[dns-operations] Decreasing Access Time to Root Servers DNS by Running One on Loopback

Mathias HOUNGBO mathias at houngbo.net
Wed Nov 25 22:37:27 UTC 2015


   Some DNS recursive resolvers have longer-than-desired round-trip
   times to the closest DNS root server.  Some DNS recursive resolver
   operators want to prevent snooping of requests sent to DNS root
   servers by third parties.  Such resolvers can greatly decrease the
   round-trip time and prevent observation of requests by running a copy
   of the full root zone on a loopback address (such as
   This document shows how to start and maintain such a copy of the root
   zone that does not pose a threat to other users of the DNS, at the
   cost of adding some operational fragility for the operator.


Il n'y a pas de raccourci pour atteindre le développement.
Open source is not limited to software and it is not limited to english either! 
Mefies toi de la médiocrité, c'est la moisissure de l'esprit

My blog : Made in Bénin - http://mathias.houngbo.net 
Charter President ONG IGBANet - http://www.igbanet.org/ 
(GDG Cotonou, WTM Cotonou, BJNOG, Cotonou LUG, Cotonou Wireless, CodeKid, Hackerspace Cotonou)
System and Network Administrator at BCEAO Bénin --- C.T.O & Co-Founder at STARSOFT INFORMATIQUE

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20151125/fa4dd314/attachment.sig>

More information about the dns-operations mailing list