Re: DNS problems to RoadRunner - tcp vs udp

• From: John Kristoff
• Date: Fri Jun 13 15:06:05 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

On Fri, 13 Jun 2008 14:14:55 -0400
Jon Kibler <[email protected]> wrote:

> TCP is used for zone transfers.
> If my server responded to TCP queries from anyone other than a secondary
> server, I would be VERY concerned.

I wouldn't be unless it looked like a DDoS - and it might for some that
are seeing the results of a DNS-based DDoS mitigation device you or an
upstream put in for the first time.  These boxes force clients to switch
over from UDP to TCP for queries when a well formed UDP DNS attack hits.

John

• References:
  • DNS problems to RoadRunner - tcp vs udp Mark Price
  • Re: DNS problems to RoadRunner - tcp vs udp Jon Kibler

• Prev by Date: Re: DNS problems to RoadRunner - tcp vs udp
• Next by Date: .255 addresses still not usable after all these years?
• Date Index
• Thread Index
• Author Index
• Historical