The Men & Mice Blog

DNS and BIND  Training with Men & Mice

Posted by Men & Mice on 6/13/18 7:55 AM

trainingl

In the first half of 2018, Men & Mice Training taught courses in five countries with students flying in from across time zones and from other continents. Participants came from three different ccTLDs, from national governments, and from both major enterprise corporations and smaller institutions.

We are proud of our reputation for delivering exceptional training courses, positive student feedback, and humbled by the effort that people make to attend. However, we're committed to making attending easier.

New DNS & BIND fall 2018 courses added

ddi_menandmiceFive new public courses have been added to our schedule this fall, from September through November 2018.

We've also begun soliciting student feedback on where we should hold our next courses. Based on initial feedback, classes have already been scheduled for two locations where we've previously never taught: Denver, Colorado, USA, and Geneva, Switzerland.

Our most popular public course is DNS & BIND Week (DNSB-W).

DNS & BIND Week is ideal for anyone just starting in the DNS world, but most commonly attended by those knowledgeable about DNS, and by experienced BIND administrators. Those with previous skills report that the start of the course, which assumes nothing, fills in gaps in their knowledge and corrects misconceptions, and the course moves on to unknown topics and new material. All Men & Men courses are hands-on, full of laboratory exercises. 

If you want to get trained ASAP, this is your chance.

SUMMER COURSES

Space is limited but still available.

June 25 – 29, 2018 – Zurich, Switzerland

FALL COURSES 

September 17 – September 21, 2018  Europe (City TBD)


September 24 – September 28, 2018  Geneva, Switzerland


October 15 – October 19, 2018      Denver, Colorado, USA


October 22 – October 26, 2018      North America (City TBD)


November 12 – November 16, 2018    Zurich, Switzerland

DNS & BIND Fundamentals (DNSB-F): is the first three days of DNS & BIND Week.

Who attends: Those who work peripherally with DNS. After the course, many wish they had attended the entire week. For them, we offer DNS & BIND Advanced (DNSB-A), which is the final two days of DNS & BIND Week.

Looking ahead, in 2019 we plan to begin offering our three day DNSSEC & BIND (DNSSECB) course publicly. It is currently only available for private, on-site corporate training.

Register now

Topics: BIND, DNS training, DNS events

Men and Mice @ Cisco Live: Intuitive IT through intuitive DNS

Posted by Men & Mice on 6/5/18 8:00 AM

Visibility in DNS management is more important than ever. As networks become increasingly hybrid and migrate to cloud environments, managing multiple vendor systems and consoles adds new complexities to enterprise DNS management.

Men & Mice minimizes these complexities, reducing network vulnerability by unifying distributed DNS networks in one management console, additionally filtering activity through audit trails for full visibility and reporting.

We're excited to exhibit at Cisco Live (#CLUS) again this year to showcase how intuitive IT benefits from intuitive DNS. 

We're looking forward to showcasing what's changed since we visited Cisco Live last year:

  • We released version 8.3 of the Men & Mice Suite with unprecedented stability, performance and scalability.
  • We introduced xDNS for multi-vendor DNS management in the cloud.
  • We doubled the size of our service team to better cater to our customers. 
  • We added Live Demo capabilities to menandmice.com and streamlined our customer on-boarding process.

Visit us at Cisco Live! We'll be at booth #1113.

 Book appointment

Visit us to learn how to get DNS network visibility and manage complex DNS infrastructure with ease.

menandmice_dns_CLUS_ linkedin

Topics: Cisco Live, External DNS, hybrid network, DNS events

Men & Mice DNS Conference Roadshow 2018

Posted by Paula Gould on 5/28/18 12:22 PM

Men&Mice_Magnús_Björnsson_Berlin

Earlier this month we flew to Berlin to host an event at the residence of the Iceland Ambassador to Germany for customers, partners and interested DNS infrastructure managers. The event featured opening remarks from Ambassador Martin Eyjólfsson as well as talks from Magnus Björnsson, CEO of Men & Mice, Carsten Strotmann, who is a renowned DNS expert and also part of Men & Mice professional services; Sigfús Magnússon, VP of Product Management, Heimir Gunnlaugsson, CEO of Microsoft Iceland and Marc Eggenberger, experienced IT infrastructure consultant, iET SA | ITS - Central IT.  Closing remarks were delivered by Svana Helen Björnsdóttir, Chairman of Men & Mice. 

