Draft-ietf-dnsop-ohta-shared-root-server-test-00

Is there a way using DNS to know if a given nameserver is a root server? Looking at the dig output of dig NS a.root-servers.net, we can see that its SOA points to itself.

; <<>> DiG 9.11.2 <<>> NS a.root-servers.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19635
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;a.root-servers.net.        IN  NS

;; AUTHORITY SECTION:
root-servers.net.   9684    IN  SOA a.root-servers.net. nstld.verisign-grs.com. 2019102500 14400 7200 1209600 3600000

;; Query time: 18 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Mon Nov 11 16:03:39 EST 2019
;; MSG SIZE  rcvd: 105

For the B root server though, we can see that the SOA still points to a.root-servers.net

;; AUTHORITY SECTION:
root-servers.net.   86399   IN  SOA a.root-servers.net. nstld.verisign-grs.com. 2019102500 14400 7200 1209600 3600000

The same is also true of 8.8.8.8, which is not a root-server.

;; AUTHORITY SECTION:
.           86395   IN  SOA a.root-servers.net. nstld.verisign-grs.com. 2019111101 1800 900 604800 86400

Is there some way within the record we can know this?

INTERNET DRAFT                    M. Ohta, Tokyo Institute of Technology
draft-ietf-dnsop-ohta-shared-root-server-test-00.txt
                                                               July 2000

     Testing Root Name Servers with Inter Domain Anycast Addresses

Status of this Memo

   This document is an Internet-Draft and is in full conformance with
   all provisions of Section 10 of RFC2026.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF), its areas, and its working groups.  Note that
   other groups may also distribute working documents as Internet-
   Drafts.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet- Drafts as reference
   material or to cite them other than as "work in progress."

   The list of current Internet-Drafts can be accessed at
   http://www.ietf.org/ietf/1id-abstracts.txt

   The list of Internet-Draft Shadow Directories can be accessed at
   http://www.ietf.org/shadow.html.

Abstract

   This memo describes an environment to test a proposal to have root
   name servers with shared unicast addresses described in <draft-ietf-
   dnsop-ohta-shared-root-server-00txt>.



   In [SRS], there is a proposal to have multiple name servers sharing
   unicast (anycast) addresses. The proposal is designed to work in
   intra domain environment with route registries by using multiple ASes
   sharing AS numbers.

   This memo describes an environment to test the proposal.

   While the proposal is on root domain using multiple unicast (anycast)
   addresses and (anycast) AS numbers, the experiment is on a real but
   non-root domain using only one unicast address and one AS number.

2. IP addresses






INTERNET DRAFT            Testing Name Servers                 July 2000


   A block of IP addresses:

      192.83.230/24

which is expected to be globally routable, is reserved for the test.

   The DNS servers share an IP address of:

      192.83.230.1

3. AS number

   AS 4128 is used for the test.



   The initial domains to be served by the DNS servers are:

      real-internet.org.
      psg.com.

   There may be additional domains tested.



   The initial participants of the test and globally unique unicast
   addresses of their servers are as follows:

      ???.???.???.???  Francisco Arias <farias@nic.mx>
      ???.???.???.???  Frederico A. C. Neves <fneves@ansp.br>
      131.112.32.131   Masataka Ohta <mohta@real-internet.org>
      ???.???.???.???  Randy Bush <randy@psg.com>
      ???.???.???.???  Stacy Smith <stacy@broadwing.net>

6. Mailing List

   If you are interested in joining (or just watching) the test, send a
   mail containing a single line of:

      subscribe aroot

   to

      majordomo@ops.ietf.org

   the mailing list is located at:

      aroot@ops.ietf.org





INTERNET DRAFT            Testing Name Servers                 July 2000


   Archive of the list is available at
   ftp://ops.ietf.org:/pub/lists/aroot.




   If there is something wrong with route information from AS 4128, the
   author of the memo or the mailing list for the test may be contacted.

   However, for direct contact to the source of the problem, the contact
   person of an AS next to AS 4128 in the AS path of problematic route
   information should be contacted as described in [SRS].



   [SRS] <draft-ietf-dnsop-ohta-shared-root-server-00.txt>.

9. Author's Address

   Masataka Ohta
   Computer Center
   Tokyo Institute of Technology
   2-12-1, O-okayama, Meguro-ku
   Tokyo 152-8550, JAPAN

   Phone: +81-3-5734-3299
   Fax: +81-3-5734-3415
   EMail: mohta@necom830.hpcl.titech.ac.jp
























INTERNET DRAFT                    M. Ohta, Tokyo Institute of Technology
draft-ietf-dnsop-ohta-shared-root-server-test-00.txt
                                                               July 2000

     Testing Root Name Servers with Inter Domain Anycast Addresses

Status of this Memo

   This document is an Internet-Draft and is in full conformance with
   all provisions of Section 10 of RFC2026.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF), its areas, and its working groups.  Note that
   other groups may also distribute working documents as Internet-
   Drafts.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet- Drafts as reference
   material or to cite them other than as "work in progress."

