[dns-operations] Should medium-sized companies run their own recursive resolver?
Florian Weimer
fw at deneb.enyo.de
Tue Oct 15 19:24:49 UTC 2013
* David Conrad:
> Running a recursive server is (should be) far easier than running
> the vast majority of other "local servers". If it isn't, they're
> using the wrong recursive server. With the exception of root key
> rollover, running a recursive server is a fire-and-forget type
> service (modulo some initial configuration to avoid being an open
> resolver).
There's a tendency to selectively block DNS traffic, which can be a
pain to debug. Various network issues might only affect DNS recursor
traffic.
I agree that on a clean network, a DNS recursor should be easy to set
up and maintain, but you often learn after the fact that your network
isn't so clean after all. :-(
More information about the dns-operations
mailing list