Men&Mice_GretaMaria_Berlin_150518_065

As we expand the Men & Mice DNS, DCHP and IPAM solutions to cater to Network Managers expanding their DNS and IPAM to cloud and virtual environments, we’re increasing our focus on in-person events. Our event in Berlin was the first in our series of activities to meet our customers where they do business.  While your networks become more virtual and automated, we're making sure your engagement with our Men & Mice services team is personable.

Last week we spoke at Latitude59 in Tallinn, Estonia.

menandmice_latitude59Ph_ Tago Kalbri 16.08.56

This week we are onsite at Managed Services & Hosting Summit in Amsterdam  and will deliver a keynote at Startup Iceland on 31 May, an event for which we are also a proud sponsor. 

We'll kickoff our June activities by exhibiting at Cisco Live in Orlando, Florida from 10-14 June. We'll visit Microsoft Inspire in July and exhibit at VMWorld in August before heading to Microsoft Ignite as exhibitors in September. Hope to see you soon! 

menandmice_dns_CLUS_ linkedin

Topics: Men & Mice, DNS, CLOUD, DNS events

The Future of DNS Management. The DNS Management of the Future.

Posted by Greg Fazekas on 5/25/18 9:50 AM

 

Unifying_decentralized_DNS

Streamlining network management (bringing together on-premise DNS, DHCP, and IPAM with multi-vendor cloud DNS and IPAM, compatibly) is more important than ever. Cloud-based systems and the rapid expansion of digitally connected IoT are driving infrastructure growth. It’s especially important for companies to have full visibility, authority and control across public, private, and hybrid networks.

The foundational technologies of DNS operations have stayed largely the same. DNS management, however, has changed and adapted - and keeps changing and adapting--  to meet the new challenges of business services and growth.

Centralizing the decentralization of DNS

As enterprise IT moves to the cloud, it creates the necessity to have effective DNS and IPAM in the cloud as well. Importantly, it’s also necessary to have cohesive communication and oversight between both on and offsite environments to maintain uptime, smooth network functionality and prevent vulnerabilities.

But making the switch to hybrid and migrating to the cloud can have its challenges, especially for those who already made significant investments in on-prem hardware and software, have numerous established DNS zones or who have large networks that they would need to bulk migrate. Further, navigating legal compliances across multiple geographic zones and ensuring data security at every connection point adds to the hurdles that companies face in maintaining, scaling, and updating their networks.

Men & Mice knows a thing or two about these changing infrastructure needs and has been focused on creating solutions that simplify complex environments for nearly 30 years. Our software not only helps companies effectively manage existing DNS and IPAM needs, but adapts to meet future needs as networks scale. Our overlay network management solution, the Men & Mice Suite, provides customers with unprecedented stability, performance and scalability.

Future of DNS and IPAM in the Cloud: A modular overlay solution

Flexibility and scalability require a multi-platform solution where the same automation can drive DNS deployment no matter if it’s with AWS, Azure, NS1, Dyn, Akamai or something else. It also needs to effectively managing complex networks by eliminating visibility gaps between traditionally different deployments in public cloud and on-premise private configurations.

Our xDNS Redundancy streamlines DNS management across multiple service provider platforms, helping to mitigate DDoS attacks and other forms of DNS failure by providing centralized management of critical DNS services.

Men & Mice Suite offers consolidated views in a unified console, secure monitoring and integrated management of all network spaces across platforms and on-premises, in the cloud, or in hybrid or multi-cloud environments. Additionally, authorized administrators are allowed to make changes directly through the Men & Mice Suite, with its robust access control, ensuring they can only change entries that belong to them.

Men & Mice has been at the forefront of network management for almost as long as there were networks to manage. We’ve been creating DNS, DHCP, and IPAM solutions for decades for on-premise networks and have evolved our software solutions to cater to the growing needs of network administrators tasked with managing cloud-based DNS and IPAM.

See you at Cisco Live!

menandmice_dns_CLUS_ linkedin

We love the theme of this year’s Cisco Live: IT that informs, connects, predicts and enables.It embodies the principles of the Men & Mice Suite. We'll be in Orlando, Florida from 10-14 June, to showcase the next generation of DNS and IPAM solutions for those overseeing the staggering number of IPs that comprise today’s DNS infrastructures. Visit us at booth 1113 to learn more.

Topics: Monitoring, Redundant DNS, External DNS, hybrid network

Topics: Redundant DNS, DNS redundancy, External DNS, hybrid cloud, hybrid network

Everything’s changed in DNS. Nothing’s different in DNS.

