Performance evaluation and effectiveness estimation of DNS server firewall based on OpenFlow

With the increasing use of IoT and cloud technologies, the Internet has become an important part of modern society. One of the fundamental technologies of the Internet is the DNS, which is always at risk of being attacked, and it is necessary to have a mechanism to protect DNS servers from attacks. In our laboratory proposed a method to deter attacks by placing a system that monitors communications from DNS clients at the front stage of authoritative DNS servers and implemented response controls such as relaying, discarding, and restricting communications. The system is called a DNS server firewall[8]. They proposed a DNS server firewall and developed a prototype of the response control unit. In order for a DNS server firewall to perform adaptive communication control, it is necessary to detect aggressive communication. In this study, we implemented a DNS server firewall by adding an attack detection section using IDS and modifying the communication control section using OpenFlow. In addition, as an evaluation experiment, we measured the performance and estimated the effect by reproducing the traffic to a DNS server in actual operation.