Detection of NAT64/DNS64 by SRV Records: Detection Using Global DNS Tree in the World Beyond Plain-Text DNS

  • Martin HunekEmail author
  • Zdenek Pliva
Conference paper
Part of the Communications in Computer and Information Science book series (CCIS, volume 1231)


Since it has been introduced the NAT64/DNS64 transition mechanism has reputation of method which simply works. This could change as currently used detection method, RFC7050 [16], for this transition mechanism doesn’t work with third party/foreign DNS resolvers. These resolvers have been lately introduced by Mozilla Firefox [1] with implementation of DNS over HTTPS. This paper describes problems connected with default usage of third party DNS resolvers and provides a way how to solve issues of RFC7050 [16] with and without third party resolvers.





This work was supported by the Student Grant Scheme at the Technical University of Liberec through project nr. SGS-2019-3017.


  1. 1.
  2. 2.
    Bagnulo, M., Garcia-Martinez, A., Beijnum, I.V.: The NAT64/DNS64 tool suite for IPV6 transition. IEEE Commun. Mag. 50(7), 177–183 (2012). Scholar
  3. 3.
    Boettger, T., et al.: An empirical study of the cost of DNS-over-HTTPS. In: ACM Internet Measurement Conference (IMC) (2019)Google Scholar
  4. 4.
    Boucadair, M.: Discovering NAT64 IPv6 prefixes using the Port Control Protocol (PCP). RFC 7225, May 2014.
  5. 5.
    Boucadair, M., Qin, J., Tsou, T., Deng, X.: DHCPv6 option for IPv4-embedded multicast and unicast IPv6 prefixes. RFC 8115, March 2017.
  6. 6.
    Colitti, L., Linkova, J.: Discovering PREF64 in router advertisements. Internet-Draft draft-ietf-6man-ra-PREF64-09, Internet engineering task force, December 2019. (Work in progress)
  7. 7.
    Hoang, N.P., Lin, I., Ghavamnia, S., Polychronakis, M.: K-resolver: towards decentralizing encrypted DNS resolution. In: The NDSS Workshop on Measurements, Attacks, and Defenses for the Web 2020 (MADWeb 2020), pp. 1–7, February 2020.
  8. 8.
    Hoffman, P.E., McManus, P.: DNS queries over HTTPS (DoH). RFC 8484, October 2018.
  9. 9.
    Hu, Z., Zhu, L., Heidemann, J., Mankin, A., Wessels, D., Hoffman, P.E.: Specification for DNS over Transport Layer Security (TLS). RFC 7858, May 2016.
  10. 10.
    Hunek, M., Pliva, Z.: DNSSEC in the networks with a NAT64/DNS64. In: 2018 International Conference on Applied Electronics (AE), pp. 1–4, September 2018.
  11. 11.
    Hunek, M.: NAT64/DNS64 detection via SRV records. Internet-Draft draft-ietf-v6ops-nat64-srv-00, Internet Engineering Task Force, March 2019. Work in Progress
  12. 12.
    Jeong, J.P., Park, S.D., Beloeil, L., Madanapalli, S.: IPv6 router advertisement options for DNS configuration. RFC 8106, March 2017.
  13. 13.
    Lu, C., et al.: An end-to-end, large-scale measurement of DNS-over-encryption: how far have we come? In: Proceedings of the Internet Measurement Conference IMC 2019, pp. 22–35. Association for Computing Machinery, New York (2019).
  14. 14.
    Matthews, P., van Beijnum, I., Bagnulo, M.: Stateful NAT64: Network Address and Protocol Translation from IPv6 Clients to IPv4 Servers. RFC 6146, April 2011.
  15. 15.
    Moskowitz, R., Karrenberg, D., Rekhter, Y., Lear, E., de Groot, G.J.: Address allocation for private Internets. RFC 1918, February 1996.
  16. 16.
    Savolainen, T., Korhonen, J., Wing, D.: Discovery of the IPv6 prefix used for IPv6 address synthesis. RFC 7050, November 2013.

Copyright information

© Springer Nature Switzerland AG 2020

Authors and Affiliations

  1. 1.Institute of Information Technology and ElectronicsTechnical University of LiberecLiberec 1Czech Republic

Personalised recommendations