Posted by Greg Fazekas on 5/10/18 7:56 AM

globe_menmicelogo

The history of DNS (Domain Name System) starts with the earliest of early networked systems: ARPANET. DNS has often been characterized as the “phone book” for the internet — that analogy was, of course, invented  in an era where phonebooks were a thing.

It may be more fitting to liken it to a phone company switchboard. Even in the earliest days of ARPANET, however, the required communication was to send an email to Stanford Research Institute at Stanford University, where the hosts.txt file was maintained, to get a new Hostname into the list. Then, all Internet hosts updated the hosts.txt file twice a week via FTP file transfer. Twice a week... by FTP!

Interesting fact: whatever platform you’re using, chances are you can find a hostsfile somewhere on your computer. This is a remnant of the early ARPANET days. Back then, a simple static text file controlled the entirety of the network.

The Making of a Network (a.k.a. “everything has changed”)

As the networks grew, the need to wait became cumbersome, if not unbearable. Business was increasingly conducted outside of bank hours, and computers were moving data faster for us. So, why not use computing to handle IP assignments as well?

In 1983, the standard for DNS was accepted by the ARPANET community. By 1984, at UC Berkeley, we saw the advent of "Open Source" Berkeley Unix Distribution (BSD) and ported TCP/IP to Unix, making Unix a networked OS (under a DARPA grant) resulting in the first version of the Berkeley Internet Name Domain (BIND). To this day BIND serves as the de facto DNS software of the internet.

Thereafter, the Internet Engineering Task Force (IETF) was founded, and with it came new formal processes that have shaped the backend of the internet as we know it today.

Fast Forward To Now (a.k.a. “nothing’s different”)

You may be thinking: that’s interesting and all, but what does that have to do with my DNS network?

Well:  DNS hasn’t changed much in the last 4 decades. Of course, the explosive growth of the internet has changed the ways we map, scale and secure our networks. But the fundamental operating principles of DNS haven’t changed since its inception-- it’s still the switchboard of the internet. Instead of humans making a request through email, however, systems can call on DNS services, any time of day, to assign a multitude of IP addresses at a time.

The introduction of IPv6 (which has yet to be fully realized), and the dawn of cloud computing and IoT (Internet of Things) brought  significantly increased device requests and IP traffic.However, all that has not changed what DNS does; rather only how it does it.

We’ve Seen It Change and Stay the Same

DNS has changed very little; but the way we utilize it changed immensely. We've seen it: since the 1990’s, Men & Mice has serviced enterprise companies with DNS, DHCP and IPAM solutions.

We proactively evolve our overlay network management solutions to meet the needs of enterprise customers, and now high growth IoT companies as well. (Note: the two are not mutually exclusive.)

We are working with perhaps the most fundamental building (scaling) block of the internet. Our expertise is focused on the importance of adaptation. Network infrastructures have become hybrid, or have moved to the cloud completely. Multitudes of DNS services and environments have come to market introducing greater choices, but also complexities for network managers.

Men & Mice and the future of DNS

menandmice_unified_console_

Men & Mice has evolved its DNS, DHCP and IPAM solutions to cater to these changing environments. We adapted to become more flexible, so that the networks of our clients can migrate across network vendors easier. We created a  unified network management console to manage, in one place, all of the diverse platforms that make up a company’s network.

We’ve introduced new services such as xDNS in 2017 to help companies manage all external DNS. Likewise, we added deeper functionality with Microsoft Azure and Azure DNS for Microsoft customers with large domain portfolios.

We’ve streamlined our sales and customer journey processes, to reflect the same ease of use customers experience in our software solutions. Get a Live Demo directly from our website, for example.

We continue to offer some of the most sought-after training courses for companies and individuals who wish to learn or sharpen their understanding of DNS, enabling them to significantly increase expertise levels across their teams.

Meet our team

Join us in Berlin on May 15th, for a special event with the Embassy of Iceland in Germany. We will discuss the “State of Network Management” and the new challenges of DNS, DHCP and IPAM.

Or, meet us at Managed Service Hosting Summit, Cisco Live, Microsoft Inspire,VMWorld and Microsoft Ignite in the coming months.

Interesting fact: Bob Metcalfe, who invented the standard of the ethernet, predicted in 1995 that the internet would collapse in a year. He  also envisioned an end to wireless technologies, and that computers would stay wired.To his credit, he did — as per his promise — eat his words, literally, after none of those things happened.

menandmice_dns_CLUS_ linkedin

Topics: TechEd, DDI, DNS

Thinking of doing DNS better?

