The Men & Mice Blog

Men & Mice at VMworld 2018, Las Vegas Part 1: DATA CENTER AND CLOUD

Posted by Greg Fazekas on 7/30/18 6:30 AM

men_mice_dns_vmworld2018

We’re returning to VMworld in Las Vegas, August 26-30 (Booth #2124, come say hi!) — and excited to not only see how our industry is evolving to virtualization and automation, but to also contribute our two cents to the dialog (Or 9.1 cents, as it were).

Since the newly released Men & Mice Suite v9.1 offers highly scalable and efficient APIs that act as an abstraction layer to manage an organization’s whole DNS, DHCP and IP address infrastructure, across multiple vendors and cloud platforms, we’re focusing on two main tracks from the VMWorld agenda: Data Center and Cloud and Networking and Security, the first of which we’ll discuss in this post (the latter will appear in the next post).

DATA CENTER AND CLOUD

VMworld’s focus on integrated IT strategy plays nicely with the Men & Mice Suite v9.1 release (and our larger objectives as well).

Men & Mice has been providing compatibility with VMware’s vRealize Orchestrator and vRealize Automation for years now. As the industry turns toward virtualization and cloud technology to build its next-generation, hyper-converged infrastructure in hybrid cloud environments, running cloud-native applications to cut costs and increase efficiency, so to have we adapted our Men & Mice Suite of DNS, DHCP and IPAM solutions to help organizations manage networks effectively and at scale.

The Men & Mice Suite v9.1 supports Unix/Linux, Windows, and Cisco IOS and stretches into the cloud with functionality across Azure DNS, Amazon Route 53, Dyn, NS1 and Akamai Fast DNS, as well as IPAM in AWS, Azure and OpenStack.  It can be dropped on top of an organization’s existing infrastructure to manage, sync and automate network changes, authorizations and provide comprehensive insight into large-scale networks through one unified dashboard.

The Men & Mice Suite v9.1 supports thousands of concurrent users and API connections, with millions of managed IPs and DNS records, for automation and provisioning.

Virtualized Infrastructure and Applicationsmen & mice_secure_visible_dns

We favor virtualization over physical appliances and platform-specific, custom hardware allocation. Turns out, our customers do too.  We want our customers to be able to make the right choices for their network infrastructure (DDI) needs. Then, we offer our environment- and platform-agnostic Men & Mice Suite to help them manage it.

Virtualized infrastructure is both cost and performance efficient. Men & Mice Suite gives organizations the flexibility and adaptability they need as every area of business operations goes digital, providing the managaibility and visibility needed for high-availability networks to be, well, highly available.

Our new Men & Mice Suite v9.1, an overlay network management solution, offers many advantages for virtualizing and automating, as well as increasing visibility and ease-of-management of an enterprise organization’s network infrastructure, including its new web-based management application, which takes the “daunt” out of day-to-day operations and reporting.

Another way we’re making virtualization easier is through the Men & Mice virtual appliances, the DNS software for which we’ve upgraded to BIND 9.11, supporting various new features as well as DNSTAP. For example, details on DNS queries received and DNS replies sent by the Men & Mice virtual appliances can now be logged for further processing by enabling and utilizing the powerful DNSTAP feature with minimal performance impact on the appliances. They can also function as NTP (Network Time Protocol) servers and be served by the same network infrastructure as DNS and DHCP.

men_mice_hybrid network managementPrivate, Hybrid, and Public Clouds

Every cloud vendor is different. Different platforms and configurations offer different advantages (and drawbacks) for customers. They also offer very different, and often incompatible APIs. Men & Mice Suite v9.1 services complex enterprise hybrid and multi-cloud networks by providing single-pane-of-glass visibility and cross-platform functionality for DNS, DHCP and IPAM (DDI) operations, whose networks use either multiple cloud (cloud native) vendors or a combination of on-prem and cloud (hybrid).

The ability to bulk migrate DNS zones and DHCP scopes, ability to implement role-based authorizations, as well as providing 3 management interfaces (Windows-based management console, web-based management application and REST, SOAP and JSON-RPC APIs), the Men & Mice Suite v9.1 overlay software solution eliminates many of the complexities of today's large-scale networks while mitigating DNS failures such as configuration errors and DDoS attacks.

Further, Men & Mice Suite's xDNS Redundancy provides a level of abstraction that builds automation, provides centralized views, eliminates human error and removes conflicting DNS service provider platform complexities (e.g. incompatible APIs).

The Men & Mice Suite v9.1 also allows organizations to add Active Directory zones to xDNS groups. This, tied with the read-only members of xDNS groups, makes it easy for organizations to bring their internal, on-premises DNS into their virtual private clouds, and vice versa.

Cloud operations monitoring, a topic to which we’re looking greatly forward discussing at VMworld, is transparent and easy in the Men & Mice Suite v9.1. Not only have we integrated true cloud DNS into the Men & Mice Suite, but we also paid attention to the cloud-unique challenges it brings with it.

Can’t make it? No worries!

You can book an appointment to meet our team onsite at VMWorld (Booth #2124).

