If you want to ensure well working failover you must, at some point,
test it. Even better, you may want to regularly test it (check out
Netflix's Chaos Monkey).
One way to run a simulation would be to use a firewall rule or static
route to block access between your test client/recursive server and one
or more of the authoritative DNS servers. However, this is no substitute
for an actual test to determine how different client applications will
behave.
--Blake
Sid Shapiro wrote the following on 6/9/2014 4:56 PM:
Again - thanks for the quick response - that'll teach me to post
without all the facts. I simply don't remember what the specific error
was, darn it. It might have been NXDOMAIN or SERVFAIL - I didn't write
it down.
The test I was running was on a barely, if ever used, domain, so I was
pretty sure it wasn't cached anywhere.
I'm trying to figure out ways to test this without taking name servers
offline :-)
--
Sid Shapiro sid_shap...@bio-rad.com <mailto:sid_shap...@bio-rad.com>
Bio-Rad Corporate IT - Desk: (510) 741-6846 Mobile: (510) 224-4343
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
