Presentation is loading. Please wait.

Presentation is loading. Please wait.

June 2007APTLD Meeting/Dubai ANYCAST Alireza Saleh.ir ccTLD

Published byLucy Hart Modified over 9 years ago

Similar presentations

Presentation on theme: "June 2007APTLD Meeting/Dubai ANYCAST Alireza Saleh.ir ccTLD"— Presentation transcript:

1 June 2007APTLD Meeting/Dubai ANYCAST Alireza Saleh.ir ccTLD Saleh@nic.ir

2 June 2007APTLD Meeting/Dubai What is ( isn’t ) anycast ?  The term ANYCAST.  Unicast: 1--->One mapping  Multicast: 1--->Some mapping  Broadcast: 1--->All mapping  Anycast : 1--->Nearest mapping It is not a protocol, it is not related to IDN.IDN :) There is no need for any extra capabilities in the normal infrastructure of the DNS. It can be used in conjunction with existing infrastructure. It is just a method of configuration for large-scale implementation mostly for DNS.

3 June 2007APTLD Meeting/Dubai How Does Anycast work? Multiple instances of a service sharing one IP address. The GLOBAL or LOCAL routing decision directs the packet to the nearest instance of a service DNS CLIENT Path1: AS1 AS2 Asx AS3 ASx Path2: AS10 Asx AS12 AS5 ASx DNS CLIENT

4 June 2007APTLD Meeting/Dubai Implementation of ANYCAST  Local Cluster : –Virtual interface attached to the loop-back device –Virtual host handles the requests toward the backend servers using Destination NAT –Virtual host handles the requests to the backend server using tunneling ( GRE ) –IGP routing protocols do the load-sharing ( if the servers are in different networks )

5 June 2007APTLD Meeting/Dubai Implementations of ANYCAST Global Cluster –Using BGP protocol to advertise Anycasted subnet. –The Anycasted subnet shares the same AS number. –Considering well distribution of the servers. –Continues monitoring and changing the costs metrics to achieve the best performance.

6 June 2007APTLD Meeting/Dubai.ir Experience and stats Case 1 : Prepending Anycasted ASN, 2 times for the local instance : –Number of queries received by the instance outside the country = 22100/hour –Number of queries received by the instance in Iran = 446/hour. Case 2: Prepending Anycasted ASN 1 time for the local instance: –Instance outside the country = 18034/hour –Instance inside the country = 4120/hour The number of queries depends on many factors but regular monitoring will guide to achieve the best performance

7 June 2007APTLD Meeting/Dubai RFC Considerations The host should respond to the queries only on the shared-unicast(Anycast) interface. Limit responses on that interfaces to zones for which the host is authoritative. To minimize to man-in-the-middle attack, zone files should be delivered to the administrative interface. Secured file transfer methods and strong authentication should be used for all transfers. Use synchronized clock for the hosts participating in the mesh.

8 June 2007APTLD Meeting/Dubai Why Anycast Sinking DOS attacks. Reducing the latency for responding the DNS queries. Saving the costs of Internet usage for each host.

9 June 2007APTLD Meeting/Dubai Problems Content synchronization : –Axfr, SSH file transfer,... –Perform content synchronization checks. Host or Cluster Failure : –Withdraw the route ? –Do Nothing ? ( RFC Recommends ) The DNS failover method will take care the reachability of the data for the client.

10 June 2007APTLD Meeting/Dubai Split-Destination May occur due to per-packet or round-robin load sharing but : –DNS mostly uses UDP –DNS servers diversity will ensure servers have significantly different metrics. –There are many possible and more popular load sharing mechanisms. In case of TCP, all servers for a specific zone shouldn’t be part of an Anycast mesh. AND ALSO......

11 June 2007APTLD Meeting/Dubai Split-Destination To guard against multiple meshes affected by per-packet load sharing, organizations should provide at least one authoritative servers which is not a participant in any shared unicast (Anycast) mesh ! –This combining with round-robin algorithm of DNS will significantly reduce the effectiveness of Anycast.

12 June 2007APTLD Meeting/Dubai Suggestion 1- Having weighted NS records in the zone to redirect more traffic to the Anycasted hosts. 2- Announcing a subnet by IANA in term of Anycast implementation for DNS. –This subnet should not be included for round-robin or per-packet load sharing. 3- ?

Download ppt "June 2007APTLD Meeting/Dubai ANYCAST Alireza Saleh.ir ccTLD"

Similar presentations

Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.

Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.
Project by: Palak Baid (pb2358) Gaurav Pandey (gip2103) Guided by: Jong Yul Kim.

Project by: Palak Baid (pb2358) Gaurav Pandey (gip2103) Guided by: Jong Yul Kim.
Copyright © 2014 EMC Corporation. All Rights Reserved. Basic Network Configuration for File Upon completion of this module, you should be able to: Configure.

Copyright © 2014 EMC Corporation. All Rights Reserved. Basic Network Configuration for File Upon completion of this module, you should be able to: Configure.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Chapter 8 Managing Windows Server 2008 Network Services

Chapter 8 Managing Windows Server 2008 Network Services
CIM 2465 IP Addressing Scheme1 IP Addressing Scheme (Topic 4) Textbook: Networking Basics, CCNA 1 Companion Guide, Cisco Press Cisco Networking Academy.

CIM 2465 IP Addressing Scheme1 IP Addressing Scheme (Topic 4) Textbook: Networking Basics, CCNA 1 Companion Guide, Cisco Press Cisco Networking Academy.
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.

1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
1 o Two issues in practice – Scale – Administrative autonomy o Autonomous system (AS) or region o Intra autonomous system routing protocol o Gateway routers.

1 o Two issues in practice – Scale – Administrative autonomy o Autonomous system (AS) or region o Intra autonomous system routing protocol o Gateway routers.
Understanding Internet Protocol

Understanding Internet Protocol
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
Data Communications and Computer Networks Chapter 4 CS 3830 Lecture 22 Omar Meqdadi Department of Computer Science and Software Engineering University.

Data Communications and Computer Networks Chapter 4 CS 3830 Lecture 22 Omar Meqdadi Department of Computer Science and Software Engineering University.
Deployment Considerations for Dual-stack Lite draft-lee-softwire-dslite-deployment-00 Yiu Lee, Roberta Magione, Carl Williams, Christian Jacquenet Mohamed.

Deployment Considerations for Dual-stack Lite draft-lee-softwire-dslite-deployment-00 Yiu Lee, Roberta Magione, Carl Williams, Christian Jacquenet Mohamed.
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.

11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.

Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.
1 Internet Networking Spring 2004 Tutorial 13 LSNAT - Load Sharing NAT (RFC 2391)

1 Internet Networking Spring 2004 Tutorial 13 LSNAT - Load Sharing NAT (RFC 2391)
Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #12 LSNAT - Load Sharing NAT (RFC 2391)

1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #12 LSNAT - Load Sharing NAT (RFC 2391)

Similar presentations

Ads by Google