exploring edns client subnet adopters in your free time
play

Exploring EDNS-Client-Subnet Adopters in Your Free Time IMC 2013, - PowerPoint PPT Presentation

May 06, 2023 •655 likes •881 views

Exploring EDNS-Client-Subnet Adopters in Your Free Time IMC 2013, Barcelona Florian Streibelt <florian@inet.tu-berlin.de> TU-Berlin, Germany - FG INET www.inet.tu-berlin.de October 24th 2013 Florian Streibelt, Jan B ottger, Nikolaos

  1. Exploring EDNS-Client-Subnet Adopters in Your Free Time IMC 2013, Barcelona Florian Streibelt <florian@inet.tu-berlin.de> TU-Berlin, Germany - FG INET www.inet.tu-berlin.de October 24th 2013 Florian Streibelt, Jan B¨ ottger, Nikolaos Chatzis, Georgios Smaragdakis, Anja Feldmann With special thanks to Walter Willinger.

  2. Non-ISP (aka ’public’) DNS usage increases Usage at 8.6% in December 2011 According to Otto et al. in ”Content delivery and the natural evolution of DNS: remote DNS trends, performance issues and alternative solutions” (IMC 2012) florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 2

  3. Challenge for CDNs/CPs Non-ISP resolvers are gaining momentum Clients are far away from resolvers CDNs often make heavy use of DNS for client location Using the DNS request origin for client-location now leads to (more) wrong results Mis-location of clients gives end-users bad performance florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 3

  4. Introducing: Client IP information in EDNS (ECS) Recursive nameserver adds client subnet information (network prefix) to the query directed at the authoritative nameserver EDNS0 extension is introduced to transport this data Proposal by Google, OpenDNS and others (A faster Internet consortium) Performance gain can be observed, again see Otto et al. (IMC 2012) We find roughly 13% of the top 1M Alexa list seem to support this extension already florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 4

  5. (Ab)using ECS for Measurements Intended use of ECS: ? example.org ? example.org Auth. Client RDNS DNS client=123.45.67.0/24 123.45.67.89 87.65.43.21 florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 5

  6. (Ab)using ECS for Measurements Intended use of ECS: ? example.org ? example.org Auth. Client RDNS DNS client=123.45.67.0/24 123.45.67.89 87.65.43.21 Doing our measurements: Vantage− Auth. ? example.org point DNS client=123.45.67.0/24 130.149.x.y florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 5

  7. (Ab)using ECS for Measurements Intended use of ECS: ? example.org ? example.org Auth. Client RDNS DNS client=123.45.67.0/24 123.45.67.89 87.65.43.21 Doing our measurements: Vantage− Auth. ? example.org point DNS client=123.45.67.0/24 130.149.x.y ⇒ We can impose every client ’location’. florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 5

  8. Protocol: Client IP information in EDNS (ECS) Header Header Option Length (6) Query Query Address Family (1=IPv4) Additional Prefix Length (16) Answer EDNS Client−IP Option Code EDNS0 Scope Additional Client−IP/Prefix ECS EDNS0 ECS Query: 0008 0006 0001 10 00 82 95... ECS ECS Response: 0008 0006 0001 10 18 82 95... # dig www.google.com +client=130.149.0.0/16 @ns1.google.com DNS Query DNS Response The scope returned allows for caching (applied as netmask) The client IP information cannot be checked florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 6

  9. ECS as a Measurement Tool Using arbitrary client subnet information, we can impose every client ’location’ This gives us the opportunity to find the location of CDN caches within ISPs, observe the growth of CDN footprints, infer client-to-server mappings (to some extend), analyze dynamic changes by repeated measurements. As demonstration we present a subset of our experiments, using Google as example. florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 7

  10. Measurements Single vantage point 1 is sufficient to use arbitrary Client IP/prefix As Client Subnets we use all network prefixes from RIPE RIS (sanity check using Routeviews) We compare with Client Subnets derived from: popular resolvers, subnets of an ISP, educational networks Measurements are done for: Google/YouTube, MySqueezebox, Edgecast and others Data to look at: A-records (servers) and scope (caching) returned 1 we checked from four different locations florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 8

  11. Comparing sources for Client Subnets Prefix set Server Sub AS Countries RIPE 6,340 329 166 47 RV 6,308 328 166 47 Google PRES 6,088 313 159 46 (03/26/13) ISP 207 28 1 1 ISP24 535 44 2 2 UNI 123 13 1 1 RIPE RIS and Routeviews give nearly identical results The 280k most popular resolvers, as seen by a CDN, yield similar results – but dataset is not freely available Mapping to GGCs is working, as can been seen at the UNI and ISP datasets florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 9

