DNS, DHCP & IP Address Management appliances
For Microsoft DNS & DHCP servers
For open source DNS & DHCP servers
Cloud-based visualization of analytics across DDI architecture
Manage multi-vendor cloud DNS servers centrally
RIR Declaration Management and Automation
Automated network device configuration and management
Centralized visibility over all your clouds
A single source of truth for your network automation
Why DDI is an Obvious Starting Point
DNS Threat Intelligence for proactive defense
Intelligence Insights for Threat Detection and Investigation
Adaptive DNS security for service continuity and data protection
Improve Application Access Control to prevent spread of attacks
Protect users and block DNS-based malware activity
Carrier-grade DNS DDoS attack protection
Optimize application delivery performance from the edge
for Proactive Network Security
Visibility, analytics and micro segmentation for effective Zero Trust strategy
Enable work from anywhere by controlling access, security and data privacy
Simplify management and control costs across AWS, Azure and GCP environments
Risk-free migration to reduce DDI complexity and cost
Move risk-free to improve performance, security and costs
Automate management, unify control and strengthen security of connected devices
Protect your network against all DNS attacks, data exfiltration and ransomware
Enable zero touch operations for network management and security
Improve resiliency, deployment velocity and user experience for SD-WAN projects
Integrated DNS, DHCP, IPAM services to simplify, automate and secure your network.
Simplify design, deployment and management of critical DDI services for telcos
Optimize administration and security of critical DDI services for healthcare
Simplify and automate management of critical DDI services for finance
Simplify and automate management of critical DDI services for higher education
Simplify and automate management of critical DDI services for retail
Simplify Management and Automation for Network Operations Teams
Open architecture for DDI integration
Technology partnerships for network security & management ecosystems
Extend security perimeters and strengthen network defenses
Submit requests for temporary licenses
Submit access requests for EfficientIP knowledge platforms
Submit membership requests for EfficientIP Community
Strengthen Your Network Protection with Smart DNS Security
Customer-centric DDI project delivery and training
Acquire the skills needed to manage EfficientIP SOLIDserverâ„¢
Identify vulnerabilities with an assessment of your DNS traffic
Test your protection against data breaches via DNS
Dedicated representation for your organization inside EfficientIP
Explore content which helps manage and automate your network and cloud operations
Read content which strengthens protection of your network, apps, users and data
Learn how to enhance your app delivery performance to improve resilience and UX
Why Using DNS Allow Lists is a No-Brainer
This enterprise-grade cloud platform allows you to improve visibility, enhance operational efficiency, and optimize network performance effortlessly.
Who we are and what we do
Meet the team of leaders guiding our global growth
Technology partnerships for network security and management ecosystems
Discover the benefits of the SmartPartner global channel program
Become a part of the innovation
The latest updates, release information, and global events
September 16, 2020 | Written by: Surinder Paul | DDI, DNS, Virtualization & Cloud
APIDDIDDI ManagementDDI ServicesDDI SolutionsDHCPDNSDNS ApplianceDNS Security IssuesDNS SolutionSOLIDserverZero Touch
Modern application developments should integrate cloud design principles including meshing, redundancy, horizontal scalability and being event driven. Infrastructure services can follow the same approach for some components that can be distributed. DNS is one of the services that has been designed for meshing, replication, scalability and load sharing. This makes it a really good candidate for Network Function Virtualization (NFV) as seen in telecommunication designs, and especially nowadays in 5G network infrastructures.
Digital transformation has pushed some developments and architecture concepts which have now been adopted by most developers. This helps rapid service deployment, adaptation to the usage and demand, automatic scalability, resiliency and short iterations for software delivery. Some are advocating chaos testing – putting the software in really bad situations to observe how it resists. What seems to be obvious for applications is a bit more complex with infrastructure components, even with the software design approach (SDx) that vendors have been pushing for since many years now. The infrastructure is more central by design, is hard to replace, should not fail, is generally installed for medium to long time periods, and for some in the network space required to run very old protocols that have inherent design constraints for today’s networks.
In the telecommunications industry, the 5G community would like to do everything in software, this includes a need for network functions that could be virtual. These Virtual Network Functions (VNF) run in virtual environments like any application component for the web industry. With this in mind, any function can be deployed quickly, ideally on the fly, and can scale up and down whenever required by clients. Services deployed as VNF should remain rock solid, manipulate old and complex protocols, be easy to configure, and be able to adapt to any kind of topology which is not entirely what they have been engineered for at their very beginning.
