Speaker
John Heidemann
(ISI)
Description
We have evaluated techniques to enumerate instances of DNS anycast,
comparing the use of CHAOS records, traceroute, and a new proposal
using IN TXT records. Enumeration allows a third party to evaluate
the size of an anycast service, and in some cases to identify
masqueraders operating on the same anycast address.
We have evaluated our approaches on F-root, Packet Clearinghouse, and
the AS112 anycast infrastructures to compare the completeness of our
approaches. Joe Abley and L-Root has deployed an IN-based system to
support these approaches, and we have also compared tehse results
against their ground truth.
Summary
We will describe our approach, and we invite feedback on its
interation with large DNS operations. We also plan to discuss options
that would support some control over enumeration by an anycast
operator.
A technical paper describing some of this work is at
http://www.isi.edu/~johnh/PAPERS/Fan13a.pdf.
Primary author
John Heidemann
(ISI)
Co-authors
Ramesh Govindan
(USC)
Xun Fan
(USC)