Posted by Men & Mice on 3/20/18 10:27 AM

I train, therefore I am

Or that’s what Descartes may have said if he’d been thinking his thoughts in 2018.

Mind you, this blog is not about thinking and it’s not about physical training either, like running or wife carrying or stuff like that. It’s more about training as in training for the mind. Learning useful things. Like how to configure BIND, debug DNS, figure out TSIGs or what DNSSEC can do for your network. Basically, the kind of training that helps you build a leaner, stronger, fitter network, and create the system resilience needed to deliver those constantly surging numbers of packets to their right destination, faster and more securely.

DNS sync.png

Getting DNS skills in sync

Since 1999, Men & Mice has been known for running effective and efficient DNS & BIND training courses worldwide. Previous offerings included open, public courses in a number of locations, as well as private on-site training on request.

Beginning in 2018, we are putting a little extra effort and logging a few more air-miles, making it much easier for you to attend, wherever you are.  We’re extending our public offerings into new destinations, with upcoming courses scheduled in California, New York, Switzerland, England and Israel, with additional courses to be added as the year progresses. See the schedule at menandmice.com/training/

To get the hang of running a better network, sign up for the 3-day DNS & BIND Fundamentals, or take our most popular course and spend 5 days sinking your teeth deeper into the subject matter in DNS & BIND Week. A range of on-site training options is also on offer.

Reach out to Men & Mice Training to register for a course, ask questions, log comments, or to recommend additional locations for future public offerings.

In the meantime, check out the dates and feast your eyes on the list of topics covered by our hands-on courses, taught by DNS experts.

Happy training!

Topics: Men & Mice, DNS, BIND, DNS training

Version 8.3 – Faster, Leaner, Fitter DHCP

Posted by Johanna E. Van Schalkwyk on 1/11/18 11:16 AM

Doing DHCP

The beauty of DHCP is the speed at which it functions. Basically, DHCP (Dynamic Host Configuration Protocol) does what administrators can do manually, but DHCP just does it automatically, more efficiently, and in a fraction of the time.

Size can trump speed

Yet the bigger a network gets, the more DHCP servers and scopes are needed to dynamically assign, or lease, IP addresses and related IP information to network clients. The number of servers and scopes and the way the load is distributed and processed affect the speed at which networks can keep DHCP data fresh and IP leases available for use. On large networks, how efficiently DHCP lease data is documented, processed and synchronized becomes just as important as the initial matchmaking between DHCP clients and servers.

The relationship between DHCP client and server

DHCP does the hard work of handling communication between servers on a network, and client computers trying to access that network. If the series of messages between a DHCP server and a client computer would be illustrated as a conversation, it would probably look something like this.

DHCP conversation.png

Mind you, at any given moment on a large network, hundreds, or even thousands, such conversations can be occurring simultaneously. On top of that, the client computer sends its DHCPDISCOVER broadcast packet to all available servers, and all available servers can respond with a DHCPOFFER. The client is not programmed to be picky and always accepts the first offer it receives. Once they detect that their offers were not accepted, the other DHCP servers will withdraw their offers. In short, there’s a whole lot of to-and-fro action behind the scenes that is invisible to network administrators and users, but still finds its way into DHCP servers’ lease history. 

To complicate matters – or simplify it – these DHCP client-server relationships, or leases, are mostly temporary arrangements. Both parties know it will end. The server will revoke the lease once it’s expired. The client, on the other hand, can attempt to keep the lease by renewing it, or start looking for another IP address lease if the one they had had expired.

Apart from doing matchmaking between clients and servers, DHCP also ensures that each network client has a unique IP address and appropriate subnet masks. If two clients were to try and use the same IP address, neither of them would be able to communicate on the network.

These rotating relationships make the way DHCP lease data is documented, processed and synchronized so much more critical. If this is not done fast and efficiently, the whole process of dynamically assigning IP addresses can become slowed down, leaving DHCP clients, servers and ultimately network users, frustrated and ineffective.

Making DHCP management faster, leaner and fitter

Once networks run to hundreds, or thousands of DHCP scopes and servers, one needs to re-assess the way DHCP data is processed, and develop ways to improve speed and efficiency. This is exactly what Men & Mice developers set out to achieve in Version 8.3 of the Men & Mice Suite.

DHCP optimizations in Version 8.3 include:

  • Reduced network traffic, especially between the Central server and a DHCP server controller 
  • Improved database performance when processing data from a DHCP server
  • Reduced load on a DHCP server while it is being synced

Optimizing processes in these areas has resulted in lightening the often heavy load on DHCP servers, making DHCP server management considerably faster and more efficient – and more pleasurable for the people in charge of keeping it all going, all the time.

