[dns-operations] Capturing Traffic

Christopher Chin cchin+dnsops at networkexorcist.com
Mon Feb 25 17:56:09 UTC 2013

Today at 15:46 (-0200), Carlos M. Martinez wrote:

> Date: Mon, 25 Feb 2013 15:46:53 -0200
> From: Carlos M. Martinez <carlosm3011 at gmail.com>
> Reply-To: carlos at lacnic.net
> Cc: "dns-operations at lists.dns-oarc.net"
<dns-operations at mail.dns-oarc.net>
> Subject: Re: [dns-operations] Capturing
> On principle I would hate my ISP messing around with
my traffic,
> regardless of any good intentions.

Agreed.  Wholeheartedly.  It behooves us to treat
the underlying silliness instead of band-aiding the

"Hey, you know this gun has bullets in it, right?"

.... and if they insist on shooting themselves with
it, you did your best to inform/educate.

 - Christopher


> regards,
> ~Carlos
> On 2/25/13 3:26 PM, Graham Beneke wrote:
>> I discovered the other day that a large customer of
$dayjob has decided
>> that it is a good idea to outsource the LAN support
for their head
>> office and NOC to a mom-and-pop IT shop. While I
question the wisdom in
>> that, I was far more concerned by the fact that this
mom-and-pop shop
>> had configured Google Public DNS as the resolver for
everything on their
>> LAN.
>> Now on my corner of the planet Google DNS is 190ms
away. Never mind the
>> mess we have with all the CDNs mapping their traffic
to a different
>> continent.
>> So what are you thoughts on capturing these queries
and answering them
>> on local resolvers that are<10ms away?
>> The folks at Google are certainly not going to
encourage us to spoof
>> responses from their servers but are there any other
potential pitfalls
>> with doing this to save the customers from
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> dns-jobs mailing list
> https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

More information about the dns-operations mailing list