Or, if you’re missing the event, book a walk-thru any time by clicking the button below.

We’re always happy showcase the benefits of deploying our best-in-class overlay management solution on top of your network.

Book appointment

DNS, DHCP & IPAM Software Trial

Topics: "cloud dns", hybrid cloud, networking best practices, IP address management, DDoS, VMware, API, Redundant DNS, DNS redundancy, hybrid network, DHCP, DNS, Men & Mice, DDI

Network virtualization with visibility and automation of DNS, DHCP and IPAM

Posted by Greg Fazekas on 7/16/18 8:45 AM

The Men & Mice Suite version 9.1, released last week, introduced several new features and improved functionality for hybrid and multi-cloud networks. One of the additions we developed in our mission to change the way the world sees networks is a cross-platform, easy-to-use web-based management application.

Seamless integration

We intend the web-based management application for the Men & Mice Suite to be the go-to interface for the most common tasks. In the future, it will also serve as the central platform for our innovations across DNS, DHCP and IPAM (DDI). We're highly focused on developing an increasing number of partnerships to make integration across services and vendors even more seamless.

Day-to-day DDI operations made simple


With three major sections — DNS, Networks, and Reporting — the Men & Mice web-based management application is organized around operational efficiency.

Where the existing Windows-based management console of the Men & Mice Suite gives you the full range of configuration and management options for your networks, the web-based management application focuses on day-to-day tasks, such as finding and working with DNS zones or records, IP address ranges, DHCP scopes and IP addresses. You may want to use the full Men & Mice Suite application for the yearly inspection or the large restructuring of your networks, but can quickly get things done from anywhere, on any device, with the web application.

Quick Commands: lightning-fast, best-in-class user experience

men_and_mice_quick_command

Another way the web-based management application helps to efficiently manage networks is through its Quick Commands feature.

If you ever used the Spotlight functionality in MacOS or the universal search bar in other platforms or services, you know how a deceptively simple function can save incredible amounts of time. The Quick Command feature interacts with a single click or key combination (ctrl+space) and uses auto-complete to arrive at the needed information or function in just a few keystrokes. 

We’ll continue to focus on and add functionality to Quick Commands in future releases. As it gets smarter, so to will your network management get easier.

Visit the Men & Mice Suite web-based management console guide for more information on its capabilities and full functionality.

Virtualization and automation 

In addition to our virtual DNS/DHCP appliances and Virtual DNS Caching appliances, in a larger context of network management, the v9.1 release of the Men & Mice Suite continues to forge its path towards greater network virtualization and automation. The Men & Mice Suite restores and significantly improves the unified network visibility usually forfeited in the process of virtualization, intuitively pulling data from critical network components and consolidating it in an easy-to-use UI with extensive centralized control and functionality.

The Men & Mice Suite offers unrivalled integration with Microsoft Active Directory Sites and Subnets, combined with real-time synchronization across diverse server environments and distributed virtual and physical locations.

The comprehensive built-in tracking and logging tools ensure the systematic keeping of records. It's important to know who made what change, when, where, and why. Transparency takes the sting out of the fast and dynamic change procedures that are the hallmarks of virtualized environments.

Access management is granular and fully integrated with Active Directory. Role-based access provides strong, centralized control and delegation. Different IT teams experience painless cooperation and efficiency, respecting the often hazy task boundaries created by the transformation from physical machines to virtual instances.

The Men & Mice roadshow continues!

men&mice_vmworld_Booth #2124

What we do at Men & Mice is help companies with large, complex network infrastructure automate and virtualize their networks. We also believe in the value of other forms of networking-- meeting customers and future customers in person.

We’ll be exhibiting at VMworld in Las Vegas August 26-30, to showcase the Men & Mice Suite at booth# 2124.  We'll report in on our social media and on this blog — hope to see you either there!

Topics: hybrid cloud, hybrid network, IP address management, External DNS, VMware, vmworld, DNS, DHCP, Men & Mice, DDI

Men & Mice Suite 9.1: cloud-ready network management for DNS, DHCP and IPAM

Posted by Men & Mice on 7/11/18 7:47 AM

Changing the way the world sees LI

Our commitment to efficient network management has a new number! The Men & Mice Suite 9.1 is a feature release with a host of cloud-ready enhancements plus the usual suspects (bug fixes and improvements).  

Network Management just got easier

Transparency, responsiveness, and ease-of-use are all core principles of Men & Mice for keeping networks healthy and safe from DDoS attacks and other DNS network failures.

The 9.1 release continues our mission to simplify network management without sacrificing features. Included in Men & Mice Suite v9.1:

  • A new web-based Men & Mice Suite management application
  • Optimized and enhanced cloud support
  • Improved xDNS Redundancy read-only zones for hybrid and multi-cloud networks
  • DNS software on appliances upgraded to BIND 9.11 with DNSTAP support
  • NTP functionality for virtual appliances
  • Various improvements and bug fixes

5 Things You’ll Love About Men & Mice Suite v9.1

Men & Mice Suite v9.1 focuses on features and refinements gleaned from customer feedback and engagement as well as refinements of previously introduced functionality. Here's what you will find in the new release: 

Web-based management application

The new web-based management application serves as an alternative to the Men & Mice Suite Windows-based management console. It’s designed to make performing day-to-day tasks, management functions and generating reports related to DNS and DHCP operations easier. The application features three sections: DNS, Networks and Reporting.

