SlideShare une entreprise Scribd logo

RIPE NCC DNS Update

RIPE Meetings
RIPE Meetings

Presented by Anand Buddhdev in DNS Working Group at RIPE 60, Prague

Technologie
1  sur  14
Télécharger pour lire hors ligne
RIPE Network Coordination Centre RIPE NCC DNS Update Anand Buddhdev DNS Services Manager, RIPE NCC Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 1
RIPE Network Coordination Centre The Team Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 2
RIPE Network Coordination Centre Our Services • K-root • Reverse DNS • Secondary DNS for some ccTLDs • ENUM • AS112 • DNSSEC • RIPE NCC Internal Services Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 3
RIPE Network Coordination Centre K-root • DURZ readiness - Server and network limit testing with NLNet Labs - Bandwidth upgrades - NSD 3.2.4 (TCP and EDNS buffer size tuning) • Data collection & Analysis - DITL-style - Priming queries • Public outreach and awareness - Articles on RIPE Labs - Reply-size tester Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 4
RIPE Network Coordination Centre Reply-size Tester Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 5
RIPE Network Coordination Centre TCP Queries after DURZ Rollout Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 6
RIPE Network Coordination Centre K-root Expansion • Co-operation with AfriNIC - Dar es Salaam in 2008 - More instances later this year • Possible expansion into Latin America • A few more local instances in the RIPE NCC region Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 7
RIPE Network Coordination Centre DNSSEC (Current) • RIPE NCC zones signed since 2005 • Old signer infrastructure - “Bump in the wire” model - Regular Linux servers - Perl-based key management tools - No support for secure key storage - Manual processes – prone to human error • Frequent key rollovers Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 8
RIPE Network Coordination Centre DNSSEC (Future) • New signers from Secure64 • “Bump in the wire” model - Zone transfers into and out of the signers • KSK rollover in progress - Pre-publishing required for the switch - New keys introduced on 23 March 2010 - New keys become active on 14 June 2010 • New DNSSEC Pratices Statement - Review all policies and procedures - Reconsider key lifetimes Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 9
RIPE Network Coordination Centre DNS Infrastructure Improvements • New Autonomous System (ASN 197000) • Multi-server architecture for redundancy • Serve in-addr.arpa, ip6.arpa and all of the RIPE NCC’s forward and reverse zones • First site is operational at AMS-IX • A second site is planned for Q4 2010 Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 10
RIPE Network Coordination Centre ENUM • Two new delegations since RIPE 59 - Malaysia (February 2010) - Ukraine (April 2010) • Voxbone (8835100) approved but not yet delegated • Signed zones - Poland - Czech Republic - The Netherlands - Lithuania Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 11
RIPE Network Coordination Centre Provisioning System • New provisioning software to replace legacy • Support for glue and DS records for ERX address space • Improvements to delegation checker - Fix some IPv6 issues - Allow pre-publishing of DS record Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 12
RIPE Network Coordination Centre DNS Lameness Data in Netsense Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 13
RIPE Network Coordination Centre Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 14

Recommandé

32-bit ASN for DNS Services
32-bit ASN for DNS Services32-bit ASN for DNS Services
32-bit ASN for DNS ServicesRIPE Meetings
 
RIPE NCC DNSMON Service
RIPE NCC DNSMON ServiceRIPE NCC DNSMON Service
RIPE NCC DNSMON ServiceRIPE Meetings
 
K-root and DNSSEC
K-root and DNSSECK-root and DNSSEC
K-root and DNSSECRIPE NCC
 
Jan Zorz - IPv6 and mobile emergency response teams
Jan Zorz - IPv6 and mobile emergency response teamsJan Zorz - IPv6 and mobile emergency response teams
Jan Zorz - IPv6 and mobile emergency response teamsIKT-Norge
 
Routing
RoutingRouting
Routingtoolzsmoile
 
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...IKT-Norge
 
Eric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalEric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalIKT-Norge
 
IPv6 World Wide Policy Review
IPv6 World Wide Policy ReviewIPv6 World Wide Policy Review
IPv6 World Wide Policy ReviewRIPE Meetings
 

Recommandé

32-bit ASN for DNS Services
32-bit ASN for DNS Services32-bit ASN for DNS Services
32-bit ASN for DNS ServicesRIPE Meetings
 
