Facebook post-mortems...

Jean St-Laurent jean at ddostest.me
Tue Oct 5 15:32:27 UTC 2021


1.	If you have some DNS working, you can point it at a static “we are down and we know it” page much sooner.
2.	 

Good catch and you’re right that it would have reduce the planetary impact. Less call to help-desk and less reboot of devices. It would have give visibility on what’s happening.

 

It seems to be really resilient in today’s world, a business needs their NS in at least 2 different entities like amazon.com is doing.

 

Jean

 

From: NANOG <nanog-bounces+jean=ddostest.me at nanog.org> On Behalf Of Matthew Kaufman
Sent: October 5, 2021 10:59 AM
To: Mark Tinka <mark at tinka.africa>
Cc: nanog at nanog.org
Subject: Re: Facebook post-mortems...

 

 

 

On Tue, Oct 5, 2021 at 5:44 AM Mark Tinka <mark at tinka.africa <mailto:mark at tinka.africa> > wrote:



On 10/5/21 14:08, Jean St-Laurent via NANOG wrote:

> Maybe withdrawing those routes to their NS could have been mitigated by having NS in separate entities.

Well, doesn't really matter if you can resolve the A/AAAA/MX records, 
but you can't connect to the network that is hosting the services.

 

Disagree for two reasons:

 

1. If you have some DNS working, you can point it at a static “we are down and we know it” page much sooner.

 

2. If you have convinced the entire world to install tracking pixels on their web pages that all need your IP address, it is rude to the rest of the world’s DNS to not be able to always provide a prompt (and cacheable) response.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20211005/79983155/attachment.html>


More information about the NANOG mailing list