Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 FRED – open source registry system CZ.NIC, z.s.p.o. Jaromír Talíř 8. 4. 2008

Published byBeverly Lester Modified over 8 years ago

Similar presentations

Presentation on theme: "1 FRED – open source registry system CZ.NIC, z.s.p.o. Jaromír Talíř 8. 4. 2008"— Presentation transcript:

1 1 FRED – open source registry system CZ.NIC, z.s.p.o. Jaromír Talíř 8. 4. 2008 http://www.nic.cz/ http://fred.nic.cz

2 2 Agenda ● History and overview ● Primary features (registration process and zone generation) ● Low level features (notification, technical checks, invoicing) ● Configuration possibilities ● Registry startup demonstration

3 3 History ● 2003 – 2007 – outsourcing model ● 2005 – decision was made to bring system under our control ● 2006 – 2007 – software development ● 2007 – released as open source ● 1. october 2007 – migration from old to new system ● Now – system is 6 month in production environment of.cz ● Future – tweaking limits for registrars, more security for holders, DNSSEC, maybe IDN

4 4 FRED overview ● Free Registry for ENUM and Domains ● Registry-Registrar model ● Evidence of domains, contacts and nameserver sets ● Zone file generation ● Email notification of contacts ● Prepaid invoicing system ● Technical checks of nameservers

5 5 System architecture

6 6 Registry – Registrar model ● No direct connection to domain holders – Except registry event notification, complains... – Planned: blocking, data unification ● Signed agreement with each registrar – Registration rules (http://dsdng.nic.cz)http://dsdng.nic.cz – No other restrictions ● Responsibility for checking identity of holders ● System registrar for own registry manipulation

7 7 EPP protocol ● The only way to send request into registry ● Slightly modified standard – Nameserver set is completly different – Few changes in contact detail ● Referential implementation of client in python – Command line and GUI version ● Notification of registrars – EPP messaging mechanism

8 8 Public interface ● Two forms – web based, classical unix whois ● Common features – Lookup into all objects (domain, contact, nameserver set, registrars) – Privacy concerns (disclose flags about details of contact) ● Classical unix whois – Reverse search (domains by holder...) ● Web whois – Hypertext links between associated objects – CAPTCHA – Online list of registrars – Forms to apply for some service from registry

9 9 Administration interface ● Web based and command line versions ● Mainly for making queries into database ● Few update features: – Registrar creation – Processing of public requests created through web interface ● High priority in current development ● Command line tools support regular processes – Invoicing, banking – Regular unregistration, notification – Zone generation

10 10 Objects in registry ● Contact – Name and contact information, some identification, disclose flags for whois, ● Nameserver set – List of nameserver hosts – Each host maintains list of IP adresses (IPv4 or Ipv6) – Administrative contacts ● Domain – Expiration date – Domain holder – Nameserver set

11 11 Registrars and objects ● Same rules for domains, contacts and nameserver sets ● Creating registrar, updating registrar ● Designated registrar – only registrar to make changes ● Transfer supported by shared secret (authinfo) – Gain authinfo – Give it to now registrar – New registrar send EPP transfer command authorized with authinfo ● Holder can ask registry for sending auth info ● Simplification by cross authorization (holder instead of domain)

12 12 Expiration and renew ● Expired domains are held for 30 days in zone ● Next 15 days domain still stays in register ● After that domain is unregistred and made available ● Renew is allows maximaly 10 year registration ● Contacts and nssets are unregistred after 6 month of not using it ● Holders are notified about these changes ● All these numbers here are configurable

13 13 Zone configuration ● Multiple zones in one registry ● Contacts and Nameserver sets are shared ● Registrar access to registry is allowed per zone ● Zones can overlap (.org.cz,.cz) ● Zone data includes zonefile generation headers (SOA,...)

14 14 Zonefile generation ● Rules when domain is generated into zone: – Must have nameserver set – Current date is before expiration date + 30 days – There are no requests to hold domain out of zone ● Process is inhibited by command line tools ● Change tests to protect against bugs ● Hidden master is restarted with generated zone file ● Secondary servers download new version

15 15 Object states ● Domains, contacts and nameserver sets have list of states – For example: expirationWarning, expired, outzone... – Automaticaly set after structural chages or time conditions – Manually requested (serverTransferProhibited, serverOutzoneManual..) ● They drive other modules – Zone generation – Contact notification – EPP commands implementation – Unregistration process ● Parameters can be configured

