Regional Blogs
Podcasts
| Global Crossing experts and special guests podcast their views on industry trends and technologies |  |
Subscribe 
Industry Bloggers
Om Malik
Rich Tehrani (TMCNET)
David Isenberg
Mark Evans
Alec Saunders
Martin Geddes
Andy Abramson
Andrew Schmitt
Richard Bennett
Ken Camp
Brough Turner
Dan York
Jules
Infinera blog
Steve's Tech Blog
David Beckemeyer
Garrett Smith
Michael J. Santarcangelo, II
Robert Powell
Dave Rustin
NSP Strategist
Ike Elliott
No Jitter
Kevin Werbach
Recent blog posts
- Public Service Announcement - Identity and Security – Pay attention folks!
- The phases of IPv4 exhaustion
- All I want for Christmas...
- Something better than IPv6
- Virtualization – Part 3 - The Abstraction of Applications
- Gut check
- Top 10 in VoIP
- Surprise me! Is Innovation really just more for less?
- And now you see why broadband is not more ubiquitous…
- No major IPv6 content in the near future
User login
Navigation
Terms
Technorati
Add new comment
Global Crossing puts dns redirection in the lab
What would you do if you were approached by someone saying that they wanted to enter into a partnership with you that would require little or no money out of your own pocket and would pay you on a monthly basis. If it were an email, you'd dismiss it as just another SPAM, or if it was a phone call you'd dispatch it as you would any tele-marketer.
When paxfire approached us last summer offering exactly that, we didn't kick them out. I'm not saying that you jump on every peice of investment advice that ends up in your junk folder, but haven't you ever been curious enough to look up the ticker symbol to see if the spam campaign has had an impact on the stock price?
We had to hear what they proposed , because the prospect of receiving additional revenue with no COGS means that, if true, our gross margin and margin percentage see direct improvement. Or as the MacKenzie brother's might say, "free beer, eh?"
The arrangement is pretty straight forward. You drop a vendor-supplied appliance in front of your DNS server and it will capture a failed DNS requests, and answer the request with the IP of a search engine page with advertisements on it. Whatever money the company makes off advertising is split 50/50 with the ISP.
Right around the time we started talking to paxfire, net neutrality was one of the hottest topics of debate in the blogosphere. Was this technology a net neutrality issue?
While it is true that this technology could be used to do sneaky things with people's DNS requests, lots of things could be leveraged to do sneaky things with people's packets, and we have no more motivation to make our customers Internet perform slow by tipping the QoS scales in someone elses favor than we would to divert reasonable DNS requests in a manner that paying customers would disapprove of. Having the means to do something doesn't mean you will. Just because you own an ax doesn't mean you'll chop the heads off chickens...maybe you just want to split some wood. Case in point, there is one installation of this technology that uses a subscription-based list of known phishing sites and redirects the person to a portal that explains phishing and then allows them to continue to the originally requested site if they wish.
Right around the time we were debating this internally, the Earthlink news hit the streets. After Earthlink deployed a similar solution from a company called Barefruit, they posted a blog Handling Dead Domains for which they got flamed by their customers (and non-customers) for
a) not telling customers ahead of time,
b) not providing an opt-out capability and
c) in general, breaking the basic functionality of DNS.
The move drew fire from the blogosphere as well, with negative comments by Om Malik, the Tao of Mac, and slashdot.
We are hoping that we've learned from Earthlink's experience. The purpose of this blog is to let customers know with plenty of advanced notice that we're lab testing a similar (but better) solution. If we successfully get through lab tests we will post another blog entry to let people know when it will go live and how they can opt out.
The last issue can be addressed through one of the advanced configuration options available from paxfire (although the difference in ad revenues could be significant). The paxfire solution can be set up so that it only grabs what is referred to as keyword traffic. A keyword is when you just type your search term into the address bar. If you are running a browser that supports an autosearch and you have not configured your browser to use a particular search engine, it will grab those search keywords and re-direct them to a search engine.. Since it's a real DNS name that is hardcoded into your browser application and not a random DNS request that is going to fail, all other applications on your computer continue to work normally, receiving a unknown hostname error if you use the wrong domain. We're currently thinking that we might use this setup on the opt-out servers since it's pretty innocuous, and will experiment with a less-conservative setting in a field trial setting to compare the difference.
Lab testing has gone well so far, and everything is working as advertised, and we'll be announcing a field trial soon. If you're a Global Crossing customer and you have comments or concerns, contact your account manager or drop a comment here.