Chaos Laboratory

A couple of weeks back I had discussed the web-browsing enhancements you may gain by using the Google Public DNS Servers. Here I am with a new tool that can further boost your browsing speeds – in some cases even up to the order of 700% !

Namebench is an open source DNS benchmarking utility which can determine the fastest DNS servers for your internet link just by running a couple of short tests (average duration: 4-5 minutes).

…namebench runs a fair and thorough benchmark using your web browser history, tcpdump output, or standardized datasets in order to provide an individualized recommendation.

The tool is available for all major OS-es i.e. Windows, Linux and Mac and is hosted at Google Code.

I ran the tool both at my home and office and the DNS recommendations vastly improved my browsing speed. What’s cool about this approach is that the speed difference is apparent to the naked eye.

Namebench doesn’t modify your system settings in any way – that part is left entirely to you. So in case you don’t want to fire up your Network Settings panel and tweak the DNS settings manually, you can always fall back on a  graphical DNS switching tool like DNS Jumper. In this context, please note that the recommendations for one particular link (say your office) may not work for another link (your home), unless both connections utilize similar links from the same ISP. So make sure to perform the benchmark separately for every connection that you wish to optimize.

If you’ve got 5 minutes to spare and / or are seeking significantly enhanced browsing experience, namebench is definitely the tool for you. And if you find it really useful, be sure to leave a comment on your experience.

Jan 06th by miCRoSCoPiC^eaRthLinG

Continue Reading

Came across this cool new introduction from Google named Google Public DNS – a set of DNS Servers that are meant to replace the DNS servers that you normally use (most likely handed out automatically by your ISP) and considerably speed-up your browsing experience.

This service leverages on Google’s existing search database and thus accounts for speedy (pre-cached) DNS resolution using their load-balanced servers all around the world – a service that no single ISP can provide. In my experience, the ISP based DNS in Thailand tend to be moderate to horribly slow. Switching to the Google DNS visibly improved page loading time for me. Even in the case of non-existent domains, the browser spent far less time in informing me – rather than waiting around and trying to resolve for a good while. See Performance Benefits for detailed information.

According to the documentation, Google has taken adequate measures to prevent security issues – DNS poisoning, Denial-of-Service attacks to name a few – that arise with such open DNS servers.

Using the Google Public DNS Servers is as easy as opening your TCP/IP Settings panel and keying in the new DNS addresses – which on their own are really short and sweet (and easily memorized). They are:

• 8.8.8.8
• 8.8.4.4

A few years back I had reviewed a similar service named OpenDNS. This service generates it’s revenue by displaying relevant advertisement on an interstitial page when a domain cannot be resolved. Surprisingly, Google’s DNS (so far) is an entirely ad-free venture.

For the weak-hearted, i.e. those of you who do not wish to mess around with your DNS settings, there’s this handy little tool named Google DNS Helper (requires .NET Framework 2.0 and above) that performs one-click switch between Google’s DNS and your own ISP’s DNS settings.

In this context, another noteworthy tool is DNS Jumper, which allows you to switch between 16 different DNS servers (configurable). The software comes pre-configured with addresses for a multitude of open DNS servers, e.g. Google DNS, OpenDNS, Comodo DNS etc. This tool will allow for quick switching and benchmarking of the various open DNS services.

So far, I had been supplementing my ISP’s DNS with those of OpenDNS and on many occasions they’ve been able to resolve domains that my ISP’s DNS couldn’t. However, the speed of resolution was at best average. Hence, I never got around to using them as my primary resolvers. With Google – maybe because of the brand name itself – I switched over immediately and voila! Amazing results.

Update (2010-07-12): A new version of DNS Jumper (v1.04) is out.

Dec 22nd by miCRoSCoPiC^eaRthLinG

Continue Reading

Do you often encounter slow page-load times despite using a decent broadband connection? Does you browsing experience often come to a bitter halt with a message like “Looking for xxx.com” or “Waiting for xxx.com“? If you are facing similar problem, it might be indicative of a lousy DNS setup by your Internet Service Provider (ISP).

DNS or Domain Name Services are the internet’s own version of a telephone directory. Your computer takes help of such DNS Servers to locate another computer every time you type in a web-address / URL in your browser. The process is known as address resolution. By default all the ISPs maintain a set of DNS Servers for usage by their customers. This is done so that all such lookups take place over the local network and thus address resolutions are fast. At least that is how it is supposed to happen. However, in reality many ISPs don’t maintain their DNS Servers properly leading to extremely poor resolution latency.