16 16 Email notification ● Notification of EPP actions – Optional on presence of notifyEmail in contact ● Notification about state changes of object – Sent to email in contact on expiration, removal from zone and unregistration – Before unregistration we sent them letter with warning ● Template system for email content ● Email archivation ● Undelivered emails handling

17 17 Technical checks ● Checks of nameservers in registry – Nameservers are reachable – They run DNS – They contain domains delegated to them – Heterogenous systems ● They are only informative! ● Periodical or manually requested – Results of periodical tests sent to email of nameserver admins – Results of requested tests sent to registrar over EPP messaging

18 18 Invoicing ● Prepaid credit model ● Periodical scan for payments on our accounts ● Identification of registrar from payment data ● Advance invoice is generated with credit ● Each create and renew domain operation lower credit – According to price list, prices are per zone – If there is no enough credit, operation fail – If price list is empty no actions are taken ● Once a month we issue accounting invoice – List of operations in last month

19 19 Customization overview ● Manual at this time ● Zone configuration – Name, SOA headers, periods – Admin command line tools to generate templates ● Email templates – ClearSilver templating system ● PDF documents – ReportLab templating system ● Object state change parameters ● Configuration options of application

Download ppt "1 FRED – open source registry system CZ.NIC, z.s.p.o. Jaromír Talíř 8. 4. 2008"

Similar presentations

RP Designs Semi-Custom e-Commerce Package. Overview RP Designs semi- custom e-commerce package is a complete website solution. Visitors can browse a catalog.

RP Designs Semi-Custom e-Commerce Package. Overview RP Designs semi- custom e-commerce package is a complete website solution. Visitors can browse a catalog.
Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis

Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis
Registrar experiences with WHOIS Bruce Tonkin Melbourne IT Ltd.

Registrar experiences with WHOIS Bruce Tonkin Melbourne IT Ltd.
Albany ePAY online overview

Albany ePAY online overview
Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.
.| The Trusted Channel Centric Marketplace Domain Name Transfers & Domain Delegation.

.| The Trusted Channel Centric Marketplace Domain Name Transfers & Domain Delegation.
CONDO MANAGER The Leader in Association Accounting and Management Software Mailing Address: P.O. Box 26844 Charlotte, North Carolina 28221 Web Site www.condomanager.com.

CONDO MANAGER The Leader in Association Accounting and Management Software Mailing Address: P.O. Box Charlotte, North Carolina Web Site
2.1 Installing the DNS Server Role Overview of the Domain Name System Role Overview of the DNS Namespace DNS Improvements for Windows Server 2008 Considerations.

2.1 Installing the DNS Server Role Overview of the Domain Name System Role Overview of the DNS Namespace DNS Improvements for Windows Server 2008 Considerations.
Compliance on Demand. Introduction ComplianceKeeper is a web-based Licensing and Learning Management System (LLMS), that allows users to manage all Company,

Compliance on Demand. Introduction ComplianceKeeper is a web-based Licensing and Learning Management System (LLMS), that allows users to manage all Company,
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Accounting & Billing System for the WEB Centre GDP 19 Donna Crawford (dc899) Chris O’Neill (ckjon101) Amit Shah (ams401) David Newman (drn101) Supervisor.

Accounting & Billing System for the WEB Centre GDP 19 Donna Crawford (dc899) Chris O’Neill (ckjon101) Amit Shah (ams401) David Newman (drn101) Supervisor.
Hands-On Microsoft Windows Server 2003 Networking Chapter 6 Domain Name System.

Hands-On Microsoft Windows Server 2003 Networking Chapter 6 Domain Name System.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.

Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.
8/9/2015 1:47 AM SurveyCentralOverview.ppt CSC ©Copyright 2012 Online Survey Application: CSC Survey Central System Overview November 26, 2012 Supported.

8/9/2015 1:47 AM SurveyCentralOverview.ppt CSC ©Copyright 2012 Online Survey Application: CSC Survey Central System Overview November 26, 2012 Supported.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
Overview What are the provisioning methods used in the Australian registry system? How are these provisioning systems secured?

Overview What are the provisioning methods used in the Australian registry system? How are these provisioning systems secured?
E.halFILE 2.2 New Application Features Session II.

E.halFILE 2.2 New Application Features Session II.
1 iBizBuilder from ClearPath Welcome to the ClearPath Networks iBizaBuilder online Tool! This innovative tool will be an online source for automating your.

1 iBizBuilder from ClearPath Welcome to the ClearPath Networks iBizaBuilder online Tool! This innovative tool will be an online source for automating your.

Similar presentations

Ads by Google