|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: DNS DOS increasing?
In article <[email protected]io.com>, James Smith <[email protected]> wrote: > Get ready for more DOS-like behavior as systems get deployed that have 10 >second TTLs in the DNS. These systems are used to provide multi-isp >redundancy by pinging each upstreams router, and when a ping fails, start >giving out a dns response using the other ISP IP range. Same FQDN, new IP. So what we need is a tunable on the caching DNS server that says min_allowed_ttl = 300; if (ttl < min_allowed_ttl) ttl = min_allowed_ttl; If the above becomes a problem, this will happen. Mike.
|