This is where OpenDNS steps in. If you suffer from high DNS latency periods as described above, OpenDNS may be able to help you out. OpenDNS is a free service that provides you with a set of free DNS servers for unlimited usage. In short…

OpenDNS is a better DNS, free to all. OpenDNS uses its distributed network of DNS servers to speed up your Internet experience, increase reliability, improve security and make DNS smarter for users all over the world.

So how does OpenDNS speed up your Internet experience?

OpenDNS maintains a huge list of high performance geographically distributed DNS Servers serviced by several redundant connections. First of all whenever you avail their service, you’re automatically directed to a server that is geographically closest to you thus providing you with a faster response time.

Secondly, they maintain a “big & smart” DNS Cache. A DNS Cache is a service that temporarily holds a completed address lookup in the memory for a certain period of time. In case a second user looks up the same web-page, the server can directly deliver the address to him/her without having to resolve it again. This causes a massive boost in lookup speeds.

What are the other advantages of using this service?

OpenDNS not only boosts your internet access speed, they provide a couple of cool extras like Phising Protection and Auto-correction of misspelt domain names.

OpenDNS can identify and block Phishing Sites with the help of their own data accumulated over years as well as by collaborating with PhishTank and various other similar organisations. Whenever you try to access such a site unknowingly, OpenDNS will block the site and inform you.

Apart from that if you misspell a domain name while typing, OpenDNS will correct it on the fly. That means when you are typing fast and type yahoo.cmo instead of yahoo.com you still get there. No annoying pop-ups or evil spyware installed because you made a typo. Things just work.

What do I need to download to use this service?

Absolutely nothing. You don’t need to download and/or install any software to avail this service. You simply point the DNS Server IPs of your computer to the ones of OpenDNS and it’ll start working for you. Further information can be found here.

Is this service really free? If so how does OpenDNS survive?

All the services mentioned here in this review are offered for free. There are no hidden costs involved. However OpenDNS might sell “extra” services in future through paid subscriptions.They make money by showing you contextually relevant (but clearly labeled) advertisements along with organic search results when the domain entered is not valid and isn’t a typo we they fix.

Incidentally, if you want to set-up a local DNS Server based on Linux, I’ve got a step-by-step tutorial showing you how to. It might be worth a read.

Visit OpenDNS for further information and availing the service rightaway.

Found via: Blog#

Feb 07th by miCRoSCoPiC^eaRthLinG

Continue Reading

Regular surfers no doubt often come across sites which seem to defy the standard format for a web-address, i.e. www.some-site.com and take up forms like www1.some-site.com. It gets people wondering what actually is this www1 ! I’ve heard some really funny and odd explanations regarding this www1, www2 etc. and most of them border around the being the “second version of web/internet”

In this article I’ll try to explain the concept behind this whole domain naming scheme as lucidly as possible.

First and foremost, every computer that is somehow part of a network requires:

• A unique IP address which establishes the identity of that computer on the network. No two computers on the same network may have the same IP address. Consider this similar to having a personal phone number. An example of an IP address is 202.212.121.100.
• Secondly, every computer requires a unique NAME too, which again is another way identifying the computer on the network. Once again, no two computers can share the same name on a common network.

This brings us to the topic of domain names… the various domains like .com, .net, .org etc which you come by on the net are called Top Level Domains or TLDs. You can purchase (or rather lease, since domains aren’t really sold to you but leased for a certain period) such domains from internet naming authorities like ICANN. But a .com or .net alone isn’t sufficient to uniquely identify you on the net. Hence, along with the TLD you also purchase a secondary name which usually is related to your company or the product you’re selling or the overall theme of your website. You secondary name and the top level domain together give you your unique web identity. An example: Say I bought a .com domain and along with that a secondary name mycompany. So mycompany.com is what I will go by on the web.

ICANN maintains a network of DNS (Domain Name Services) Servers which is sort of an online telephone directory for computers. Usually ICANN’s servers or whoever maintains servers with similar authority are called root servers since they’re right at the top of the DNS pyramid. When a domain name of another computer is fed into your computer, it contacts these root servers in search of the target computer. The idea behind this is to query the DNS Servers and find out the IP address of the target, which can then be used to connect directly with it. The domain name alone is worthless as it can give no indication where the actual target computer resides.