  12. Looking at the A-Records of Google Resolving www.google.com via ns1.google.com Using all network prefixes from RIPE RIS as client subnets Different synchronized vantage points (plausibility check) Date IPs Sub ASes Countries (RIPE) nets 2013-03-26 6340 329 166 47 2013-03-30 6495 332 167 47 2013-04-13 6821 331 167 46 2013-04-21 7162 346 169 46 2013-05-16 9762 485 287 55 2013-05-26 9465 471 281 52 2013-06-18 14418 703 454 91 2013-07-13 21321 1040 714 91 2013-08-08 21862 1083 761 123 see also the next presentation: Calder et al.: Mapping the Expansion of Google’s Serving Infrastructure florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 10

  13. Looking at the A-Records of Google Selected results from combined experiments: We see GGC (Google Global Cache edge servers) in various ISP networks These ISPs are not allowed to advertise the GGC, but we are Huge increase in the footprint can be observed, also for YouTube Comparing results from different vantage points we observe redirection of clients and prefixes, probably due to load balancing the GGCs We see that most of the time clients indeed are served from caches in their respective AS We see large overlap in the returned A records in the results from the different vantage points, both for Google and YouTube florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 11

  14. Comparing Google and Edgecast Scopes 336875 901280 30 30 269500 721024 25 25 Prefix length Prefix length 20 20 202125 540768 Count Count 15 15 134750 360512 10 10 67375 180256 5 5 0 0 0 0 0 5 10 15 20 25 30 0 5 10 15 20 25 30 ECS scope ECS scope Edgecast (left) aggregates while Google (right) returns more specific scopes. florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 12

  15. Conclusion Enabling ECS gives better performance for clients This comes with a tradeoff for DNS providers and CDNs: it also reveals internal information It enables researchers (and competitors) to investigate e.g. global footprint, growth-rate, user-to-server mapping, etc. No filtering e.g. based on number of client prefixes was yet observed We show that this extension offers interesting opportunities for measurements florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 13

  16. Contact: Florian Streibelt <florian@inet.tu-berlin.de> The paper, software and raw data will be published in November 2013. http://projects.inet.tu-berlin.de/projects/ecs-adopters/wiki Image sources: own work and http://openclipart.org/

  17. A Textbook DNS-Lookup Client asks a recursive nameserver (e.g., at the ISP) This nameserver follows the delegation, contacts the authoritative server Assumption: Client located near the recursive nameserver florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 15

  18. How to enable ECS? Primary nameservers must be ECS enabled (Supported by PowerDNS: yes, Bind: no) If there are other systems in front: these as well Primary nameservers need to be whitelisted (manually) by e.g., OpenDNS, Google Note: We find that roughly 13% of the top 1 million domains (Alexa) may be already ECS enabled. florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 16

  19. Framework used Authoritative DNS−Requests DNS−Requests Nameservers Worker Worker RIPE RIS Worker ECS− Routeviews Importer ssh Framework ISP (whois) Remote− UNI−Prefixes Agent Remote− Exporter Agent Remote Locations MySQL− .csv−Files Database .dict Files florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 17

  20. RIPE RIS prefix length vs. ECS-scopes 200000 RIPE Google Edgecast Count 100000 0 0 5 10 15 20 25 30 Prefix length/ECS scope Prefix length and scope distribution do not match and differ between adopters, also note the /32s! florian@inet.tu-berlin.de (INET@TUB) Exploring EDNS-Client-Subnet Adopters in Your Free Time October 24th 2013 18

Recommend

EDNS Compliance Mark Andrews marka@isc.org Motivation Deployed Experimental Version of DNS

EDNS Compliance Mark Andrews marka@isc.org Motivation Deployed Experimental Version of DNS

EDNS Compliance Mark Andrews marka@isc.org Motivation Deployed Experimental Version of DNS COOKIES (SIT) in BIND 9.10.0 Lookups for various zones failed due to mis-implemention of EDNS Trial and Error Takes time especially when requests

485 views • 24 slides
Drongo Speeding Up CDNs with Subnet Assimilation from the Client CoNEXT 17 Authors: Incheon,

Drongo Speeding Up CDNs with Subnet Assimilation from the Client CoNEXT 17 Authors: Incheon,