   The list of current Internet-Drafts can be accessed at
   http://www.ietf.org/ietf/1id-abstracts.txt

   The list of Internet-Draft Shadow Directories can be accessed at
   http://www.ietf.org/shadow.html.

Abstract

   This memo describes an environment to test a proposal to have root
   name servers with shared unicast addresses described in <draft-ietf-
   dnsop-ohta-shared-root-server-00txt>.



   In [SRS], there is a proposal to have multiple name servers sharing
   unicast (anycast) addresses. The proposal is designed to work in
   intra domain environment with route registries by using multiple ASes
   sharing AS numbers.

   This memo describes an environment to test the proposal.

   While the proposal is on root domain using multiple unicast (anycast)
   addresses and (anycast) AS numbers, the experiment is on a real but
   non-root domain using only one unicast address and one AS number.

2. IP addresses






INTERNET DRAFT            Testing Name Servers                 July 2000


   A block of IP addresses:

      192.83.230/24

which is expected to be globally routable, is reserved for the test.

   The DNS servers share an IP address of:

      192.83.230.1

3. AS number

   AS 4128 is used for the test.



   The initial domains to be served by the DNS servers are:

      real-internet.org.
      psg.com.

   There may be additional domains tested.



   The initial participants of the test and globally unique unicast
   addresses of their servers are as follows:

      ???.???.???.???  Francisco Arias <farias@nic.mx>
      ???.???.???.???  Frederico A. C. Neves <fneves@ansp.br>
      131.112.32.131   Masataka Ohta <mohta@real-internet.org>
      ???.???.???.???  Randy Bush <randy@psg.com>
      ???.???.???.???  Stacy Smith <stacy@broadwing.net>

6. Mailing List

   If you are interested in joining (or just watching) the test, send a
   mail containing a single line of:

      subscribe aroot

   to

      majordomo@ops.ietf.org

   the mailing list is located at:

      aroot@ops.ietf.org





INTERNET DRAFT            Testing Name Servers                 July 2000


   Archive of the list is available at
   ftp://ops.ietf.org:/pub/lists/aroot.




   If there is something wrong with route information from AS 4128, the
   author of the memo or the mailing list for the test may be contacted.

   However, for direct contact to the source of the problem, the contact
   person of an AS next to AS 4128 in the AS path of problematic route
   information should be contacted as described in [SRS].



   [SRS] <draft-ietf-dnsop-ohta-shared-root-server-00.txt>.

9. Author's Address

   Masataka Ohta
   Computer Center
   Tokyo Institute of Technology
   2-12-1, O-okayama, Meguro-ku
   Tokyo 152-8550, JAPAN

   Phone: +81-3-5734-3299
   Fax: +81-3-5734-3415
   EMail: mohta@necom830.hpcl.titech.ac.jp
























INTERNET DRAFT                    M. Ohta, Tokyo Institute of Technology
draft-ietf-dnsop-ohta-shared-root-server-test-00.txt
                                                               July 2000

     Testing Root Name Servers with Inter Domain Anycast Addresses

Status of this Memo

   This document is an Internet-Draft and is in full conformance with
   all provisions of Section 10 of RFC2026.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF), its areas, and its working groups.  Note that
   other groups may also distribute working documents as Internet-
   Drafts.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet- Drafts as reference
   material or to cite them other than as "work in progress."

   The list of current Internet-Drafts can be accessed at
   http://www.ietf.org/ietf/1id-abstracts.txt

   The list of Internet-Draft Shadow Directories can be accessed at
   http://www.ietf.org/shadow.html.

Abstract

   This memo describes an environment to test a proposal to have root
   name servers with shared unicast addresses described in <draft-ietf-
   dnsop-ohta-shared-root-server-00txt>.



   In [SRS], there is a proposal to have multiple name servers sharing
   unicast (anycast) addresses. The proposal is designed to work in
   intra domain environment with route registries by using multiple ASes
   sharing AS numbers.

   This memo describes an environment to test the proposal.

   While the proposal is on root domain using multiple unicast (anycast)
   addresses and (anycast) AS numbers, the experiment is on a real but
   non-root domain using only one unicast address and one AS number.