If ICANN can provide the IP address of the target all’s well. If it is unable to – nothing to worry. Their DNS servers will always contains lists of other secondary DNS Servers maintained by other organizations and can redirect your query to these secondary servers. If the secondary ones cannot find your target, they handle the request down to yet a third level (tertiary) servers and so on. Think of the whole DNS chain like a pyramid, where the root servers sit right on top. Anyway, this cycle goes on till one of the DNS Servers finds the web-address you’re looking for in it’s own directory and then returns the result in the form on an IP address to your computer. This whole mechanism is absolutely transparent and occurs by the cartload every second.. with so many millions of pages being loaded worldwide.

As a base case, if your own company or hosting service maintains it’s own DNS Servers, this request might even reach up to those in search of the target address. This whole process of querying by domain names and getting the IP Address in turn is called Domain Name Resolution or simply Name Resolution.

The order of name resolution is right to left. For example, for the address www.mycompany.com the resolution will happen like:
.com >> .mycompany >> www

Now I’ve explained what the “com” and “mycompany” a short while back, but what is this www before your domain name? While being a acronym for World Wide Web, www also represents something known as the CNAME or Canonical Name for a domain. The CNAME is almost aways “www” as an adopted standard. You’ll notice that in 99% of the cases, both www.mycomany.com and simply mycompany.com will take you to the same site. In reality the DNS Servers list your IP address against this domain itself. The higher level DNS Servers don’t have anything to do with the www part. It is your own company’s/web-host’s DNS that deals with the www part.
A typical DNS Server conversation might look like this…

My Computer to Root DNS: “Hello, do you know www.mycompany.com?”

Root DNS: “Sorry, I know only about .com, .net and .org, and I can see the computer you’re trying to reach is a .com but I don’t have any further information on www.mycompany. However, I have a friend who might know about all the systems under .com domains. Here’s my friend’s address…(secondary DNS).”

My Computer to Secondary DNS: “Hello, do you know www.mycompany.com?”

Secondary DNS: “Yes, I do know mycompany.com but not aware of the www computer. I’ll refer you to the company’s DNS (Tertiary) who might be able to tell you further about the www”

My Computer to Company’s DNS: “Hello, do you know www.mycompany.com?”

Tertiary DNS: “Yes, you’ve reached the right place. Hold on a moment, I’ll direct you to the www computer.”

If you have your own DNS Servers running and your site draws good traffic, you might have setup 4-5 different computers in your company’s network to handle various kind of requests like web, ftp, email etc. individually so as to not put too much stress on a single machine.

It’s the www part that identifies the machine which is supposed to handle web (http) requests – but this happens internally on your network. DNS Servers outside your network do not need to know which machine is handling www and which one, ftp. Their job is simply to direct someone to your main IP. Your own DNS takes over from there. So www, ftp, mail, pop3 etc. actually represent various computers on your network handling those services.

As you can see, mycompany.com is good enough to reach your company’s site. The www part is pretty much unnecessary. As long as you have your own DNS server’s running, you can instruct it to resolve ANYTHING in the CNAME part. You can instruct your DNS to redirect all web requests to some computer called aaa and ftp to another one called bbb. In such a case your web-address could be http://aaa.mycompany.com and ftp address could be ftp://bbb.mycompany.com. It wouldn’t matter at all as long as your own DNS can resolve it. As I said earlier, since this is a world-wide adopted standard almost any and every web-site uses the www. But occasionally some sites use www1 or www2 or even www9 … whatever they feel like using.

There’s practically no limitation on what you can use as your Canonical Name. However, do not confuse this with sub-domains, which we’ll cover in another topic some other time.

Any questions / comments ?

Dec 15th by miCRoSCoPiC^eaRthLinG

Continue Reading

Arizona based Ten Ships has announced the first public beta of their all new product AjaxDNS, which is an Ajax framework …

… for any systems administrator, support technician, or anyone that needs quick network and domain tools and analysis.

The features offered are:

• Live DNS
• Whois Search
• IP Whois
• HTTP Headers
• RBL Search
• Ping
• DNS Traversal

Here’s a screenshot…

Looks quite cool and queries even faster. I say, give it a try

Dec 14th by miCRoSCoPiC^eaRthLinG

Continue Reading