[dns-operations] Too Open (Was: OpenDNS makes your Internet work better
brad at stop.mail-abuse.org
Fri Jul 14 17:27:30 UTC 2006
At 2:47 PM +0200 2006-07-14, Per Heldal wrote:
> So, unicast sites never go pear-shaped? That's new to me ;)
No, I'm sure they go pear-shaped all the time. The point is that you
are preventing the possibility of having all advertised routes
collapse onto a single pod, and therefore if that single pod were to
go down, you'd still have some other routes advertised to other
In other words, cut across first, then down.
> Statistically a properly maintained anycasted IP service provide better
> reliability than unicast.
Statistically, if airplanes were 99% reliable, you'd have multiple
major airliners going down with hundreds of people dying on them
> Thus, adding unicast-servers as you suggested
> earlier may cause performance-degredation for those request that go to
> the unicast destination.
The DNS already has algorithms for detecting which site is responding
fastest, and strongly preferring those over the other sites. You
only need the unicast sites as backups, not for primary operations.
> Given that you can't prioritise one NS instance
> over another, does it really make sense to add unicast hosts if you
> already have multiple anycasted hosts?
Yup. I'm a belt-and-suspenders kind of guy. I don't care how good
your suspenders are, or how many of them you've got, if the clips
come off the pants (or the buttons they're attached to become
detached from the pants) then you're going to need something else to
hold them up -- unless you don't mind being seriously embarrassed
(and possibly arrested for public lewdness), when they fail.
Brad Knowles, <brad at stop.mail-abuse.org>
"Those who would give up essential Liberty, to purchase a little
temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
Founding Individual Sponsor of LOPSA. See <http://www.lopsa.org/>.
More information about the dns-operations