nanog mailing list archives
Re: Google Public DNS Problems?
From: shawn wilson <ag4ve.us () gmail com>
Date: Thu, 2 May 2013 00:43:33 -0400
On May 1, 2013 5:09 PM, "Christopher Morrow" <morrowc.lists () gmail com> wrote:
On Wed, May 1, 2013 at 4:14 PM, Yang Yu <yang.yu.list () gmail com> wrote:It is very courteous to reply a SERVFAIL for requests being rate
limited.
I believe the 'rate-limit' response is actually 'no response' ... though I haven't tested this myself :)
Yes if someone has a misbehaving program or is trying to DOS you, you don't really want to reply with anything.
On Wed, May 1, 2013 at 1:17 PM, Andrew Fried <andrew.fried () gmail com> wrote:Your IPs may have been rate limited... Andy Andrew Fried andrew.fried () gmail com On 5/1/13 12:38 PM, Blair Trosper wrote:That's all well and good, but I certainly wouldn't expect "nslookup gmail.com" or for "nslookup google.com" to return SERVFAIL On Wed, May 1, 2013 at 9:34 AM, Joe Abley <jabley () hopcount ca> wrote:On 2013-05-01, at 12:09, Blair Trosper <blair.trosper () gmail com>wrote:Is anyone else seeing this? From Santa Clara, CA, on Comcast Business...I'm getting SERVFAIL for any query I throw at 8.8.8.8
and
8.8.4.4... Level 3's own public resolvers are fine for me, as are OpenDNS'sresolvers. Google just turned on validation across the whole of 8.8.8.8 and8.8.4.4.The expected behaviour in the case where a response does not
validate
is toreturn SERVFAIL to the client. You could check that the queries you are sending are not suffering
from
poor signing hygiene (e.g. use the handy-dandy
dnsviz.netvisualisation).
If this is a repeatable, consistent problem even for unsigned zones
(or
for zones that you've verified are signed correctly) and especially
if
it'swidespread you might want to call google on the nanog courtesy phoneandhave them look for collateral damage from their recent foray into8.8.8.8validation. Raw output from dig/drill and traceroutes to 8.8.8.8/8.8.4.4 arehighlyrecommended if you need to take this further. Joe
Current thread:
- Re: Google Public DNS Problems?, (continued)
- Re: Google Public DNS Problems? Casey Deccio (May 01)
- Re: Google Public DNS Problems? Blair Trosper (May 01)
- Re: Google Public DNS Problems? Blair Trosper (May 01)
- Re: Google Public DNS Problems? Tony Finch (May 01)
- Re: Google Public DNS Problems? Jared Mauch (May 01)
- Re: Google Public DNS Problems? Blair Trosper (May 01)
- Re: Google Public DNS Problems? Livingood, Jason (May 01)
- Re: Google Public DNS Problems? Andrew Fried (May 01)
- Re: Google Public DNS Problems? Yang Yu (May 01)
- Re: Google Public DNS Problems? Christopher Morrow (May 01)
- Re: Google Public DNS Problems? shawn wilson (May 01)
- Re: Google Public DNS Problems? Perry Lorier (May 02)
- Re: Google Public DNS Problems? Jay Ashworth (May 02)
- Re: Google Public DNS Problems? Christopher Morrow (May 02)
- Re: Google Public DNS Problems? Jay Ashworth (May 02)
- Re: Google Public DNS Problems? Joe Abley (May 02)
- Re: Google Public DNS Problems? Charles Gucker (May 02)
- Re: Google Public DNS Problems? Joe Abley (May 02)
- Re: Google Public DNS Problems? Joe Abley (May 02)
- whoami.akamai.net [was: Google Public DNS Problems?] Patrick W. Gilmore (May 02)
- Re: whoami.akamai.net [was: Google Public DNS Problems?] Constantine A. Murenin (May 02)