Welcome!

Related Topics: Cloud Security, Java IoT, Microservices Expo, IoT User Interface, @CloudExpo, @BigDataExpo

Cloud Security: Article

Major Internet Outage in China

For whatever reason at around 3 pm (China time) 2/3 of any domain requests in China were routed to one single IP address

Yesterday one of the biggest outages in history, if not the biggest outage, happened to the Internet in China.

Primarily and directly affected by that outage were most of the people living in China and browsing the Internet in China. Secondary, all companies doing online business in China were affected.

The reasons for the outage are discussed below but I would like to focus on what has happened and what this means for all of us - including Compuware - with our Web presence in China.

For whatever reason at around 3 pm (China time) 2/3 of any domain requests in China were routed to one single IP address.

That single datacenter of course went down immediately by the loads of requests hammering it within milliseconds. At that very moment the Internet in China went down - with a few exceptions (VPN users and those who had the DNS cached within their client).

The outage lasted for north of 8 hours, during the core business time in China.

Interestingly enough, not all domains were affected. Mainly those ending with .com and .net didn't make it. Others with the ending com.cn were "only" partly offline but still had problems. Adobe was technically not reachable. Nokia.com was available in parts of China but part of its content was directed to the suspect IP.

If one domain was reachable because the users browser still had the domain/IP relation in mind other issues appeared.

I mentioned Nokia.com just a second ago. Nokia.com itself was available but the page was kind of broken and loading very slow. The reason was the domain r.nokia.com was falsely directed to the one and only IP everything got directed to.

Figure 1: HTML of Nokia.com was loaded but no css and js. That made the page unusable.

You can see how everything got routed to the one IP address - six connections by only one single host name. Imagine how many requests hammered on that server when you know there are hundreds of millions of Chinese users opening a webpage that has 21 different host names included (average number of hosts included in a webpage - source HTTParchive.com). This incident can be considered the biggest DDoS attack in history.

Now with that said - what else has been damaged?

Read the entire blog post here for a deeper analysis and more details regarding the scope and impact of this major "Internet earthquake.".

Summary
Nearly every Chinese Internet user was affected by the outage. Nearly every company doing online business in China was affected by this outage. Click here to view more analysis.

It is interesting how sensitive the Internet is, reacting to a tiny DNS accident, how long it took to recover - and most important - how quiet everything was outside of China. The web was nearly not available to one of the strongest and fastest-growing economies for one business day.

More Stories By Heiko Specht

Heiko Specht is a technology expert at the Compuware APM Center of Excellence. His focus is on APM as a Service in the EMEA markets. Heiko has experience in all areas of Web Performance and Application Monitoring and special expertise in APIs, data interpretion, agile developement, webservices, XML, XSL, php, asp, XHTML, CSS, Enterprise infrastructure, Server architecture, Server sizing, interface description, flexible, performance management, monitoring key business processes and business impact analysis.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


Latest Stories
You are moving to the Cloud. The question is not if, it’s when. Now that your competitors are in the cloud and lapping you, your “when” better hurry up and get here. But saying and doing are two different things. In his session at @DevOpsSummit at 18th Cloud Expo, Robert Reeves, CTO of Datical, explained how DevOps can be your onramp to the cloud. By adopting simple, platform independent DevOps strategies, you can accelerate your move to the cloud. Spoiler Alert: He also makes sure you don’t...
President Obama recently announced the launch of a new national awareness campaign to "encourage more Americans to move beyond passwords – adding an extra layer of security like a fingerprint or codes sent to your cellphone." The shift from single passwords to multi-factor authentication couldn’t be timelier or more strategic. This session will focus on why passwords alone are no longer effective, and why the time to act is now. In his session at 19th Cloud Expo, Chris Webber, security strateg...
"We are an all-flash array storage provider but our focus has been on VM-aware storage specifically for virtualized applications," stated Dhiraj Sehgal of Tintri in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Redis is not only the fastest database, but it has become the most popular among the new wave of applications running in containers. Redis speeds up just about every data interaction between your users or operational systems. In his session at 18th Cloud Expo, Dave Nielsen, Developer Relations at Redis Labs, shared the functions and data structures used to solve everyday use cases that are driving Redis' popularity.
The WebRTC Summit New York, to be held June 6-8, 2017, at the Javits Center in New York City, NY, announces that its Call for Papers is now open. Topics include all aspects of improving IT delivery by eliminating waste through automated business models leveraging cloud technologies. WebRTC Summit is co-located with 20th International Cloud Expo and @ThingsExpo. WebRTC is the future of browser-to-browser communications, and continues to make inroads into the traditional, difficult, plug-in web co...
Enterprise IT has been in the era of Hybrid Cloud for some time now. But it seems most conversations about Hybrid are focused on integrating AWS, Microsoft Azure, or Google ECM into existing on-premises systems. Where is all the Private Cloud? What do technology providers need to do to make their offerings more compelling? How should enterprise IT executives and buyers define their focus, needs, and roadmap, and communicate that clearly to the providers?
Amazon has gradually rolled out parts of its IoT offerings, but these are just the tip of the iceberg. In addition to optimizing their backend AWS offerings, Amazon is laying the ground work to be a major force in IoT - especially in the connected home and office. In his session at @ThingsExpo, Chris Kocher, founder and managing director of Grey Heron, explained how Amazon is extending its reach to become a major force in IoT by building on its dominant cloud IoT platform, its Dash Button strat...
"We are a custom software development, engineering firm. We specialize in cloud applications from helping customers that have on-premise applications migrating to the cloud, to helping customers design brand new apps in the cloud. And we specialize in mobile apps," explained Peter Di Stefano, Vice President of Marketing at Impiger Technologies, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Complete Internet of Things (IoT) embedded device security is not just about the device but involves the entire product’s identity, data and control integrity, and services traversing the cloud. A device can no longer be looked at as an island; it is a part of a system. In fact, given the cross-domain interactions enabled by IoT it could be a part of many systems. Also, depending on where the device is deployed, for example, in the office building versus a factory floor or oil field, security ha...
In addition to all the benefits, IoT is also bringing new kind of customer experience challenges - cars that unlock themselves, thermostats turning houses into saunas and baby video monitors broadcasting over the internet. This list can only increase because while IoT services should be intuitive and simple to use, the delivery ecosystem is a myriad of potential problems as IoT explodes complexity. So finding a performance issue is like finding the proverbial needle in the haystack.
The idea of comparing data in motion (at the sensor level) to data at rest (in a Big Data server warehouse) with predictive analytics in the cloud is very appealing to the industrial IoT sector. The problem Big Data vendors have, however, is access to that data in motion at the sensor location. In his session at @ThingsExpo, Scott Allen, CMO of FreeWave, discussed how as IoT is increasingly adopted by industrial markets, there is going to be an increased demand for sensor data from the outermos...
"Qosmos has launched L7Viewer, a network traffic analysis tool, so it analyzes all the traffic between the virtual machine and the data center and the virtual machine and the external world," stated Sebastien Synold, Product Line Manager at Qosmos, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Between 2005 and 2020, data volumes will grow by a factor of 300 – enough data to stack CDs from the earth to the moon 162 times. This has come to be known as the ‘big data’ phenomenon. Unfortunately, traditional approaches to handling, storing and analyzing data aren’t adequate at this scale: they’re too costly, slow and physically cumbersome to keep up. Fortunately, in response a new breed of technology has emerged that is cheaper, faster and more scalable. Yet, in meeting these new needs they...
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busin...
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at 20th Cloud Expo, Ed Featherston, director/senior enterprise architect at Collaborative Consulting, will discuss the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.