Digital transformation is one thing that can be envisioned using microservices. Infrastructure has been designed with a more traditional and monolithic approach, on single core processors, mainly for improving robustness, efficiency, hardware utilization and overcoming real time constraints. Playing with high speed networking processors, large memory, and real time processing requires a different mindset.
In the microservice world we are helped by the orchestration and virtualization layers that take care of most of the start and stop mechanisms, the scaling complexity and error handling. This is great, but not adapted for infrastructure processes that are required to enable the orchestrator to work. So it’s really a chicken and egg problem. If you need a DNS to start your virtualization infrastructure, don’t put all your DNS engines in virtual machines. Furthermore, monolithic infrastructure applications are not able to start with sub-second delay, or be deployed in multiple instances which would allow them to easily scale up or down. Think about the DHCP and try to make it scale up – keeping address pools consistent will be a really complex process as it requires synchronization. Furthermore, most infrastructure services require rich configuration but not all yet follow a zero-touch approach to help instantiation and scaling.
The current 5G NFV challenge for most network vendors is to bring the best of both worlds: rich applications with monolithic architecture and scalability of microservice designs.
DNS is a good candidate for NFV and scaling purposes. It has been designed to be distributed and mainly provides a massive “read” service; the “write” service is asynchronous and is not highly demanding for the underlying infrastructure (compute, storage, network). This is suitable for a CQRS design principle. It can therefore be installed on demand and scale up and down according to technical constraints, or even to internal ones like the number of queries per seconds or recursion delay. The future steps regarding more 5G slices to serve more business requirements and operator offers will imply more complexity and specific requirements for DNS zero-touch installation and scalability.
EfficientIP has the world’s most powerful DNS in terms of queries per second (QPS) and can serve most telco usages with just a few DNS Blast appliances. To complement this, putting a DNS engine in an VNF is a very interesting architecture pattern that may well serve other usages. We have made some specific developments on automatic installation and automatic scaling up and down of our DNS system in order to comply with the zero-touch paradigm. In addition to automatic startup of an image – which is not really the complex part with evolved systems like OpenStack or even Docker – the interesting part resides in the usage of the SmartArchitecture offered by SOLIDserver. SmartArchitecture for DNS allows advanced preparation of a topology, attachment of all associated configuration, zones, views and parameters, and then addition of DNS engines inside. SmartArchitecture takes care of synchronizing all the configuration aspects and also centralizing the data related to DNS usage.
For NFV, this is exactly the correct approach to take, since the configuration when spinning up a DNS server will automatically be applied from an already running service in a SmartArchitecture and therefore added to the already existing members. Since we can mix high performance hardware appliances and small lightweight packages inside the same SmartArchitecture, even more complex scenarios of the 5G architecture can be realized. The solution brings the required performance, ultra low latency and automatic scaling for occasional events – both planned ones such as time of day or user flows, and unplanned ones like natural disasters. In addition to provisioning and scaling capacities of this VNF flavor, the cache sharing system already available in the DNS Guardian engine allows any new VNF to be immediately operational with a hot-cache directly available upon startup. Therefore the QPS rate able to be delivered is automatically at top level, without any impact on the northbound recursion service.
Lastly, EfficientIP has developed some specific metrics that allow adoption of a well known microservice and scaling principle: qualitative growth scale, which is about the scalability of a service. This allows tie-in with higher-level business metrics rather than only to externally exposed metrics at the hypervision level, like the CPU or the disk and network IOs.
What has been adapted for 5G requirements will also be valuable for other usages. For enterprise and corporate networking, scalability and zero-touch operations are concepts that anyone should embrace, through NFV or any other virtualization approach.
When our goal is to help companies face the challenges of modern infrastructures and digital transformation, actions speak louder than words.
Explore content highlighting the value EfficientIP solutions bring to your network
To provide the best experiences, we and our partners use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us and our partners to process personal data such as browsing behavior or unique IDs on this site and show (non-) personalized ads. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Click below to consent to the above or make granular choices. Your choices will be applied to this site only. You can change your settings at any time, including withdrawing your consent, by using the toggles on the Cookie Policy, or by clicking on the manage consent button at the bottom of the screen.
We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site.