RIPE NCC DNSMON Service
RIPE NCC DNSMON ServiceRIPE NCC DNSMON Service
RIPE NCC DNSMON ServiceRIPE Meetings
 
K-root and DNSSEC
K-root and DNSSECK-root and DNSSEC
K-root and DNSSECRIPE NCC
 
Jan Zorz - IPv6 and mobile emergency response teams
Jan Zorz - IPv6 and mobile emergency response teamsJan Zorz - IPv6 and mobile emergency response teams
Jan Zorz - IPv6 and mobile emergency response teamsIKT-Norge
 
Routing
RoutingRouting
Routingtoolzsmoile
 
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...
Martin J Levy - Hurricane Electric - The IPv6 global view - norway ipv6 - apr...IKT-Norge
 
Eric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalEric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalIKT-Norge
 
IPv6 World Wide Policy Review
IPv6 World Wide Policy ReviewIPv6 World Wide Policy Review
IPv6 World Wide Policy ReviewRIPE Meetings
 
Gabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHYGabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHYIKT-Norge
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PROIDEA
 
Henrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveHenrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveIKT-Norge
 
Eric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayEric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayIKT-Norge
 
OpenTag Webinar
OpenTag WebinarOpenTag Webinar
OpenTag WebinarDASH7 Alliance
 
Cameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway MeetingCameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway MeetingIPv6no
 
Introduction of ipv6
Introduction of ipv6Introduction of ipv6
Introduction of ipv6KaushikMajumder22
 
RESUME
RESUMERESUME
RESUMEJames Craven
 
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...gogo6
 
DASH7 Capabilities Overview
DASH7 Capabilities OverviewDASH7 Capabilities Overview
DASH7 Capabilities OverviewDASH7 Alliance
 
INEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & IrelandINEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & IrelandAnurag Bhatia
 
ION Costa Rica - About the IETF and How to Get Involved
ION Costa Rica - About the IETF and How to Get InvolvedION Costa Rica - About the IETF and How to Get Involved
ION Costa Rica - About the IETF and How to Get InvolvedDeploy360 Programme (Internet Society)
 
Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6Jhoni Guerrero
 
Exploring I Pv6
Exploring I Pv6Exploring I Pv6
Exploring I Pv6Gratien D'haese
 
IPv6 introduction
IPv6 introductionIPv6 introduction
IPv6 introductionGuider Lee
 
Ipv6
Ipv6Ipv6
Ipv6maha5960
 
Google and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, GoogleGoogle and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, GoogleIPv6no
 
Rapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksRapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksSkeeve Stevens
 
RIPE NCC ENUM Update
RIPE NCC ENUM UpdateRIPE NCC ENUM Update
RIPE NCC ENUM UpdateRIPE Meetings
 
Panel with IPv6 CE Vendors
Panel with IPv6 CE VendorsPanel with IPv6 CE Vendors
Panel with IPv6 CE VendorsAPNIC
 
Number Resource EXplainer (REX)
Number Resource EXplainer (REX)Number Resource EXplainer (REX)
Number Resource EXplainer (REX)RIPE NCC
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarMen and Mice
 

Contenu connexe

Tendances

Gabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHYGabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHYIKT-Norge
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PROIDEA
 
Henrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveHenrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveIKT-Norge
 
Eric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayEric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayIKT-Norge
 
Cameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway MeetingCameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway MeetingIPv6no
 
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...gogo6
 
DASH7 Capabilities Overview
DASH7 Capabilities OverviewDASH7 Capabilities Overview
DASH7 Capabilities OverviewDASH7 Alliance
 
INEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & IrelandINEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & IrelandAnurag Bhatia
 
Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6Jhoni Guerrero
 
IPv6 introduction
IPv6 introductionIPv6 introduction
IPv6 introductionGuider Lee
 
Google and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, GoogleGoogle and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, GoogleIPv6no
 
Rapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksRapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksSkeeve Stevens
 

Tendances (18)

Gabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHYGabriel Paues - IPv6 address planning + making the case for WHY
Gabriel Paues - IPv6 address planning + making the case for WHY
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview
 
Henrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveHenrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspective
 
Eric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayEric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norway
 
OpenTag Webinar
OpenTag WebinarOpenTag Webinar
OpenTag Webinar
 
Cameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway MeetingCameron - TMO IPv6 Norway Meeting
Cameron - TMO IPv6 Norway Meeting
 
Introduction of ipv6
Introduction of ipv6Introduction of ipv6
Introduction of ipv6
 
RESUME
RESUMERESUME
RESUME
 
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...
 
