|
|
Benefits
Implementation of anycast can offer the following benefits:-
- National infrastructure protection and self sufficiency
Domain name system resolver will continue to function in predictable way even during a loss of international connectivity.
Traffic is automatically localized to the closest instance of the service
Resolver will have a less congested path to a local root name server compared to accessing a root name server across international links.
At a national level, anycast permits a reduction in a router and link resources, extended IP routing protocol will deliver packets over the shortest path to the closest available host
If a denial of service attack is launched at the root name server in some other part of the world, the traffic will not be distrupted, hence the local community will not see any effects of the attack
Easy for root server operates to identify and isolate the source of an attack
|
| Challenges |
|
DNS is a critical component of the underlying infrastructure for many applications and services. There have been a number of attacks on the root servers. Distributed denial of service (DDoS) attacks can generate a lot of traffic, and make the root servers unreachable for many people. The challenges facing anycast addressing are as follows:
As the number of carrier customers, hosted sites and their clients grow, the scale of the DNS service must be adjusted.
As the first step in all dependent application access, DNS requests must be processed in a timely manner.
Even if the DNS service infrastructure is flawless, the DNS IP address, DNS servers, and DNS applications are still exposed to numerous security threats.
|
