[124174] in North American Network Operators' Group
Re: IPv4 ANYCAST setup
daemon@ATHENA.MIT.EDU (Jeroen Massar)
Fri Mar 26 09:25:47 2010
Date: Fri, 26 Mar 2010 14:24:21 +0100
From: Jeroen Massar <jeroen@unfix.org>
To: lutz.muehlig@internetx.de
In-Reply-To: <4BACB4D3.60003@internetx.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigC633C33C49EC151494C882FE
Content-Type: text/plain; charset=ISO-8859-15
Content-Transfer-Encoding: quoted-printable
InterNetX - Lutz Muehlig wrote:
> Hello,
>=20
> has someone experience in anycast ipv4 networks (to support DNS)?
"Never been done" "Dangerous" "TCP does not work" etc etc etc.
I assume quite a number of people know how to do it, especially as
several root DNS servers abuse it.
Simple recipe:
- Box with:
- Your favourite OS
- Quagga or OpenBGPd
- Your favourite DNS server
- Announce the IP of the anycast node in BGP
- Monitor the DNS server, when it does not work kill your local BGPd
and notify the admins that it broke
That is it. Probably with the above couple of things, google a bit and
find the rest.
Greets,
Jeroen
--------------enigC633C33C49EC151494C882FE
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (MingW32)
iEYEARECAAYFAkustZcACgkQKaooUjM+fCMwWgCfVi3ijqq85RQcmI1akEgdEH/l
tWoAn06jVBWeVC6kDUQph81bkqyT7+Nm
=9ECt
-----END PGP SIGNATURE-----
--------------enigC633C33C49EC151494C882FE--
