Testing root server down code
Martin J. Levy
mahtin at mahtin.com
Wed Oct 23 19:16:31 UTC 2002
Steve,
You said...
>Microsoft DNS has a poor response and can spin out of control with all root
>servers available.. how would you tell the difference ;)
This just in... The RPSEC mailing list has the recommendation to the Government (US that is) on both BGP and DNS.
>ISP BGP & DNS Working Group
>Working Paper developed as part of the NSTAC Process - Not for Further Dissemination
(If your not meant to disseminate it, then why did it end up on the RPSEC mailing list?)
Here is what it says about DNS...
>Recommendations for DNS
>
>1. Encourage physical diversity (both network and geographic) for top-level domain servers.
>
>2. Encourage greater software diversity for DNS sever systems. Currently most DNS servers are based on the BIND Berkeley Internet Name Domain code base. There is also a Microsoft Windows version of DNS that very few groups currently run.
>3. ...
Hence... At least in the US (and I can't say for the rest of the world), the government have been recommended to consider Microsoft's version of DNS.
Will the UK Government follow in the US's footsteps?
Martin
----------------------------------------
At 07:04 PM 10/23/2002 +0100, Stephen J. Wilcox wrote:
>On Wed, 23 Oct 2002, Sean Donelan wrote:
>
>>
>> The last time all the root servers were down was June 28 1985. On June 29
>> 1985 there was a flurry of messages about adding root server down code to
>> the various DNS implementations of the day. Apparently, some of the
>> software had a poor response to all root servers being unreachable, and
>> spun out of control.
>>
>> Has anyone tested modern DNS code (Microsoft and BIND to name two) for
>> this condition recently? I haven't, hence my question.
>
>Microsoft DNS has a poor response and can spin out of control with all root
>servers available.. how would you tell the difference ;)
>
>Steve
More information about the NANOG
mailing list