[dns-operations] Should medium-sized companies run their own recursive resolver?

Florian Weimer fw at deneb.enyo.de
Mon Oct 14 19:08:15 UTC 2013


* Paul Hoffman:

> A fictitious 100-person company has an IT staff of 2 who have
> average IT talents. They run some local servers, and they have
> adequate connectivity for the company's offices through an average
> large ISP.
>
> Should that company run its own recursive resolver for its
> employees, or should it continue to rely on its ISP?

Insufficient data, I would say.  If their devices do not have some
built-in caches, supplying a local cache can clearly be beneficial.

There might be some reason to run an authoritative server for internal
zones (forward or reverse), and then you need a local resolver to
inject your data.

But it's also likely that their DHCP solution comes with some DNS
cache.  If it doesn't and it unconditionally hands out ISP resolver
addresses, they may need quite a bit more than just a local DNS
resolver or two to actually convince their devices to use their own
resolvers.



More information about the dns-operations mailing list