DASH7 Capabilities Overview
DASH7 Capabilities OverviewDASH7 Capabilities Overview
DASH7 Capabilities Overview
 
INEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & IrelandINEX June Meeting - Root DNS Anycast Performance in UK & Ireland
INEX June Meeting - Root DNS Anycast Performance in UK & Ireland
 
ION Costa Rica - About the IETF and How to Get Involved
ION Costa Rica - About the IETF and How to Get InvolvedION Costa Rica - About the IETF and How to Get Involved
ION Costa Rica - About the IETF and How to Get Involved
 
Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6Transitioning IPv4 to IPv6
Transitioning IPv4 to IPv6
 
Exploring I Pv6
Exploring I Pv6Exploring I Pv6
Exploring I Pv6
 
IPv6 introduction
IPv6 introductionIPv6 introduction
IPv6 introduction
 
Ipv6
Ipv6Ipv6
Ipv6
 
Google and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, GoogleGoogle and IPv6: Steinar H. Gunderson, Software engineer, Google
Google and IPv6: Steinar H. Gunderson, Software engineer, Google
 
Rapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksRapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP Networks
 

Similaire à RIPE NCC DNS Update

RIPE NCC ENUM Update
RIPE NCC ENUM UpdateRIPE NCC ENUM Update
RIPE NCC ENUM UpdateRIPE Meetings
 
Panel with IPv6 CE Vendors
Panel with IPv6 CE VendorsPanel with IPv6 CE Vendors
Panel with IPv6 CE VendorsAPNIC
 
Number Resource EXplainer (REX)
Number Resource EXplainer (REX)Number Resource EXplainer (REX)
Number Resource EXplainer (REX)RIPE NCC
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarMen and Mice
 
Update from the RIPE NCC
Update from the RIPE NCCUpdate from the RIPE NCC
Update from the RIPE NCCRIPE Meetings
 
IPv6 Act Now and RIPE Labs
IPv6 Act Now and RIPE LabsIPv6 Act Now and RIPE Labs
IPv6 Act Now and RIPE LabsRIPE NCC
 
Current RIPE Policy Developments and RIPE Policy Implementation
Current RIPE Policy Developments and RIPE Policy ImplementationCurrent RIPE Policy Developments and RIPE Policy Implementation
Current RIPE Policy Developments and RIPE Policy ImplementationRIPE NCC
 
RIPE Labs at IETF 78
RIPE Labs at IETF 78RIPE Labs at IETF 78
RIPE Labs at IETF 78RIPE NCC
 
IPv6 Deployment: Why and Why not? - HostingCon 2013
IPv6 Deployment: Why and Why not? - HostingCon 2013IPv6 Deployment: Why and Why not? - HostingCon 2013
IPv6 Deployment: Why and Why not? - HostingCon 2013APNIC
 
Operators' Tools - RIPE Labs
Operators' Tools - RIPE LabsOperators' Tools - RIPE Labs
Operators' Tools - RIPE LabsRIPE NCC
 
IPv6 Deployment: Why and Why not?
IPv6 Deployment: Why and Why not?IPv6 Deployment: Why and Why not?
IPv6 Deployment: Why and Why not?apnic_slides
 
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?PROIDEA
 
APNIC Update
APNIC Update APNIC Update
APNIC Update APNIC
 
Measuring IPv6 at Web Clients and Caching Resolvers
Measuring IPv6 at Web Clients and Caching ResolversMeasuring IPv6 at Web Clients and Caching Resolvers
Measuring IPv6 at Web Clients and Caching ResolversRIPE Meetings
 
Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24APNIC
 
Honeypots and Security
Honeypots and SecurityHoneypots and Security
Honeypots and SecurityAPNIC
 
btNOG 8: IP technology adoption in Bhutan
btNOG 8: IP technology adoption in Bhutan btNOG 8: IP technology adoption in Bhutan
btNOG 8: IP technology adoption in Bhutan APNIC
 
The Regional Internet Registry System and Internet Number Resources
The Regional Internet Registry System and Internet Number ResourcesThe Regional Internet Registry System and Internet Number Resources
The Regional Internet Registry System and Internet Number ResourcesRIPE NCC
 

Similaire à RIPE NCC DNS Update (20)

RIPE NCC ENUM Update
RIPE NCC ENUM UpdateRIPE NCC ENUM Update
RIPE NCC ENUM Update
 
Panel with IPv6 CE Vendors
Panel with IPv6 CE VendorsPanel with IPv6 CE Vendors
Panel with IPv6 CE Vendors
 
Number Resource EXplainer (REX)
Number Resource EXplainer (REX)Number Resource EXplainer (REX)
Number Resource EXplainer (REX)
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinar
 
Presd1 09
Presd1 09Presd1 09
Presd1 09
 
Update from the RIPE NCC
Update from the RIPE NCCUpdate from the RIPE NCC
Update from the RIPE NCC
 
IPv6 Act Now and RIPE Labs
IPv6 Act Now and RIPE LabsIPv6 Act Now and RIPE Labs
IPv6 Act Now and RIPE Labs
 
Current RIPE Policy Developments and RIPE Policy Implementation
Current RIPE Policy Developments and RIPE Policy ImplementationCurrent RIPE Policy Developments and RIPE Policy Implementation
Current RIPE Policy Developments and RIPE Policy Implementation
 
RIPE Labs at IETF 78
RIPE Labs at IETF 78RIPE Labs at IETF 78
RIPE Labs at IETF 78
 
IPv6 Deployment: Why and Why not? - HostingCon 2013
IPv6 Deployment: Why and Why not? - HostingCon 2013IPv6 Deployment: Why and Why not? - HostingCon 2013
IPv6 Deployment: Why and Why not? - HostingCon 2013
 
Operators' Tools - RIPE Labs
Operators' Tools - RIPE LabsOperators' Tools - RIPE Labs
Operators' Tools - RIPE Labs
 
IPv6 Deployment: Why and Why not?
IPv6 Deployment: Why and Why not?IPv6 Deployment: Why and Why not?
IPv6 Deployment: Why and Why not?
 
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?
PLNOG 7: Ferenc Csorba - What’s new at the RIPE NCC?
 
APNIC Update
APNIC Update APNIC Update
APNIC Update
 
Measuring IPv6 at Web Clients and Caching Resolvers
Measuring IPv6 at Web Clients and Caching ResolversMeasuring IPv6 at Web Clients and Caching Resolvers
Measuring IPv6 at Web Clients and Caching Resolvers
 
Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24Internet Resource Management Tutorial at SANOG 24
Internet Resource Management Tutorial at SANOG 24
 
Historical BGPlay
Historical BGPlayHistorical BGPlay
Historical BGPlay
 
Honeypots and Security
Honeypots and SecurityHoneypots and Security
Honeypots and Security
 
btNOG 8: IP technology adoption in Bhutan
btNOG 8: IP technology adoption in Bhutan btNOG 8: IP technology adoption in Bhutan
btNOG 8: IP technology adoption in Bhutan
 
The Regional Internet Registry System and Internet Number Resources
The Regional Internet Registry System and Internet Number ResourcesThe Regional Internet Registry System and Internet Number Resources
The Regional Internet Registry System and Internet Number Resources
 

Plus de RIPE Meetings

ITU IPv6 Group Report
ITU IPv6 Group ReportITU IPv6 Group Report
ITU IPv6 Group ReportRIPE Meetings
 
RIPE 60 Meeting Technical Report
RIPE 60 Meeting Technical ReportRIPE 60 Meeting Technical Report
RIPE 60 Meeting Technical ReportRIPE Meetings
 
RIPE NCC Tools Update
RIPE NCC Tools UpdateRIPE NCC Tools Update
RIPE NCC Tools UpdateRIPE Meetings
 
RIPE Database Update
RIPE Database UpdateRIPE Database Update
RIPE Database UpdateRIPE Meetings
 
