Advertisement

Detection of NAT64/DNS64 by SRV Records: Detection Using Global DNS Tree in the World Beyond Plain-Text DNS

  • Martin HunekEmail author
  • Zdenek Pliva
Conference paper
  • 54 Downloads
Part of the Communications in Computer and Information Science book series (CCIS, volume 1231)

Abstract

Since it has been introduced the NAT64/DNS64 transition mechanism has reputation of method which simply works. This could change as currently used detection method, RFC7050 [16], for this transition mechanism doesn’t work with third party/foreign DNS resolvers. These resolvers have been lately introduced by Mozilla Firefox [1] with implementation of DNS over HTTPS. This paper describes problems connected with default usage of third party DNS resolvers and provides a way how to solve issues of RFC7050 [16] with and without third party resolvers.

Keywords

NAT64/DNS64 DNS DNSSEC DoH RFC7050 

Notes

Acknowledgement

This work was supported by the Student Grant Scheme at the Technical University of Liberec through project nr. SGS-2019-3017.

References

  1. 1.
  2. 2.
    Bagnulo, M., Garcia-Martinez, A., Beijnum, I.V.: The NAT64/DNS64 tool suite for IPV6 transition. IEEE Commun. Mag. 50(7), 177–183 (2012).  https://doi.org/10.1109/MCOM.2012.6231295CrossRefGoogle Scholar
  3. 3.
    Boettger, T., et al.: An empirical study of the cost of DNS-over-HTTPS. In: ACM Internet Measurement Conference (IMC) (2019)Google Scholar
  4. 4.
    Boucadair, M.: Discovering NAT64 IPv6 prefixes using the Port Control Protocol (PCP). RFC 7225, May 2014.  https://doi.org/10.17487/RFC7225. https://rfc-editor.org/rfc/rfc7225.txt
  5. 5.
    Boucadair, M., Qin, J., Tsou, T., Deng, X.: DHCPv6 option for IPv4-embedded multicast and unicast IPv6 prefixes. RFC 8115, March 2017.  https://doi.org/10.17487/RFC8115. https://rfc-editor.org/rfc/rfc8115.txt
  6. 6.
    Colitti, L., Linkova, J.: Discovering PREF64 in router advertisements. Internet-Draft draft-ietf-6man-ra-PREF64-09, Internet engineering task force, December 2019. https://datatracker.ietf.org/doc/html/draft-ietf-6man-ra-pref64-09. (Work in progress)
  7. 7.
    Hoang, N.P., Lin, I., Ghavamnia, S., Polychronakis, M.: K-resolver: towards decentralizing encrypted DNS resolution. In: The NDSS Workshop on Measurements, Attacks, and Defenses for the Web 2020 (MADWeb 2020), pp. 1–7, February 2020.  https://doi.org/10.14722/madweb.2020.23009
  8. 8.
    Hoffman, P.E., McManus, P.: DNS queries over HTTPS (DoH). RFC 8484, October 2018.  https://doi.org/10.17487/RFC8484. https://rfc-editor.org/rfc/rfc8484.txt
  9. 9.
    Hu, Z., Zhu, L., Heidemann, J., Mankin, A., Wessels, D., Hoffman, P.E.: Specification for DNS over Transport Layer Security (TLS). RFC 7858, May 2016.  https://doi.org/10.17487/RFC7858. https://rfc-editor.org/rfc/rfc7858.txt
  10. 10.
    Hunek, M., Pliva, Z.: DNSSEC in the networks with a NAT64/DNS64. In: 2018 International Conference on Applied Electronics (AE), pp. 1–4, September 2018.  https://doi.org/10.23919/AE.2018.8501446
  11. 11.
    Hunek, M.: NAT64/DNS64 detection via SRV records. Internet-Draft draft-ietf-v6ops-nat64-srv-00, Internet Engineering Task Force, March 2019. https://datatracker.ietf.org/doc/html/draft-ietf-v6ops-nat64-srv-00. Work in Progress
  12. 12.
    Jeong, J.P., Park, S.D., Beloeil, L., Madanapalli, S.: IPv6 router advertisement options for DNS configuration. RFC 8106, March 2017.  https://doi.org/10.17487/RFC8106. https://rfc-editor.org/rfc/rfc8106.txt
  13. 13.
    Lu, C., et al.: An end-to-end, large-scale measurement of DNS-over-encryption: how far have we come? In: Proceedings of the Internet Measurement Conference IMC 2019, pp. 22–35. Association for Computing Machinery, New York (2019).  https://doi.org/10.1145/3355369.3355580
  14. 14.
    Matthews, P., van Beijnum, I., Bagnulo, M.: Stateful NAT64: Network Address and Protocol Translation from IPv6 Clients to IPv4 Servers. RFC 6146, April 2011.  https://doi.org/10.17487/RFC6146. https://rfc-editor.org/rfc/rfc6146.txt
  15. 15.
    Moskowitz, R., Karrenberg, D., Rekhter, Y., Lear, E., de Groot, G.J.: Address allocation for private Internets. RFC 1918, February 1996.  https://doi.org/10.17487/RFC1918. https://rfc-editor.org/rfc/rfc1918.txt
  16. 16.
    Savolainen, T., Korhonen, J., Wing, D.: Discovery of the IPv6 prefix used for IPv6 address synthesis. RFC 7050, November 2013.  https://doi.org/10.17487/RFC7050. https://rfc-editor.org/rfc/rfc7050.txt

Copyright information

© Springer Nature Switzerland AG 2020

Authors and Affiliations

  1. 1.Institute of Information Technology and ElectronicsTechnical University of LiberecLiberec 1Czech Republic

Personalised recommendations