SlideShare a Scribd company logo

DNS Measurement Activity on ITB 2010

Affan Basalamah, profile picture
Affan Basalamah

ITB is participating in several Internet measurement projects to monitor DNS activity and measure the growth of the Internet from a global perspective. This includes DITL 2010, run by OARC, which collects DNS data to analyze trends in IPv4/IPv6 growth and secure DNS adoption. ITB has also installed a Gulliver measurement box to monitor DNS reachability and response times to root servers from its location. Further analysis of the data collected can provide insights into DNS performance and uncover any anomalies.

Technology
1 of 24
Downloaded 19 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
DNS Measurement Activity on ITB 2010 Affan Basalamah
Outline • Overview • DITL 2010 by OARC • Gulliver Project
Overview • ITB is participating in Internet measurement activity, especially DNS • Participation in global Internet community for international exposure
DNS @ ITB • 3 Production Servers – ISC BIND 9.6.2 – DNSSEC not enabled – Anycast distribution • 1 Experimental Server – NLnet Unbound 1.4.4 – DNSSEC (validation) enabled – ISC DLV (DNSSEC Lookaside Validation)
Monitoring on ITB side • Using Munin plugins for Bind & Unbound – http://munin-monitoring.org/
Sample Graphics & Data
DITL 2010
DITL 2010 • A Day In The Life of the Internet – https://www.dns-oarc.net • ITB is participating in DITL 2010 in April • Conducted by Dian Dwi Nugraha (DNS Admin)
What it is? • A large-scale data collection project undertaken by CAIDA and OARC (Operations, Analysis, and Research Center) every year since 2006 • Participants : – DNS Root Servers – TLD Servers – AS112 nodes – “client-side” iterative/caching resolvers • Tool : dnscap/tcpdump
Objectives • Measure Internet growth – IPv4 and IPv6 growth – Secure/insecure DNS growth • Uncover possible DNS anomalies in process
Data taken • IPv4/IPv6 source and destination query • qps (queries per second) • secure/insecure (DNSSEC) • RRsets (A,AAAA,MX,NS,...)
Toolkit • Follow procedures in https://www.dns-oarc.net/ditl/2010 • Toolkit to send data to OARC: https://www.dns-oarc.net/files/ditl-2010/ditl- tools-20100406195635.tar.gz
Raw Data Snapshot • http://ditl.dns-oarc.net/ditl_20100413_raw/coverage.png
Status • Collected data in http://ditl.dns-oarc.net/ • Some data collected from ITB: http://ditl.dns-oarc.net/ditl_20100413_raw/provider- reports/itb-ac-id-files.html • Deeper measurement data can be obtained to OARC
GULLIVER PROJECT
What is it? • Active Measurement Framework • Probes DNS reachability from worldwide locations – RTT, Query Timeout – Node ID (hostname.bind or server.id) • 30 Probe Locations as of Feb. 2010 – Including South/East Asia and Africa countries • Targets – Root, ccTLD, in‐addr.arpa DNS servers • http://gulliver.wide.ad.jp/
Gulliver Project in ITB • Installed by Dikshie in 31st May • The measurement box: http://www.seil.jp/seilseries/seil/seilplus.php
Gulliver Box @ ITB
Gulliver Box @ ITB
Measurement Results • RTT reachability of root DNS server from ITB as seen in http://gulliver.wide.ad.jp/
Status • ITB box has send data to Gulliver • ITB hasn’t received Member Page username/password from DR. Yuki Sekiya
SUMMARY
Summary • ITB is ready to participate in Internet measurement activity • Participation in global Internet community for international exposure • Need to conduct thorough analysis from data
Thanks!

More Related Content

PDF
Bhutan Cybersecurity Week 2021: APNIC vulnerability reporting program
APNIC
 
PDF
conf2015_TLaGatta_CHarris_Splunk_BusinessAnalytics_DeliveringHighLevelAnalytics
Tom LaGatta
 
PDF
So You Want a Threat Intelligence Function (But Were Afraid to Ask)
Lancope, Inc.
 
PPTX
Save Your Network – Protecting Manufacturing Data from Deadly Breaches
Lancope, Inc.
 
PPTX
What's New in StealthWatch v6.5
Lancope, Inc.
 
PPTX
Detecting Threats: A Look at the Verizon DBIR and StealthWatch
Lancope, Inc.
 
