Home page logo
/

nanog logo nanog mailing list archives

Re: AW: Odd policy question.
From: Chris Owen <owenc () hubris net>
Date: Fri, 13 Jan 2006 21:25:28 -0600 (CST)


On Fri, 13 Jan 2006, Randy Bush wrote:

it is a best practice to separate authoritative and recursive servers.

why?

e.g. a small isp has a hundred auth zones (secondaried far away and
off-net, of course) and runs cache.  why should they separate auth from
cache?

I absolutely hate it when we run into an ISP that does this.  We often
have customers who are moving form some piss poor ISP and we "rescue"
them.  Then we find out that none of ISP A's customers (often including
the customer who is moving their hosting) can get to the new site.

Similarly we have occasionally seen customers who moved their hosting from
us and we were still delivering mail locally.

In order for the root servers to do their job the two really need to be
separate.

Chris

--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Chris Owen                ~ Garden City (620) 275-1900 ~  Lottery (noun):
President                 ~ Wichita     (316) 858-3000 ~    A stupidity tax
Hubris Communications Inc ~       www.hubris.net       ~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]