AnyCast DNS Protection

anycast dns protection

Anycast is a networking and routing technique in which the same IP address is assigned to multiple hosts or servers that provide the same service. The routing infrastructure automatically sends traffic to the topologically closest server.

By adding IP anycast routing to your DNS servers you can:

  • Decrease latency
  • Automate failover
  • Increase resiliency to DoS and DDoS attacks
  • Improve load distribution
  • Simplify configuration and maintenance

Find out more about how anycast can protect your business from downtime and delays.

Fill out the form below to have the whitepaper e-mailed to you automatically.


What is Anycast?

On the Internet, anycast is usually implemented by using BGP to simultaneously announce the
same destination IP address range from many different places on the Internet. This results in packets addressed to destination addresses in this range being routed to the "nearest" point on the net announcing the given destination IP address.

For a DNS root servers, anycast provides a service where by clients send requests to the service address and the network delivers that request to at least one, preferably the closest, instance in the root servers anycastgroup.


The Anycast scheme has two major benefits:

  • servers automatically spread the impact of an attack amongst themselves
  • no local disaster can disrupt the operation of the root server as a whole



  • 13 Users Found This Useful
Was this answer helpful?

Related Articles

Protection Against DoS and DDoS Attacks

What is a Denial of Service (DoS) attack? A Denial of Service attack is designed to render a...

OWASP ModSecurity CRS (SpiderLabs OWASP)

OWASP ModSecurity CRS (SpiderLabs OWASP)============================= The OWASP (Open Web...