Measurement Network Update
Measurement Network UpdateMeasurement Network Update
Measurement Network UpdateRIPE Meetings
 
RIPE NCC Government / LEA Interactions Update
RIPE NCC Government / LEA Interactions UpdateRIPE NCC Government / LEA Interactions Update
RIPE NCC Government / LEA Interactions UpdateRIPE Meetings
 
Current Policy Topics
Current Policy TopicsCurrent Policy Topics
Current Policy TopicsRIPE Meetings
 
Authorship of RIPE Policy Documents
Authorship of RIPE Policy DocumentsAuthorship of RIPE Policy Documents
Authorship of RIPE Policy DocumentsRIPE Meetings
 
RIPE NCC Internet Governance Update
RIPE NCC Internet Governance UpdateRIPE NCC Internet Governance Update
RIPE NCC Internet Governance UpdateRIPE Meetings
 
Draft RIPE Community Statement on IPv6
Draft RIPE Community Statement on IPv6 Draft RIPE Community Statement on IPv6
Draft RIPE Community Statement on IPv6RIPE Meetings
 
Introduction to IPv4 and IPv6 PI Discussion
Introduction to IPv4 and IPv6 PI Discussion Introduction to IPv4 and IPv6 PI Discussion
Introduction to IPv4 and IPv6 PI DiscussionRIPE Meetings
 
Small but Interesting Things
Small but Interesting ThingsSmall but Interesting Things
Small but Interesting ThingsRIPE Meetings
 
Update on the 2007-01 Policy Implementation
Update on the 2007-01 Policy Implementation Update on the 2007-01 Policy Implementation
Update on the 2007-01 Policy ImplementationRIPE Meetings
 
Update on RIPE NCC IPv6 Activities
Update on RIPE NCC IPv6 ActivitiesUpdate on RIPE NCC IPv6 Activities
Update on RIPE NCC IPv6 ActivitiesRIPE Meetings
 
RIPE 60 Newcomers' Introduction
RIPE 60 Newcomers' IntroductionRIPE 60 Newcomers' Introduction
RIPE 60 Newcomers' IntroductionRIPE Meetings
 
IPv6 Tutorial RIPE 60
IPv6 Tutorial RIPE 60IPv6 Tutorial RIPE 60
IPv6 Tutorial RIPE 60RIPE Meetings
 

Plus de RIPE Meetings (20)

ITU IPv6 Group Report
ITU IPv6 Group ReportITU IPv6 Group Report
ITU IPv6 Group Report
 
NRO Update
NRO UpdateNRO Update
NRO Update
 
RIPE 60 Meeting Technical Report
RIPE 60 Meeting Technical ReportRIPE 60 Meeting Technical Report
RIPE 60 Meeting Technical Report
 
RIPE NCC Tools Update
RIPE NCC Tools UpdateRIPE NCC Tools Update
RIPE NCC Tools Update
 
RIPE Database Update
RIPE Database UpdateRIPE Database Update
RIPE Database Update
 
Measurement Network Update
Measurement Network UpdateMeasurement Network Update
Measurement Network Update
 
RIPE NCC Government / LEA Interactions Update
RIPE NCC Government / LEA Interactions UpdateRIPE NCC Government / LEA Interactions Update
RIPE NCC Government / LEA Interactions Update
 
Current Policy Topics
Current Policy TopicsCurrent Policy Topics
Current Policy Topics
 
Authorship of RIPE Policy Documents
Authorship of RIPE Policy DocumentsAuthorship of RIPE Policy Documents
Authorship of RIPE Policy Documents
 
RIPE NCC Internet Governance Update
RIPE NCC Internet Governance UpdateRIPE NCC Internet Governance Update
RIPE NCC Internet Governance Update
 
Draft RIPE Community Statement on IPv6
Draft RIPE Community Statement on IPv6 Draft RIPE Community Statement on IPv6
Draft RIPE Community Statement on IPv6
 
Introduction to IPv4 and IPv6 PI Discussion
Introduction to IPv4 and IPv6 PI Discussion Introduction to IPv4 and IPv6 PI Discussion
Introduction to IPv4 and IPv6 PI Discussion
 
