[afnog] Decreasing Access Time to Root Servers DNS by Running One on Loopback
Mark Tinka
mark.tinka at seacom.mu
Tue Dec 15 14:33:03 UTC 2015
On 14/Dec/15 12:44, Nishal Goburdhan wrote:
>
>
> or, just simply run a (local to your laptop) recursive server. you
> don’t *need* to slave the root to run a recursive server on your
> laptop. and, arguably, if someone has problems running a simple
> recursive DNS server, which, just needs to be locked down to your own
> address space, the techniques in the earlier mentioned RFC are going
> to be a lot more unnecessary, and complicated, work for them.
You mean like mom & pop down the road :-)?
>
> i have my own misgivings on the efficacy of public dns resolvers.
> they’re useful to ping to test your connectivity, but that’s about it
> for me ;-)
Completely agree - they do a lot more damage in the long run than good.
It's been hard work educating our customers that utilize our resolvers,
but that is starting to pay off and we are seeing fewer and fewer cases
related to use of open resolvers.
>
> the thing with your ISP’s dns caches (assuming they work) is that in
> the long run, they’re likely to give you the best overall performance.
> so, if your domestic ISP’s dns caches don’t work, then, while it’s
> easy for geeks to do what you suggest above (run your own local
> cache), it’s actually to the benefit of everyone in your local
> community, to try to get your ISP to fix their stuff, since you’re
> more likely to benefit more from the larger cache size they’d maintain
> vs. your own local cache. play with namebench [1] when you have some
> time.
+1.
Mark.
More information about the afnog
mailing list