To dig into the more technical aspects of these enhancements and get the lowdown on what this boost in DHCP performance and scalability could mean for you or your network, get in touch with one of our sales engineers to walk you through the details.

 New Call-to-action

Topics: Men & Mice Suite, IPAM, DHCP, CLOUD, Akamai, Performance

Network Outages, Human Error and What You Can Do About It

Posted by Men & Mice on 12/18/17 7:14 PM

When your route leaks 

Human error. As far as mainstream reporting on network outages goes, it’s the less flamboyant sidekick to DDoS and other cyber attacks. But in terms of consequences, it’s just as effective.

Once again, beginning of November, large parts of the US found themselves unable to access the internet due to one small error: a misconfiguration at Level 3, an ISP (Internet Service Provider) that underpins other, bigger networks.

According to reports the outage was the result of what is known as a “route leak”. In short, a route leak occurs when internet traffic is routed into inefficient, or simply wrong, directions due to incorrect information provided by one, or multiple, Autonomous Systems (ASes). ASes are generally used by ISPs to keep track of IP addresses and their network locations. Packets of data are routed between ASes, which use the Border Gateway Patrol (BGP) to establish and communicate the most efficient routes so you can browse the whole internet, and not just the IP addresses on your particular ISPs network.

Route leaks can be malicious, in which case they’re referred to as “route hijacks” or “BGP hijacks”. But in this case, it seems the cause of the outage was nothing more spectacular than a simple employee blunder, when (as speculation goes) a Level 3/Century Link engineer made a policy change which was, in error, implemented to a single router while trying to configure an individual customer BGP. This particular incident constitutes what the IETF defines as a Type 6 route leak,  generally occurring when “an offending AS simply leaks its internal prefixes to one or more of its transit-provider ASes and/or ISP peers.”

Route leaks, small and large, are regular occurrences – it’s part and parcel of the internet’s dependency on the basic BGP routing protocol, which is known to be insecure. Other recent high impact route leaks include the so-called Google/Hathway leak in March 2015 and a misconfiguration at Telekom Malaysia in June 2015 which had a debilitating roll-on effect around the world.

To minimize the possibility of route leaks, ISPs use route filters that are supposed to catch any problems with the IP routes that peers and customers intend to use for the sending and receiving of packets of data.

Other ways of combating route leaks include origin validation, NTT’s peer locking and commercial solutions. Additionally, the IETF is in the process of drafting proposals on route leaks.

Factoring in the human element

Tools and solutions aside, Level 3’s unfortunate misconfiguration once again highlights the fact that, despite keeping a low profile in the news, human error still rules when it comes to causing common network outages.

In an industry focused on how to design, build and maintain machines and systems that enable interconnected entities to send and receive millions of packets of data efficiently every second of every day, it’s maybe not all that odd that the humans behind all of this activity become of secondary importance. Though, as technology advances and systems become more automated, small human errors such as misconfiguring a server prefix are likely to have ever larger knock-on effects. At increasing rates, such incidents will roll out like digital tsunamis across oceans, instead of only flooding a couple of small, inflatable IP pools in your backyard.

Boost IT best practices - focus on humans

So outside of general IT best practices, what can you do to help the humans on your team to avoid human error?

Just as with any network, human interaction is based on established relationships. And just as in any network, a weak link, or a breakdown in the lines of communication, can lead to an outage. Humans who have to operate in an atmosphere of unclear instructions, tasks, responsibilities and communication, can become ineffective and anxious. This eats away at employee morale and workflow efficiency and lays the groundwork for institutional inertia and the stalling of progress. At other times, a lack of defined task-setting and clear boundaries may resort to employees showing initiative in the wrong places and at the wrong times.

To limit outages due to human error, just distributing a general set of best practices or relying on informally communicated guidelines amongst staff are simply not enough. While networking best practices always apply, the following four steps can be very effective in establishing the kind of human relationships needed to strengthen your network and optimize network availability.

 

Define DDI-1.png

1. Define

Draw up, and keep updated, a diagram not only of your network architecture (you do have one, don’t you?), but also make sure you have a workflow diagram for your teams: who is tasked with which responsibility and where does their action fit into the overall process? What are the expected outcomes? And what alternative plans and processes are in place if something goes awry? Most importantly, match tasks and responsibilities with well-defined role-based access management.

