Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Discussion of the new DNS generation system DNS Operations SIG APNIC 18 2nd September 2004, Fiji.

Published byJulius Pitts Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Discussion of the new DNS generation system DNS Operations SIG APNIC 18 2nd September 2004, Fiji."— Presentation transcript:

1 1 Discussion of the new DNS generation system DNS Operations SIG APNIC 18 2nd September 2004, Fiji

2 2 Overview Current DNS Generation process The New Process Implementation Status Future Considerations Discussion

3 3 The current process whois Domain object Zone files RIR (ERX) NIR Zone merge Zone files DNS servers

4 4 The current process Zones are a composite of: WHOIS data (domain objects) “zone-lets” received from NIR/RIR Zone generation takes 27minutes (mostly data fetch delays) Zones valid, but ‘dirty’ /24 records in addition to covering /16 Manual zone addition process Not scalable

5 5 The new process whois RIR (ERX) NIR Zone files DNS servers DNS database

6 6 The new process Benefits All inputs pre-validated Zone generation under 1 minute Zone management improvements Lame delegation synergies Future flexibility (SECDNS) Zone consistency ‘Cleaner’ zone files Removal of manual processes

7 7 Implementation state 95% functioning Makes zones, not yet published to NS No Management interface Zone state comparative testing (against current system) Expected deployment date: End of Nov ‘04

8 8 Future considerations DNSSEC support How to maintain delegates DNS KEY? How to re-sign zone? Ongoing coordination with RIR/NIR In-addr.arpa glue Direct update from stakeholders Per delegation record! Dynamic DNS

9 9 Discussion?

Download ppt "1 Discussion of the new DNS generation system DNS Operations SIG APNIC 18 2nd September 2004, Fiji."

Similar presentations

Reverse DNS SIG Summary Report APNIC Annual Member Meeting Bangkok, March 7 2002.

Reverse DNS SIG Summary Report APNIC Annual Member Meeting Bangkok, March
1 [prop-054] Revision of APNIC-103-v001 NIR SIG 27 February 2008 APNIC 25, Taipei George Michaelson.

1 [prop-054] Revision of APNIC-103-v001 NIR SIG 27 February 2008 APNIC 25, Taipei George Michaelson.
Operational Policies for NIRs in the APNIC Region NIR Meeting APNIC14, Kitakyushu, Japan 4 Sept 2002.

Operational Policies for NIRs in the APNIC Region NIR Meeting APNIC14, Kitakyushu, Japan 4 Sept 2002.
1 Deprecation of ip6.int reverse DNS service in APNIC Project update IPv6 technical SIG, APNIC 21 1 March 2006 Sanjaya.

1 Deprecation of ip6.int reverse DNS service in APNIC Project update IPv6 technical SIG, APNIC 21 1 March 2006 Sanjaya.
Early Registration Transfer (ERX) Update George Michaelson DNS SIG APNIC17/APRICOT 2004 Feb 23-27 2004 KL, Malaysia.

Early Registration Transfer (ERX) Update George Michaelson DNS SIG APNIC17/APRICOT 2004 Feb KL, Malaysia.
TWNIC RMS Update 16 th APNIC NIR SIG TWNIC Sheng Wei Kuo Aug, 2003.

TWNIC RMS Update 16 th APNIC NIR SIG TWNIC Sheng Wei Kuo Aug, 2003.
1 Addition of IPv6 servers to in-addr.arpa tree DNS Operations Sig APNIC 18 2 September 2004, Fiji.

1 Addition of IPv6 servers to in-addr.arpa tree DNS Operations Sig APNIC 18 2 September 2004, Fiji.
State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.

State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.
Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.
APNIC Member Services George Kuo. MyAPNIC 2 What is MyAPNIC A secure Member services website Internet resources management, for example: –Whois updates.

APNIC Member Services George Kuo. MyAPNIC 2 What is MyAPNIC A secure Member services website Internet resources management, for example: –Whois updates.
Deploying DNSSEC in Windows Server 2012 David Cates Platform Services Group Microsoft Corporation.

Deploying DNSSEC in Windows Server 2012 David Cates Platform Services Group Microsoft Corporation.
Sweeping lame DNS reverse delegations APNIC16 – DNS Operations SIG Seoul, Korea, 20 August 2003.

Sweeping lame DNS reverse delegations APNIC16 – DNS Operations SIG Seoul, Korea, 20 August 2003.
1 prop-018-v001 Protecting historical records in the APNIC Whois Database Project Update DB SIG APNIC18 2 September 2004 Nadi, Fiji Sanjaya, Project Manager,

1 prop-018-v001 Protecting historical records in the APNIC Whois Database Project Update DB SIG APNIC18 2 September 2004 Nadi, Fiji Sanjaya, Project Manager,
IANA Status Update ARIN XXVI meeting, Atlanta Barbara Roseman October 2010.

IANA Status Update ARIN XXVI meeting, Atlanta Barbara Roseman October 2010.
IANA Update APNIC 31, Hong Kong February 2011. Agenda 2 Addressing DNSSEC Root management Continuity Exercise Business Excellence.

IANA Update APNIC 31, Hong Kong February Agenda 2 Addressing DNSSEC Root management Continuity Exercise Business Excellence.
The new APNIC DNS generation system. Previous System Direct access to backend whois.db files – Constructed radix tree in memory from domain objects –

The new APNIC DNS generation system. Previous System Direct access to backend whois.db files – Constructed radix tree in memory from domain objects –
DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.

DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.
Services Area Report Sanjaya Services Area Director.

Services Area Report Sanjaya Services Area Director.
1 [prop-038] Proposal to amend APNIC Lame DNS reverse delegation policy Policy SIG 7 Sep 2006 APNIC 22, Kaohsiung, Taiwan Terry Manderson.

1 [prop-038] Proposal to amend APNIC Lame DNS reverse delegation policy Policy SIG 7 Sep 2006 APNIC 22, Kaohsiung, Taiwan Terry Manderson.
APNIC Update 1. 2 3 IPv4 Exhaustion Reached “Final /8” on 15 April 2011 103.0.0.0/8 New allocation policy activated Up to /22 per member From 15 April.

APNIC Update IPv4 Exhaustion Reached “Final /8” on 15 April /8 New allocation policy activated Up to /22 per member From 15 April.

Similar presentations

Ads by Google