  • The DNS section makes all your DNS zones accessible from a single place.
  • The Networks section gives you instant access and overview of your networks.
  • Reporting lets you quickly find and run existing reports.

men_and_mice_quick_command-1

Its Quick Command functionality cuts down time on common tasks such as finding and working with DNS zones or records, IP address ranges, DHCP scopes and IP addresses.

Read-only zones in xDNS Redundancy groups

xDNS Redundancy, which can be used to synchronize DNS zones hosted with multiple cloud providers, now includes support for Active Directory-hosted zones. Zones in a redundancy group can be assigned to read-only mode, so that changes made to a DNS zone outside of the Men & Mice Suite will not be replicated to all other zone instances.

Optimized and enhanced Cloud support


Version 9.1 streamlines the migration and management of a large number of DNS zones with Azure DNS and Amazon Route 53 by utilizing cloud-native features to monitor changes to DNS made outside of the Men & Mice Suite, greatly improving synchronization of DNS data from the cloud providers.

Men & Mice virtual appliances upgraded to BIND 9.11 with 

DNSTAP support

DNS software on Men & Mice virtual appliances has been upgraded to BIND 9.11, which supports various new features as well as DNSTAP. Details on DNS queries received and DNS replies sent by the Men & Mice virtual appliances can now be logged for further processing by enabling and utilizing the powerful DNSTAP feature with minimal performance impact on the appliances.

NTP functionality for virtual appliances

The virtual appliances can also now function as NTP (Network Time Protocol) servers and be served by the same network infrastructure as DNS and DHCP.  Currently this functionality is manual and can be implemented per request with our support team. 

Nearly 30 years of DNS experience in one solution

The Men & Mice Suite v9.1 represents our commitment to enabling customers to adapt their infrastructure to be more software-enabled, cloud-ready and redundant, with increased visibility, control, security and automation.” --Magnús Björnsson, CEO of Men & Mice.

Complex enterprise network infrastructure can — and should — have the same elegant simplicity and responsiveness as IT professionals expect from customer-grade solutions. In the new release, Men & Mice has combined its nearly 30 years of expertise in developing DNS, DHCP and IPAM solutions with modern UX best practices to deliver a compelling, enjoyable management interface on top of a best-in-class, robust software-based DDI product.  

 If you want to try Men & Mice Suite v9.1 for free just click the button below. 

DNS, DHCP & IPAM Software Trial

Not ready? Read more about the Men & Mice Suite, or get an online demo.

DNS, DHCP and IPAM Demo

Topics: hybrid cloud, hybrid network, IP address management, DDoS, Redundant DNS, DHCP, IPAM, DNS, "cloud dns"

Men & Mice DNS Conference Roadshow 2018

Posted by Paula Gould on 5/28/18 12:22 PM

Men&Mice_Magnús_Björnsson_Berlin

Earlier this month we flew to Berlin to host an event at the residence of the Iceland Ambassador to Germany for customers, partners and interested DNS infrastructure managers. The event featured opening remarks from Ambassador Martin Eyjólfsson as well as talks from Magnus Björnsson, CEO of Men & Mice, Carsten Strotmann, who is a renowned DNS expert and also part of Men & Mice professional services; Sigfús Magnússon, VP of Product Management, Heimir Gunnlaugsson, CEO of Microsoft Iceland and Marc Eggenberger, experienced IT infrastructure consultant, iET SA | ITS - Central IT.  Closing remarks were delivered by Svana Helen Björnsdóttir, Chairman of Men & Mice. 

Men&Mice_GretaMaria_Berlin_150518_065

As we expand the Men & Mice DNS, DCHP and IPAM solutions to cater to Network Managers expanding their DNS and IPAM to cloud and virtual environments, we’re increasing our focus on in-person events. Our event in Berlin was the first in our series of activities to meet our customers where they do business.  While your networks become more virtual and automated, we're making sure your engagement with our Men & Mice services team is personable.

Last week we spoke at Latitude59 in Tallinn, Estonia.

menandmice_latitude59Ph_ Tago Kalbri 16.08.56

This week we are onsite at Managed Services & Hosting Summit in Amsterdam  and will deliver a keynote at Startup Iceland on 31 May, an event for which we are also a proud sponsor. 

We'll kickoff our June activities by exhibiting at Cisco Live in Orlando, Florida from 10-14 June. We'll visit Microsoft Inspire in July and exhibit at VMWorld in August before heading to Microsoft Ignite as exhibitors in September. Hope to see you soon! 

menandmice_dns_CLUS_ linkedin

Topics: DNS events, CLOUD, DNS, Men & Mice

Everything’s changed in DNS. Nothing’s different in DNS.

