maybe a dumb idea on how to fix the dns problems i don't know....

Paul Vixie vixie at isc.org
Sun Aug 10 00:45:43 CDT 2008


>> Paul Vixie wrote:
>>> because TCP is considered optional by many authority DNS server  
>>> operators.

> On Aug 9, 2008, at 3:48 PM, Chris Paul wrote:
>> Hey authority DNS server operators. Can you make a change to your  
>> servers to always allow TCP client connections? Would this be  
>> difficult? What would be the harm?

brett at the-watsons.org (brett watson) writes:
> SYN flooding?

SYN flooding is a specific instance of "have to hold too much state" whereas
the reason for not considering TCP mandatory is the general form of "have to
hold too much state".  also note, the operators of those nameservers aren't
reading nanog@, or indeed any other mailing list where they could all be
reached.  the installed base is, as usual, an impediment to righteous change.
-- 
Paul Vixie

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.





More information about the NANOG mailing list