2. Communicate

Does everyone on your team, and collaborating teams, know who is responsible for what, when and where, and how the processes flow? Is this information centrally accessible and kept up to date? Clarity, structure and effective communication empower your team members to accept responsibility and show initiative within bounds.

3. Train

Does everyone on your team know what’s expected of them, and did they receive appropriate training to complete their assignments properly and responsibly? Do they have the appropriate resources available to do what they need to do efficiently? Without training and tools in place, unintentional accidents are simply so much more likely to occur.

4. Refresh

Don’t wait until team members run into trouble or run out of steam. Check in with each other regularly, and encourage a culture of knowledge sharing where individuals with different skill sets can have ample opportunity to develop new skills and understanding.

Refresh DDI.png

Finally

The saying goes, a chain is only as strong as its weakest link. The same goes for networks.

At a time in history when we have more technological checks and balances available than ever before, it turns out the weakest networking link is, too often, a human. While we’re running systems for humans by humans, we may as well put in the extra effort to help humans do what they do, better. Our networking systems will be so much stronger for it.

 

New Call-to-action

 

Topics: DDI, DDoS, network outages, IT best practices, IP address management

Secure Your DNS Across Multiple DNS Service Platforms with Men & Mice xDNS Redundancy

Posted by Men & Mice on 7/10/17 12:50 PM

DNS (Domain Name System) is the most critical aspect of any network’s availability. When DNS services are halted, or slowed down significantly, networks become inaccessible, leading to damaging losses in revenue and reputation for enterprises.

To ensure optimal network availability, many enterprises depend on top-tier managed DNS service providers for their external DNS needs. The basic “table stakes” characteristics of an enterprise-class managed DNS service are high reliability, high availability, high performance and traffic management. However, even the most robust DNS infrastructure is not immune to outages.

Outages may be localized, in which only certain DNS servers in the network are not responding, or, less commonly, system-wide. A system-wide DNS failure can take an entire business offline - the equivalent of power failure in every one of their data centers.

To prevent this, top-tier managed DNS systems have a great deal of built-in redundancy and fault tolerance, yet the danger of a single point of failure remains for enterprises that rely solely on a single-source DNS service.

If no system of DNS is failure proof, this begs the question: what should an enterprise do about it?

Using multiple DNS service providers for ultimate DNS redundancy

DNS availability statistics for managed DNS providers shows that the industry norm exceeds 5 nines (99.999%) uptime. This is the equivalent of about 5 minutes per year downtime. However, this top line number does not provide any detail on the impact of degraded performance, or the cascading effect of a system-wide outage of various duration, on individual enterprises.

To discover the true impact of a potential loss of DNS availability, enterprises need to properly assess the business risk associated with relying on a sole source provider, and compare that with the cost of a second source DNS service. What would a 30-minute loss of DNS cost the business in terms of revenue loss, reputation damage, support costs and recovery? What does it cost to maintain a second source DNS service?

Research amongst enterprises for whom online services are mission critical generally concludes that the cost ratios are in the range of 10:1 – one order of magnitude. Put another way, the cost of one outage is roughly estimated to be ten times the annual cost of a maintaining a second service. A business would have to have second source DNS for ten years to equal the cost of one major DNS outage.

Looking at the odds and costs of outages, many enterprises are opting to bring in a second, or even a third, DNS service to hold copies of critical DNS master zones.

This system of external DNS redundancy boosts DNS availability by:

External-DNS-Redundancy.png

1. removing the danger of exposure to a single point of DNS failure.

2. reducing traditional master-slave DNS redundancy vulnerabilities, where slave zones can’t be changed if the master becomes unavailable.

3. improving infrastructure resilience by hosting critical zones with multiple providers, ensuring continued service availability and updates of changes if one DNS service provider becomes unavailable.

The risky business of maintaining DNS redundancy across platforms

In theory, DNS redundancy across multiple DNS service provider platforms should be the best solution for optimal DNS high reliability, high availability and high performance. In practice, however, the complexity of tasks and scope for error involved in replicating and maintaining identical DNS zones on multiple platforms pose additional threats to DNS availability. The situation is made worse by:

  • A lack of centralized views
  • A lack of workflow automation
  • The difficulty of coordinating multiple platform APIs

This inability to view, synchronize and update identical zones’ data simultaneously can, in itself, lead to errors and conflicts in DNS configuration and result in a degradation of network performance, or even a network outage – the very events that multi-provider DNS redundancy is intended to prevent.

