CcTLD Best Practices Michuki Mwangi AfriNIC5 - INET/AfTLD Meeting, Balaclava, Mauritius 30th Nov 2006.

Slides:

Advertisements

Similar presentations

ICANN Report Presented by: Dr Paul Twomey CEO and President LACNIC, Montevideo 31 March 2004.

Advertisements

Introduction to ARIN and the Internet Registry System.

African Inter-Networking: The challenges and Opportunities Michuki Mwangi ISOC, Senior Education Manager AfriNIC-9 Le-Meridien Hotel,

Country Update Kenya: A new IPv6 Momentum AfriNIC-9 Public Policy Meeting, 25 th November 2008, Mauritius.

Distributed Data Processing

.KE Case Study AfTLD Meeting 24th June 2006 Marrakech, Morocco Presented by: Michuki Mwangi

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Chapter 8 Managing Windows Server 2008 Network Services

ICANN/ccTLD Agreements: Why and How Andrew McLaughlin Monday, January 21, 2002 TWNIC.

Marcel Schneider The Swiss Education and Research Network.

June 2007APTLD Meeting/Dubai ANYCAST Alireza Saleh.ir ccTLD

1 DNS. 2 BIND DNS –Resolve names to IP address –Resolve IP address to names (reverse DNS) BIND –Berkeley Internet Name Domain system Version 4 is still.

Lesson 20 – OTHER WINDOWS 2000 SERVER SERVICES. DHCP server DNS RAS and RRAS Internet Information Server Cluster services Windows terminal services OVERVIEW.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

1 China Internet Network Information Center （ CNNIC ） Administrative Practice of.CN Domain Names.

11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

1 Updated as of 1 July 2014 About ICANN KISA-ICANN Language Localisation Project Module 1.1.

CcTLD-ICANN Agreement GCC Regional Meeting Dubai, UAE 17 June, 2001 Andrew McLaughlin ICANN.

Revised Draft Strategic Plan 4 December 2010.

Advanced Module 3 Stealth Configurations.

The Management of Top Level Country Domain Names Derek Browne Information Technology Specialist 6 th CIF October 30, 2008.

Advanced Computer Networks - IAIK 1 Gsenger, Nindl, Pointner Graz, Secure Anycast Tunneling Protocol.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Overview Who is AusRegistry? Why use the existing infrastructure? What this means for you? Questions raised and Important points.

Establishing ccTLDs in Africa - Overcoming The Challenges Michuki Mwangi President AfTLD AfTLD Meeting 7th, April 2008 Johannesburg, South-Africa.

UAEnic مركز الإمارات لمعلومات شبكة الإنترنت Presented By: Sultan Al Shamsi GCC ccTLD Working Group Meeting 7 th March 2004 Riyadh, KSA.

Internet Governance What ? Where ? How ? Wim Degezelle International Conference on DNS and Internet Riga, Latvia 19 April 2013.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Services Working at a Small-to-Medium Business or ISP – Chapter 7.

SaudiNIC's IPv6 Support in Saudi Domain Names IPv6 2 nd Workshop, 10 May 2011 Raed Al-Fayez SaudiNIC – CITC سجل. السعودية.

Module 5: Planning a DNS Strategy. Overview Planning DNS Servers Planning a Namespace Planning Zones Planning Zone Replication and Delegation Integrating.

Application-Layer Anycasting By Samarat Bhattacharjee et al. Presented by Matt Miller September 30, 2002.

Networking & the Internet. 2 What is a Network? □ A computer network allows computers to communicate with many other computers and to share resources.

1 Dot KE ccTLD RE-DELEGATION & MANAGEMENT EXPERIENCE Workshop on Internet Governance at the national level 19 th July 2005 Michael Katundu, Communications.

Module 3: Designing IP Addressing. Module Overview Designing an IPv4 Addressing Scheme Designing DHCP Implementation Designing DHCP Configuration Options.

Large Space IPv4 Trial Usage Program for Future IPv6 Deployment ACTIVITIES UPDATE Vol.5 APNIC 16 Meeting / Policy SIG August 21st, 2003 at Seoul Kosuke.

Kenya Network Information Centre (KENIC). Introduction KENIC is the registry for the.KE ccTLD. Local and non-profit organization Mandate is to Manage.

Role of ccTLDs in Society Vika Mpisane AfTLD 30 November 2006.

CcTLD Best Practices & Considerations ccTLD workshop, Guyana 2007 John Crain and Jacob Malthouse Internet Corporation for Assigned Names and Numbers.

AFRINIC Update Anne-Rachel Inné COO, AFRINIC ARIN 32, Phoenix October 2013.

Adrian Kinderis – AusRegistry International Best Practices of a ccTLD Registry BEST PRACTICES OF A ccTLD REGISTRY ADRIAN KINDERIS AUSREGISTRY INTERNATIONAL.

Information Session DNS Service level recommendations and experiences.

Anne Lord & Mirjam Kühne. AfNOG Workshop, 10 May IP Address Management AfNOG Workshop, 11 May 2001 Accra, Ghana presented by:

2.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 2: Examining.

