DNS Reliability

Christopher Morrow morrowc.lists at gmail.com
Fri Sep 13 02:00:54 UTC 2013

On Thu, Sep 12, 2013 at 6:26 PM, George William Herbert
<george.herbert at gmail.com> wrote:
> The other subthread about routeability plays into that.  For BIGPLACE environments, you should be considering how many AS numbers independently host DNS instances for you, in how many geographical regions, and do you have a backup registrar available spun up...

here's an interesting point... if you are a BIGPLACE, do you want to
trust your fate to some third party hosting your dns for you? What
about how your internal name service stuff is managed?

say you have a practice of using rsh to affect updates across your 4
main dns nodes, adding a 5th or Nth outside where rsh is not
possible/desired .... means adding additional processes and cruft to
your update process, is this acceptable?

Take, for instance the FBI.gov domain 3 days ago, some set of updates
happened, their ipv4 servers were answering with a consistent
response, their ipv6 nodes were answering with a variety of not
correct answers :( In the case of the FBI.gov domain, all of it is
handled outside 'fbi.gov hands' (all servers hosted externally) but...


More information about the NANOG mailing list