[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Dyn DDoS this AM?

Subject: Dyn DDoS this AM?
From: joelja at bogus.com (joel jaeggli)
Date: Fri, 21 Oct 2016 16:04:41 -0700
In-reply-to: <CAOMvUQc0eDVa=UUhUQOZbbyfQYk--oTumO8p_TE3NUMH--RnKQ@mail.gmail.com>
References: <CAC1-dt=AK-f7AeeqnM4k3O0Ev+2bAbpJMObcmV7vfQp2Mf8kmA@mail.gmail.com> <[email protected]> <CAOMvUQc0eDVa=UUhUQOZbbyfQYk--oTumO8p_TE3NUMH--RnKQ@mail.gmail.com>

On 10/21/16 3:21 PM, David Birdsong wrote:
> On Fri, Oct 21, 2016 at 2:58 PM, Randy Bush <randy at psg.com> wrote:
>
>> anyone who relies on a single dns provider is just asking for stuff such
>> as this.
>>
>> randy
>>
> I'd love to hear how others are handling the overhead of managing two dns
> providers. Every time we brainstorm on it, we see it as blackhole of eng
> effort WRT to keeping them in sync and and then waiting for TTLs to cut an
> entire delegation over.

Not all the ones you might choose based on scale support axfr... That's
a bit of a problem for the most traditional approach to this., of those 
that do it's straight-forward to use one as the master for another, or
use a hidden master. Your own master may have demonstrably lower
availability then one or the other of your providers. getting two well
considered choices to play nice with each other isn't that hard.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20161021/3f2942ec/attachment.pgp>

References:
- Dyn DDoS this AM?
  - From: cgrundemann at gmail.com (Chris Grundemann)
- Dyn DDoS this AM?
  - From: randy at psg.com (Randy Bush)
- Dyn DDoS this AM?
  - From: david at imgix.com (David Birdsong)

Prev by Date: Dyn DDoS this AM?
Next by Date: Dyn DDoS this AM?
Previous by thread: Dyn DDoS this AM?
Next by thread: Dyn DDoS this AM?
Index(es):
- Date
- Thread