[93671] in North American Network Operators' Group
Re: DNS - connection limit (without any extra hardware)
daemon@ATHENA.MIT.EDU (Matt Ghali)
Mon Dec 11 19:24:26 2006
Date: Mon, 11 Dec 2006 16:16:21 -0800 (PST)
From: Matt Ghali <matt@snark.net>
To: Simon Waters <simonw@zynet.net>
Cc: nanog@merit.edu
In-Reply-To: <200612111729.21882.simonw@zynet.net>
Errors-To: owner-nanog@merit.edu
On Mon, 11 Dec 2006, Simon Waters wrote:
> Yes. Most of the root server traffic is answering queries with
> "NXDOMAIN" for non-existant top level domains, if you slave root
> on your recursive servers, your recursive servers can answer those
> queries directly (from the 120KB root zone file), rather than
> relying on negative caching, and a round trip to the root
> servers, for every new non-existant domain.
That would require configuring my caching server with authoritative
zones, and it seems prevailing wisdom (at least with BIND
configurations?) is to keep the peanut butter seperate from the
chocolate, no matter how great they taste together, to the best
of my knowledge.
matto
--matt@snark.net------------------------------------------<darwin><
Moral indignation is a technique to endow the idiot with dignity.
- Marshall McLuhan
