[52932] in North American Network Operators' Group
Re: Testing root server down code
daemon@ATHENA.MIT.EDU (Martin J. Levy)
Wed Oct 23 15:18:33 2002
Date: Wed, 23 Oct 2002 12:16:31 -0700
To: "Stephen J. Wilcox" <steve@telecomplete.co.uk>,
Sean Donelan <sean@donelan.com>
From: "Martin J. Levy" <mahtin@mahtin.com>
Cc: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.21.0210231903260.19052-100000@MrServer>
Errors-To: owner-nanog-outgoing@merit.edu
Steve,
You said...
>Microsoft DNS has a poor response and can spin out of control with all root
>servers available.. how would you tell the difference ;)
This just in... The RPSEC mailing list has the recommendation to the Government (US that is) on both BGP and DNS.
>ISP BGP & DNS Working Group
>Working Paper developed as part of the NSTAC Process - Not for Further Dissemination
(If your not meant to disseminate it, then why did it end up on the RPSEC mailing list?)
Here is what it says about DNS...
>Recommendations for DNS
>
>1. Encourage physical diversity (both network and geographic) for top-level domain servers.
>
>2. Encourage greater software diversity for DNS sever systems. Currently most DNS servers are based on the BIND Berkeley Internet Name Domain code base. There is also a Microsoft Windows version of DNS that very few groups currently run.
>3. ...
Hence... At least in the US (and I can't say for the rest of the world), the government have been recommended to consider Microsoft's version of DNS.
Will the UK Government follow in the US's footsteps?
Martin
----------------------------------------
At 07:04 PM 10/23/2002 +0100, Stephen J. Wilcox wrote:
>On Wed, 23 Oct 2002, Sean Donelan wrote:
>
>>
>> The last time all the root servers were down was June 28 1985. On June 29
>> 1985 there was a flurry of messages about adding root server down code to
>> the various DNS implementations of the day. Apparently, some of the
>> software had a poor response to all root servers being unreachable, and
>> spun out of control.
>>
>> Has anyone tested modern DNS code (Microsoft and BIND to name two) for
>> this condition recently? I haven't, hence my question.
>
>Microsoft DNS has a poor response and can spin out of control with all root
>servers available.. how would you tell the difference ;)
>
>Steve