Posted by Greg Fazekas on 5/10/18 7:56 AM

globe_menmicelogo

The history of DNS (Domain Name System) starts with the earliest of early networked systems: ARPANET. DNS has often been characterized as the “phone book” for the internet — that analogy was, of course, invented  in an era where phonebooks were a thing.

It may be more fitting to liken it to a phone company switchboard. Even in the earliest days of ARPANET, however, the required communication was to send an email to Stanford Research Institute at Stanford University, where the hosts.txt file was maintained, to get a new Hostname into the list. Then, all Internet hosts updated the hosts.txt file twice a week via FTP file transfer. Twice a week... by FTP!

Interesting fact: whatever platform you’re using, chances are you can find a hostsfile somewhere on your computer. This is a remnant of the early ARPANET days. Back then, a simple static text file controlled the entirety of the network.

The Making of a Network (a.k.a. “everything has changed”)

As the networks grew, the need to wait became cumbersome, if not unbearable. Business was increasingly conducted outside of bank hours, and computers were moving data faster for us. So, why not use computing to handle IP assignments as well?

In 1983, the standard for DNS was accepted by the ARPANET community. By 1984, at UC Berkeley, we saw the advent of "Open Source" Berkeley Unix Distribution (BSD) and ported TCP/IP to Unix, making Unix a networked OS (under a DARPA grant) resulting in the first version of the Berkeley Internet Name Domain (BIND). To this day BIND serves as the de facto DNS software of the internet.

Thereafter, the Internet Engineering Task Force (IETF) was founded, and with it came new formal processes that have shaped the backend of the internet as we know it today.

Fast Forward To Now (a.k.a. “nothing’s different”)

You may be thinking: that’s interesting and all, but what does that have to do with my DNS network?

Well:  DNS hasn’t changed much in the last 4 decades. Of course, the explosive growth of the internet has changed the ways we map, scale and secure our networks. But the fundamental operating principles of DNS haven’t changed since its inception-- it’s still the switchboard of the internet. Instead of humans making a request through email, however, systems can call on DNS services, any time of day, to assign a multitude of IP addresses at a time.

The introduction of IPv6 (which has yet to be fully realized), and the dawn of cloud computing and IoT (Internet of Things) brought  significantly increased device requests and IP traffic.However, all that has not changed what DNS does; rather only how it does it.

We’ve Seen It Change and Stay the Same

DNS has changed very little; but the way we utilize it changed immensely. We've seen it: since the 1990’s, Men & Mice has serviced enterprise companies with DNS, DHCP and IPAM solutions.

We proactively evolve our overlay network management solutions to meet the needs of enterprise customers, and now high growth IoT companies as well. (Note: the two are not mutually exclusive.)

We are working with perhaps the most fundamental building (scaling) block of the internet. Our expertise is focused on the importance of adaptation. Network infrastructures have become hybrid, or have moved to the cloud completely. Multitudes of DNS services and environments have come to market introducing greater choices, but also complexities for network managers.

Men & Mice and the future of DNS

menandmice_unified_console_

Men & Mice has evolved its DNS, DHCP and IPAM solutions to cater to these changing environments. We adapted to become more flexible, so that the networks of our clients can migrate across network vendors easier. We created a  unified network management console to manage, in one place, all of the diverse platforms that make up a company’s network.

We’ve introduced new services such as xDNS in 2017 to help companies manage all external DNS. Likewise, we added deeper functionality with Microsoft Azure and Azure DNS for Microsoft customers with large domain portfolios.

We’ve streamlined our sales and customer journey processes, to reflect the same ease of use customers experience in our software solutions. Get a Live Demo directly from our website, for example.

We continue to offer some of the most sought-after training courses for companies and individuals who wish to learn or sharpen their understanding of DNS, enabling them to significantly increase expertise levels across their teams.

Meet our team

Join us in Berlin on May 15th, for a special event with the Embassy of Iceland in Germany. We will discuss the “State of Network Management” and the new challenges of DNS, DHCP and IPAM.

Or, meet us at Managed Service Hosting Summit, Cisco Live, Microsoft Inspire,VMWorld and Microsoft Ignite in the coming months.

Interesting fact: Bob Metcalfe, who invented the standard of the ethernet, predicted in 1995 that the internet would collapse in a year. He  also envisioned an end to wireless technologies, and that computers would stay wired.To his credit, he did — as per his promise — eat his words, literally, after none of those things happened.

menandmice_dns_CLUS_ linkedin

Topics: DNS, TechEd, DDI

Thinking of doing DNS better?

Posted by Men & Mice on 3/20/18 10:27 AM

I train, therefore I am

Or that’s what Descartes may have said if he’d been thinking his thoughts in 2018.

Mind you, this blog is not about thinking and it’s not about physical training either, like running or wife carrying or stuff like that. It’s more about training as in training for the mind. Learning useful things. Like how to configure BIND, debug DNS, figure out TSIGs or what DNSSEC can do for your network. Basically, the kind of training that helps you build a leaner, stronger, fitter network, and create the system resilience needed to deliver those constantly surging numbers of packets to their right destination, faster and more securely.

