DNS in a 5G Network

Meeting your software and architecture needs with OX PowerDNS

csm_shutterstock_1552988927-_Converted_aa-NEW-5-G-5-Final_8907c374d9

5G aims to provide not just enhanced bandwidth, but will also significantly lower the network latency experienced by connected devices. In addition, 5G will be able to host large numbers of connected devices per cell, an improvement needed for billions of connected IoT devices in the near future. This poses additional demands on all network services, including DNS. Within 5G, new concepts, such as orchestration, (ultra)-low latency, and network slicing, create different requirements for DNS software and architecture.

 

Legacy DNS architectures are not sufficient to meet the requirements of 5G in areas such as latency, security, edge computing, and IoT.
Service providers must ensure that their DNS does not become the next bottleneck. It is vital that your DNS service provides extremely low-latency responses to connected devices to fulfill the promises of 5G.

 

Check out how OX PowerDNS is 5G-ready and
lets you fulfill the promises of a 5G world.

 

 

Edge DNS and Tiered Caching for Fast DNS Responses

OX PowerDNS allows telecom operators to deploy distributed DNS services near the end-user, on the edge-nodes of the 5G network. In order to balance between many caches near the user, and centralized caches with lots of content, we introduce the concept of Tiered Caching, where a small cache is deployed in Edge DNS servers, combined with a pool of (more centralized) servers with a large cache. This provides an optimal balance between fast localized DNS responses and minimizing latency for domains that are looked up less frequently.

shutterstock_1479136472-_Convertesd_
map05a

 

Virtualization, Orchestration & Control Plane Functionality

 

In order to ensure DNS service is on par with the requirements for 5G, the DNS service must be truly ‘cloud-native’ and has to come with the ability to run in containerized infrastructure. OX PowerDNS comes with exactly this functionality. It runs on virtualized, NFV or cloud-native environments ‘out of the box’ and provides various automation tools that allow for deployment automation, elastic scaling, and remote configuration management.

Cloud-native OX PowerDNS

OX PowerDNS Provides an Optimized DNS Architecture to Support 5G Performance Needs

 

Description (1) Deployment at the edge of the network

Description (1) Can be deployed as cloud-native, VNF or on bare-metal

Description (1) Orchestration for high numbers of servers

Description (1) Monitoring, deployment automation, remote configuration management etc.
Description (1) Encrypted DNS

Description (1) Localized content server

Description (1) DNS aware load balancing to optimize cache hits

Description (1) Network-wide or per-user security filtering

 

 

Learn more about 5G DNS requirements and how OX PowerDNS meets your network needs.

 

Download Whitepaper

IoT Security for 5G

Already, IoT devices are compromised by botnets. With the additional capabilities of 5G, the number of connected devices, and the available bandwidth for them, will rise even further. This makes 5G-enabled IoT devices a prime target for malicious activities.

OX PowerDNS supports network-based protection to enhance security of IoT devices as soon as they connect to their command and control centers. OX Protect provides DNS-based detection and alerting for when IoT devices are potentially infected with malware and allows blocking of access to command and control centers to prevent botnet activation.

DNS Encryption & Privacy

Communications between IoT devices and the services they use need to be protected from being intercepted, monitored or modified. DNS lookups are no exception. OX PowerDNS handles this issue with DNS encryption and DNSSEC. DNS over TLS (DoT) and DNS over HTTPS (DoH) are used to encrypt the traffic between the DNS client and the DNS resolver. DNSSEC secures the integrity of DNS answers by validating responses so that DNS clients can trust the answers they receive without potential modifications by a third-party. This is very important for many 5G services, particularly those involving mission critical IoT devices, such as connected cars and healthcare devices. These need to ensure the integrity of DNS answers provided by the network and prevent hijacking or cache-poisoning data leakage attacks.

OX PowerDNS comes with 5G and IoT DNS Security
 
Description (1) Network-based protection

Description (1) DNS-based detection, blocking and alerting

Description (1) Rate-limiting and abuse-detection
OX PowerDNS provides 5G DNS Encryption and Privacy
 
Description (1) DNS over TLS (DoT)

Description (1) DNS over HTTPS (DoH)

Description (1) DNSSEC
csm_5G_PowerDNS_BigFrame_14fd377f03
OX PowerDNS equips you with everything needed to meet 5G DNS software and architecture requirements:
Deployment Possibilities
147
  
  • Bare-metal
  • Virtualized / NFV
  • Cloud-native

Control Plane Functionality
csm_5G_NFV_Control_Plane_e89b942f7e
 
  • Deployment automation
  • Elastic scaling
  • Configuration management
  • Helm support for cloud-native setups
  • Ansible support for bare-metal, virtualized / NFV installations

Monitoring & Reporting 
156

 

  • Prometheus API endpoints for statistics per server
  • Metronome support
  • Long-term query logging and searching
  • End-to-end performance measurements

Security & Privacy 
csm_5G_Security_and_Privacy_32a857b819

 

  • DNS over HTTPS (DoH)
  • DNS over TLS (DoT)
  • DNSSEC signing and validation

  • System-wide or per-user malware filtering
  • Block/detect phishing and malware
  • Alerting/notification support

Latency
csm_5G_Latency_dabbae9cec
 
  • Edge DNS service near the end-user
  • Tiered caching

  • DNS aware load balancing to optimize cache hits
  • Edge computing support

Fast Local Content
csm_5G_Fast_Local_Content_eae4f141bf
  • EDNS client-subnet support – passing information about the original IP address to downstream server
  • Locality tagging
  • Edge computing support




IoT Security 
csm_5G_IoT_Security_0618b85e70
 
  • Detect and Alert when IoT Devices are potentially infected with Malware
  • Prevent botnet activation

 

  • Protect your network from IoT-based malware and DDoS

Contact Open-Xchange for detailed information, specific OX PowerDNS questions, pricing and more.

Contact OX