PPTX
NTXISSACSC2 - Advanced Persistent Threat (APT) Life Cycle Management Monty Mc...
North Texas Chapter of the ISSA
 
PDF
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
Savvius, Inc
 
Bhutan Cybersecurity Week 2021: APNIC vulnerability reporting program
APNIC
 
conf2015_TLaGatta_CHarris_Splunk_BusinessAnalytics_DeliveringHighLevelAnalytics
Tom LaGatta
 
So You Want a Threat Intelligence Function (But Were Afraid to Ask)
Lancope, Inc.
 
Save Your Network – Protecting Manufacturing Data from Deadly Breaches
Lancope, Inc.
 
What's New in StealthWatch v6.5
Lancope, Inc.
 
Detecting Threats: A Look at the Verizon DBIR and StealthWatch
Lancope, Inc.
 
NTXISSACSC2 - Advanced Persistent Threat (APT) Life Cycle Management Monty Mc...
North Texas Chapter of the ISSA
 
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
Savvius, Inc
 

What's hot (20)

PDF
Offensive cyber security engineer updated
InfosecTrain
 
PPTX
Combating Insider Threats – Protecting Your Agency from the Inside Out
Lancope, Inc.
 
PDF
Using Your Network as a Sensor for Enhanced Visibility and Security
Lancope, Inc.
 
PPTX
Insider threats webinar 01.28.15
Lancope, Inc.
 
PPTX
Enterprise Forensics 101
Mona Arkhipova
 
PPTX
Extending Network Visibility: Down to the Endpoint
Lancope, Inc.
 
PDF
Tools Of The Hardware Hacking Trade Final
Priyanka Aash
 
PDF
No Easy Breach DerbyCon 2016
Matthew Dunwoody
 
PDF
Cisco CSIRT Case Study: Forensic Investigations with NetFlow
Lancope, Inc.
 
PDF
(Sacon) Sumanth Naropanth - IoT network & ecosystem security attacks & secur...
Priyanka Aash
 
PDF
Security precognition chaos engineering in incident response
Priyanka Aash
 
PDF
Defense in Depth: Implementing a Layered Privileged Password Security Strategy
BeyondTrust
 
PDF
Breaking and entering how and why dhs conducts penetration tests
Priyanka Aash
 
PPT
Open Science Grid security-atlas-t2 Bob Cowles
Information Security Awareness Group
 
PDF
Network Forensics - Your Only Choice at 10G
Savvius, Inc
 
PDF
Open Security Operations Center - OpenSOC
Sheetal Dolas
 
PDF
Mission Possible: Detect and Prevent CyberAttacks with Splunk and Palo Alto N...
Erin Sweeney
 
PPT
DHS ICS Security Presentation
guest85a34f
 
PPTX
Man in the Cloud Attacks
Imperva
 
PDF
Ccna sec 01
EduclentMegasoftel
 
Offensive cyber security engineer updated
InfosecTrain
 
Combating Insider Threats – Protecting Your Agency from the Inside Out
Lancope, Inc.
 
Using Your Network as a Sensor for Enhanced Visibility and Security
Lancope, Inc.
 
Insider threats webinar 01.28.15
Lancope, Inc.
 
Enterprise Forensics 101
Mona Arkhipova
 
Extending Network Visibility: Down to the Endpoint
Lancope, Inc.
 
Tools Of The Hardware Hacking Trade Final
Priyanka Aash
 
No Easy Breach DerbyCon 2016
Matthew Dunwoody
 
Cisco CSIRT Case Study: Forensic Investigations with NetFlow
Lancope, Inc.
 
(Sacon) Sumanth Naropanth - IoT network & ecosystem security attacks & secur...
Priyanka Aash
 
Security precognition chaos engineering in incident response
Priyanka Aash
 
Defense in Depth: Implementing a Layered Privileged Password Security Strategy
BeyondTrust
 
Breaking and entering how and why dhs conducts penetration tests
Priyanka Aash
 
Open Science Grid security-atlas-t2 Bob Cowles
Information Security Awareness Group
 
Network Forensics - Your Only Choice at 10G
Savvius, Inc
 
Open Security Operations Center - OpenSOC
Sheetal Dolas
 
Mission Possible: Detect and Prevent CyberAttacks with Splunk and Palo Alto N...
Erin Sweeney
 
DHS ICS Security Presentation
guest85a34f
 
Man in the Cloud Attacks
Imperva
 
Ccna sec 01
EduclentMegasoftel
 
Ad

Viewers also liked (12)