2. IP addresses






INTERNET DRAFT            Testing Name Servers                 July 2000


   A block of IP addresses:

      192.83.230/24

which is expected to be globally routable, is reserved for the test.

   The DNS servers share an IP address of:

      192.83.230.1

3. AS number

   AS 4128 is used for the test.



   The initial domains to be served by the DNS servers are:

      real-internet.org.
      psg.com.

   There may be additional domains tested.



   The initial participants of the test and globally unique unicast
   addresses of their servers are as follows:

      ???.???.???.???  Francisco Arias <farias@nic.mx>
      ???.???.???.???  Frederico A. C. Neves <fneves@ansp.br>
      131.112.32.131   Masataka Ohta <mohta@real-internet.org>
      ???.???.???.???  Randy Bush <randy@psg.com>
      ???.???.???.???  Stacy Smith <stacy@broadwing.net>

6. Mailing List

   If you are interested in joining (or just watching) the test, send a
   mail containing a single line of:

      subscribe aroot

   to

      majordomo@ops.ietf.org

   the mailing list is located at:

      aroot@ops.ietf.org





INTERNET DRAFT            Testing Name Servers                 July 2000


   Archive of the list is available at
   ftp://ops.ietf.org:/pub/lists/aroot.




   If there is something wrong with route information from AS 4128, the
   author of the memo or the mailing list for the test may be contacted.

   However, for direct contact to the source of the problem, the contact
   person of an AS next to AS 4128 in the AS path of problematic route
   information should be contacted as described in [SRS].



   [SRS] <draft-ietf-dnsop-ohta-shared-root-server-00.txt>.

9. Author's Address

   Masataka Ohta
   Computer Center
   Tokyo Institute of Technology
   2-12-1, O-okayama, Meguro-ku
   Tokyo 152-8550, JAPAN

   Phone: +81-3-5734-3299
   Fax: +81-3-5734-3415
   EMail: mohta@necom830.hpcl.titech.ac.jp
























A reliable domain name system (DNS) server can reduce website load times, improve internet speed, and avoid security vulnerabilities. As more and more businesses offer their services over the internet, choosing the fastest and most reliable DNS servers has become more crucial than ever. Given their importance, a global DNS service market report shows that the market will grow from $323 million in 2021 to $710 million by 2028.

Дополнительно:  Dev host root

While these numbers are laudable for the market, businesses are stuck with the challenge of choosing the most reliable DNS service for their business. This is where DNS benchmark tools come in. 

Here are our top picks for the best DNS benchmark tools for your websites.

  • GRC DNS Benchmark: Best for nameserver visibility
  • DNSPerf: Best for easy accessibility
  • NameBench: Best for power users
  • DNS Jumper: Best for manual DNS server customization
  • DNS Checker: Best for mobile
  • MXToolbox: Best for integrated webmaster tools
  • DotCom-Tools: Best for mapping DNS trace
  • whatsmydns.net: Best for non-technical users

Top DNS benchmark software comparison

Below is a comparison table of some of the most critical features of top DNS benchmark tools and their pricing details. 

Best for Nameserver Visibility

GRC’s DNS is a popular DNS benchmark tool designed to measure and analyze the performance and reliability of DNS servers. Baked into the GRC’s DNS is the capacity to compare and perform tests on up to 200 DNS nameservers simultaneously.

This tool comes with a default configuration that enables you to launch it as soon as you have it installed. It’s preconfigured to get you started by identifying all DNS name servers your system is configured to use. The tool can also ramp up your list of publicly available nameservers alongside a benchmark list that explains the suitability of each benchmark. 

Дополнительно:  Что делать, если планшет не включается. Решение проблемы

With GRC’s DNS, you can gain visibility into nameservers to see their redirection behavior, minimum response time, reliability, and more.

GRC DNS Benchmark screenshot

Pricing

  • GRC’s DNS is a free tool.

Features

  • Gain visibility into what’s going on with currently assigned DNS servers.
  • Helps to check whether nameservers provide DNS security (DNSSEC) record authentication.
  • Automatically compares server performance with publicly available alternatives.
  • Detailed comparison of the performance and reliability of up to 200 DNS servers.
  • Identifies all DNS servers the user’s system is configured to use and adds them to the list.
  • Characterizes each DNS server to determine the suitability.
  • Tests each server to see if it returns an error or redirects to a marketing page.
  • Results are continuously displayed and updated while the benchmark is underway.

Pros

  • There is rich documentation on how to use this tool.
  • Offers easy installation.

Cons

  • The GRC’s DNS webpage looks antique and cluttered.