DNS sync.png

Getting DNS skills in sync

Since 1999, Men & Mice has been known for running effective and efficient DNS & BIND training courses worldwide. Previous offerings included open, public courses in a number of locations, as well as private on-site training on request.

Beginning in 2018, we are putting a little extra effort and logging a few more air-miles, making it much easier for you to attend, wherever you are.  We’re extending our public offerings into new destinations, with upcoming courses scheduled in California, New York, Switzerland, England and Israel, with additional courses to be added as the year progresses. See the schedule at menandmice.com/training/

To get the hang of running a better network, sign up for the 3-day DNS & BIND Fundamentals, or take our most popular course and spend 5 days sinking your teeth deeper into the subject matter in DNS & BIND Week. A range of on-site training options is also on offer.

Reach out to Men & Mice Training to register for a course, ask questions, log comments, or to recommend additional locations for future public offerings.

In the meantime, check out the dates and feast your eyes on the list of topics covered by our hands-on courses, taught by DNS experts.

Happy training!

Topics: DNS, Men & Mice, DNS training, BIND

Secure Your DNS Across Multiple DNS Service Platforms with Men & Mice xDNS Redundancy

Posted by Men & Mice on 7/10/17 12:50 PM

DNS (Domain Name System) is the most critical aspect of any network’s availability. When DNS services are halted, or slowed down significantly, networks become inaccessible, leading to damaging losses in revenue and reputation for enterprises.

To ensure optimal network availability, many enterprises depend on top-tier managed DNS service providers for their external DNS needs. The basic “table stakes” characteristics of an enterprise-class managed DNS service are high reliability, high availability, high performance and traffic management. However, even the most robust DNS infrastructure is not immune to outages.

Outages may be localized, in which only certain DNS servers in the network are not responding, or, less commonly, system-wide. A system-wide DNS failure can take an entire business offline - the equivalent of power failure in every one of their data centers.

To prevent this, top-tier managed DNS systems have a great deal of built-in redundancy and fault tolerance, yet the danger of a single point of failure remains for enterprises that rely solely on a single-source DNS service.

If no system of DNS is failure proof, this begs the question: what should an enterprise do about it?

Using multiple DNS service providers for ultimate DNS redundancy

DNS availability statistics for managed DNS providers shows that the industry norm exceeds 5 nines (99.999%) uptime. This is the equivalent of about 5 minutes per year downtime. However, this top line number does not provide any detail on the impact of degraded performance, or the cascading effect of a system-wide outage of various duration, on individual enterprises.

To discover the true impact of a potential loss of DNS availability, enterprises need to properly assess the business risk associated with relying on a sole source provider, and compare that with the cost of a second source DNS service. What would a 30-minute loss of DNS cost the business in terms of revenue loss, reputation damage, support costs and recovery? What does it cost to maintain a second source DNS service?

Research amongst enterprises for whom online services are mission critical generally concludes that the cost ratios are in the range of 10:1 – one order of magnitude. Put another way, the cost of one outage is roughly estimated to be ten times the annual cost of a maintaining a second service. A business would have to have second source DNS for ten years to equal the cost of one major DNS outage.

Looking at the odds and costs of outages, many enterprises are opting to bring in a second, or even a third, DNS service to hold copies of critical DNS master zones.

This system of external DNS redundancy boosts DNS availability by:

External-DNS-Redundancy.png

1. removing the danger of exposure to a single point of DNS failure.

2. reducing traditional master-slave DNS redundancy vulnerabilities, where slave zones can’t be changed if the master becomes unavailable.

3. improving infrastructure resilience by hosting critical zones with multiple providers, ensuring continued service availability and updates of changes if one DNS service provider becomes unavailable.

The risky business of maintaining DNS redundancy across platforms

In theory, DNS redundancy across multiple DNS service provider platforms should be the best solution for optimal DNS high reliability, high availability and high performance. In practice, however, the complexity of tasks and scope for error involved in replicating and maintaining identical DNS zones on multiple platforms pose additional threats to DNS availability. The situation is made worse by:

  • A lack of centralized views
  • A lack of workflow automation
  • The difficulty of coordinating multiple platform APIs

This inability to view, synchronize and update identical zones’ data simultaneously can, in itself, lead to errors and conflicts in DNS configuration and result in a degradation of network performance, or even a network outage – the very events that multi-provider DNS redundancy is intended to prevent.

Protect your DNS on multiple platforms with Men & Mice xDNS Redundancy

Breaking new ground in the battle against DNS disruption, the Men & Mice xDNS Redundancy feature provides the abstraction level necessary to replicate and synchronize critical DNS master zones across multiple DNS service provider platforms, on-premises, in the cloud, or in hybrid or multi-cloud environments.