PDF
IPv6 Development in ITB 2013
Affan Basalamah
 
PPTX
Indonesia Ren Oct 2009
Affan Basalamah
 
PPT
Dukungan Infrastruktur IT Untuk E Learning Corporate 2009
Affan Basalamah
 
PDF
What's next for Opisboy - IPv6, FreeBSD and Software Defined Network
Affan Basalamah
 
PDF
10 Tahun IPv6 di ITB
Affan Basalamah
 
PDF
Indonesia IPv6 Update - APAN Hanoi 2010
Affan Basalamah
 
PDF
World IPv6 Day in indonesia
Affan Basalamah
 
PDF
Update implementasi IPv6 di ITB 2010
Affan Basalamah
 
PDF
Next Generation Campus Network - ID-NOG 2014
Affan Basalamah
 
PDF
23 - IDNOG03 - Affan Basalamah (ITB) Achmad Basuki (UNIBRAW) - Overview of In...
Indonesia Network Operators Group
 
PDF
12 - IDNOG03 - Hammam Riza (BPPT) Welcoming Speech
Indonesia Network Operators Group
 
PDF
1 - SDNRG ITB, 10 minutes intro by Affan Basalamah
SDNRG ITB
 
IPv6 Development in ITB 2013
Affan Basalamah
 
Indonesia Ren Oct 2009
Affan Basalamah
 
Dukungan Infrastruktur IT Untuk E Learning Corporate 2009
Affan Basalamah
 
What's next for Opisboy - IPv6, FreeBSD and Software Defined Network
Affan Basalamah
 
10 Tahun IPv6 di ITB
Affan Basalamah
 
Indonesia IPv6 Update - APAN Hanoi 2010
Affan Basalamah
 
World IPv6 Day in indonesia
Affan Basalamah
 
Update implementasi IPv6 di ITB 2010
Affan Basalamah
 
Next Generation Campus Network - ID-NOG 2014
Affan Basalamah
 
23 - IDNOG03 - Affan Basalamah (ITB) Achmad Basuki (UNIBRAW) - Overview of In...
Indonesia Network Operators Group
 
12 - IDNOG03 - Hammam Riza (BPPT) Welcoming Speech
Indonesia Network Operators Group
 
1 - SDNRG ITB, 10 minutes intro by Affan Basalamah
SDNRG ITB
 
Ad

Similar to DNS Measurement Activity on ITB 2010 (20)

PPTX
Partner webinar featuring CatDV
FileCatalyst
 
PDF
Ben Evans SPEDDEXES 2014
aceas13tern
 
PDF
IPv6 Deployment: Why and Why not? - HostingCon 2013
APNIC
 
PDF
12.00 - Dr. Tim Chown - University of Southampton
IPv6 Summit 2010
 
PPTX
Efficient & effective data management for research projects : ILRI's Data Ma...
CIARD Movement
 
PPTX
ION Bangladesh - IETF Update
Deploy360 Programme (Internet Society)
 
PDF
SCAPE - Scalable Preservation Environments
SCAPE Project
 
PPTX
IETF Update: Making the Internet Work Better
Deploy360 Programme (Internet Society)
 
PDF
Rakuten’s Journey with Splunk - Evolution of Splunk as a Service
Rakuten Group, Inc.
 
PPTX
ION Malta - IETF Update
Deploy360 Programme (Internet Society)
 
PDF
GEO Analytics Canada Overview April 2020
GEO Analytics Canada
 
PDF
Tech 2 Tech IPv6 presentation
Jisc
 
PDF
StarlingX - A Platform for the Distributed Edge | Ildiko Vancsa
Vietnam Open Infrastructure User Group
 
PDF
Largest Active Measurements Network: RIPE Atlas
RIPE NCC
 
PPTX
OpenStack Marketing Meeting Oct 2
OpenStack Foundation
 
PDF
ION Islamabad - What's Happening at the IETF?
Deploy360 Programme (Internet Society)
 
PDF
IBM Internet-of-Things architecture and capabilities
IBM_Info_Management
 
PPT
Big data in the energy sector
FileCatalyst
 
PDF
JPNIC Update
APNIC
 
PDF
Outsourcing SDWorx Mainframe environment - Lily Craps
NRB
 
Partner webinar featuring CatDV
FileCatalyst
 
Ben Evans SPEDDEXES 2014
aceas13tern
 
IPv6 Deployment: Why and Why not? - HostingCon 2013
APNIC
 
12.00 - Dr. Tim Chown - University of Southampton
IPv6 Summit 2010
 
Efficient & effective data management for research projects : ILRI's Data Ma...
CIARD Movement
 
ION Bangladesh - IETF Update
Deploy360 Programme (Internet Society)
 
SCAPE - Scalable Preservation Environments
SCAPE Project
 
IETF Update: Making the Internet Work Better
Deploy360 Programme (Internet Society)
 
Rakuten’s Journey with Splunk - Evolution of Splunk as a Service
Rakuten Group, Inc.
 
