nanog mailing list archives
Re: DNS DOS increasing?
From: Miquel van Smoorenburg <miquels () cistron nl>
Date: Mon, 21 Jan 2002 17:58:03 +0000 (UTC)
In article <cistron.171DAAD54475984F8F41345A0945DF9C39ED49 () hqexchange presidio com>, James Smith <jsmith () PRESIDIO com> wrote:
Get ready for more DOS-like behavior as systems get deployed that have 10 second TTLs in the DNS. These systems are used to provide multi-isp redundancy by pinging each upstreams router, and when a ping fails, start giving out a dns response using the other ISP IP range. Same FQDN, new IP.
So what we need is a tunable on the caching DNS server that says min_allowed_ttl = 300; if (ttl < min_allowed_ttl) ttl = min_allowed_ttl; If the above becomes a problem, this will happen. Mike.
Current thread:
- Re: DNS DOS increasing?, (continued)
- Re: DNS DOS increasing? Alex Kamantauskas (Jan 21)
- RE: DNS DOS increasing? James Smith (Jan 21)
- RE: DNS DOS increasing? E.B. Dreger (Jan 21)
- Re: DNS DOS increasing? Joel Baker (Jan 21)
- Re: DNS DOS increasing? E.B. Dreger (Jan 21)
- RE: DNS DOS increasing? E.B. Dreger (Jan 21)
- RE: DNS DOS increasing? Karyn Ulriksen (Jan 21)
- Re: DNS DOS increasing? Rob Evans (Jan 21)
- RE: DNS DOS increasing? James Smith (Jan 21)
- Re: DNS DOS increasing? Stephen Griffin (Jan 21)
- Re: DNS DOS increasing? E.B. Dreger (Jan 21)
- Re: DNS DOS increasing? Stephen Griffin (Jan 21)
- Re: DNS DOS increasing? Miquel van Smoorenburg (Jan 21)
- Re: DNS DOS increasing? just me (Jan 21)
- Re: DNS DOS increasing? E.B. Dreger (Jan 21)
- Re: DNS DOS increasing? just me (Jan 21)
- RE: DNS DOS increasing? Curtis Maurand (Jan 21)
- RE: DNS DOS increasing? Curtis Maurand (Jan 21)
- RE: DNS DOS increasing? James Smith (Jan 22)