[afnog] Decreasing Access Time to Root Servers DNS by Running One on Loopback
Mathias HOUNGBO
mathias at houngbo.net
Wed Nov 25 22:38:35 UTC 2015
FYI
Some DNS recursive resolvers have longer-than-desired round-trip
times to the closest DNS root server. Some DNS recursive resolver
operators want to prevent snooping of requests sent to DNS root
servers by third parties. Such resolvers can greatly decrease the
round-trip time and prevent observation of requests by running a copy
of the full root zone on a loopback address (such as 127.0.0.1).
This document shows how to start and maintain such a copy of the root
zone that does not pose a threat to other users of the DNS, at the
cost of adding some operational fragility for the operator.
https://tools.ietf.org/html/rfc7706
Il n'y a pas de raccourci pour atteindre le développement.
Open source is not limited to software and it is not limited to english either!
Mefies toi de la médiocrité, c'est la moisissure de l'esprit
--
My blog : Made in Bénin - http://mathias.houngbo.net
Charter President ONG IGBANet - http://www.igbanet.org/
(GDG Cotonou, WTM Cotonou, BJNOG, Cotonou LUG, Cotonou Wireless, CodeKid, Hackerspace Cotonou)
System and Network Administrator at BCEAO Bénin --- C.T.O & Co-Founder at STARSOFT INFORMATIQUE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://www.afnog.org/pipermail/afnog/attachments/20151125/2e35ddda/attachment.sig>
More information about the afnog
mailing list