Protect your DNS on multiple platforms with Men & Mice xDNS Redundancy

Breaking new ground in the battle against DNS disruption, the Men & Mice xDNS Redundancy feature provides the abstraction level necessary to replicate and synchronize critical DNS master zones across multiple DNS service provider platforms, on-premises, in the cloud, or in hybrid or multi-cloud environments.

Men & Mice xDNS provides a unified view and centralized management of DNS data, regardless of the DNS service provider platform. Network administrators and other authorized users can use xDNS to perform necessary updates to their network’s DNS, as well as benefit from building automation with the powerful Men & Mice API, instead of having to dig around in different DNS platforms and deal with coordinating conflicting APIs. DNS-redundancy-and-Men-and-mice-suite.png

Combined with the flexibility of building automation on top of the Men & Mice Suite, xDNS offers you the freedom to better distribute your DNS load based on zone priority, performance requirements and accompanying costs. With xDNS, you are better equipped to steer the tiered price points of externally hosting, for example, critical high-performance or less essential low-performance zones, and utilize the DNS service best suited to your situation at a given time.

 


How xDNS Redundancy Works

Using the Men & Mice xDNS feature, create a zone redundancy group by selecting critical zones from DNS servers and services such as BIND, Windows DNS, Azure DNS, Amazon Route 53, NS1, Dyn and Akamai Fast DNS.

Once an xDNS zone redundancy group has been created, xDNS assists the administrator in creating identically replicated zone content, resulting in multiple identical master zones. Additional zones can be added or removed from the xDNS group as required.

All changes initiated by the user through Men & Mice, both the UI and API, will be applied to all zone instances in the group. All changes made externally to zones existing in the xDNS group, will be synchronized to all zones in that particular xDNS group. However, if DNS record conflicts arise, xDNS will alert the user and provide an option on how to resolve conflicts before the group is re-synchronized.

If an xDNS zone is not available for updating, for instance if one DNS service provider experiences an outage, that zone will be marked as out-of-sync. Once the zone becomes available again, it will be automatically re-synchronized and will receive all updates that were made while the DNS service was unavailable.

Men & Mice and NS1

NS1, the leading intelligent DNS and traffic management provider, recognizes the growing need for diverse application resiliency. NS1 has joined forces with Men & Mice in improving the efficacy of external DNS redundancy. Kris Beevers, Co-founder and CEO, says:

"Leveraging multiple managed DNS networks is the clear best practice for maintaining 100% uptime in today's rapidly evolving operational environment.  Configuring and operating multiple managed DNS services can be a complex, time-consuming process.  NS1 is excited to partner with Men & Mice to help enterprises minimize management overhead and seamlessly enable redundant DNS. xDNS Redundancy is well-suited to enable multi-network DNS without the usual headaches."

Men & Mice xDNS – making external DNS redundancy truly resilient

DNS redundancy is a great concept on paper, but a daunting challenge in practice. With xDNS, enterprises can seek out second, or even third source DNS services, confident in the knowledge that their DNS, and ultimately their business, will truly be safer that way.

Magnus Bjornsson, Men & Mice CEO, considers xDNS an important step towards providing enterprises with greater, and more reliable, network availability.
“Recent prominent network outages once again illustrate the critical importance of building more effective network resiliency through a powerful and secure system of DNS redundancy. Men & Mice xDNS provides a simple way for companies to manage their DNS on multiple external platforms, with the Men & Mice Suite software automatically taking care of the replication and synchronization of data in a reliable and consistent manner. We are looking forward to cooperating with NS1 on developing xDNS and extending DNS redundancy offerings.”

Men & Mice xDNS takes the ‘daunt’ out of maintaining external DNS redundancy, providing the centralized views and control necessary to reduce the risk of network exposure to a single point of failure, improve network reliability and performance and bolster the successful mitigation of DDoS attacks and other potentially harmful DNS incidents.

To learn more about xDNS Redundancy, check out the xDNS webinar, jointly presented by Men & Mice and NS1.

Check out the video to discover how it DDI all comes together:

Or try it out in the Men & Mice Suite:

New Call-to-action

Topics: DNS, Security, High availability, DNS redundancy, DDoS, External DNS, Failover

Men & Mice Breaks New DDI Ground with xDNS Redundancy and Multi-Cloud IPAM

Posted by Men & Mice on 6/29/17 1:30 PM

The joke goes: “How did God create the universe in seven days? No legacy infrastructure.”

Funny (or not) as that may be, how to make the most of legacy infrastructure in the age of accelerating technological disruption and rapid cloud services adoption, is the harsh reality most enterprises face today.