Best for Easy Accessibility

DNSPerf is another DNS tool that can enable you to test the performance of your DNS provider. Built with the capacity to perform DNS lookup from over 200 locations globally, DNSPerf also allows you to test routing logic and debug your self-hosted servers.

DNSPerf screenshot

Pricing

  • Running DNS testing on DNSPerf is free.

Features

  • Tests are run in real time.
  • More than 200 available locations around the world.
  • Compare DNS providers and their performance in different regions.
  • Test results are stored for 30 days.
  • It also offers a load balancer and data analytics platform to simplify global traffic management.

Pros

  • You can easily compare your old test results with the new ones on the site.
  • Tests are run on the website, so downloads or installations are unnecessary.
  • Tests are run in real time.

Cons

  • There is no room to export the report file.

Best for Power Users

The tool can run DNS benchmarks by using your website’s browser history, standardized dataset, or tcpdump output. This method helps provide individualized DNS test results and recommendations.

NameBench also allows you to choose a history source for your tests. For instance, you can set your browser as your history source if you want a more personalized result and an Alexa dataset to check nameservers from a global scope.

namebench screenshot

Pricing

  • NameBench is a free tool.

Features

  • Option to include popular public DNS servers like Google, OpenDNS, and UltraDNS.
  • It can test the fastest regional DNS servers in an area or go global with the Alexa dataset.
  • It can run on multiple operating systems.
  • Censorship checks to test those that provide filtering services.
  • Shows the fastest DNS server available based on the exact sites visited using the browser cache.
  • Checks are based on the top 2,000 websites.
  • Users receive a prioritized list of three server addresses as final recommendations.
  • Comes with GUI and CLI.

Pros

  • The tool is compatible with all popular operating systems.
  • It can run tests from your browsing history and a global dataset.
  • The tool provides personalized DNS server recommendations based on your browsing history.

Cons

  • New users might struggle to use NameBench.
  • Lack of extensive documentation on installation and use.

Best for Manual DNS Server Customization

DNS Jumper screenshot

Pricing

  • DNS Jumper is free.

Features

  • It can be accessed through the GUI or the command line.
  • You can add your own language by using the translate feature.
  • It can automatically check all listed DNS response times and recommend the fastest one available.
  • It can be customized to accept your own DNS server.
  • It offers a preconfigured list of 27 different DNS services.

Pros

  • It comes with an extensive help section.
  • It comes as a lightweight utility tool.
  • It provides multiple languages.

Cons

  • Test results can not be exported.

Best for Mobile

DNSChecker DNS Lookup dashboard screenshot

Pricing

  • The tool is free.

Features

  • Comes with over 100 lists of global DNS servers.
  • You can easily add a custom DNS server and perform a DNS check.
  • DNSchecker has a mobile version.
  • The test results are mapped for easy understanding.
  • The tool provides a Chrome extension, which means users can launch it on the go.

Pros

  • Users can access the tool via a Chrome extension.
  • Mobile-first users can have the tool on their mobile devices.
  • DNS Checker website is easy to use, even for first-timers. 

Cons

  • There’s no option for DNS security check.

Best for Integrated Webmaster Tools

MXToolbox offers features such as DNS Check and DNS Lookup. Aside from DNS checks, also baked into MXToolbox are other crucial tools such as DMARC checks and other domain and email diagnostic features. These extra features can be used concurrently with DNS checks by businesses that need to ensure an all-around quality web experience beyond DNS. The tool is designed to run a comprehensive DNS report for any domain based on a DNS lookup against root servers. 

MXToolbox DNS Check tool screenshot

Pricing

Features

  • Queries each name server to make sure DNS servers all respond.
  • Measures performance and audits the results against common best practices.
  • Supertool combines all MX record, DNS, blacklist, and SMTP diagnostics in one integrated tool.
  • Input a domain name, IP address, or hostname and receive a chronological history of results.
  • There is a blacklist checker that tests a mail server IP address against over 100 DNS-based email blacklists.

Pros

  • The tool encompasses other crucial webmaster tools.
  • It’s easy to use.
  • The tool offers a blacklist check which helps businesses to reduce spam email.

Cons

  • Accessing other critical features comes with a fee.

Best for Mapping DNS Trace

Apart from detailing the path taken to retrieve DNS server details, this tool’s DNS test results also reveal the time it took to retrieve a response from each node. In addition, it adopts a data tree format in displaying test results, mapping out all the DNS traces.

DotCom-Tools DNS screenshot

Pricing

  • The tool is free.

