Making Windows DNS Server Cloud Ready Kumar Ashutosh Microsoft Windows DNS Server Widely deployed in enterprises Fair presence in the DNS resolver space Standards compliant and interoperable ID: 1045638
Download Presentation The PPT/PDF document "DNS Traffic Management and DNS data mini..." is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
1. DNS Traffic Management and DNS data miningMaking Windows DNS Server Cloud Ready~Kumar Ashutosh, Microsoft
2. Windows DNS ServerWidely deployed in enterprises Fair presence in the DNS resolver spaceStandards compliant and interoperableSecure and scalable
3. Needs of DNS server in cloudPolicy based traffic managementAudit and billing mechanism for DNS serviceThe DNS data mine and analyticsSecurity and High availability
4. Policy based Traffic ManagementDNS Policy is Windows DNS Server construct that allows DNS administrators to control the DNS Query processing in order to achieve :Global Traffic Management, Application Load Balancing, Intelligent DNS responses based on communication protocol (IPV4 or V6) or transport protocol (UDP and TCP),Applying tenant specific filters for black holing, parental control etc.Split-Brain DNS Deployment … and much more
5. Anatomy of a policyCriteriaAny combination of Client Subnet, Server Interface IP, FQDN, Internet protocol (IPV4/V6), Transport Protocol (UDP/TCP), Time Of Day, Query Type ActionIf policy matches what action to take : ALLOW, DENY, IGNORE??ContentIf Action is allow, what data to respond with and in what ratio.
6. CapabilitiesHigh AvailabilityImprove availability of critical applications by failover policiesTraffic ManagementLocation aware responsesLoad BalancingApplication Load Balancing based on the performance of host??FiltersBlack Hole and FiltersTime of dayTime of day based policiesSplit BrainSplit Brain DNS
7. DNS Audit Trail
8. DNS Data mine
9. DNS Data mine : Data CollectionCollect data from every DNS serverCentralized system for collection Real time collection with minimal performance impactKinds of Data collected:All DNS transactionsQueries/responsesXFRDynamic updatesServer stateHealth indicatorsPerformance counters
10. DNS Data mine : Data PreparationCleaning the dataData transformationCreating relational databases for different purposes Related calculations – like amplification factor, frequency etc.Collation of data across the server farmCorrelation of dataAcross multiple serversBetween single userRelationship with state of the server.Rolling over with knowledge transfer.
11. DNS Data mine: Pattern DiscoveryDomain name analysis, Amplification analysisUser behaviour analysisClient subnet analysisSecurity analysis
12. DNS Data mine: Actionable InformationUser behaviour analyticsLoad modelDDoS detection
13. Thank You