Well-known for its fast, reliable and efficient performance on large enterprise networks, the Men & Mice Suite already has a reputation as the go-to, enterprise-class, software overlay DNS, DHCP and IP Address Management (DDI) solution. With the release of Version 8.2 of the Suite, Men & Mice further solidifies our position as the commercial DDI solution best equipped to help large enterprises capitalize on legacy infrastructure, while adopting cloud services to advance business agility and scalability.

The Men & Mice Suite – IP wherever you are 

architecture.png

Almost three decades of expert innovation in DNS, DHCP and IP Address Management has given Men & Mice unique insight and expertise into creating solutions that confidently mitigate the shocks of technological disruption.

Built as an enterprise-grade, back-end agnostic solution and deployed on top of DNS and DHCP infrastructure, the Men & Mice DDI Suite pulls together critical network data from wherever it is kept, on-premises, in the cloud, hybrid cloud or multi-cloud, and turns a potential hot mess into a comprehensive overview, accessed and controlled from a single pane of glass.

The Men & Mice Suite provides consistent administrative controls on heterogeneous networks, with unparalleled support for Windows DNS and DHCP, BIND, Unbound, PowerDNS, ISC DHCP, Kea DHCP, Cisco IOS, OpenStack and Azure DNS and Amazon Route 53.

Designed to integrate seamlessly with the VMware Orchestrator framework, the Men & Mice Suite VMware vRealize Orchestrator plug-in allows for fast and efficient provisioning of virtual machines.

The first DDI solution to fully integrate with Microsoft Active Directory (AD), the Men & Mice Suite incorporates management of users and groups through AD, while granting access rights and building up roles and responsibilities through the Men & Mice Suite, ensuring advanced and secure granular role-based access management.

Offering you the flexibility to control your network as it suits you best, the Men & Mice Suite provides three powerful interfaces: the Men & Mice management console, the Men & Mice web interface, and, the strong and consistent Men & Mice API, communicating in SOAP, JSON-RPC and REST. The Men & Mice API, especially popular with our customers, provides the robust abstraction tools necessary to build and extend automation.

New in Men & Mice Suite Version 8.2

From Version 8.2, the Men & Mice Suite’s back-end agnostic capabilities are extended to include advanced, multi-cloud IP Address Management and integrated support for external DNS service providers.

Building on the flexibility of its architecture, Men & Mice Suite Version 8.2 consolidates on-premises and cloud networks in one view and point of access through support for IPAM in Azure and AWS, and by adding support for DNS service providers NS1 and Dyn to existing Men & Mice support for Azure DNS and Amazon Route 53.

Unique on the DDI market, and new in Version 8.2, the Men & Mice xDNS redundancy feature enables multi-platform DNS redundancy for ultimate network high availability, and successful mitigation of the fallout from DDoS attacks and other DNS failures.

xDNS redundancy provides the abstraction level necessary to replicate and synchronize critical DNS zones across multiple DNS service provider platforms, eliminating the possibility of a single point of failure resulting from dependency on one external DNS service provider.

Men & Mice - Changing the way the world sees networks

As IT matures into a key element for easily scalable business development and product delivery, and ultimately a driver of business growth, the need for high network availability, reliability and performance escalates.

For Magnus Bjornsson, Men & Mice CEO, delivering DDI products that boost business performance by bridging the gap between on-premises, cloud, hybrid cloud and multi-cloud network environments, is a challenge happily accepted. “We live in a world that’s getting more complicated by the minute. Cloud vendors are continuously bringing powerful new services online and enterprises are wrestling with how and when to best utilize them. Men & Mice Suite Version 8.2 is a landmark release, tackling this great challenge with innovative new features. Consolidating hybrid and multi-cloud IP Address Management in a single view and bolstering DNS availability across service provider platforms with xDNS redundancy, are great steps towards strategically improving the most critical of a company’s IT assets – its network. The Men & Mice Suite, used to run some of the largest corporate networks on the planet, is designed to give you the freedom and flexibility to use the back-end platform you want, to build the network you need.”

Looking for more?

Follow these links for more information on Men & Mice xDNS redundancy feature, or multi-cloud IP Address Management.

To see Men & Mice xDNS redundancy in action, check out the xDNS Redundancy webinar, jointly presented by Men & Mice and NS1.

Curious about how the Men & Mice Suite can benefit your network? Get in touch with one of our Men & Mice Sales Engineersor get your free Version 8.2 license for a complimentary 30-day trial experience.

New Call-to-action

Topics: IPAM, DNS, Security, CLOUD, High availability, DNS redundancy