statement and many option-value pair under the section. Syntax is.

ITU ccTLD Workshop March 3, 2003 A Survey of ccTLD DNS Vulnerabilities.

APNIC Status Report RIPE 44 Amsterdam, The Netherlands January 27-31, 2003.

&. & DNS and IPv6 IPv6 Summit, Canberra 31st October & 1 st November 2005 Chris Wright, Chief Technology Officer &

Internet Naming Service: DNS* Chapter 5. The Name Space The name space is the structure of the DNS database –An inverted tree with the root node at the.

WHAT IS DNS??????????.

4343 X2 – The Application Layer Tanenbaum Chapter 7.

AfNOG-2003 Domain Name System (DNS) Ayitey Bulley Setting up an Authoritative Name Server.

Copyright (c) 2002 Japan Network Information Center Proposal for IPv6 Policy for Essential Infrastructure in the AP region Izumi Okutani IP Address Section.

Monitoring, analyzing and cleaning DNS configuration errors across European NRENs Slavko Gajin University of Belgrade, Serbia

DNS Domain Name System. Lots of people use the internet for different reasons. DNS Plays a big role in the internet. The DNS translates domain names into.

Using Digital Signature with DNS. DNS structure Virtually every application uses the Domain Name System (DNS). DNS database maps: –Name to IP address.

Bruce Campbell. ISOC Workshopl, 21 June 2004, Amsterdam. RIPE NCC DNS Architecture (for ccTLD secondarying) Nameserver Planning for.

DNS and Inbound Load Balancing

Suva Fiji, July 2017 Arth Paulite

Configuring and Troubleshooting DNS

Routing and Switching Essentials v6.0

A Proposal for IPv4 Essential Infrastructure

Progress Report for ip6.int Deprecation

IPv6 Allocation Status Report

Presentation transcript:

DNS Issues Within Native IPv6 GEANT GEANT-TF, Amsterdam, 06/06/2003

Getting Reverse Delegations  Still a good idea to have delegations on ip6.arpa. and on ip6.int. (some applications use it)  From DANTE (2001:798::/32 space)  Ask dante-operations?  From RIPE (Your LIR space)  Configure the zones on servers  Insert domain objects to  Forward to  MARVIN (robot) answers  Zone is analyzed  If approved, an hostmaster delegates the zone  You can !

Software  Microsoft’s clients don’t use IPv6 transport to access name resolvers:  Don’t expect to do much with an IPv6-only MS client...  Any news about this?  BIND (Server)  (9.2.1 bugs corrected) – March 2003  and upcoming  IPv6 support will show up in 8.4.x versions too

Configs  BIND:  options { listen-on-v6 {any; }; # enable ipv6 sockets version “IPv6 Compliant” # hide version :-) }  IPv6-only servers are a bad idea?  IPv4 transport needed to exchange information with other DNS servers?

Configs/Authority - Examples .fr (only 2 secondaries)  ns03.nic.fr  ns-ext.vix.com .nl (only 1 secondary)  ns.ripe.net .pt (only 2 secondary)  ns-ext.vix.com  ns2.dns.pt (last week)  ccTLD SOA’s dual-stacked... none???  usually ccTLD zones have 5-7 nameservers...  Long, long way to go...

Root Zone – v6 status  F.root-servers.net and H.root-servers.net already have v6 transport:  2001:500::1035 (ISC/AS3557)  2001:500:1::803f:235 (US Army/AS13)  Heard a rumour about K (London) and M (Tokyo) soon  Bad thing!?: inside ARIN’s MicroAllocation Pool  URL:  Still no AAAA record in «.» zone (use «dig»)  At RIPE-45, IANA folks said they are working on it!!!

Name resolving fallback  Fallback to IPv4 through DNS, only occurs when no AAAA records exist  Possible Danger here:  If you insert an AAAA record «on top of an A record» for a service (e.g. www), the v6 address will always have to be reachable.  If not: «new version protocol denial of service» against all v6 enabled clients.  Lesson is: All the v6 infrastructure must have the same reliability level than v4.

The end… Links – (dual-stack) –