Workshop: DNS and DNSSEC
Instructors:
Phil Regnauld (NSRC) [bio]
Champika Wijayatunga (APNIC) [bio]
Paul Ooi (TimedotCom) [bio]
Where: Function Room 1, Level 3, Cyberport 3, Cyberport
Download the materials (4.7 MB) for this workshop.
Robust & Reliable DNS operations
Target audience:
Network/systems administrators and engineers from ISP/REN/Universities or corporations, who are responsible for DNS service, and operating authoritative and/or recursive DNS installations
Pre-requisites:
- Medium to good knowledge of the UNIX/Linux command line environment
- Basic understanding of DNS (this course is not an introduction)
- Basic knowledge of TCP/IP networking and
- PARTICIPANTS ARE REQUIRED TO BRING A LAPTOP
Topics and goals:
- DNS Design principles
Learn to design, deploy and operate reliable authoritative and recursive DNS architectures - DNS Server software, tools and techniques
Learn about BIND, Unbound, and NSD Learn to use tools like dig, doc, dnsviz, zonecheck - Deploying DNS Servers
Learn best practices on implementating DNS service, including service separation, monitoring, logging
Learn to configure a DNS server to perform under high load - Securing DNS Servers, DNSSEC
Learn about the newest security mechanism for DNS, DNSSEC, including zone signature, and automated DNSSEC management using OpenDNSSEC - IDN - Internationalized Domain Names
Internationalized Domain Names: how it works, and what it means for DNS operators