Features

  • Check DNS propagation from dozens of root locations.
  • The DNS trace test automatically attempts to resolve IPv4 and IPv6 addresses if available.
  • Test results include the time to receive a response from each node along the path, as well as the answers returned from each node.
  • Provides a feature that can diagnose DNS issues within your network. 
Дополнительно:  Не работает тачпад на ноутбуке ASUS

Pros

  • You can verify the DNS test results from a non-cached, external independent third party.
  • The tool allows you to view your local cache by outputting it into a txt file on your system.
  • The DNS test result is detailed.

Cons

  • Accessing more locations and saving test history requires payment.
  • A static page blocks some texts on the DNS test page on the left side of the screen.

Best for Non-Technical Users

whatsmydns is a web-based utility that’s available for free and allows you to conduct a DNS lookup to verify DNS propagation and obtain details on any domain from DNS servers located in various countries across the globe.

whatsmydns screenshot

Pricing

  • The tool is free.

Features

  • Checks if servers have been updated correctly without the need to query remote servers manually.
  • There is instant feedback on how users resolve their DNS records for your website and email.
  • Makes the process of performing global DNS checks easy by maintaining a range of DNS servers.
  • Results are parsed and displayed on a map.

Pros

  • Non-technical users can get started with the tool immediately.
  • There is a comprehensive guide on the site on how to use the tool.
  • You don’t need to download any package before using the device, as it can be accessed directly on the site.

Cons

  • There’s no CLI option.

Key Features of DNS Benchmark Tools

Some of the key features you should be looking out for when choosing a DNS benchmark tool include reliability and security testing across different DNS servers, customizable parameters, and historical data.

Ability to test the performance of different DNS servers

One of the primary features of DNS benchmark tools is the ability to test the performance of different DNS servers. These tools typically run a series of DNS lookups on a variety of servers and measure the response times. 

This feature is crucial if you must connect to a reliable and fast server. Therefore, look for a tool that can help you identify which servers are the fastest and most responsive from various DNS servers. 

Reliability testing

Ensuring that your websites maintain steady uptime is one of the reasons people deploy DNS benchmark tools. Therefore, in addition to performance testing, some DNS benchmark tools can also test the reliability of different DNS servers. 

The reliability of a server is an indication that the server will be less likely to experience downtimes or other outage issues. In picking a DNS benchmark tool, ensure that it has the capacity to provide insight into the reliability of servers.

Security testing

Not every DNS benchmark tool offers DNSSEC features. So if the security of your connection is a major concern to you, you should consider picking a tool that offers this feature. Using a DNS tool that offers security testing makes it easy to identify servers that are less likely to be vulnerable to DNS-related attacks, such as DNS cache poisoning, zero-day attacks, and denial of service (DoS) attacks.

Customizable testing parameters

It’s important to ensure that your DNS benchmark tool allows for the customization of testing parameters. This gives room for flexibility in terms of being able to customize the testing parameters to suit your specific needs. For example, you can often choose how many DNS lookups to perform, which servers to test, and how long to wait between lookups.

Historical data

This is the ability of a DNS benchmark tool to retain your DNS check results up to a certain number of times before they go away. Some DNS benchmark tools keep historical data on server performance, which can be useful for tracking changes over time. This feature is also crucial for comparing previous test results and new ones.

Automatic configuration

How Do I Choose the Best DNS Benchmark Software for My Business?

When choosing the best DNS benchmark tool, there are several important factors to consider. The first is security. Choosing a tool that tests DNS security is essential to ensure you are connected to a secure server. Tools like GRS DNS and whatsmydns are capable of pulling this off.

In addition, consider compatibility when picking a tool. The DNS tool should be compatible with your operating system, browser, and devices. This ensures that you can use the tool without any compatibility issues. Fortunately, most of the tools we reviewed can be run from the browser without needing package installation.

Features are also important. You should look for a DNS benchmark tool that offers features such as the ability to test multiple DNS servers at once, save and export results, and test DNS server response times. These features can help you to get the most out of the tool and make informed decisions about your DNS server. 

Another factor that should influence your choice of a DNS benchmark tool is the flexibility of customization. The tool should allow you to customize the testing parameters to suit your needs. This may include the number of queries, query type, and other settings. Customization allows you to test the DNS server in a way that is tailored to your needs and provides more accurate results.

Methodology

We chose these DNS benchmark tools by comparing the most popular DNS benchmark tools and narrowed down our decision to the eight above based on some key features we found in each of the tools. For instance, we found that while all the tools were free, they had some notable differences in terms of DNS security, speed and accuracy, customization parameters, ease of use and reporting features available in them. We found these features to be critical in every DNS tool, which informed our decision to review each tool, highlighting their notable features, pros, and cons.

Оцените статью
Master Hi-technology
Добавить комментарий