Men & Mice xDNS provides a unified view and centralized management of DNS data, regardless of the DNS service provider platform. Network administrators and other authorized users can use xDNS to perform necessary updates to their network’s DNS, as well as benefit from building automation with the powerful Men & Mice API, instead of having to dig around in different DNS platforms and deal with coordinating conflicting APIs. DNS-redundancy-and-Men-and-mice-suite.png

Combined with the flexibility of building automation on top of the Men & Mice Suite, xDNS offers you the freedom to better distribute your DNS load based on zone priority, performance requirements and accompanying costs. With xDNS, you are better equipped to steer the tiered price points of externally hosting, for example, critical high-performance or less essential low-performance zones, and utilize the DNS service best suited to your situation at a given time.

 


How xDNS Redundancy Works

Using the Men & Mice xDNS feature, create a zone redundancy group by selecting critical zones from DNS servers and services such as BIND, Windows DNS, Azure DNS, Amazon Route 53, NS1, Dyn and Akamai Fast DNS.

Once an xDNS zone redundancy group has been created, xDNS assists the administrator in creating identically replicated zone content, resulting in multiple identical master zones. Additional zones can be added or removed from the xDNS group as required.

All changes initiated by the user through Men & Mice, both the UI and API, will be applied to all zone instances in the group. All changes made externally to zones existing in the xDNS group, will be synchronized to all zones in that particular xDNS group. However, if DNS record conflicts arise, xDNS will alert the user and provide an option on how to resolve conflicts before the group is re-synchronized.

If an xDNS zone is not available for updating, for instance if one DNS service provider experiences an outage, that zone will be marked as out-of-sync. Once the zone becomes available again, it will be automatically re-synchronized and will receive all updates that were made while the DNS service was unavailable.

 

 

Men & Mice and NS1

NS1, the leading intelligent DNS and traffic management provider, recognizes the growing need for diverse application resiliency. NS1 has joined forces with Men & Mice in improving the efficacy of external DNS redundancy. Kris Beevers, Co-founder and CEO, says:

"Leveraging multiple managed DNS networks is the clear best practice for maintaining 100% uptime in today's rapidly evolving operational environment.  Configuring and operating multiple managed DNS services can be a complex, time-consuming process.  NS1 is excited to partner with Men & Mice to help enterprises minimize management overhead and seamlessly enable redundant DNS. xDNS Redundancy is well-suited to enable multi-network DNS without the usual headaches."

Men & Mice xDNS – making external DNS redundancy truly resilient

DNS redundancy is a great concept on paper, but a daunting challenge in practice. With xDNS, enterprises can seek out second, or even third source DNS services, confident in the knowledge that their DNS, and ultimately their business, will truly be safer that way.

Magnus Bjornsson, Men & Mice CEO, considers xDNS an important step towards providing enterprises with greater, and more reliable, network availability.
“Recent prominent network outages once again illustrate the critical importance of building more effective network resiliency through a powerful and secure system of DNS redundancy. Men & Mice xDNS provides a simple way for companies to manage their DNS on multiple external platforms, with the Men & Mice Suite software automatically taking care of the replication and synchronization of data in a reliable and consistent manner. We are looking forward to cooperating with NS1 on developing xDNS and extending DNS redundancy offerings.”

Men & Mice xDNS takes the ‘daunt’ out of maintaining external DNS redundancy, providing the centralized views and control necessary to reduce the risk of network exposure to a single point of failure, improve network reliability and performance and bolster the successful mitigation of DDoS attacks and other potentially harmful DNS incidents.

To learn more about xDNS Redundancy, check out the xDNS webinar, jointly presented by Men & Mice and NS1.

Check out the video to discover how it DDI all comes together:

Or try it out in the Men & Mice Suite:

New Call-to-action

Topics: High availability, DNS redundancy, DDoS, External DNS, DNS, Failover, Security

Men & Mice Breaks New DDI Ground with xDNS Redundancy and Multi-Cloud IPAM

Posted by Men & Mice on 6/29/17 1:30 PM

The joke goes: “How did God create the universe in seven days? No legacy infrastructure.”

Funny (or not) as that may be, how to make the most of legacy infrastructure in the age of accelerating technological disruption and rapid cloud services adoption, is the harsh reality most enterprises face today.

Well-known for its fast, reliable and efficient performance on large enterprise networks, the Men & Mice Suite already has a reputation as the go-to, enterprise-class, software overlay DNS, DHCP and IP Address Management (DDI) solution. With the release of Version 8.2 of the Suite, Men & Mice further solidifies our position as the commercial DDI solution best equipped to help large enterprises capitalize on legacy infrastructure, while adopting cloud services to advance business agility and scalability.

The Men & Mice Suite – IP wherever you are 

architecture.png

Almost three decades of expert innovation in DNS, DHCP and IP Address Management has given Men & Mice unique insight and expertise into creating solutions that confidently mitigate the shocks of technological disruption.

Built as an enterprise-grade, back-end agnostic solution and deployed on top of DNS and DHCP infrastructure, the Men & Mice DDI Suite pulls together critical network data from wherever it is kept, on-premises, in the cloud, hybrid cloud or multi-cloud, and turns a potential hot mess into a comprehensive overview, accessed and controlled from a single pane of glass.

