I Pv 6 experience from ISC perspective

lumpishtrickleΛογισμικό & κατασκευή λογ/κού

30 Ιουν 2012 (πριν από 5 χρόνια και 4 μήνες)

260 εμφανίσεις

IPv6 experience from
ISC perspective
Tomasz Mrugalski <
tomasz(at)isc.org
>
2011-06-08
Gdańsk University of Technology
2
Agenda

What is ISC?

ISC history

BIND

DNS root name servers

DHCP

AFTR

ISC contribution to IPv6
Internet Systems Consortium, Inc. (ISC) is a non-profit
501(c)(3)

public benefit corporation

dedicated to supporting the
infrastructure of the universal connected self-organizing Internet

and the autonomy of its participants—by developing and maintaining
core production quality software, protocols, and operations.
3
Who is ISC?
SIE
Chan
ging
how
Security
Communi
ties
Productively
Colla
bor
ate
Public Benefit
Expandin
g the
Internet through
rough consen
sus,
run
ning code,

Open Protocols

and Open Source
DNSSEC
.com is signed
,
are you ready?
IPv6
Its time h
as
come,
You’re g
oing to
ne
ed it. Ca
ll the
expert
s to help
make it happ
en.
BIND
10
The n
ext big t
hing

in DNS and DHCP
Open Source
Software
Quality Infrastructure

Capabilities
for Everyone
ISC Professional
Services
Support Development
Training Consulting
Audit Design
Call in the experts!
Hosted@
Public Benefit Hosting
for the Common Go
od
ISC Mission

Develop, maintain & support production quality
open source software, such as BIND, DHCP &
AFTR

Enhance the stability of the global DNS through
reliable F-root nameserver operations, support &
training for our software

Further protocol development efforts in the
areas of DNS evolution, specifically DNSSEC and
facilitating the transition to IPv6
ISC History

Paul Vixie (DEC), BIND, 1988

Founders: Paul Vixie, Carl Malamud, and Rick
Adams, 1994

IANA designated ISC as root name server operator
(f.root-servers.net), one of 13 root name servers

Develops commercial quality
open source
software

Provides expertise, support, training

HQ: Redwood City, CA

Global presence: 40+ people on 4 continents
BIND

Originally written by 4 graduate students from
University of California, Berkeley

Paul Vixie started maintaining it (DEC, 1988)

ISC founded in 1994 to develop BIND

Grown considerably since then

IPv6 support enabled in 2000

BIND 9.8 includes DNS64

Included in virtually every Linux and BSD distro

The most common DNS server, world-wide

Market share over 75%
DNS :: root name servers

13 root servers

a.root-servers.net – m.root-servers.net

10 of 13 uses BIND

The other 3 uses NSD that was written by NLnet
Labs to add variance to “gene pool”

No Microsoft software

BIND and NSD are open source

F as a first root server enabled anycast in 2007

Now 9 of 13 root name servers use anycast
F.root-servers.net

IANA assigned ISC as f.root-servers.net operator in 1994

4th Feb 2008: IANA introduces IPv6 in root servers zone.

6 out of 13 servers are IPv6 enabled

F is one of them

Internet Domain Survey, January, 2011

| Survey

Date | Host Count
--------+-------------
Jan 2011| 818,374,269
Jul 2010| 768,913,036
Jan 2010| 732,740,444
Jul 2009| 681,064,561
Jan 2009| 625,226,456

Jul 2008| 570,937,778
Jan 2008| 541,677,360
Jul 2007| 489,774,269
Jan 2007| 433,193,199
Jul 2006| 439,286,364
Jan 2006| 394,991,609
Jul 2005| 353,284,187
Jan 2005| 317,646,084
Jul 2004| 285,139,107
Jan 2004| 233,101,481
...
J
an 1993
Jul 1993
J
an 1
994
Jul 1994
J
an 1
995
Jul 1995
J
an 1
996
Jul 1996
J
an 1
997
Jul 1997
J
an 1
998
Jul 1998
J
an 1
999
Jul 1999
J
an 2
000
Jul 2000
J
an 2
001
Jul 2001
J
an 2
002
Jul 2002
J
an 2
003
J
an 2
004
Jul 2004
J
an 2
005
Jul 2005
J
an 2
006
J
an 2007
Jul 2006
Jul 2007
J
an 2
008
Jul 2008
J
an 2
009
Jul 2009
J
an 2
010
Jul 2010
J
an 2
011
0
100
200
300
400
500
600
700
800
900

Conducted twice a year

Analysing in-addr.arpa zone
DNS services

IPv6 enabled

SNS – secondary name service

DLV – DNSSEC Look-aside Validation

SIE – ISC SIE is a trusted, private framework for information sharing
in the Internet Security field

DNSDB

Passive DNS- a technique invented by Florian Weimer in 2004
to opportunistically reconstruct a partial view of the data
available in the global Domain Name System into a central
database where it can be indexed and queried.

Where did this domain name point to in the past?

What domain names are hosted by a given nameserver?

What domain names point into a given IP network?

What subdomains exist below a certain domain name?
http://dnsdb.isc.org
ISC DHCP

Initial release in March 1999

DHCPv6 support added in 2007

Highly scalable

IPv6 support

Address leases

Address reservations

Prefix delegation

DNS Updates for AAAA/PTR records

DNS Conflict resolution

Relays

Leasequery

Many more

4.3 planned (September 2011)

IPv6 Feature completeness
AFTR

Dual Stack Lite Protocol

IPv4 in IPv6 encapsulation

IPv4 NAT

Tunnel between CPE and AFTR

Large scale networks

Assisting
migration
Hosted@ISC

ISC is also ISP (but not the usual kind)

Public benefit projects

kernel.org

wikimedia

Others...
KDE
FreeBSD
ISC in IETF

59 RFCs

27 active drafts

DNS Updates (RFC2136)

Stateless autoconf in IPv6 (RFC4862)

DNSSEC

BGPSEC

Recent activity in DHCPv6

DHCPv6 Failover

Routing configuration

dnsop WG chair

NOC participation
Questions?
Thank you
isc.org