Home page logo

nanog logo nanog mailing list archives

Re: AW: Odd policy question.
From: Simon Lyall <simon () darkmere gen nz>
Date: Sat, 14 Jan 2006 18:01:31 +1300 (NZDT)

On Fri, 13 Jan 2006, Randy Bush wrote:
it is a best practice to separate authoritative and recursive servers.
e.g. a small isp has a hundred auth zones (secondaried far
away and off-net, of course) and runs cache.  why should
they separate auth from cache?

and it means that you can use software that specializes in the
authoritative or recursive operation or if you use the same software
optimise your configuration for either operation.

Even if they decide to combine the two and ignore other problems people
have listed then from the customer end they should be seperate so that it
is an option to split them in the future.

Migrating 10% of your customers base who have the "wrong" name servers
hardcoded in their machines is *never* fun.

Simon J. Lyall  |  Very Busy  |  Web: http://www.darkmere.gen.nz/
"To stay awake all night adds a day to your life" - Stilgar | eMT.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]