The Men & Mice Suite provides consistent administrative controls on heterogeneous networks, with unparalleled support for Windows DNS and DHCP, BIND, Unbound, PowerDNS, ISC DHCP, Kea DHCP, Cisco IOS, OpenStack and Azure DNS and Amazon Route 53.

Designed to integrate seamlessly with the VMware Orchestrator framework, the Men & Mice Suite VMware vRealize Orchestrator plug-in allows for fast and efficient provisioning of virtual machines.

The first DDI solution to fully integrate with Microsoft Active Directory (AD), the Men & Mice Suite incorporates management of users and groups through AD, while granting access rights and building up roles and responsibilities through the Men & Mice Suite, ensuring advanced and secure granular role-based access management.

Offering you the flexibility to control your network as it suits you best, the Men & Mice Suite provides three powerful interfaces: the Men & Mice management console, the Men & Mice web interface, and, the strong and consistent Men & Mice API, communicating in SOAP, JSON-RPC and REST. The Men & Mice API, especially popular with our customers, provides the robust abstraction tools necessary to build and extend automation.

New in Men & Mice Suite Version 8.2

From Version 8.2, the Men & Mice Suite’s back-end agnostic capabilities are extended to include advanced, multi-cloud IP Address Management and integrated support for external DNS service providers.

Building on the flexibility of its architecture, Men & Mice Suite Version 8.2 consolidates on-premises and cloud networks in one view and point of access through support for IPAM in Azure and AWS, and by adding support for DNS service providers NS1 and Dyn to existing Men & Mice support for Azure DNS and Amazon Route 53.

Unique on the DDI market, and new in Version 8.2, the Men & Mice xDNS redundancy feature enables multi-platform DNS redundancy for ultimate network high availability, and successful mitigation of the fallout from DDoS attacks and other DNS failures.

xDNS redundancy provides the abstraction level necessary to replicate and synchronize critical DNS zones across multiple DNS service provider platforms, eliminating the possibility of a single point of failure resulting from dependency on one external DNS service provider.

Men & Mice - Changing the way the world sees networks

As IT matures into a key element for easily scalable business development and product delivery, and ultimately a driver of business growth, the need for high network availability, reliability and performance escalates.

For Magnus Bjornsson, Men & Mice CEO, delivering DDI products that boost business performance by bridging the gap between on-premises, cloud, hybrid cloud and multi-cloud network environments, is a challenge happily accepted. “We live in a world that’s getting more complicated by the minute. Cloud vendors are continuously bringing powerful new services online and enterprises are wrestling with how and when to best utilize them. Men & Mice Suite Version 8.2 is a landmark release, tackling this great challenge with innovative new features. Consolidating hybrid and multi-cloud IP Address Management in a single view and bolstering DNS availability across service provider platforms with xDNS redundancy, are great steps towards strategically improving the most critical of a company’s IT assets – its network. The Men & Mice Suite, used to run some of the largest corporate networks on the planet, is designed to give you the freedom and flexibility to use the back-end platform you want, to build the network you need.”

Looking for more?

Follow these links for more information on Men & Mice xDNS redundancy feature, or multi-cloud IP Address Management.

To see Men & Mice xDNS redundancy in action, check out the xDNS Redundancy webinar, jointly presented by Men & Mice and NS1.

Curious about how the Men & Mice Suite can benefit your network? Get in touch with one of our Men & Mice Sales Engineersor get your free Version 8.2 license for a complimentary 30-day trial experience.

New Call-to-action

Topics: DNS redundancy, CLOUD, High availability, Security, IPAM, DNS

Ready for another look at DNSSEC?

Posted by Men & Mice on 4/12/17 8:32 AM

dnssec.pngSince the dawn of DNS, it has been a system regularly experiencing phases of increased vulnerability. Yet never before has it been as vulnerable to the escalating size of DNS attacks as in recent years, most notably in 2016.

Advice on how to prevent, or at least mitigate, all manner of attacks on DNS proliferates, and every security vendor and his uncle promises heaven and earth, if only you bought into their solutions. While you should investigate all options and carefully devise a wholescale security strategy, together with overhauling your network’s architecture design to close unnecessary gaps and eliminate weak links, it is critical that you don’t leave one of the most obvious DNS security stones unturned – DNSSEC. 

After Dyn went down so spectacularly last October during the biggest DDoS attack recorded to date, Geoff Huston gave an excellent talk at RIPE 73, speculating on possible ways to mitigate DNS attacks. In the process, he also managed to remind the audience that one of the ways to make DNS (and conversely, the internet) safer would be to fully implement DNSSEC. Fully deployed, DNSSEC ensures that the end user is connecting to the intended, and verified, website or service corresponding to a specific domain name. In this way, DNSSEC protects the directory lookup and complements other security technologies, such as TLS (https:). DNSSEC is not a magic bullet and won’t solve all internet security issues, but in a world of constantly multiplying mutations of attacks on DNS availability, it sure can’t hurt to add it to your DNS security repertoire.

