On 17.10.13 00:12, Jared Mauch wrote:
Even small networks (I have a friend with a ~100 user wisp) shouldn't run their
own caches. The economics of it don't support this.
Care to elaborate on this economic problem?
Just an reference point:
Most of today's smartphones already have more resour
On Oct 16, 2013, at 6:39 PM, Vernon Schryver wrote:
>> From: Jared Mauch
>
>> Understanding how this works is not networking or DNS 101. Limiting
>> the scope with TTL isn't that easy.
>>
>> Can you point someone at docs for how to do that in a point and click
>> fashion?
>
> Can you addres
On Oct 17, 2013, at 4:09 AM, Daniel Kalchev wrote:
>
> On 17.10.13 00:12, Jared Mauch wrote:
>> Even small networks (I have a friend with a ~100 user wisp) shouldn't run
>> their own caches. The economics of it don't support this.
>>
>
> Care to elaborate on this economic problem?
>
> Just
Hello!
On 10/17/13 8:03 AM, Jared Mauch wrote:
>
> On Oct 17, 2013, at 4:09 AM, Daniel Kalchev wrote:
>
>>
>> On 17.10.13 00:12, Jared Mauch wrote:
>>> Even small networks (I have a friend with a ~100 user wisp) shouldn't run
>>> their own caches. The economics of it don't support this.
>>>
>>
> From: Jared Mauch
> I think the difference is this is an -operations list, so I'm looking
> at/around things
> that can be done to operate the equipment.
Then object to the hypothetical DNS appliances proposed by other on
the grounds that Amazon doesn't sell them today instead of nonsense
abo
> From: "Carlos M. Martinez"
> > Also, customer CPE equipment is poor and ...
> Agreed. CPEs cannot be trusted.
That fact is a poor argument for trusting the recursive resolvers
of the organizations responsible for that worse than junk CPE. Most
of that worse than trash CPE is specified, teste
On Thu, 17 Oct 2013, Jared Mauch wrote:
> Most of these "advanced" DNS things like RRL, RPZ and others aren't for
> the faint of heart. Most people don't watch/monitor logs like those here.
+1
I assumed in my "it depends" answer that whatever DNS service the
company was presently using might hav
Fred Morris wrote:
> On Thu, 17 Oct 2013, Jared Mauch wrote:
>> Most of these "advanced" DNS things like RRL, RPZ and others aren't for
>> the faint of heart. Most people don't watch/monitor logs like those here.
>
> +1
-1.
if we had spent the man hours which have been used up by this thread,
co
Thank you Paul!
if we had spent the man hours which have been used up by this thread,
collaborating to build an ISO image in kvm, vmware, and xen formats, that did
nothing but boot up and offer recursive dns to the local LAN, with auto-update
of dnssec keys, default limits for rate limiting, an
Richard Lamb wrote:
>
> Thank you Paul!
>
note, if i knew how to do this kind of work any more, and if i had time,
i'd happily donate the results to DNS-OARC or ISC or NLNETLabs or CZNIC
and let them take the lead on publicizing it. and if they wanted to put
a 'donate now' button on the result i
On Thu, 17 Oct 2013, Paul Vixie wrote:
> Fred Morris wrote:
> > On Thu, 17 Oct 2013, Jared Mauch wrote:
> >> Most of these "advanced" DNS things like RRL, RPZ and others aren't for
> >> the faint of heart. Most people don't watch/monitor logs like those here.
> >
> > +1
>
> -1.
>
> if we had spent
Fred Morris wrote:
> ...
> Well Paul: I bought all of ISC's t-shirts in one go; when are they coming
> out with a new one? When is someone coming out with one for this project?
i'm no longer affiliated with isc, and for all i know nlnetlabs, or
dns-oarc, or cz.nic, will do it first. i'd say the ra
12 matches
Mail list logo
