The Dynamic DNS Infrastructure

Feb 22, 2013

Are you doing enough to scale your Domain Name System (DNS) and protect your agency?

DNS, a technical cornerstone of the Internet, is facing significant challenges in growth and security. Today’s IT organizations depend not only on the Internet DNS, but their own DNS as well, and when their DNS systems break, their applications break.

As smartphones became ubiquitous over the last decade, the number of Internet users increased over 500 percent to more than 2.6 billion. Analysts predict that by 2016, there will be over 1 billion smartphones in use worldwide driving an exponential increase in DNS traffic.

Meanwhile, in the last five years, the volume of DNS queries has climbed over 200 percent—the average daily query load in the first quarter of 2011 was a staggering 57 billion. As sites and applications become richer and more sophisticated, the burden on DNS increases.

Security is another challenge. Nearly all clients rely on DNS to reach their intended services, making DNS the most critical—and public—of all services. DNS disruptions affect all external data center services, not just a single application. This single point of total failure, along with the historically under-provisioned DNS infrastructure, especially within Internet and enterprise data centers, makes DNS a very tempting target for attackers.

This paper discusses how a full-proxy architecture for DNS can address those growth and security challenges to provide a complete solution for global, local, and cloud load balancing. Benefits include:

  • Faster web browsing from reduced DNS latency
  • Improved multi-site application performance
  • Protection against DNS DDoS attacks
  • Network migration supporting IPv6 to IPv4 communication
  • Complete DNS security with DNSSEC services