Article

Free access

Is your caching resolver polluting the internet?

Author:

Duane WesselsAuthors Info & Claims

NetT '04: Proceedings of the ACM SIGCOMM workshop on Network troubleshooting: research, theory and operations practice meet malfunctioning reality

Pages 271 - 276

https://doi.org/10.1145/1016687.1016695

Published: 03 September 2004 Publication History

Abstract

Previous research has shown that most of the DNS queries reaching the root of the hierarchy are bogus [1]. This behavior derives from two constraints on the system: (1) queries that cannot be satisfied locally percolate up to the root of the DNS; (2) some caching nameservers are behind packet filters or firewalls that allow outgoing queries but block incoming replies. These resolvers assume the network failure is temporary and retransmit their queries, often aggressively.DNS pollution may not be causing any perceivable performance problems. The root servers seem well equipped to handle the load. Since DNS messages are small, the pollution does not contribute significantly to the total traffic generated by most organizations. Nonetheless, this paper provides a few reasons why network operators should take the time to investigate and fix these problems.

References

[1]

Duane Wessels and Marina Fomenkov, "Wow, That's a Lot of Packets," in Proc. 2003 Passive and Active Measurements Workshop, April 2003.]]

[2]

P. B. Danzig, K. Obraczka, and A. Kumar, "An Analysis of Wide-Area Name Server Traffic," ACM Comp. Commun. Review (SIGCOMM'92), Conference Proc., vol. 22, 4, pp. 281--292, 1992, http://catarina.usc.edu/kobraczk/dns.ps.Z.]]

Digital Library

[3]

Evi Nemeth, k claffy, and Nevil Brownlee, "DNS Measurements at a Root Server," in Proc. IEEE Globecom, 2001.]]

[4]

Duane Wessels, Marina Fomenkov, and Nevil Brownlee, "Measurements and Laboratory Simulations of the Upper DNS Hierarchy," in Proc. 2004 Passive and Active Measurements Workshop, April 2004.]]

[5]

Joe Abley, "Hierarchical Anycast for Global Service Distribution," 2003.]]

[6]

Daniel J. Bernstein, "djbdns," June 2003, http://cr.yp.to/djbdns.html.]]

[7]

Y. Rekhter, B. Moskowitz, D. Karrenber, G. J. de Groot, and E. Lear, "RFC 1918: Address Allocation for Private Internets," February 1996.]]

Digital Library

[8]

"The AS 112 Pro ject," http://www.as112.net.]]

[9]

Mark Andrews, "Negative Caching of DNS Queries (DNS NCACHE)," March 1998, Request For Comments 2038.]]

Digital Library

[10]

Internet Software Consortium, "Berkeley Internet Name Domain (BIND) website," http://www.isc.org/sw/bind/.]]

[11]

Paul Albitz and Cricket Liu, DNS and BIND, O'Reilly and Associates, 4th edition, April 2001.]]

Digital Library

[12]

Duane Wessels, "dnstop," http://dnstop.measurement- factory.com.]]

[13]

John Strang, Programming With Curses, O'Reilly and Associates, January 1986.]]

Digital Library

[14]

P. Vixie, S. Thompson, Y. Rekhter, and J. Bound, "Dynamic Updates in the Domain Name System (DNS UPDATE)," April 1997, Request For Comments 2136.]]

Digital Library

[15]

P. Mockapetris, "Domain Names--Concepts and Facilities," November 1987, Internet Standard 0013 (RFCs 1034, 1035).]]

Digital Library

[16]

J. Jung, E. Sit, H. Balakrishnan, and R. Morris, "DNS Performance and the Effectiveness of Caching," 2001, http://www.sds.lcs.mit.edu/papers/dns-imw2001.html]]

Cited By

ISHIBASHI KSATO K(2017)Identifying DNS Anomalous User by Using Hierarchical Aggregate EntropyIEICE Transactions on Communications10.1587/transcom.2016EBP3075E100.B:1(140-147)Online publication date: 2017
https://doi.org/10.1587/transcom.2016EBP3075
Wang Z(2013)Analysis of DNS Cache Effects on Query DistributionThe Scientific World Journal10.1155/2013/9384182013:1Online publication date: 12-Dec-2013
https://doi.org/10.1155/2013/938418
Koç YJamakovic AGijsen B(2012)A global reference model of the domain name systemInternational Journal of Critical Infrastructure Protection10.1016/j.ijcip.2012.08.0015:3-4(108-117)Online publication date: Dec-2012
https://doi.org/10.1016/j.ijcip.2012.08.001
Show More Cited By

