Root DNS

Overview

The authoritative name servers that serve the DNS root zone, commonly known as the “root servers”, are a network of hundreds of servers in many countries around the world. They are configured in the DNS root zone as 13 named authorities.

Previous attacks

October 21, 2002

  • Attack traffic contained ICMP, TCP SYN, fragmented TCP, and UDP.
  • Attack volume was approximately 50 to 100 Mbits/sec (100 to 200 Kpkts/sec) per root name server, yielding a total attack volume was approximately 900 Mbits/sec (1.8 Mpkts/sec).

February 6, 2007

November 30, 2015

Research

Mitigation

References

Distributed denial-of-service attacks on root nameservers - Wikipedia

21 Oct 2002 Root Server Denial of Service Attack - Report

Root Servers - iana.org