anycast in cz n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
Anycast in CZ PowerPoint Presentation
Download Presentation
Anycast in CZ

Loading in 2 Seconds...

play fullscreen
1 / 11

Anycast in CZ - PowerPoint PPT Presentation


  • 125 Views
  • Uploaded on

Anycast in CZ. CZ.NIC z.s.p.o. Jaromir Talir jaromir.talir@nic.cz 8. 9. 2009. Agenda. What is it anycast Why to use anycast How to implement anycast RIPE anycast address allocation policies Current anycast usage: AS 112, F-root, secondary nameservers Future plans. What is anycast.

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Anycast in CZ' - iren


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
anycast in cz
Anycast in CZ

CZ.NIC z.s.p.o.

Jaromir Talir

jaromir.talir@nic.cz

8. 9. 2009

1

agenda
2Agenda

What is it anycast

Why to use anycast

How to implement anycast

RIPE anycast address allocation policies

Current anycast usage:

AS 112, F-root, secondary nameservers

Future plans

what is anycast
3What is anycast

Routing scheme for one source to many destination internet comunication

Different hosts advertise the same IP address

Only nearest point is chosen (potentially different for each packet)

Most suitable for connectionless internet protocols (UDP)

why to use anycast
4Why to use anycast

Enhanced reliability

Load balancing

Reducing latency

Ideal for DNS packets

Attack againts root servers

February 2007

6 root servers were under massive DDOS

Worst affected 2 root servers without anycast

how to implement anycast
5How to implement anycast

Protocol independant

BGP, OSFP ...

Apply for anycast address

There is dedicated block that is supposed not to be filtered

DNS host must have installed routing daemon

BIRD – open source routing daemon as CZ.NIC Labs project

Quagga – or other for diversification

ripe anycast address allocation policy
6RIPE – Anycast address allocation policy

September 2006 – June 2009

Only TLD operators that fail to pass IANA test for root servers

Only 1 /24 prefix

Since June 2009

Initiated by CZ.NIC and Nominet

All TLD and ENUM operators

4 /24 prefixes per TLD and 4 /24 prefixes per ENUM zone

as 112
7AS 112

PTR queries for private addresses (RFC1918), dynamic DNS updates and other communication to root servers

Anycast DNS servers to catch invalid queries

Since 2004 in NIX.CZ

f root
8F-Root

Operated by ISC since 1994

Anycasted on 49 places

In CZ.NIC since July 2004

Traffic statistics from last 30 days (in kb/s):

Out: max=885.3, avg=383.6, min=325.8

In: max=359.7, avg=149.0, min=155.3

secondary dns for cz
9Secondary DNS for CZ

6 secondary servers

a-f.ns.nic.cz

2x Prague, 1x Stocholm, 1x Wien, 1x London

1x anycast (d.ns.nic.cz)

Operating since 2006

Located in Prague, Brno, Frankfurt and ISC (USA)

future plans
10Future plans

More anycast secondary servers

Using new RIPE policy

4 anycast addresses already allocated

Anycasting of current unicast servers

Reducing number of nameservers in zonefile from 6 to 4

Bring some other root server into Prague

questions
11Questions
  • Jaromir Talir
  • jaromir.talir@nic.cz