nanog mailing list archives

Re: DNS - connection limit (without any extra hardware)

From: Matt Ghali <matt () snark net>
Date: Mon, 11 Dec 2006 16:16:21 -0800 (PST)


On Mon, 11 Dec 2006, Simon Waters wrote:

Yes. Most of the root server traffic is answering queries with
"NXDOMAIN" for non-existant top level domains, if you slave rooton your recursive servers, your recursive servers can answer thosequeries directly (from the 120KB root zone file), rather thanrelying on negative caching, and a round trip to the rootservers, for every new non-existant domain.

That would require configuring my caching server with authoritativezones, and it seems prevailing wisdom (at least with BINDconfigurations?) is to keep the peanut butter seperate from thechocolate, no matter how great they taste together, to the best

of my knowledge.

matto

--matt () snark net------------------------------------------<darwin><
  Moral indignation is a technique to endow the idiot with dignity.
                                                - Marshall McLuhan

Current thread:

Re: DNS - connection limit (without any extra hardware), (continued)
- - - Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 10)
    - Re: DNS - connection limit (without any extra hardware) Hank Nussbacher (Dec 10)
    - Re: DNS - connection limit (without any extra hardware) Gadi Evron (Dec 10)
    - Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 10)
    - Re: DNS - connection limit (without any extra hardware) Jo Rhett (Dec 27)
- Re: DNS - connection limit (without any extra hardware) Simon Waters (Dec 08)
  - Re: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Luke C (Dec 11)
  - Re: DNS - connection limit (without any extra hardware) Luke C (Dec 11)
    - Re: DNS - connection limit (without any extra hardware) Simon Waters (Dec 11)
    - Re: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 11)
    - Re: DNS - connection limit (without any extra hardware) Mark Andrews (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Gadi Evron (Dec 08)
  - Re: DNS - connection limit (without any extra hardware) ♓ (Dec 08)
- Re: DNS - connection limit (without any extra hardware) Douglas Otis (Dec 08)
- Re: DNS - connection limit (without any extra hardware) Scott Weeks (Dec 08)
  - Re: DNS - connection limit (without any extra hardware) Jo Rhett (Dec 27)
    - Re: DNS - connection limit (without any extra hardware) Randy Bush (Dec 27)
- Re: DNS - connection limit (without any extra hardware) Fergie (Dec 08)
  - Network security practices survey Sean Donelan (Dec 09)
- RE: DNS - connection limit (without any extra hardware) Frank Bulk (Dec 08)

(Thread continues...)