John Heidemann / Papers / Differences in Monitoring the DNS Root Over IPv4 and IPv6

Differences in Monitoring the DNS Root Over IPv4 and IPv6
Tarang Saluja, John Heidemann and Yuri Pradkin

Citation

Tarang Saluja, John Heidemann and Yuri Pradkin. Differences in Monitoring the DNS Root Over IPv4 and IPv6. Proceedings of the National Symposium for NSF REU Research in Data Science, Systems, and Security (Portland, OR, USA, Dec. 2022), 194–203. [DOI] [PDF] [alt PDF]

Abstract

The Domain Name System (DNS) is an essential service for the Internet which maps host names to IP addresses. The DNS Root Sever System operates the top of this namespace. RIPE Atlas observes DNS from more than 11k vantage points (VPs) around the world, reporting the reliability of the DNS Root Server System in DNSmon. DNSmon shows that loss rates for queries to the DNS Root are nearly 10% for IPv6, much higher than the approximately 2% loss seen for IPv4. Although IPv6 is “new,” as an operational protocol available to a third of Internet users, it ought to be just as reliable as IPv4. We examine this difference at a finer granularity by investigating loss at individual VPs. We confirm that specific VPs are the source of this difference and identify two root causes: VP islands with routing problems at the edge which leave them unable to access IPv6 outside their LAN, and VP peninsulas which indicate routing problems in the core of the network. These problems account for most of the loss and nearly all of the difference between IPv4 and IPv6 query loss rates. Islands account for most of the loss (half of IPv4 failures and 5/6ths of IPv6 failures), and we suggest these measurement devices should be filtered out to get a more accurate picture of loss rates. Peninsulas account for the main differences between root identifiers, suggesting routing disagreements root operators need to address. We believe that filtering out both of these known problems provides a better measure of underlying network anomalies and loss and will result in more actionable alerts.

Bibtex Citation

@inproceedings{Saluja22a,
  author = {Saluja, Tarang and Heidemann, John and Pradkin, Yuri},
  title = {Differences in Monitoring the {DNS} Root Over {IPv4} and {IPv6}},
  booktitle = {Proceedings of the  National Symposium for NSF REU Research in Data Science, Systems, and Security },
  year = {2022},
  sortdate = {2022-12-15},
  project = {ant, eieio, reu, isireu},
  jsubject = {topology_modeling},
  pages = {194--203},
  month = dec,
  address = {Portland, OR, USA},
  publisher = {IEEE},
  jlocation = {johnh: pafile},
  keywords = {root server system, dnsmon, ripe atlas, ipv4, ipv6},
  doi = {https://doi.org/10.1109/BDCAT56447.2022.00036},
  url = {https://ant.isi.edu/%7ejohnh/PAPERS/Saluja22a.html},
  pdfurl = {https://ant.isi.edu/%7ejohnh/PAPERS/Saluja22a.pdf},
  dataurl = {https://ant.isi.edu/ripe_atlas_islands/},
  blogurl = {https://ant.isi.edu/blog/?p=1937}
}
Copyright © by John Heidemann