Drongo Speeding Up CDNs with Subnet Assimilation from the Client CoNEXT 17 Authors: Incheon, South Korea Marc Anthony Warrior CDN &amp; Caching Session Uri Klarman Marcel Flores Aleksandar Kuzmanovic Birds Eye View What is

1.21k views • 104 slides
Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT

Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT

Recalcitrant IT Adopters 1 December 2000 Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT Adopters Jon D Kendall (http://www.quino.net ) Director of Instructional Development Wayne State College

235 views • 20 slides
Classless Subnetting Explained When given an IP Address, Major Network Mask, and a Subnet Mask,

Classless Subnetting Explained When given an IP Address, Major Network Mask, and a Subnet Mask,

Classless Subnetting Explained When given an IP Address, Major Network Mask, and a Subnet Mask, how can you determine other information such as: The subnet address of this subnet The broadcast address of this subnet The range of

301 views • 6 slides
SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University

SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University

EARLY WARNING SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University Interpretive Summary Highlights of EWS Early Adopters Learning and Sharing Summit Survey, George W. Bush Institute, Dallas, Texas, November 5-6,

426 views • 11 slides
1 2 3 4 5 6 How many of organizations here are currently selling product to their adopters?

1 2 3 4 5 6 How many of organizations here are currently selling product to their adopters?

1 2 3 4 5 6 How many of organizations here are currently selling product to their adopters? Take notes for Sofia 7 Discuss. What items Should Shelters carry Difference between needs vs wants for the consumer get the animal home.

791 views • 75 slides
Network Time Protocol (NTP) The synchronization subnet can reconfigure if failures occur, e.g.

Network Time Protocol (NTP) The synchronization subnet can reconfigure if failures occur, e.g.

Network Time Protocol (NTP) The synchronization subnet can reconfigure if failures occur, e.g. a primary that loses its UTC source can become a secondary a secondary that loses its primary can use another primary Primary servers are

479 views • 4 slides
1 Subnet Address Subnet Address &amp; &amp; Mask Mask Subnetting Subnetting

1 Subnet Address Subnet Address &amp; &amp; Mask Mask Subnetting Subnetting

Outline Outline Lecture 10. Lecture 10. Subnetting Variable Length Subnet Mask (VLSM) Subnetting &amp; &amp; Supernetting Supernetting Subnetting Supernetting Classless Inter-Domain Routing (CIDR) Giuseppe Bianchi Giuseppe

434 views • 11 slides
Exploring the SAML 2.0 ECP-Profile Development of a client and a service provider prototype

Exploring the SAML 2.0 ECP-Profile Development of a client and a service provider prototype

Technology programme, http://tek.hip.fi Exploring the SAML 2.0 ECP-Profile Development of a client and a service provider prototype Carolina Lindqvist HIP summer student at CERN carolina.lindqvist[at]cs.helsinki.fi

365 views • 14 slides
Topics The Basics of Subnetting Subnet Mask Computing subnets and hosts Subnet

Topics The Basics of Subnetting Subnet Mask Computing subnets and hosts Subnet

1/37 Subnetting Surasak Sanguanpong nguan@ku.ac.th http://www.cpe.ku.ac.th/~nguan Last updated: 27 June 2002 Applied Network Research Group Department of Computer Engineering, Kasetsart University 2/37 Topics

570 views • 19 slides
Cheleby: Subnet Level Internet Topology Mehmet Hadi Gunes with Hakan Kardes and Mehmet B. Akgun

Cheleby: Subnet Level Internet Topology Mehmet Hadi Gunes with Hakan Kardes and Mehmet B. Akgun

Cheleby: Subnet Level Internet Topology Mehmet Hadi Gunes with Hakan Kardes and Mehmet B. Akgun Department of Computer Science and Engineering University of Nevada, Reno Subnet Resolution A B C D genuine topology A B A B C D C D

614 views • 28 slides
The Workflow Evolution (The Learning Curve) The Client The CAA The Utility The Workflow

The Workflow Evolution (The Learning Curve) The Client The CAA The Utility The Workflow

The Workflow Evolution (The Learning Curve) The Client The CAA The Utility The Workflow Evolution (CAA Focus) Original LSM Program Goals: o Intake Automation (IVR to set calendar) o Reduce clogged phone lines o Free up staff time

390 views • 21 slides
Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client

Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client

Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client Client Client Client Client Client Client Google Client Client Client Client Client Client Many clients; 1 server Server starts and then

333 views • 6 slides
MOBILE APP PDF Client Presentation FREE APP FOR ALL The ultimate Mobile App for Fans, Drivers

