Search for: All records

IP anycast is used for services such as DNS and Content Delivery Networks (CDN) to provide the capacity to handle Distributed Denial-of-Service (DDoS) attacks. During a DDoS attack service operators redistribute traffic between anycast sites to take advantage of sites with unused or greater capacity. Depending on site traffic and attack size, operators may instead concentrate attackers in a few sites to preserve operation in others. Operators use these actions during attacks, but how to do so has not been described systematically or publicly. This paper describes several methods to use BGP to shift traffic when under DDoS, and shows that a \emph{response playbook} can provide a menu of responses that are options during an attack. To choose an appropriate response from this playbook, we also describe a new method to estimate true attack size, even though the operator's view during the attack is incomplete. Finally, operator choices are constrained by distributed routing policies, and not all are helpful. We explore how specific anycast deployment can constrain options in this playbook, and are the first to measure how generally applicable they are across multiple anycast networks. 

DNS latency is a concern for many service operators: CDNs exist to reduce service latency to end-users but must rely on global DNS for reachability and load-balancing. Today, DNS latency is monitored by active probing from distributed platforms like RIPE Atlas, with Verfploeter, or with commercial services. While Atlas coverage is wide, its 10k sites see only a fraction of the Internet. In this paper we show that passive observation of TCP handshakes can measure \emph{live DNS latency, continuously, providing good coverage of current clients of the service}. Estimating RTT from TCP is an old idea, but its application to DNS has not previously been studied carefully. We show that there is sufficient TCP DNS traffic today to provide good operational coverage (particularly of IPv6), and very good temporal coverage (better than existing approaches), enabling near-real time evaluation of DNS latency from \emph{real clients}. We also show that DNS servers can optionally solicit TCP to broaden coverage. We quantify coverage and show that estimates of DNS latency from TCP is consistent with UDP latency. Our approach finds previously unknown, real problems: \emph{DNS polarization} is a new problem where a hypergiant sends global traffic to one anycast site rather than taking advantage of the global anycast deployment. Correcting polarization in Google DNS cut its latency from 100ms to 10ms; and from Microsoft Azure cut latency from 90ms to 20ms. We also show other instances of routing problems that add 100--200ms latency. Finally, \emph{real-time} use of our approach for a European country-level domain has helped detect and correct a BGP routing misconfiguration that detoured European traffic to Australia. We have integrated our approach into several open source tools: Entrada, our open source data warehouse for DNS, a monitoring tool (ANTS), which has been operational for the last 2 years on a country-level top-level domain, and a DNS anonymization tool in use at a root server since March 2021. 

Plant ecophysiological trade-offs between different strategies for tolerating stresses are widely theorized to shape forest functional diversity and vulnerability to climate change. However, trade-offs between hydraulic and stomatal regulation during natural droughts remain under-studied, especially in tropical forests. We investigated eleven mature forest canopy trees in central Amazonia during the strong 2015 El Niño. We found greater xylem embolism resistance (P50 = − 3.3 ± 0.8 MPa) and hydraulic safety margin (HSM = 2.12 ± 0.57 MPa) than previously observed in more precipitation-seasonal rainforests of eastern Amazonia and central America. We also discovered that taller trees exhibited lower embolism resistance and greater stomatal sensitivity, a height-structured trade-off between hydraulic resistance and active stomatal regulation. Such active regulation of tree water status, triggered by the onset of stem embolism, acted as a feedback to avoid further increases in embolism, and also explained declines in photosynthesis and transpiration. These results suggest that canopy trees exhibit a conservative hydraulic strategy to endure drought, with trade-offs between investment in xylem to reduce vulnerability to hydraulic failure, and active stomatal regulation to protect against low water potentials. These findings improve our understanding of strategies in tropical forest canopies and contribute to more accurate prediction of drought responses.