Index Terms

Is your caching resolver polluting the internet?
1. Networks
  1. Network services

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

NetT '04: Proceedings of the ACM SIGCOMM workshop on Network troubleshooting: research, theory and operations practice meet malfunctioning reality

September 2004

326 pages

ISBN:158113942X

DOI:10.1145/1016687

Program Chairs:
Jon C.R. Bennett
Harvard University
,
Mark Allman
ICSI/ICIR

Copyright © 2004 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 03 September 2004

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tag

DNS caching root server

Qualifiers

Article

Conference

SIGCOMM04

Sponsor:

SIGCOMM04: ACM SIGCOMM 2004 Conference

September 3, 2004

Oregon, Portland, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

11
Total Citations
View Citations
488
Total Downloads

Downloads (Last 12 months)76
Downloads (Last 6 weeks)12

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

ISHIBASHI KSATO K(2017)Identifying DNS Anomalous User by Using Hierarchical Aggregate EntropyIEICE Transactions on Communications10.1587/transcom.2016EBP3075E100.B:1(140-147)Online publication date: 2017
https://doi.org/10.1587/transcom.2016EBP3075
Wang Z(2013)Analysis of DNS Cache Effects on Query DistributionThe Scientific World Journal10.1155/2013/9384182013:1Online publication date: 12-Dec-2013
https://doi.org/10.1155/2013/938418
Koç YJamakovic AGijsen B(2012)A global reference model of the domain name systemInternational Journal of Critical Infrastructure Protection10.1016/j.ijcip.2012.08.0015:3-4(108-117)Online publication date: Dec-2012
https://doi.org/10.1016/j.ijcip.2012.08.001
Castro SZhang MJohn WWessels DClaffy K(2010)Understanding and preparing for DNS evolutionProceedings of the Second international conference on Traffic Monitoring and Analysis10.1007/978-3-642-12365-8_1(1-16)Online publication date: 7-Apr-2010
https://dl.acm.org/doi/10.1007/978-3-642-12365-8_1
Yuchi XWang XLi XYan B(2009)DNS measurements at the .CN TLD serversProceedings of the 6th international conference on Fuzzy systems and knowledge discovery - Volume 710.5555/1802134.1802253(540-545)Online publication date: 14-Aug-2009
https://dl.acm.org/doi/10.5555/1802134.1802253
Yuchi XWang XLi XYan B(2009)DNS Measurements at the .CN TLD ServersProceedings of the 2009 Sixth International Conference on Fuzzy Systems and Knowledge Discovery - Volume 0710.1109/FSKD.2009.12(540-545)Online publication date: 14-Aug-2009
https://dl.acm.org/doi/10.1109/FSKD.2009.12
Plonka DBarford PPapagiannaki KZhang Z(2008)Context-aware clustering of DNS query trafficProceedings of the 8th ACM SIGCOMM conference on Internet measurement10.1145/1452520.1452547(217-230)Online publication date: 20-Oct-2008
https://dl.acm.org/doi/10.1145/1452520.1452547
Castro SWessels DFomenkov MClaffy K(2008)A day at the root of the internetACM SIGCOMM Computer Communication Review10.1145/1452335.145234138:5(41-46)Online publication date: 30-Sep-2008
https://dl.acm.org/doi/10.1145/1452335.1452341
Fabian BGunther O(2007)Distributed ONS and its Impact on Privacy2007 IEEE International Conference on Communications10.1109/ICC.2007.207(1223-1228)Online publication date: Jun-2007
https://doi.org/10.1109/ICC.2007.207
Deegan TCrowcroft JWarfield A(2005)The main name systemACM SIGCOMM Computer Communication Review10.1145/1096536.109653835:5(5-14)Online publication date: 6-Oct-2005
https://dl.acm.org/doi/10.1145/1096536.1096538
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Figures

Tables

Media

View Table of Conten