MOBILE APP PDF Client Presentation FREE APP FOR ALL The ultimate Mobile App for Fans, Drivers

Keynote MOBILE APP PDF Client Presentation FREE APP FOR ALL The ultimate Mobile App for Fans, Drivers &amp; Teams INTRODUCTION Key features of new App Works on all Apple iOS &amp; Android devices Centralise all your official content in one

457 views • 21 slides
Communication Services zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Client Requirements

Communication Services zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Client Requirements

Communication Services zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Client Requirements for Real-Time Domenico Ferrari R EAL-TIME COMMUNICATION SERVICES PRO- for the communications of a client, it commits itself to provid- vide clients

223 views • 8 slides
Network Traffic Analysis &amp; Cluster Analysis Exploring Hadoop Clusters using Free Tools

Network Traffic Analysis &amp; Cluster Analysis Exploring Hadoop Clusters using Free Tools

Network Traffic Analysis &amp; Cluster Analysis Exploring Hadoop Clusters using Free Tools Background and Goals: Apache Spot was started recently DNS, Netflow, PCAP data is analyzed The goal is to identify: suspicous

644 views • 19 slides
NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters

NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters

NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters Announced in the Special Issue of the Newsletter and through the webinars on NEC4 Early Adopters programme was rolled out to encourage

260 views • 6 slides
Network Time Protocol (NTP) server client Aanchal Malhotra Isaac E. Cohen, Erik Brakke Sharon

Network Time Protocol (NTP) server client Aanchal Malhotra Isaac E. Cohen, Erik Brakke Sharon

NDSS, 2016 Attacking the Network Time Protocol (NTP) server client Aanchal Malhotra Isaac E. Cohen, Erik Brakke Sharon Goldberg Outline of the talk Background How does NTP work? How does NTP client take time? Our attacks

497 views • 16 slides
Exploring Free Teacher Resources Christy Hanson Content &amp; Curriculum Writer

Exploring Free Teacher Resources Christy Hanson Content &amp; Curriculum Writer

Exploring Free Teacher Resources Christy Hanson Content &amp; Curriculum Writer christy@7generationgames.com Yaateeh! Shi ei Christy Hanson yinishye. Todichiinii nishli. Tsenijikini ei bashishchiin. Naakai Dinee ei dashicheii.

758 views • 32 slides
Free-Fall Timescale of Sun Free-fall timescale: The time it would take a star (or cloud) to

Free-Fall Timescale of Sun Free-fall timescale: The time it would take a star (or cloud) to

Free-Fall Timescale of Sun Free-fall timescale: The time it would take a star (or cloud) to collapse to a point if there was no outward pressure to counteract gravity. We can calculate the free-fall timescale of the sun. Consider a mass element

218 views • 17 slides
It Takes Time: Investing for Positive Change Cindy Nardini, MS, LPC Selena Elmore, Client

It Takes Time: Investing for Positive Change Cindy Nardini, MS, LPC Selena Elmore, Client

It Takes Time: Investing for Positive Change Cindy Nardini, MS, LPC Selena Elmore, Client Presented at 2015 Louisiana Counseling Association Annual Conference Objectives Importance &amp; Power of the Client Counselor Relationship The

439 views • 39 slides
NTP, a misunderstood protocol designing an efficient NTP subnet: the Opera case Who is this guy?

NTP, a misunderstood protocol designing an efficient NTP subnet: the Opera case Who is this guy?

NTP, a misunderstood protocol designing an efficient NTP subnet: the Opera case Who is this guy? Marco Marongiu Currently working as Senior System Administrator for Opera Software in the Company Headquarters, located in Oslo;

765 views • 64 slides
DimpVis: Exploring Time-varying Information Visualizations by Direct Manipulation Brittany

DimpVis: Exploring Time-varying Information Visualizations by Direct Manipulation Brittany

DimpVis: Exploring Time-varying Information Visualizations by Direct Manipulation Brittany Kondo, Christopher Collins VIS 2014 presented by Antoine Ponsard DimpVis: Exploring Time-varying Information Visualizations by Direct Manipulation

634 views • 20 slides
Client Design Client Design Srinidhi Varadarajan Topics Topics Concurrency in client

Client Design Client Design Srinidhi Varadarajan Topics Topics Concurrency in client

Client Design Client Design Srinidhi Varadarajan Topics Topics Concurrency in client Concepts Approaches TCP timed echo example Why Use Concurrency in Servers Servers ? ? Why Use Concurrency in Improved response time

188 views • 15 slides

More recommend