Positioning your ccTLD for growth (dot tz case study) Eng. Abibu Ntahigiye tzNIC 17 th April dot tz for your identity.

1 Firewall Rules. 2 Firewall Configuration l Firewalls can generally be configured in one of two fundamental ways. –Permit all that is not expressly denied.

Securing Future Growth: Getting Ready for IPv6 NOW! ccTLD Workshop, 8 th April 2011 Noumea, New Caledonia Miwa Fujii, Senior IPv6 Program Specialist, APNIC.

ISOC Annual Meeting, Yerevan, Nov. 7, AM TLD Registry System I.Mkrtumyan, H.Dadivanyan ISOC AM.

BZUPAGES.COM. Presented to: Sir. Muizuddin sb Presented by: M.Sheraz Anjum Roll NO Atif Aneaq Roll NO Khurram Shehzad Roll NO Wasif.

30 April 2003 ITU SG2, Geneva, Switzerland Axel Pawlik, RIPE NCC Information Document 21-E ITU-T Study Group 2 May 2003 Question:1/2 Source:TSB Title:The.

Cloud Servers. What is a Cloud Server?  A Server that is accessed via the internet.

Introduction to Active Directory

MICROSOFT TESTS /291/293 Fairfax County Adult Education Courses 1477/1478/1479.

AFRINIC Update Madhvi Gokool Registration Service Manager RIPE66 meeting, Dublin May 2013.

ITU ccTLD Workshop March 3, 2003 A Survey of ccTLD DNS Vulnerabilities.

G046 Lecture 04 Task C Briefing Notes Mr C Johnston ICT Teacher

UAEnic United Arab Emirates Amani Mohammed Bin Sewaif Zain Al Abdeen Baig November 2007.

Internet Naming Service: DNS* Chapter 5. The Name Space The name space is the structure of the DNS database –An inverted tree with the root node at the.

Global Partnerships ISOC ccTLD Workshop Guyana Feb 16, 2007.

1 Welcome to Designing a Microsoft Windows 2000 Network Infrastructure.

THE DOMAIN NAME SYSTEM AS AN ADDRESS DIRECTORY FOR THE WORLDWIDE WEB. 1.

Affinity Depending on the application and client requirements of your Network Load Balancing cluster, you can be required to select an Affinity setting.

Benefits of Using Domain Name System (DNS)

The Dot – JM ccTLD Registry (Jamaica)

APNIC Open Address Policy Meeting

Introduction to ARIN and the Internet Registry System

APJII POLICY MEETING 2 updates.

An Update on Multihoming in IPv6 Report on IETF Activity

IPv6 distribution and policy update

Presentation transcript:

ccTLD Best Practices Michuki Mwangi AfriNIC5 - INET/AfTLD Meeting, Balaclava, Mauritius 30th Nov 2006

Agenda 1. ccTLD Establishment 2. Policy Development 3. Registry Automation 4. Stability and Redundancy 5. Security Consideration

ccTLD Establishment

Considerations Stakeholder participation Involvement of Private sector Academia Civil Society Legal fraternity Government participation Government support

Considerations …(cont’d) Domain Registry Model Open or Closed Registry/Registrar etc Sustainability & Commercial Model Cost of registration CAPEX OPEX

Policy Development

Bottom up process Open Public forums Mailing lists Interactive media Registry/Board proposals

Registry Automation

Registry Software Identifying the appropriate Registry Software Guided by Registry model and policies Avoid re-inventing the wheel Saves on time and development costs Online System Online Registrations, Transfers etc Whois System

Monitoring & Statistics Its important to monitor Registry Services Ensures more uptime on services Open Source applications available for monitoring E.g Nagios, MRTG, webalizer, cflowd, etc Statistics enables projection and planning for growth

Stability & Redundancy

Selection of Slave DNS Servers RFC 2182 (BCP16) provides guidelines on selection of Secondary (slave) Servers. Consider geographic placement At least 2 Slave Servers and a master This helps spread name resolution load Improves efficiency with servers close to resolvers Avoid NAT

Finding Suitable Slave Servers Swap slave servers with other ccTLDs in the region (Common practice). AfTLD, ISOC can help find suitable hosts and organizations to host Slave servers. Consider Anycast hosting for slave servers

Hardware and Software Scalability is Key Provide sufficient memory, processor and disk space. DNS Software should be fast and capable of handling load (multiple queries per second)

Internet Connection Ensure upstream provider must be multi- homed Interconnect at the local/national IXP Registry should have redundant links to upstream provider Provider Independent (PI) IP address Space and ASN to enable for effective multi-homing

Security Considerations

Best Practice Implement routing security features Operating system hardening Disable Recursion Have a Stealth Server Run secure applications Run TSIG for secondary zone transfers

References ck1/day3/draft-wenzel-cctld-bcp-02.txt ck1/day3/draft-wenzel-cctld-bcp-02.txt services/ services/ ftp://ftp.rfc-editor.org/in-notes/rfc2182.txt

Thank you