RIPE Labs
RIPE LabsRIPE Labs
RIPE Labs
 
Small but Interesting Things
Small but Interesting ThingsSmall but Interesting Things
Small but Interesting Things
 
Update on the 2007-01 Policy Implementation
Update on the 2007-01 Policy Implementation Update on the 2007-01 Policy Implementation
Update on the 2007-01 Policy Implementation
 
About the RIPE NCC
About the RIPE NCCAbout the RIPE NCC
About the RIPE NCC
 
NRO Statistics
NRO StatisticsNRO Statistics
NRO Statistics
 
Update on RIPE NCC IPv6 Activities
Update on RIPE NCC IPv6 ActivitiesUpdate on RIPE NCC IPv6 Activities
Update on RIPE NCC IPv6 Activities
 
RIPE 60 Newcomers' Introduction
RIPE 60 Newcomers' IntroductionRIPE 60 Newcomers' Introduction
RIPE 60 Newcomers' Introduction
 
IPv6 Tutorial RIPE 60
IPv6 Tutorial RIPE 60IPv6 Tutorial RIPE 60
IPv6 Tutorial RIPE 60
 

Dernier

Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 

Dernier (20)

Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 

RIPE NCC DNS Update

  • 1. RIPE Network Coordination Centre RIPE NCC DNS Update Anand Buddhdev DNS Services Manager, RIPE NCC Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 1
  • 2. RIPE Network Coordination Centre The Team Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 2
  • 3. RIPE Network Coordination Centre Our Services • K-root • Reverse DNS • Secondary DNS for some ccTLDs • ENUM • AS112 • DNSSEC • RIPE NCC Internal Services Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 3
  • 4. RIPE Network Coordination Centre K-root • DURZ readiness - Server and network limit testing with NLNet Labs - Bandwidth upgrades - NSD 3.2.4 (TCP and EDNS buffer size tuning) • Data collection & Analysis - DITL-style - Priming queries • Public outreach and awareness - Articles on RIPE Labs - Reply-size tester Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 4
  • 5. RIPE Network Coordination Centre Reply-size Tester Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 5
  • 6. RIPE Network Coordination Centre TCP Queries after DURZ Rollout Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 6
  • 7. RIPE Network Coordination Centre K-root Expansion • Co-operation with AfriNIC - Dar es Salaam in 2008 - More instances later this year • Possible expansion into Latin America • A few more local instances in the RIPE NCC region Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 7
  • 8. RIPE Network Coordination Centre DNSSEC (Current) • RIPE NCC zones signed since 2005 • Old signer infrastructure - “Bump in the wire” model - Regular Linux servers - Perl-based key management tools - No support for secure key storage - Manual processes – prone to human error • Frequent key rollovers Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 8
  • 9. RIPE Network Coordination Centre DNSSEC (Future) • New signers from Secure64 • “Bump in the wire” model - Zone transfers into and out of the signers • KSK rollover in progress - Pre-publishing required for the switch - New keys introduced on 23 March 2010 - New keys become active on 14 June 2010 • New DNSSEC Pratices Statement - Review all policies and procedures - Reconsider key lifetimes Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 9
  • 10. RIPE Network Coordination Centre DNS Infrastructure Improvements • New Autonomous System (ASN 197000) • Multi-server architecture for redundancy • Serve in-addr.arpa, ip6.arpa and all of the RIPE NCC’s forward and reverse zones • First site is operational at AMS-IX • A second site is planned for Q4 2010 Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 10
  • 11. RIPE Network Coordination Centre ENUM • Two new delegations since RIPE 59 - Malaysia (February 2010) - Ukraine (April 2010) • Voxbone (8835100) approved but not yet delegated • Signed zones - Poland - Czech Republic - The Netherlands - Lithuania Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 11
  • 12. RIPE Network Coordination Centre Provisioning System • New provisioning software to replace legacy • Support for glue and DS records for ERX address space • Improvements to delegation checker - Fix some IPv6 issues - Allow pre-publishing of DS record Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 12
  • 13. RIPE Network Coordination Centre DNS Lameness Data in Netsense Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 13
  • 14. RIPE Network Coordination Centre Anand Buddhdev RIPE 60, May 2010 http://www.ripe.net 14