nanog mailing list archives
Re: DNS - connection limit (without any extra hardware)
From: Matt Ghali <matt () snark net>
Date: Mon, 11 Dec 2006 16:16:21 -0800 (PST)
On Mon, 11 Dec 2006, Simon Waters wrote:
Yes. Most of the root server traffic is answering queries with"NXDOMAIN" for non-existant top level domains, if you slave root on your recursive servers, your recursive servers can answer those queries directly (from the 120KB root zone file), rather than relying on negative caching, and a round trip to the root servers, for every new non-existant domain.
That would require configuring my caching server with authoritative zones, and it seems prevailing wisdom (at least with BIND configurations?) is to keep the peanut butter seperate from the chocolate, no matter how great they taste together, to the best
of my knowledge. matto --matt () snark net------------------------------------------<darwin>< Moral indignation is a technique to endow the idiot with dignity. - Marshall McLuhan
Current thread:
- Re: DNS - connection limit (without any extra hardware), (continued)
- Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 10)
- Re: DNS - connection limit (without any extra hardware) Hank Nussbacher (Dec 10)
- Re: DNS - connection limit (without any extra hardware) Gadi Evron (Dec 10)
- Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 10)
- Re: DNS - connection limit (without any extra hardware) Jo Rhett (Dec 27)
- Re: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 08)
- Re: DNS - connection limit (without any extra hardware) Luke C (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Luke C (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Simon Waters (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Mark Andrews (Dec 11)
- Re: DNS - connection limit (without any extra hardware) Jo Rhett (Dec 27)
- Re: DNS - connection limit (without any extra hardware) Randy Bush (Dec 27)
- Network security practices survey Sean Donelan (Dec 09)