Skip to content
/ edns_subnet_measurement Public

Measuring support and implementation of the EDNS Client Subnet extension

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

f10d0/edns_subnet_measurement

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

55 Commits
analysis
analysis
 
 
scan
scan
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

EDNS Client Subnet Measurement

About the project

This repository contains all the scripts we used to conduct an EDNS measurement as part of a university project.

We are measuring support for and implementation of the EDNS Client Subnet extension. We want to analyze how widely this DNS extension is deployed and how different DNS Resolvers are making use of it.

In our Approach, we will query authoritative nameservers for A records with different EDNS Client Subnets.

Repo Structure

/analysis:

  • python & jupyter notebook scripts to generate plots based on the measurement data we acquired
  • the data is analyzed with pandas and the plots are generated with matplotlib

/scan:

  • this contains the main scanner implemented in go
  • the scanner operates in two phases
  • first phase: recursive resolving of the authoritative nameservers for the provided list of domains
  • second phase: querying the authoritative nameservers with multiple manually pre-selected subnets

How to run?

  1. clone this repo git clone https://github.com/f10d0/edns_subnet_measurement && cd edns_subnet_measurement

  2. to run the scanner you need a few things:

  • you need to have go installed
  • a list of domains you want to scan, e.g. the tranco toplist
  • a list of subnets in CIDR notation to scan against in the second phase (we will not provide this)

  1. copy the template config cp scan/config.yml.template scan/config.yml and adjust the locations to the lists & and other configurations parameters (like verbosity and the number of go routines during scan) as needed

  2. run the scan cd scan && go run ecs_scan.go -> this will write all the important results to a file called scan.csv.gz

  3. for the analysis part you need a geolocation database (containing country & ASN information)

  • this was done with the free version of the ipinfo.io database which can be downloaded after sign-up on their website (in .mmdb MaxMind database format)
  • be aware that using any other database will probably need code adjustments as the formats might differ

  1. create a python venv in the root of this project & install the python requirements

    python -m venv .venv && source .venv/bin/activate && pip install -r requirements.txt

  2. open the jupyter notebook analysis/graphs.ipynb & set the paths to the database, scan files & plots how you like

  3. run the cells you want to generate the plots for (first two cells are mandatory)

Keep in mind that this scan will send a lot of DNS-Requests with high packet rate and should probably not be run from a network that was not made for this kind of scan

About

Measuring support and implementation of the EDNS Client Subnet extension

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

ECS Measurement Latest
Jan 28, 2024

Packages

No packages published

Contributors 2

  •  
  •  

Languages