[146095] in North American Network Operators' Group
RE: Performance Issues - PTR Records
daemon@ATHENA.MIT.EDU (Barry Shein)
Wed Nov 2 19:14:15 2011
From: Barry Shein <bzs@world.std.com>
Date: Wed, 2 Nov 2011 19:08:47 -0400
To: <nanog@nanog.org>
In-Reply-To: <FCD26398C5EDE746BFC47F43EA52A17304E0EE9A@dino.ad.hostasaurus.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> As a web host, we frequently find customers who have
> added Apache rules to their ecommerce sites to block
> undesirable traffic, such as credit card scammers, etc.
> Not knowing any better, they often do this by just
> blocking anything that ends in .in to block Indonesia
> for example. Well, once you choose to block by
> resolved name, now that site has to do a dns lookup
> for every incoming request to see if it resolves to a
> name that should be blocked.
Another practical problem with this approach is that .IN is India but
hey, at least it blocks something :-)
--
-Barry Shein, that'd be .ID for Indonesia
The World | bzs@TheWorld.com | http://www.TheWorld.com
Purveyors to the Trade | Voice: 800-THE-WRLD | Dial-Up: US, PR, Canada
Software Tool & Die | Public Access Internet | SINCE 1989 *oo*