That said, DNSSEC would be a much happier prospect for most of us if it were not so tedious to set up. Still, like all things worthwhile, a little bit of initial effort can take you a long way. To help you get a grip on the ins and outs of DNSSEC, Men & Mice’s DNS expert Carsten Strotmann recently added a DNSSEC zone signing tutorial to our useful selection of DNSSEC resources, all bound to help you take steps towards DNSSEC with greater confidence. The DNSSEC zone signing tutorial follows on from Carsten’s highly rated November 2016 webinar on DNS and DNSSEC monitoring – Strategy and Tools. An added bonus is the scripts of 15 essential DNS and DNSSEC monitoring tests which can come in pretty handy once you’ve set the DNSSEC wheels in motion.

In the greater scheme of dealing with DNS vulnerabilities, it’s reassuring to know that organizations such as the IETF are dedicated to coming up with solutions to better protect the internet at the top levels of design. The DNS PRIVate Exchange Working Group (DPRIVE – a simply brilliant acronym, as they go) is tasked with developing mechanisms to enable the confidentiality of DNS transactions. While DNSSEC revolves around ensuring that data remains unchanged during communication, the data itself remains open, so to speak. DPRIVE is working towards concealing the data, primarily focusing on providing confidentiality between DNS Clients and Iterative Resolvers, but perhaps later on progressing towards providing end-to-end confidentiality of DNS transactions. In practice, these developments mean that somewhere down the road, it will hopefully be possible to:

  1. provide DNS servers with knowledge on how the structure of the internet works so DNS queries will have a straighter and narrower path, only asking for the data that is really required and not having to put in full requests that have to go all the way to the root name servers.

  2. encrypt communication between the DNS resolver (usually on the internet provider’s network) and authoritative servers on the internet so that data transmitted can’t be harvested by ill-intentioned entities.

One of the side benefits of this type of encryption is that the underlying transport protocol will likely switch from UDP to TCP, thereby providing the ‘handshake’ required for secure communication and making spoofing so resource intensive that it will take the easy fun out of the kind of DoS attacks we’ve seen escalating in recent years.  

With all new and generic top level domains, as well as country code top level domains DNSSEC signed today, the implementation of DNSSEC to make the internet more robust and secure is quickly turning into the rule, rather than the exception. Which begs the question: why wait till tomorrow when you can begin implementing DNSSEC on your domain today?

Free trial of the Men & Mice Suite

 

Topics: DNSSEC, DANE, DNS

Microsoft Azure DNS and Men & Mice Making More Sparks Together

Posted by Men & Mice on 9/29/16 10:57 PM

Chemistry. Sometimes, when two separate entities meet, they just have it. Sometimes they don’t. When it comes to Men & Mice and Microsoft, it’s definitely a case of the former. There’s surefire chemistry, and, even though the relationship already dates back to way back when, we’ve never been stronger together than we are now.

Just this week, Microsoft Azure announced General Availability of their domain hosting service, Azure DNS, in a joint statement with Men & Mice, released on September 26th at the Microsoft Ignite conference in Atlanta, USA. The General Availability announcement comes slightly more than a year after Microsoft first unveiled the public preview of this new addition to their cloud network offerings at Microsoft Ignite in Chicago in 2015. Men & Mice had already announced support for Microsoft Azure DNS in January of this year, with the release of the Men & Mice Suite Version 7.1. Now everyone is able to pick the fully ripe fruits of this productive partnership.

According to Jonathan Tuliani, Program Manager for Azure Networking – DNS and Traffic Manager, with this announcement Azure DNS is now ready to be used for production workloads. Given that Azure DNS “is supported via Azure Support and is backed by a 99.99% availability SLA” this means that Men & Mice Suite customers can now sit back and enjoy the high availability, performance, low cost and convenience of hosting their domains in the cloud with Azure DNS, while maintaining full control of their DNS domains and IP address blocks with the help of the powerful DNS, DHCP and IP Address Management (DDI) tools provided by the Men & Mice Suite.

azure_dns.jpg

Magnus E. Bjornsson, CEO of Men & Mice, sees this as one more positive step towards the continued development of third-party support products in close cooperation with Microsoft. “We are proud partners of Microsoft and embrace the opportunity to join forces with this leader in the field of IT. Our mutual collaboration enhances the value of the open and adaptable Men & Mice Suite to our customers.”

The Men & Mice Suite already exhibits a core, unfettered synergy with Microsoft Active Directory, which helps to make it one of the world’s top choice suppliers of DNS, DHCP and IP Address Management software solutions. With the addition of support for Azure DNS, as well as support for Windows Server 2016, there’s no telling where this juicing up of existing chemistry will take us next. If the past is anything to go by, it’s bound to be a happy combination of small steps and giant leaps towards collaborative, innovative creation.

The full General Availability announcement can be accessed on the Microsoft Azure blog.

 

Topics: Men & Mice Suite, DNS

Why follow Men & Mice?

The Men & Mice blog publishes educational, informational, as well as product-related material for everyone and anyone interested in IP Address Management, DNS, DHCP, IPv6, DNSSEC and more.

Subscribe to Email Updates

Recent Posts