ION Malta - IETF Update
Deploy360 Programme (Internet Society)
 
GEO Analytics Canada Overview April 2020
GEO Analytics Canada
 
Tech 2 Tech IPv6 presentation
Jisc
 
StarlingX - A Platform for the Distributed Edge | Ildiko Vancsa
Vietnam Open Infrastructure User Group
 
Largest Active Measurements Network: RIPE Atlas
RIPE NCC
 
OpenStack Marketing Meeting Oct 2
OpenStack Foundation
 
ION Islamabad - What's Happening at the IETF?
Deploy360 Programme (Internet Society)
 
IBM Internet-of-Things architecture and capabilities
IBM_Info_Management
 
Big data in the energy sector
FileCatalyst
 
JPNIC Update
APNIC
 
Outsourcing SDWorx Mainframe environment - Lily Craps
NRB
 

Recently uploaded (20)

PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Teaching material agriculture food technology
LiaRayya
 
Approach and Philosophy of On baking technology
30anthuong17
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
KodekX | Application Modernization Development
KodekX
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 

DNS Measurement Activity on ITB 2010

  • 1. DNS Measurement Activity on ITB 2010 Affan Basalamah
  • 2. Outline • Overview • DITL 2010 by OARC • Gulliver Project
  • 3. Overview • ITB is participating in Internet measurement activity, especially DNS • Participation in global Internet community for international exposure
  • 4. DNS @ ITB • 3 Production Servers – ISC BIND 9.6.2 – DNSSEC not enabled – Anycast distribution • 1 Experimental Server – NLnet Unbound 1.4.4 – DNSSEC (validation) enabled – ISC DLV (DNSSEC Lookaside Validation)
  • 5. Monitoring on ITB side • Using Munin plugins for Bind & Unbound – http://munin-monitoring.org/
  • 8. DITL 2010 • A Day In The Life of the Internet – https://www.dns-oarc.net • ITB is participating in DITL 2010 in April • Conducted by Dian Dwi Nugraha (DNS Admin)
  • 9. What it is? • A large-scale data collection project undertaken by CAIDA and OARC (Operations, Analysis, and Research Center) every year since 2006 • Participants : – DNS Root Servers – TLD Servers – AS112 nodes – “client-side” iterative/caching resolvers • Tool : dnscap/tcpdump
  • 10. Objectives • Measure Internet growth – IPv4 and IPv6 growth – Secure/insecure DNS growth • Uncover possible DNS anomalies in process
  • 11. Data taken • IPv4/IPv6 source and destination query • qps (queries per second) • secure/insecure (DNSSEC) • RRsets (A,AAAA,MX,NS,...)
  • 12. Toolkit • Follow procedures in https://www.dns-oarc.net/ditl/2010 • Toolkit to send data to OARC: https://www.dns-oarc.net/files/ditl-2010/ditl- tools-20100406195635.tar.gz
  • 13. Raw Data Snapshot • http://ditl.dns-oarc.net/ditl_20100413_raw/coverage.png
  • 14. Status • Collected data in http://ditl.dns-oarc.net/ • Some data collected from ITB: http://ditl.dns-oarc.net/ditl_20100413_raw/provider- reports/itb-ac-id-files.html • Deeper measurement data can be obtained to OARC
  • 16. What is it? • Active Measurement Framework • Probes DNS reachability from worldwide locations – RTT, Query Timeout – Node ID (hostname.bind or server.id) • 30 Probe Locations as of Feb. 2010 – Including South/East Asia and Africa countries • Targets – Root, ccTLD, in‐addr.arpa DNS servers • http://gulliver.wide.ad.jp/
  • 17. Gulliver Project in ITB • Installed by Dikshie in 31st May • The measurement box: http://www.seil.jp/seilseries/seil/seilplus.php
  • 20. Measurement Results • RTT reachability of root DNS server from ITB as seen in http://gulliver.wide.ad.jp/
  • 21. Status • ITB box has send data to Gulliver • ITB hasn’t received Member Page username/password from DR. Yuki Sekiya
  • 23. Summary • ITB is ready to participate in Internet measurement activity • Participation in global Internet community for international exposure • Need to conduct thorough analysis from data